In the SecureWorld Spotlight Series, we learn about the speakers and Advisory Council members that make our events a success. In Q&A format, they share about their professional journeys, unique experiences, and hopes for the future of cybersecurity—along with some personal anecdotes.
Mark Eggleston is a passionate and servant CISO who enjoys working with people, technology, and vendors! He's enjoyed a few different careers (carpenter, psychotherapist) but believes cybersecurity is the career to keep. When he's not working in cyber—and let's face it, that's more than a fulltime gig—he is typically with his family in Wilmington, Delaware, either enjoying a dinner, a good bourbon around the family firepit, or if it is warm out, you'll find him on a beach or a boat atop the Chesapeake bay.
Get to know Mark Eggleston
Q: Why did you decide to pursue cybersecurity as a career path?
A: Around the turn of the century (feels cool saying that, but damn, I'm old), I got the chance to relocate from Virginia to outside of Philly to be a part of the inaugural privacy and security compliance program to ensure a large, national healthcare provider was HIPAA compliant. I couldn't resist and learned so much there with rock star peers and a boss. We created all the P&P, presentations, and became traveling consultants to ensure our MBO (Market Based Organizations) had efficient and effective compliance processes. I got to work with great people who helped mentor me and encouraged me to obtain certs to credential my knowledge and to refine my presentation skills—all while learning security controls and frameworks. As a former hospital psychotherapist, I got to work in a familiar setting, while learning something completely new and more technical, which was something I was also seeking practical experience, having just completed a post baccalaureate in MIS. No looking back, and I got years of experience thereafter working to implement leading technology solutions at a leading regional HMO. Fun times all around!
Q: How would you describe your feelings about cybersecurity in one word?
A: Opportunity. (So many open positions and compensation; executives are so hungry to learn more; so novel which makes it great to learn; diversified into more than tech now too!)
Q: What has been your most memorable moment thus far working in cybersecurity?
A: Wow, there have been so many. Long nights to finish a project or presentation or wrap up an incident and presenting at national conferences have all been so very memorable. However, the most intrinsically fulfilling reward is watching a mentee or direct report thrive in their own right or getting a team to gel into a dream team to accomplish gestalt where the sum is greater than parts combined!
Q: If you had to choose, what's the one cybersecurity practice people can adopt that would have the greatest impact?
A: Think before you click is most impactful for everyday workforce folks. For security practitioners, be the department of "know" versus "no," and grow business by embracing risk, responsibly.
Q: What is an industrywide change you would like to see happen in the future?
A: For the love of God, please rid ourselves of passwords.
Q: If you could pass or change one regulation/law in cybersecurity and data protection, what would it be and why?
A: I think the latest federal efforts from CISA are noteworthy as they relate to compelling vendors to be accountable to make secure coding and patching more resilient and urgent. I'd like to take it a step further in our world of literally thousands of security vendors and ask them to realize their products' objectives with the least amount of engineer training and configuration AND make it swapping vendors more reliant on open standards to give practitioners more flexibility in solutioning. It's time to shift the balance in favor of security practitioners to expect solutions to provide more immediate results with greater ease.
Q: What encouraged you to join your current organization, CSC?
A: Mid-pandemic, I got a hunkering like so many others (great resignation phenomenon perhaps?) to try something different. While it was bittersweet to leave my healthcare experience, applying my skillset to a new vertical and in a truly global capacity at an incredibly and highly successful organization has been a complete thrill. Onward, as they say!
Q: What do you wish more people knew about your organization?
A: Know we are the most collaborative, customer driven organization out there. While our reputation of being the "business behind business" with the world's greatest brands, my security practitioners may be surprised to know we have a DBS business unit that excels in take downs! Our global SOC capability is highly reliant on their services to protect our brand, and you might want to look into these hard-to-find services yourself; you'll be glad you did!
Q: When you tell people what you do for a living, what do you say?
A: I protect our company within the cyber world to boldly embrace growth and be THE place that cybersecurity pros want to work.
Q: What are you most looking forward to at your regional SecureWorld conference this year?
A: Seeing folks in person. I love the smaller sessions and networking opportunities!
Q: In honor of our 2023 conference theme, CyberSonic: Security & Sound Remix, what is your all-time favorite song?
A: If I'm gearing up for a key presentation or day of fast-paced meetings or need the strength for incident response, I'm going with something along the lines of Rage Against the Machine, Silversun Pickups, Radiohead, and more recently, I'm starting to dig the Yeah Yeah Yeahs. However, if I must pick just one song which gets me going every time, it's "Can't You Hear Me Knocking" by the Rolling Stones—gets me amped!
To connect with Mark Eggleston and other cybersecurity leaders from the greater Philadelphia area, attend the 20th annual SecureWorld Philadelphia conference on April 19-20, 2023. Mark will be presenting the opening keynote on Day 2 of the conference, Managing Through Transition: Maximizing the Value of People, Process, and Technologies. See the conference agenda and register here.
Continue to follow our Spotlight Series for more highlights from industry experts.
