Target Takes a Mulligan–CEO Resigns

The latest bit of carnage in the Target Christmas Credit Card breach is the resignation of Target CEO Gregg Steinhafel.  He is being replaced at the helm by interim CEO John Mulligan, Target’s CFO.  The first call he needs to make is to the CIO and his information technology security chief to see where the company is in rectifying the lapses that allowed the security breach to take place.

We see this as a largely symbolic and useless act, a ritual beheading in the public square.  Unless, of course, Steinhafel was the moron in senior management who declared that penetration testing the new POS system could wait until after the holidays.  in that case he deserves what he got.

Hopefully, other corporate CEOs are beginning to understand that they cannot ignore and reject out of hand the business cases that the CIO and technology departments present every budget cycle for beefier cyber defenses.  Maybe FINALLY they will be given the level of importance that they deserve. 

0

About the Author:

Cybersecurity analyst, pen-tester, trainer, and speaker. Serving small business owners in the St Paul, Minneapolis, and western Wisconsin area since 2001. Cybersecurity and hacking have been a passion of mine since I entered the computer and networking business in 2000. I hold several cybersecurity certifications including Certified Information Systems Security Professional (CISSP), Certified Advanced Security Pratitioner (CASP), and Certified Ethical Hacker (CEH). Other computer industry certifications include A+, Network+ and Microsoft Certified System Engineer (MCSE). As Cybersecurity Analyst at The WyzCo Group, I help our clients experience high levels of security on their computers, networks, and websites. In addition to consulting on security products and services, we also conduct security audits, vulnerability assessments and full penetration tests. We also work with companies and organizations that need to certify compliance with regulations such as PCI-DSS (credit card processing), HIPAA/HITECH (medical records), and GLBA. We also provide Cybersecurity Awareness Training for clients and their employees. I am a frequent speakers at cybersecurity conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference, the (ISC)2 World Congress, and the ISSA International Conference, and many local community organizations, Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2008.

Add a Comment


This site uses Akismet to reduce spam. Learn how your comment data is processed.