Jamf CIO: Collaboration is one of the biggest challenges in IT

Linh Lam. Picture: Jamf. Note: In the rewriting, I will assume that the original blog section was discussing Linh Lam and her association with Jamf. Linh Lam, featured in the photograph captured by Jamf, has made noteworthy strides in her professional journey.

In this blog post, Linh Lam, Chief Information Officer at Jamf, shares insights into her responsibilities, the primary security hurdles encountered by her sector, and the significance of teamwork and cooperation between IT and security divisions.

Linh Lam holds the prominent position of Chief Information Officer (CIO) at Jamf, a software enterprise that specializes in safeguarding Apple technology for professional utilization.

As the Chief Information Officer (CIO), Lam holds the responsibility of guiding Jamf's team in enhancing the company's technology and operational capabilities. Her team consists of various departments, including IT, enterprise applications, information security, and global real estate. Their main focus is to implement automation, improve efficiency, and ensure the company's ability to grow and handle expansion seamlessly.

Before starting at Jamf, Lam worked as the senior vice-president and Chief Information Officer at ICE Mortgage Technology. Along with her expertise in the field, she holds a bachelor's degree in arts from Stanford University.

"At Jamf, we are currently engaged in thrilling endeavors like implementing automation throughout enterprise operations - ranging from sales to services - and maximizing the potential of cloud computing and AI operations."

"By harnessing this technology, we have the power to revolutionize the experiences of our customers and partners while engaging in business with Jamf."

'Ensuring safety requires collaboration'

One of the major obstacles in today's IT environment is the connection between IT and security teams. For quite a while now, these teams have perceived themselves as distinct fields with completely contrasting objectives, yet they have been compelled to collaborate.

The IT professionals often refer to the security team as the ‘Department of Denial'. The security professionals perceive the IT team as constantly prioritizing speed over safety. Nevertheless, with the rapid advancement of digital business, it is crucial for the CIO, CISO, and other leaders in digital technology to collaborate closely in order to shape the future of their organization.

I've also had to contemplate my connections and the way I engage with the CISO and the security crew. In my opinion, there are several techniques to enhance the bond between these two teams that have proven to be successful.

Align the IT and security teams. The IT teams need to grasp the importance of security and acknowledge that creating and implementing applications quickly should not weaken the organization's cybersecurity. Conversely, the security teams should view their IT counterparts as a means of monitoring cyber threats.

Build a robust connection within the upper echelons of the company. It is not solely about fostering harmonious collaboration between the IT and security departments, but also about unifying the Chief Information Officer (CIO) and the Chief Information Security Officer (CISO). CISOs must be acknowledged as pivotal figures in thwarting risks throughout the organization. They ought to be given a prominent role and collaborate with their CIO counterparts instead of opposing them.

Ensure that collaboration is present right from the beginning. Now that the teams have established a mutual comprehension, IT and security must engage in close cooperation right from the onset. Instead of joining forces towards the end of the development process and both teams feeling unfairly treated, collaboration should commence during the conceptualization phase of the application and continue through to the final evaluation stages.

The swift emergence of digital innovation has led to the surge of adaptable versatility in the work environment. Consequently, corporations are much more inclined to provide adaptable schedules and remote or blended work arrangements. However, what truly matters is their willingness to grant staff the freedom to choose their own work devices.

Although the idea of giving employees the freedom to choose is attractive, putting it into practice has been difficult. Numerous companies continue to rely on outdated or custom-built software, which poses obstacles for non-Windows systems and poses potential security risks. Additionally, IT and security teams that focus primarily on Windows may not be familiar with Apple devices and the specific requirements to align with company regulations, similar to those of Windows devices.

At Jamf, we are assisting companies in tackling the obstacles that arise with employee flexibility. Ultimately, asking the appropriate inquiries and adopting a strategic perspective is crucial. What are the company's goals regarding employee flexibility? What level of participation is necessary from departments like HR? And how can we guarantee the protection and security of our data and resources for our employees, clients, and partners?

In order to effectively establish employee choice, it is crucial to possess the appropriate goods and solutions. Companies should incorporate technology that functions similarly to tools such as 365, which handle identity, management, and security within their Windows system.

The increasing vulnerability of online security calls for an increased need for proficient experts in the field.

Jamf has made sustainability a primary goal, and it has become immensely significant to our stakeholders.

Every company should strive for carbon neutrality – at Jamf, we have been working towards this goal since 2021. It is crucial to accurately and comprehensively measure emissions in order to establish environmental policies and set objectives that will facilitate a reduction strategy.

As an illustration, we contribute to Carbonfund.org in order to counterbalance our emissions. This contribution aids in combating the phenomenon of global warming by backing renewable energy initiatives that are confirmed by independent parties, which in turn help to alleviate the release of greenhouse gases. Moreover, these projects also involve capturing methane gas and producing sustainable electricity for neighboring communities.

In addition to reducing emissions, companies should also focus on educating and involving their staff in matters of environmental sustainability. Motivate and provide employees with chances to participate and assist in environmental initiatives – this enables them to become more actively involved in environmental concerns and movements. Moreover, develop workshops to enhance people's comprehension of sustainability-related topics, or host webinars that offer guidance, techniques, and useful resources for transitioning towards a zero-waste lifestyle at home.

The primary three obstacles in the field of security are the complexity of online threats, scarcity of well-trained individuals, and the ability to retain experts in the field of security.

There is a growing complexity in the world of cyberthreats. Criminals who carry out these attacks are utilizing more advanced methods like manipulation, ransomware, and taking advantage of unknown vulnerabilities. Our team at Jamf Threat Labs has observed the emergence of fresh attack strategies in the last year, particularly focusing on the Apple ecosystem. With technology and malware evolving swiftly, it is becoming increasingly difficult for the cybersecurity sector to stay ahead of these cyberthreats.

With the cyberthreat landscape becoming increasingly hazardous, the need for exceptionally skilled experts is growing. Nonetheless, there is currently a significant shortage of qualified individuals compared to the demand. To address this issue, the cybersecurity sector must contemplate methods for attracting more people from underrepresented communities, thereby closing the existing gap.

To achieve this, companies must be adaptable in their offerings. The traditional fixed working hours within an office may not suit everyone, hence it is important to provide flexible schedules that accommodate various needs. Additionally, embrace hybrid and remote working options to cater to different preferences. Moreover, enhance employee benefits by introducing attractive parental leave policies and extending support for childcare.

The focus is not solely on attracting new individuals, but also on preserving the existing workforce in the sector. Security is a field that faces significant demand and pressure, necessitating extended working hours and carrying immense responsibilities. It is unsurprising that security personnel often encounter stress and exhaustion. Hence, it is crucial to provide acknowledgement, training, and assistance during the job.

Acknowledging and incentivizing team members for their hard work and accomplishments has the power to enhance team spirits and inspire them. In an industry where usually only the negative aspects are highlighted, acknowledging team members will make them feel esteemed and recognized. Furthermore, offering consistent opportunities for employee training will boost their confidence in their positions, ultimately lowering stress levels and preventing burnout. Training sessions will also enlighten employees about their weaknesses and, most importantly, guide them towards improvement.

Ultimately, it is crucial to keep in mind that security is a collaborative effort, especially for those of us in the field of security.

Get the latest essential sci-tech news delivered straight to your inbox every weekday with the Daily Brief from Silicon Republic. Sign up now and stay informed with the 10 things you need to know.