A great book that is not about cyber or security, but it applies. Holy moly! IT. APPLIES. And also: what are your similarly non-cyber recommended reads?

I'm in GRC/IT Audit/Assurance. Most companies I've worked for have been small/mid that combine all cyber duties into one or two positions, so I've often been both compliance and enforcement.

I'm currently listening to 'Bringing Out the Best in People: How to Apply the Astonishing Power of Positive Reinforcement' by Daniels.

I've never realized how thoroughly negative behavioral reinforcement has been codified into our work (in spite of the fact that our field exists to prevent negative outcomes).

The more …

assurance audit book companies compliance cyber cybersecurity enforcement grc great listening non security