French Caldwell

As a thought leader in IT, I have had the pleasure of decisively shaping the GRC market for the…

About Me

As a thought leader in IT, I have had the pleasure of decisively shaping the GRC market for the last 14 years.

I am a former Fellow and Vice President at Gartner where I led GRC research, including the influential Gartner Magic Quadrant on GRC, as well as research into disruptive technology. I have also worked with the White House and U.S. Naval War College in 2002 to develop the Digital Pearl Harbor war game, the first ever strategic assessment of cyber war strategies. In 2012, the game took on a very real form with the strategic attacks on oil and gas infrastructure in Saudi Arabia and Qatar. I am a retired naval officer and a nuclear submariner. Post-retirement, I served as a diplomatic liaison to NATO for the post-Cold War Congressional Commission on Roles and Missions of the Armed Forces.

As an academic, I have served as a Federal Executive Fellow at the Brookings Institution, an Adjunct Fellow at the Center for Strategic and International Studies, and as an Adjunct Professor and Graduate Research Advisor at the George Washington University School of Engineering Management. I have written a book on international law, and have over 400 published research papers.

I have a MA in International Economics, Strategy and Diplomacy, and a BS in Oceanography.

Like Humpty Dumpty’s fall from the wall, a major data breach can crack a government
Posted by

Like Humpty Dumpty’s fall from the wall, a major data breach can crack a government

When governments suffer data leaks, the traditional fallout of breaches are combined with political scandal – the impact is multiplied and scrutiny magnified. Questions are asked around why information was withheld or, if announced soon after discovery, why it took so long to uncover. Just as a business suffers reputation damage after a breach, the […]

No, There Won’t Be New Rules On Cybersecurity – Until Someone Dies
Posted by

No, There Won’t Be New Rules On Cybersecurity – Until Someone Dies

Recently, I did an interview with Bloomberg Newsweek on the WannaCry ransomware attack that affected over 200,000 computers around the world.  The attack shutdown parts of the U.K. National Health Service leaving thousands of people without access to healthcare services, and resulted in Renault’s assembly lines being shut down in France among other things.  Newsweek […]

How to Cross-Sell Compliance to Your Sales Managers
Posted by

How to Cross-Sell Compliance to Your Sales Managers

The story of Wells Fargo’s cross-selling compliance failure, reminds me of the huge fine that HSBC received in 2012 for mis-selling— over $3 billion.  Wells Fargo’s $185 million fine for poor cross-selling practices pales in comparison – but still “ouch!”  Even worse and more costly could be the reputation damage — Wells Fargo styles itself as the […]