From understanding privacy, the regulations surrounding it, risk management and cyber threats, to finding the right frameworks, tools and the how-to delegate roles and responsibilities, develop policies and procedures, this book walks the reader through each step of developing and implementing a privacy-centric cybersecurity program.

Don’t forget the original, best selling guide that started it all!

“Cybersecurity Program Development for Business: The Essential Planning Guide”

Praise for Privacy, Regulations, and Cybersecurity and Cybersecurity Program Development for Business:

“Data is the new electricity, and every company will need it more and more to illuminate and run itself. However, in order to harness its power without getting electrocuted, every professional needs to be aware of the challenges of privacy, cybersecurity, and regulations. This book ensures your company harnesses the light and does not blow a fuse.”

-Rishad Tobaccowala, author, Restoring the Soul of Business: Staying Human in the Age of Data


In this turbulent world forever impacted by the 2020 perfect ESG+T (environment, society, governance, and technology) risk storm, Chris has delivered an incredibly readable, jampacked tour de force. This book is an eminently practical, positive and even humorous guide to all things privacy and cybersecurity that will ground you in all the essentials you need to know to survive and thrive today and tomorrow!

– Andrea Bonime-Blanc, JD, PhD, Board Director, Global Strategist, and author; CEO, GEC Risk Advisory


The more we connect the world, the more we are enmeshed in it. How can companies and other organizations take advantage of the opportunities connection creates, without exploiting or invading what should be none of their business? How can regulators see and draw the line? What can individuals do to be both open and closed? Chris Moschovitis explores these topics with great technical expertise and a strong moral sensibility. This book is, as the subtitle says, an essential business guide.

– Thomas A. Stewart, Executive Director, National Center for the Middle Market


Privacy and cybersecurity are ‘religions’ for most of us involved in their practice, and as Chris Moschovitis tell us, ‘a religion must have a god.’ His book takes us on a journey from the God of Silence to Samuel Warren and Louis Brandeis through to the Privacy-By-Design godlike character of Dr. Ann Cavoukian and is a must-read for anyone concerned with the proliferation of data and its use, the convergence of cybersecurity and privacy, and the need for privacy-centric security programs. It will help you to change your sliver of the world!

– Jo Stewart-Rattray, Chief Security Officer, SilverChain


“This is the book executives have been waiting for. It is clear: With deep expertise but in nontechnical language, it describes what cybersecurity risks are and the decisions executives need to make to address them. It is crisp: Quick and to the point, it doesn’t waste words and won’t waste your time. It is candid: There is no sure cybersecurity defense, and Chris Moschovitis doesn’t pretend there is; instead, he tells you how to understand your company’s risk and make smart business decisions about what you can mitigate and what you cannot.

It is also, in all likelihood, the only book ever written (or ever to be written) about cybersecurity defense that is fun to read.”

-Thomas A. Stewart
Executive Director, National Center for the Middle Market
Co-author of “Woo, Wow, and Win: Service Design, Strategy, and the Art of Customer Delight”


“Chris Moschovitis provides relief to business leaders from cybersecurity-induced sleepless nights. His plain talk provides understanding of cyber risks to enable focus on building organizational capabilities that will instill confidence in the pursuit of business outcomes while mitigating the potential for business interruption”

Chief Executive Officer

“In my days as a Commanding Officer of  U. S. Coast Guard ships at sea, I developed a deeply held respect for the notion of preparing well so as to perform well.  Chris Moschovitis challenges a new generation to embrace that philosophy.  He encourages us to recognize how overwhelming the flood of guidance and advice can be to leaders in either business or government . especially when the topic seems more difficult to understand every day.  Chris reaches backward into his own experience and lessons learned to design a practical approach to protecting the things for which those leaders are responsible.  This book is not Cybersecurity for Dummies.  Rather, it offers the insights and pathways important to those willing to do the hard work up front that will enable them to succeed when it counts.
Indeed, Preparation Equals Performance.”

-James M. Loy
Admiral, United States Coast Guard (Ret)
Commandant, USCG 1998-2002
Administrator, Transportation Security Administration 2002-2003
Deputy Secretary, U. S. Department of Homeland Security 2003-2005
Senior Counselor, The Cohen Group 2005-Present


“Cybersecurity Program Development for Business by Chris Moschovitis is a great addition to any executive’s library of practical, how to books on a cutting edge (even bleeding edge) topic – how to secure your organization’s cyber resilience.

The book acts not only as a primer but as a deeply knowledgeable and even entertaining resource full of useful examples and guidance. In this age of simultaneous hyper-transparency and hyper-opacity, it is critical that all executives and boards become at least conversant in what is going on in cyber – this books gives them that helpful roadmap.”

-Dr. Andrea Bonime-Blanc, CEO & Founder, GEC Risk Advisory
Co-Author of “The Artificial Intelligence Imperative: A Practical Roadmap for Business” (Praeger 2018).


“An amazing, holistic, practical, accessible and enlightening view on cybersecurity acting as a business enabler. For those who believe that stakeholder trust is a must for their business in today’s data-driven world. For security and technology professionals who need to talk business. And, for executives that need to talk cyber.  An essential guide for both.”

-Dr. Christos K. Dimitriadis
Chairman of the Board, ISACA, 2015-2017
Chief Information Security Officer, Intralot


“Cybersecurity Program Development for Business offers executives a rare look into the cybersecurity world in a pragmatic and jargon free manner.  Chris Moschovitis shows us how cyber enables rather than constrains business.    It’s refreshing to find a book on this subject that could easily become the must have for an executive’s desk!”

Director of Information Security & IT Assurance, BRM Holdich
Director, International Board of Directors


A must-read book by an experienced practitioner and respected cyber security strategist. Chris Moschovitis provides an extraordinarily clear-eyed and concise perspective on the challenges of developing and executing cyber-security strategies in complex real-world environments. His deep understanding and keen insight create a valuable book that is both practical and actionable. Cyber-attacks have become ubiquitous; buy this book if you want to avoid becoming an easy target.

-Mike Barlow
Author of Learning to Love Data Science,
Co-author of “Partnering with the CIO” and “Smart Cities, Smart Future”