In Episode 2 of The Strategy Layer Live, we dig into one of the most urgent — and least acknowledged — leadership challenges in cybersecurity today.

The CISO role isn’t dying. But it is being slowly redefined, compressed, and undermined by structural misalignment, rising board expectations, and misused metrics. What one security executive called the “co-morbid poisoning” of the role has become a shared, often unspoken reality for many cybersecurity leaders — especially those navigating the tension between visibility and actual control.

In this episode, host Steve Tout, Founder & CEO of Identient, sits down with Steve Zalewski, former CISO of Levi Strauss & Co., trusted advisor, and respected voice in the cybersecurity leadership community. Together, they unpack how the CISO role is being reshaped — not by failure, but by a system that was never built to support sustainable, high-impact security leadership in the first place.

📌 What we cover in this episode:

• The origins of the term co-morbid poisoning and why it resonates now more than ever
• How modern CISOs are over-indexed on responsibility and under-indexed on authority
• The role of frameworks, dashboards, and performance theater in eroding trust
• What aspiring and seasoned CISOs alike need to understand about governance drift
• How Strategic Performance Intelligence (SPI) can anchor the next evolution of security leadership
• Reflections on RSA Conference and how many “leadership” panels are missing the real conversation

This conversation directly inspired a chapter in Steve Tout’s upcoming book,
The CISO On The Razor’s Edge: Leading Cybersecurity When the System Is Designed to Break — launching June 2 on Amazon.

🎯 Whether you’re a CISO, CIO, or cybersecurity executive navigating the shifting expectations of your role — or you're simply trying to lead with more clarity in an increasingly fragmented environment — this episode will give you language, perspective, and energy for what’s next.

📘 Pre-order the book or download a free chapter: https://tout.media
🧠 Join the SPI 360 Executive Circle: https://www.identient.ai/slack
🌐 Learn more: https://identient.ai

In the premiere episode of The Identient Podcast, Steve Tout sits down with Mark Settle, a seven-time CIO and author of Truth from the Trenches, to explore the dual-edged power of metrics in IT leadership. Mark shares how metrics, when mismanaged, become "loaded weapons" that create unintended consequences—but when designed thoughtfully, they drive alignment, continuous improvement, and strategic impact. They delve into fostering security culture, balancing operational excellence with strategic initiatives, and avoiding the pitfalls of typecasting. Tune in for actionable insights that redefine how CIOs and CISOs approach Identity and Access Management and IT leadership.

Key Takeaways

• CIOs must design metrics that align with business goals
• Behavioral metrics can lead to unanticipated consequences
• A culture of continuous improvement is essential for IT success
• Security culture starts within the IT organization
• Aggregate metrics can obscure individual contributions
• CIOs need to balance operational efficiency with strategic initiatives
• Understanding customer perspectives is crucial for effective IT management
• Expectations for IT performance are continually rising
• Metrics should evolve with changing business conditions
• Building relationships across departments enhances IT effectiveness
• Street credibility increases with hands-on involvement
• Echo chambers can help assess team alignment
• Cultural alignment is crucial for cybersecurity initiatives
• CIOs play a vital role in cybersecurity budgeting
• Risk profiles dictate cybersecurity priorities
• A Chief Identity Officer may not be necessary
• Self-assessment is key for tech leaders' success
• Technical skills may atrophy in leadership roles
• Accountability is essential for team morale
• Learning from failures can drive personal growth

Episode Chapters

1. Introduction to the Conversation
2. The Role of Metrics in IT Management
3. Dynamic Metrics and Behavioral Change
4. Creating a Culture of Continuous Improvement
5. The Importance of Security Culture
6. Balancing Business Value and Employee Satisfaction
7. Political Skills for CIOs
8. Building Relationships and Understanding Needs
9. Navigating the Echo Chamber: Internal vs External Perspectives
10. Managing Identity and Access Management (IAM) at Okta
11. Cultural Alignment and Support in Cybersecurity
12. The Role of CIOs in Cybersecurity Budgeting
13. The Case for a Chief Identity Officer
14. Self-Assessment for Tech Leaders: Avoiding Typecasting
15. Learning from Failures: The Importance of Accountability

For show notes and more episodes, visit www.identient.ai/podcast