CISO Presents 90 Page Slide Deck On Patch Management To Sysadmins Who Already Patched It Last Tuesday

Filed by Cybersecurity Smith

DENVER — Sources inside a mid-sized financial services firm confirmed Tuesday that Chief Information Security Officer Brad Thornwell-Pierce, CISSP, CISM, CRISC, CISA, delivered a 90-page slide presentation on the urgent need for a comprehensive enterprise patch management strategy to a room of three sysadmins who finished patching the affected systems six days ago.

The presentation, titled "Patching: A Strategic Imperative for the Modern Enterprise," ran for two hours and forty minutes and included a 14-slide section on "Stakeholder Alignment," a Gartner Magic Quadrant article, and what one attendee described as "a frankly aspirational" RACI matrix.

"He showed us a slide of the CVE we patched last week," said senior sysadmin Dave Karlsen, who has been at the company for 22 years. "Then he showed us another slide explaining what a CVE is. Then he asked if we had any questions. I asked if I could go back to my desk."

Thornwell-Pierce, who joined the company in 2025 after what his LinkedIn describes as "transformational tenure" at three previous firms, told the room that patch management would be a "key strategic pillar" of the security program going forward, and that he would be scheduling a follow-up working session to develop a formal Patch Management Policy.

"We already have one," Karlsen said. "He approved it. In May."

At press time, Thornwell-Pierce had posted a photo of the meeting to LinkedIn with the caption "Great alignment session with the IT team today. Real synergy on our patching journey."