E19: Cybersecurity Leadership: A New Era — Karla Reffold on CISO Advisory, Board Impact & Career Evolution

In this episode, Karla Reffold, COO at Orpheus Cyber and a widely respected voice in cyber leadership, sits down with Matthew Davies, VP of Product at SureCloud, to explore how the role of cybersecurity leadership is evolving. They discuss the rising importance of board advisory roles for CISOs, the shift in career paths from HR to executive security leadership, and what it means to operate at the intersection of technology, governance and business strategy.

Karla reflects on her journey from Human Resources to COO, her work as a board advisor and non-executive director at multiple cyber organisations, and the lessons learned through leading change in both people- and security-centric environments.

Whether you are a CISO, security leader, board member or GRC professional, this episode delivers a thoughtful and forward-looking perspective on how cyber leadership is no longer just about tech — it is about influence, governance, and shaping organisational resilience in a rapidly shifting risk landscape.

What You’ll Learn

Why the CISO (or cyber leadership) role increasingly includes board-level and advisory responsibilities.
How a non-traditional background — such as HR — can lead to a senior cyber-leadership role.
The evolving skill set required for modern cybersecurity leaders: bridging people, governance, and technology.
What advisory-board experience adds to executive decision-making in cyber risk and resilience.
Guidance for organisations and individuals on shaping cyber leadership structures fit for today’s threat and regulatory environment.