In this episode, Dr. Dave Chatterjee speaks with Josh Cook, a seasoned cybersecurity and privacy attorney who has guided multinational corporations and mid-sized businesses through high-stakes cyber crises. Drawing on his experience as the first Global Cyber Counsel for a Fortune Global 500 company, Cook shares how he built a global cyber legal function from scratch and why legal teams must be engaged long before an incident occurs.

Together, they explore the human, organizational, and legal dynamics of crisis leadership: from building attorney-client privilege into preparation, to developing muscle memory through tabletop exercises, to ensuring the C-suite speaks with one unified voice when every second counts. Anchored in Dr. Chatterjee’s Commitment–Preparedness–Discipline (CPD) framework, the discussion underscores how legal, leadership, and security functions must converge to preserve trust and resilience in the face of relentless cyber threats.

Time Stamps

· 00:49 — Introduction to Josh Cook and his career journey

· 02:43 — Building the global cyber legal function

· 06:18 — Why legal must be engaged early in cyber strategy

· 09:10 — Prepared vs. unprepared organizations and the “B-OODA loop”

· 10:58 — Dr. Chatterjee introduces the CPD framework in crisis leadership

· 14:30 — Leadership commitment and the ROI of prevention

· 17:11 — Tabletop exercises and developing organizational muscle memory

· 19:45 — Crisis leadership styles and their impact on teams

· 21:55 — Cybersecurity as strategic enabler and trust foundation

· 27:03 — Preparing for the next attack, not the last one

· 29:45 — Common crisis weakness: fractured C-suite response