All links and images for this episode can be found on CISO Series We know we've got to say something about this breach, but geez, the details are really sordid and it would just be easier if we could just wrap it up with one giant "oops." You cool with that? This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our sponsored guest is Matt Radolec , senior director, incident response and cloud operations, Varonis . Thanks to our podcast sponsor, ...
Aug 10, 2021•33 min
All links and images for this episode can be found on CISO Series Managing my own risk is tough enough, but now I have to worry about my partners' risk and their partners' risk? I don't even know what's easier to manage: the risk profile of all my third parties or all the exclusions I've got to open up to let third parties into my system. This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our sponsored guest is Bruce Potter ( @gdead ), CISO, ...
Jul 29, 2021•35 min
All links and images for this episode can be found on CISO Series If I'm going to be riding my team really hard, how much charisma will I need to keep the team frightened so they stay motivated, yet don't want to leave? This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest is Jason Fruge ( @jasonfruge ), CISO, Rent-a-Center . Thanks to our podcast sponsor, Expel Expel offers companies of all shapes and sizes the capabilities of a moder...
Jul 27, 2021•34 min
All links and images for this episode can be found on CISO Series Great, you just purchased the cloud. Are you a little confused as to what you're going to do with it? Not a problem. Let's get you set up right with a world class misconfiguration. That should leave you open to all kinds of breaches. This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest is Johnathan Keith , CISO, Viacom/CBS Streaming . Thanks to our podcast sponsor, AppO...
Jul 20, 2021•34 min
All links and images for this episode can be found on CISO Series We're trying really hard to keep our customers' data safe, but we all know given the number of attacks happening, our number will eventually come up, and we'll lose your data just like every other organization you trusted. This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest is Sandy Dunn ( @sub0girl ), CISO, Blue Cross of Idaho . Thanks to our podcast sponsor, Expel Ex...
Jul 13, 2021•32 min
All links and images for this episode can be found on CISO Series As good as our virtual bouncers are, they often let in people with what seems to be a valid ID, and then once they're in our nightclub they cause a disruption and we have to kick them out. This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our sponsored guest is Sandy Wenzel ( @malwaremama ), cybersecurity transformation engineer, VMware . Sandy also recommends participating in...
Jul 06, 2021•36 min
All links and images for this episode can be found on CISO Series We're a brand new consultancy and we promise if you just let us poke around your network, we'll find something wrong. Because everyone has something wrong in their network. This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest is Phil Huggins ( @oracuk ), CISO, NHS Test & Trace, Department of Health and Social Care . Thanks to our podcast sponsor, VMware In this episode:...
Jun 29, 2021•33 min
All links and images for this episode can be found on CISO Series If you're happy with your best practice of rotating passwords, that's great for you. Just don't lay your old-timey "rules for better security" on me boomer. This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest is Robb Reck ( @robbreck ), CISO on sabbatical and co-founder Colorado=Security , a podcast and Slack community. Thanks to our podcast sponsor, VMware In this epi...
Jun 22, 2021•34 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/how-cisos-make-it-worse-for-other-cisos/ Are CISOs inappropriately putting pressure on themselves and is that hurting the rep of all CISOs as a result? This week's episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest is Andy Ellis ( @csoandy ), operating partner, YL Ventures . Thanks to our podcast sponsor, Orca Security Orca Security provides instant-on secu...
Jun 15, 2021•39 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/excuse-me-what-bribes-do-you-accept/ The security vendor/practitioner sales cycle would go a lot faster and smoother if CISOs would just take an "incentive" for a meeting. Just tell me what "incentive" you would like. I'm sure it'll cost me a lot less than what I'm spending on marketing and sales. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson. Our guest is Al...
Jun 08, 2021•32 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/holy-crap-weve-been-doing-this-for-three-years/ On this day three years ago, Mike Johnson and I released the first episode of CISO Series’ CISO/Security Vendor Relationship Podcast . Our primary goal was to talk about the strained yet much needed relationship between security practitioners and vendors. With the help of our guest Dan Walsh , CISO, VillageMD and plenty of contributors we look back and ask ours...
Jun 01, 2021•33 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/something-stinks-in-here-i-think-it's-your-code/ The problem isn't our users, it's you and your past due code. Something happened. It's either been tainted or expired, but whatever it is, it smells and you need to clean it up. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our sponsored guest this week is Brian Fox ( @brian_fox ), co-founder and CTO, Sonatyp...
May 25, 2021•36 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/our-top-ten-list-of-vendors-that-arent-you/ You look at a top ten list is to see if you made the list. Don't bother. You're not on it. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest this week is Nancy Hunter , vp, CISO, Federal Reserve Bank of Philadelphia . Thanks to our podcast sponsor, Code42 Redefine data security standards for the hybrid workf...
May 18, 2021•32 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/do-we-have-to-let-the-ciso-sit-with-us/ I guess because it's a pandemic, and we really need them, just this one time, we'll let the CISO hang out at the cool kids' table. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our sponsored guest this week is Jadee Hanson ( @jadeehanson ), CISO, Code42 . Thanks to our podcast sponsor, Code42 Redefine data security st...
May 07, 2021•34 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/why-commute-when-you-can-stay-home-and-be-overworked/ Work from home seemed ideal until you realized you were working at all hours with people all over the world. It would actually be a nice respite to have to commute and leave work at a reasonable hour. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest this week is Adam Glick , CISO, Rocket Software ...
May 04, 2021•35 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/pushing-this-to-the-top-of-your-inbox-so-you-can-delete-it-again/ We're following up on our previous email because we love to engage in self-defeat. We assume you don't want to hear from me again, but just to make sure, I've delivered another email for you to delete. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest this week is Rinki Sethi ( @rinkise...
Apr 27, 2021•35 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/ok-i-get-it-youre-all-special-snowflakes/ This department manager thinks their data is the most important. But then this department manager thinks their data is the most important. Can there really be so many crown jewels in your company that are all equally important? How's a CISO supposed to prioritize? This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our gu...
Apr 20, 2021•39 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/what-to-expect-when-youre-expecting-a-network-breach/ Are you expecting a little intrusion into your network any day now? You better be prepared. Are there some vulnerabilities you should have managed, but didn't? Don't worry, first time security professionals are always scared about their first incident. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our sp...
Apr 13, 2021•34 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/we-recommend-a-know-the-right-people-certification/ There are so many fantastic certifications out there for security professionals. But we've found the one certification that will really help you land the right job really quickly, is to provide proof that you know some people at our company who can vouch for you. Remember, we are a business that operates on trust, not giving people their first chances in cy...
Apr 06, 2021•34 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/my-backup-plan-is-hoping-my-cloud-provider-has-a-backup-plan/ I think maybe I should check to see if we paid for cloud backup protection. Or maybe, we're doing it. Who knows? This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series, and Mike Johnson . Our guest this week is Ty Sbano ( @tysbano ), chief security and trust officer, Sisense Thanks to our podcast sponsor, Adaptive Shield Ad...
Mar 30, 2021•38 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/patches-yes-we-need-stinkin-patches/ There was a time we could trust a patch, but now our adversaries are actually looking at the patches to find even more vulnerabilities. And we keep patching those as well. Our patches' patches need patches. When does it stop?! This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our sponsored guest this week is Travis Hoyt ( @t...
Mar 23, 2021•34 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/i-think-possibly-maybe-weve-solved-diversity-in-cybersecurity/ We're tired of hearing "we're trying" when it comes to the subject of how companies are trying to inject diversity into their organizations. It's a lopsided game and diverse candidates have to make ten times the number of attempts as their non-diverse counterparts. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and...
Mar 16, 2021•32 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/unnecessary-research-reveals-cisos-hate-cold-calls/ In a study we never actually conducted, our fellow security leaders said unequivocally that there never has been a time they welcome a phone call from someone they don't know trying to book a demo to see a product they have no interest in. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and guest co-host Andy Steingruebl ( @as...
Mar 09, 2021•35 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/one-day-youll-grow-up-to-know-less-than-you-do-now We know so little when we're born. We're just absorbing information. But then we get older, and get the responsibility to secure the computing environment of a large company, we actually see that knowledge we absorbed start slipping away. What we thought we knew of what's in our network is so far afield from reality. This episode is hosted by me, David Spark...
Mar 02, 2021•35 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/would-you-look-at-that-unrealistic-licensing-deal/ CISOs know that salespeople want to make the best licensing deal they can possibly get. But unpredictability in the world of cybersecurity makes one-year licensing deals tough, and three-year licensing deals impossible. This episode is hosted by David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest this week is Mark Eggleston , ( @meg...
Feb 23, 2021•38 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/this-is-the-year-im-going-to-lose-weight-and-care-about-security/ Every year I say I'm going to do it. I'm going to get healthy and be much better about securing my digital identity and my data. But then after about two weeks I give up, use the same password across multiple accounts, and eat a pint of Häagen-Dazs. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and guest co-hos...
Feb 16, 2021•33 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/please-accept-this-not-a-bribe-gift-as-an-act-of-desperation/ Offering me a gift for a meeting was definitely not Plan A. Or was this a situation that you ran out of creative ideas and it's actually more cost efficient to buy your way into meeting with me? This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest this week is John Overbaugh , ( @johnoverbaugh...
Feb 09, 2021•36 min
All links and images for this episode can be found on CISO Series https://cisoseries.com/foul-that-interview-question-is-unfair/ Pick a side. You either want your employees to have a work/life balance, or you want them to be obsessed with security 24/7. You can't have both. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest this week is Arpita Biswas , ( @0sn1s ) senior incident response engineer, Databricks Thanks to our podcast sponsor, ...
Feb 02, 2021•34 min
All links and images for this episode can be found on CISO Series ( https://cisoseries.com/why-do-we-fire-the-ciso-tradition/ ) Yes, firing the CISO probably won't solve our security issues. But our community has a multi-generational heritage of relying on scapegoats to make them feel good about their decisions. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest this week is Kirsten Davies ( @kirstendiva ), CISO, Estee Lauder Companies . T...
Jan 26, 2021•35 min
All links and images for this episode can be found on CISO Series ( https://cisoseries.com/ click-this-link-to-fail-a-phishing-test / ) Our phishing tests are designed to make you feel bad about yourself for clicking a link. We're starting to realize these tests are revealing how insensitive we are towards our employees. This episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson . Our guest this week is Yaron Levi , ( @0xL3v1 ) former CISO, Blue Cross Blue Sh...
Jan 19, 2021•33 min
