All links and images for this episode can be found on CISO Series You're a security vendor and you've got a short briefing with a security analyst from a research firm. What do you want to get across to them, and what do you want to hear back from them? Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark ( @dspark ), the producer of CISO Series , and Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn . Our guest is Ed Amor...
Feb 10, 2022•31 min
All links and images for this episode can be found on CISO Series Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark ( @dspark ), the producer of CISO Series , and Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn . Our sponsored guest is Michael Johnson , CISO, Novi (the financial arm of Meta , formerly Facebook) Thanks to our podcast sponsor, Anjuna Anjuna Confidential Cloud software effortlessly enables enterprises to...
Feb 03, 2022•28 min
All links and images for this episode can be found on CISO Series Security professionals are drowning in activities. Not all of them can be valuable. What should security professionals stop doing be to get back some time? Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark ( @dspark ), the producer of CISO Series , and Steve Zalewski . Our guest is Jim Rutt , CISO, Dana Foundation . Thanks to our podcast sponsor, Thinks...
Jan 27, 2022•25 min
How seamless are Distributed Denial of Service or DDoS solutions today? If you get a denial of service attack, how quickly can these solutions snap into action with no manual response by the user? Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark ( @dspark ), the producer of CISO Series , and Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn . Our guest is Alastair Cooke ( @demitasenz ), analyst, GigaOm . Huge thanks to...
Jan 20, 2022•29 min
All links and images for this episode can be found on CISO Series Knowing is only one-third the battle. Another third is responding. And the last third is responding quickly. It’s not enough to just have the first two thirds. We need to be faster, but how? Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark ( @dspark ), the producer of CISO Series , and Steve Zalewski . Our guest is Jason Elrod ( @jasonelrod ), CISO, Mu...
Jan 13, 2022•31 min
All links and images for this episode can be found on CISO Series Automation was supposed to make cybersecurity professionals’ lives simpler. And it was supposed to solve the talent shortage. Has any of that actually happened? Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark ( @dspark ), the producer of CISO Series , and Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn . Our guest is Brian Lozada ( @brianl1775 ), CISO...
Jan 06, 2022•27 min
All links and images for this episode can be found on CISO Series Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark ( @dspark ), the producer of CISO Series , and Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn . Our sponsored guest is Josh Yavor ( @schwascore ), CISO, Tessian . Thanks to our podcast sponsor, Tessian 95% of breaches are caused by human error. But you can prevent them. Learn how Tessian can stop “OH SH...
Dec 16, 2021•29 min
All links and images for this episode can be found on CISO Series Why is cybersecurity becoming so complex? What is one thing we can do, even if it's small, to head us off in the right direction of simplicity? Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark ( @dspark ), the producer of CISO Series , and Steve Zalewski . Our guest is Leda Muller , CISO at Stanford , Residential and Dining Enterprises. Thanks to our p...
Dec 09, 2021•28 min
All links and images for this episode can be found on CISO Series Security convergence is the melding of all security functions from physical to digital and personal to business. The concept has been around for 17 years yet organizations are still very slow to adopt. A company's overall digital convergence appears to be happening at a faster rate than security convergence. Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), pr...
Dec 02, 2021•31 min
All links and images for this episode can be found on CISO Series In most jobs there’s often a clear indicator if you’re doing a good job. In security, specifically security leadership, it’s not so easy to tell. “Nothing happening” is not an effective measurement. So how should security performance be graded? Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Geoff Belknap ( @geoffbelknap ), C...
Nov 18, 2021•29 min
All links and images for this episode can be found on CISO Series If we’re going to turn the tables against our adversaries, everything from our attitude to our action needs to change to a format where attacks and breaches are not normalized, and we know the what and how to respond to it quickly. Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn...
Nov 11, 2021•27 min
All links and images for this episode can be found on CISO Series Is it too much experience? Is it that they're difficult to work with? Do they want too much money? Will they not be motivated? Are cyber professionals over the age of 40 being discriminated in hiring practices? Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark ( @dspark ), the producer of CISO Series , and Steve Zalewski . Our guest is Ben Sapiro , head...
Nov 04, 2021•32 min
All links and images for this episode can be found on CISO Series How do we turn the tide from reactive to proactive patch management? Does anyone feel good about where they are with their own patch management program? What would it take to get there? Check out this post and this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark ( @dspark ), the producer of CISO Series , and Steve Zalewski . Our sponsored guest is Sumedh Thakar ( @s...
Oct 28, 2021•33 min
All links and images for this episode can be found on CISO Series Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn , and our guest Tony Sager ( @sagercyber ), svp, and chief evangelist, Center for Internet Security . Thanks to our podcast sponsor, Qualys In this episode: What role should HR play in the hiring process of cybersecurity candidates...
Oct 21, 2021•33 min
All links and images for this episode can be found on CISO Series Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn , and our guest Andy Ellis ( @csoandy ), operating partner, YL Ventures . Thanks to our podcast sponsor, Varonis What is your ransomware blast radius? The average user can access 17 million files. Varonis reduces your blast radius ...
Oct 14, 2021•30 min
All links and images for this episode can be found on CISO Series When a senior person at your company asks you, "Are we secure?" how should you respond? Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Steve Zalewski , and our guest Paul Truitt , principal US cyber practice leader, Mazars . Thanks to our podcast sponsor, Varonis Still in the news is REvil’s ransomware attack on Kaseya VSA s...
Oct 07, 2021•29 min
What are the tell tale signs you've got ransomware before you receive the actual ransomware threat? Check out this post and this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn , and our sponsored guest Brian Vecci ( @BrianTheVecci ), field CTO, Varonis . Thanks to our podcast sponsor, Varonis What is your ransomware blast radius? The average user can access...
Sep 30, 2021•31 min
All links and images for this episode can be found on CISO Series Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn , and our guest Robert Wood ( @holycyberbatman ), CISO at Centers for Medicare & Medicaid Services . Thanks to our podcast sponsor, Living Security Traditional approaches to security communication are limited to one-off training se...
Sep 23, 2021•31 min
All links and images for this episode can be found on CISO Series SIEM tools that ingest and analyze data are ubiquitous in security operations centers. But just knowing what's happening in your environment is not enough. For competitive reasons, must SIEM tools expand and offer more automation, intelligence, and the ability to act on that intelligence? Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Serie...
Sep 16, 2021•27 min
All links and images for this episode can be found on CISO Series Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Steve Zalewski , and our guest Adam Keown, director, information security, Eastman. Thanks to our podcast sponsor, VMware In this episode: What's more valuable to get hired: degrees or experience? What's better: narrow focus or broad skill range? What's more attractive: knowledg...
Sep 09, 2021•31 min
All links and images for this episode can be found on CISO Series What is the most critical step to preventing ransomware? Security professionals may be quick to judge users and say it's a lack of cyberawareness. Could it be something else? Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn , and our guest Rebecca Harness ( @rebeccaharness ), CIS...
Sep 02, 2021•27 min
All links and images for this episode can be found on CISO Series For four years in a row, Verizon's DBIR, has touted compromised credentials as the top cause of data breaches. That means bad people are getting in yet appearing to be legitimate users. What are these malignant users doing inside our network? What are the techniques to both understand and allow for good yet thwart bad lateral movement? Check out this post for the basis for our conversation on this week’s episode which features me,...
Aug 26, 2021•29 min
All links and images for this episode can be found on CISO Series You've just joined a company as CISO, what's the very first step you would take to improve the security posture of your new company? Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Steve Zalewski , and our guest Olivia Rose , vp of IT and security, Amplitude . Thanks to our podcast sponsor, Proofpoint Sixty six percent of CIS...
Aug 19, 2021•30 min
All links and images for this episode can be found on CISO Series How is ransomware getting into your network? Is the path direct, like via email, or does it take a more circuitous route? Check out this post and this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Steve Zalewski , and our sponsored guest Ryan Kalember ( @rkalember ), evp, cybersecurity strategy, Proofpoint . Thanks to our podcast sponsor,...
Aug 12, 2021•29 min
All links and images for this episode can be found on CISO Series Why should security professionals get certifications? Do they actually teach you what you need to know to solve cybersecurity challenges? OR do they act as gateways or approval checks to be admitted into the field of cybersecurity? Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, guest co-host Will Gregorian ( @willgregorian ), head o...
Aug 05, 2021•30 min
All links and images for this episode can be found on CISO Series How are you measuring your progress and success with cloud security? How much visibility into this are you providing to your engineering teams? Check out this post and this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn and our sponsored guest Matthew Chiodi ( @mattchiodi ), CSO, public cloud...
Jul 29, 2021•27 min
All links and images for this episode can be found on CISO Series What does a young person, eager to get into cybersecurity, have to show or prove to land their first help desk, tech support role? Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn and our guest Bryan Zimmer ( @bryanzimmer ), head of security, Humu . Thanks to our podcast sponsor,...
Jul 22, 2021•29 min
All links and images for this episode can be found on CISO Series What do we want the Board and C-Suite to know about cybersecurity? If you could teach them one thing about cybersecurity that would stick, what would that be? Check out this post and this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, co-host Geoff Belknap ( @geoffbelknap ), CISO, LinkedIn and our guest Phil Huggins ( @oracuk ), CISO, NHS Test & T...
Jul 15, 2021•26 min
All links and images for this episode can be found on CISO Series The demand for CISOs is growing due to increased regulations and cyber threats. Yet, while the demand is there, the supply keeps rotating. Companies think the next CISO is going to fix the problems of the last one. Why is a CISO's tenure so short and why is the hiring process for CISOs so disjointed? Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer o...
Jul 05, 2021•28 min
All links and images for this episode can be found on CISO Series Check out this post for the basis for our conversation on this week’s episode which features me, David Spark ( @dspark ), producer of CISO Series, guest co-host Liam Connolly , CISO, Seek . and our guest Ben Sapiro ( @ironfog ), head of technology risk and CISO, Canada Life . Thanks to our podcast sponsor, RevCult On average, 18 percent of all your Salesforce data fields are highly sensitive and 89 percent of users have access to ...
Jul 01, 2021•34 min
