State of Security, by Access Point Consulting, brings together seasoned experts in the fields of security consulting, regulatory compliance, and security operations. Whether you’re a business leader, IT professional, or security enthusiast, this podcast offers valuable insights and actionable advice. -------------------- Assess, design, and implement your cybersecurity strategy. Learn more at www.accesspointconsulting.com. Note: This episode was recorded on October 31, 2024....
Dec 04, 2024•39 min
State of Security, by Access Point Consulting, brings together seasoned experts in the fields of security consulting, regulatory compliance, and security operations. Whether you’re a business leader, IT professional, or security enthusiast, this podcast offers valuable insights and actionable advice. -------------------- Assess, design, and implement your cybersecurity strategy. Learn more at www.accesspointconsulting.com.
Nov 21, 2024•39 min
State of Security, by Access Point Consulting, brings together seasoned experts in the fields of security consulting, regulatory compliance, and security operations. Whether you’re a business leader, IT professional, or security enthusiast, this podcast offers valuable insights and actionable advice. -------------------- Assess, design, and implement your cybersecurity strategy. Learn more at www.accesspointconsulting.com.
Nov 14, 2024•25 min
State of Security, by Access Point Consulting, brings together seasoned experts in the fields of security consulting, regulatory compliance, and security operations. Whether you’re a business leader, IT professional, or security enthusiast, this podcast offers valuable insights and actionable advice. -------------------- Assess, design, and implement your cybersecurity strategy. Learn more at www.accesspointconsulting.com.
Oct 30, 2024•37 min
State of Security, by Access Point Consulting, brings together seasoned experts in the fields of security consulting, regulatory compliance, and security operations. Whether you’re a business leader, IT professional, or security enthusiast, this podcast offers valuable insights and actionable advice. -------------------- Assess, design, and implement your cybersecurity strategy. Learn more at www.accesspointconsulting.com.
Oct 03, 2024•32 min
State of Security, by Access Point Consulting, brings together seasoned experts in the fields of security consulting, regulatory compliance, and security operations. Whether you’re a business leader, IT professional, or security enthusiast, this podcast offers valuable insights and actionable advice. -------------------- Assess, design, and implement your cybersecurity strategy. Learn more at www.accesspointconsulting.com.
Sep 26, 2024•45 min
Takeaways Identify and assess the risks associated with third-party vendors and suppliers Build strong relationships with critical vendors and continuously monitor their security posture Understand the risks associated with the third parties used by your own third parties Use tools like BitSight and UpGuard for scanning and monitoring vulnerabilities Have management support, clear roles and responsibilities, and a focus on security posture Chapters 00:00 Introduction and the Importance of Identi...
Jul 16, 2024•26 min
Summary In this episode of State of Security, Geoff Hancock discusses cyber threat intelligence with guests Mike Rush and Evie Manning. They define cyber threat intelligence as data that is collected, processed, and analyzed to understand threat actors, their motives, targets, and behaviors. They emphasize the importance of making intelligence actionable and highlight the different levels of threat intelligence, from strategic trends to tactical actions. The guests also discuss the impact of cyb...
May 23, 2024•31 min
Summary This episode focuses on governance, risk, and compliance (GRC) and how organizations can strengthen their GRC programs. Key recommendations include: Ensure executive buy-in and support for GRC initiatives. Review and update policies, procedures, and documentation regularly. Implement continuous monitoring and improvement of GRC processes. Incorporate GRC elements into contracts with third parties. Conduct regular internal and third-party risk assessments. Provide security awareness train...
May 16, 2024•37 min
Summary During HIMSS24 in Orlando, Access Point highlighted the importance of operational resilience and incident response in healthcare. Led by Geoff Hancock, the session addressed the increase in data breaches and the need for proactive cyber resilience. Panelists emphasized the shift to proactive cybersecurity, the role of AI and machine learning, key elements of an incident response plan, and collaboration between teams. Executives were noted for their oversight during breaches, and the evol...
May 09, 2024•48 min
Summary The principal themes in this conversation revolve around the importance of network vulnerability, data security, and the impact of emerging technologies in healthcare cybersecurity. The healthcare IT leaders we interviewed emphasize the need to find a balance between secure platforms and user-friendly environments. They also highlight the challenges of interfacing with external organizations and complying with government regulations. Other key topics include the integration of AI in heal...
May 02, 2024•14 min
Summary In this conversation, Geoff Hancock interviews Brian Weidner and Chris Skinner about incident response. They discuss the importance of building strong relationships with the C-suite and legal department, as well as the value of having a trusted incident response company on retainer. They also touch on the challenges of incident response in the critical infrastructure sector and the potential impact of new reporting requirements proposed by DHS. The conversation explores the recently rele...
Apr 26, 2024•43 min
Summary Geoff Hancock joined Allan Alford on The Cyber Ranch Podcast to discuss effective communication strategies for CISOs. They emphasize the importance of prioritizing clarity in communication, using strategic storytelling, and practicing crisis communication. They also highlight the significance of engaging stakeholders proactively, leveraging data in decision-making, and bolstering leadership presence. Additionally, they discuss the value of emphasizing followership and establishing a feed...
Mar 28, 2024•37 min
Summary This conversation explores the impact of ransomware on the healthcare industry and the importance of cyber resiliency. It discusses the resilience of cybercriminals and the need for organizations to be proactive in their approach to cybersecurity. The conversation also highlights the threats and vulnerabilities faced by healthcare organizations and the role of AI in cybersecurity. It emphasizes the importance of building operational resilience and implementing basic cybersecurity practic...
Mar 14, 2024•39 min
Summary In this episode, Rick Leib, Field CISO for Access Point Consulting, discusses the challenges and strategies for cybersecurity in healthcare organizations. He emphasizes the need for healthcare organizations to stop relying solely on perimeter security and to hire executives who can effectively sell security to the board and senior executive staff. Rick also highlights the importance of addressing legacy systems, managing medical devices securely, engaging third-party providers, and inves...
Mar 05, 2024•34 min
Summary In this conversation, Geoff Hancock, Global CISO and Deputy CEO for Access Point Consulting, speaks with Rick Leib, Access Point’s Field CISO, discussing the importance of cybersecurity in healthcare organizations. They highlight the prevalence of ransomware attacks in the healthcare industry and the need for improved malware defenses and patch management. Rick emphasizes the importance of separating IT and security departments and implementing a zero trust model. He also discusses the r...
Feb 22, 2024•29 min
State of Security, by Access Point Consulting, brings together seasoned experts in the fields of security consulting, regulatory compliance, and security operations. Whether you’re a business leader, IT professional, or security enthusiast, this podcast offers valuable insights and actionable advice. Learn more at accesspointconsulting.com .
Feb 15, 2024•52 sec
Summary The conversation focuses on privacy and how to protect personal and corporate data. The speakers discuss core principles for safeguarding customer and employee data, including data minimization, secure coding practices, and continuous testing of controls. They emphasize the importance of communication with the board and legal teams, as well as the need for data retention and disposition schedules. The conversation also covers privacy training for software developers and IT professionals,...
Nov 07, 2023•1 hr
In this episode of the Virtual CISO Happy Hour, we explore the world of phishing threats and the best practices to recognize and report them. Our panel of cybersecurity experts discusses: The significance of user awareness and training in combating phishing threats. The role of email security through DNS, including an in-depth look at DMARC, SPF, and DKIM. The importance of limiting privileges, especially in fast-paced organizations, to reduce the attack surface. The criticality of software upda...
Oct 31, 2023•38 min
Summary The conversation focuses on the importance of cyber hygiene and basic security practices. The panelists discuss the need for organizations to prioritize cyber hygiene and ensure that basic security measures, such as patch management, password hygiene, and access control, are in place. They emphasize the role of both organizational and personal behavior in maintaining cyber hygiene. The panelists also highlight the significance of managing third-party and supply chain relationships in cyb...
Oct 24, 2023•39 min
Join us for this episode of Virtual CISO Happy Hour as we discuss best practices, challenges, and solutions in navigating identity and access management (IAM) in today's digital landscape. Our panel of cybersecurity experts will unpack the essentials, ensuring your organization remains secure while optimizing user experience. Whether you're just starting your IAM journey or looking to refine your strategies, this episode offers insights you won't want to miss.
Oct 17, 2023•55 min
Delve into the intricacies of the NYDFS Cybersecurity Regulation with us on the Virtual CISO Happy Hour podcast. Wondering how to navigate its complexities, ensure compliance, or where to begin with understanding and implementation? Our panel of cybersecurity experts is here to guide you every step of the way, shedding light on how this regulation impacts your organization.
Sep 22, 2023•40 min
Are you trying to bolster your cybersecurity defenses but find yourself overwhelmed by the myriad of tools out there? How can you discern which tools are vital and which ones are just adding to the noise? And where's the sweet spot between having a robust security system and suffering from tool overload? Dive into these pressing questions in the latest episode of the Virtual CISO Happy Hour podcast, where we unpack the challenges of navigating the cybersecurity tool landscape.
Sep 15, 2023•41 min
Are you aware of the threats lurking within your organization? While external threats are often in the spotlight, insider threats can be just as damaging, if not more so. In this episode of the Virtual CISO Happy Hour podcast, we dive deep into the world of insider threats. Discover how to recognize the signs and learn the strategies to mitigate the risks they pose. Join our panel of cybersecurity experts as they illuminate the often-overlooked vulnerabilities that originate from within an organ...
Sep 08, 2023•1 hr 1 min
Are you eager to grasp the intricacies of Business Impact and Risk Assessments but don't know where to start? Wondering how these assessments can shape your cybersecurity strategy? Curious about why they're essential for every organization, no matter the size or industry? Tune into the latest episode of the Virtual CISO Happy Hour podcast where our panel of experts breaks down the significance of Business Impact and Risk Assessments. Discover their pivotal role in a strong cybersecurity framewor...
Sep 01, 2023•48 min
The Securities and Exchange Commission (SEC) recently introduced new cyber reporting regulations. But what do these rules mean for your organization? How can you ensure you're in compliance, and where can you turn for guidance? Tune into this episode of the Virtual CISO Happy Hour as our panel of cybersecurity and compliance experts dive deep into the intricacies of these new regulations. We'll discuss their implications for businesses and provide insights on how to navigate and apply them effec...
Aug 11, 2023•51 min
Are you equipped to handle the challenges of remote and hybrid work environments? Wondering how to ensure your data remains secure with a team dispersed across various locations? Curious about where the most significant threats are and the best strategies to counteract them? Tune into this episode of the Virtual CISO Happy Hour Podcast as we delve deep into these pressing concerns. Join our panel of cybersecurity experts - Shawn Sines, Rick Leib, and Laura Bishop - as they guide listeners throug...
Aug 04, 2023•53 min
Want to understand your organization's cybersecurity stance but don't know where to start? Curious about how to accurately gauge your current security measures? Wondering where potential vulnerabilities might be hiding and how to address them? Tune into the latest episode of the Virtual CISO Happy Hour podcast, where we dive deep into 'How To Identify Your Cybersecurity Posture'. Join our panel of experts as they guide listeners through the intricacies of assessing and strengthening their cybers...
Jul 28, 2023•52 min
