This week we have our first guest that successfully swam the English Channel – Sue Daley, Director of Technology and Innovation at techUK. Hear insights from Sue on the mental focus it takes to swim for 23 hours straight, how a singular national vision has helped the UK address the cyber challenge, the opportunity for US and UK collaboration on cyber issues, and key considerations for regulating AI. Sue also dives into the opportunity to embrace AI/ML for addressing online threats, why she's opt...
Jul 27, 2021•44 min•Ep. 143
This week we pick back up for part two with CERT Division Director Greg Touhill. He shares insights on the mindset change in recent years on the importance in understanding risk and high value assets and where they reside. He also provides perspective for defining resilience, including taking a punch and keep on going, as well as steps for getting ahead of today's ransomware threat run amok by buying down the risk. To learn more about CERT visit CERT.org. For links and resources discussed in thi...
Jul 20, 2021•26 min•Ep. 142
This week Greg Touhill, Director of CERT Division, joins the podcast to share insights on CERT's history as the birthplace of cyber and culture of innovation at the center of the cyber universe. He also dives into the importance of the development of a Software Bill of Materials (SBOM), what happens when national leaders shine a light on cyber, why talent with breadth and depth is critical helping move the federal government cyber needle and the building blocks for standing up the federal govern...
Jul 13, 2021•27 min•Ep. 141
Cybersecurity is an industry rife with paradoxes and trying to get ahead of today's vast threat landscape can feel like an endless loop of Penrose steps. This week's guest Marilise de Villiers, co-founder and CEO of ROAR Consulting & Coaching shares insights on how to break the vicious cycle in an industry where the burn out struggle is real - particularly during the last year as the line between work and home vanished. Marilise shares details for building a personal toolkit for success that...
Jul 06, 2021•45 min•Ep. 140
This week Eric and Rachael get To The Point on the latest cybersecurity headlines such as Colonial Pipeline, ransomware and the double extortion trend and the new Biden Executive Order on improving the nation's cybersecurity. And a new Gartner report this month noting cyber spending will grow to $150 Billion this year, yet cloud security is the most under invested category. And, the cyber industry in the US has more than 500,000 job openings and when starting salaries are up to $90k why aren't m...
Jun 29, 2021•39 min•Ep. 139
Award-winning blogger, researcher, podcaster and man who coined the phrase "the cloud is just someone else's computer", Graham Clulely joins this week's podcast to discuss the many ironies in cyber today. And he deep dives into the reward system that social networks deliver for creating tribes as well as the cultural chasm being driven through misinformation, disinformation and deepfakes today and the criticality of discourse with people of differing positions. He also shares the winning formula...
Jun 22, 2021•43 min•Ep. 138
Buckle up for this week's fast-paced podcast discussion with Lance James, CEO of Unit 221B (note: you get three guesses what this is a reference to –or, listen to the podcast to learn more!). Lance takes us on the wild ride of cyber history including his discovery of the Zeus malware in 2006, how the show Mr. Robot delved into the mind of the hacker, what it takes to understand the adversarial mindset of an attack, and the emergence of psyber (the intersection of data science, psychology and cyb...
Jun 15, 2021•57 min•Ep. 137
This week Nicole Perlroth, award-winning journalist for The New York Times and best-selling author of "This Is How They Tell Me The World Ends" joins the podcast to discuss her decade long journey covering cybersecurity and many terrifying discoveries navigating through the underbelly of the secretive cyberweapons market. She shares insights on the importance of making cyber understanding and awareness accessible to all audiences. And she details the many challenges governments and society face ...
Jun 08, 2021•50 min•Ep. 136
For this week's episode we catch up with LaLisha Hurt, Deputy Chief Information Security Officer for General Dynamics Information Technology (GDIT) and recognized Cyber Wonder Warrior. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e135
Jun 01, 2021•44 min•Ep. 135
Enrique Oti, Chief Technology Officer for Second Front Systems joins us for a candid discussion on the opportunities and challenges in innovating government software development, deployment and acquisition as founder of the U.S. Air Force's Kessel Run program and co-founder of the Defense Innovation Unit in Silicon Valley. He shares insights on finding the right talent to build teams, importance of red team testing and continuous monitoring, how compliance introduces insecurity into the system, ...
May 25, 2021•42 min•Ep. 134
Welcome to our first SPECIAL EPISODE where we cover breaking news as it happens. Today we catch up with Joe Uchill, senior reporter at SC Media, to discuss the Colonial Pipeline ransomware attack making headlines this week and why we continue to see escalating attacks in frequency, ransom demands and high value targets such as critical infrastructure. Joe shares insights from his many years reporting from the cyber front lines speaking with government, regulatory, industry and hacking groups on ...
May 18, 2021•59 min•Ep. 133
Part 2 of our two-part series with Mariam Baksh, Cybersecurity Policy Reporter at NextGov. As a reporter on the front lines of security policy as it happens Mariam shares perspective on how cyber picked her, rhetorical catchphrases shaping global perception and cyber responses, gaining clarity on if or where cyber policy and partisan lines are drawn, drawing the line on sanctions, hybrid attacks, Cyber Diplomacy Act, the roles of standards bodies, auditing and incident response teams, and potent...
May 11, 2021•25 min•Ep. 132
This week we kick off a two-part series with Mariam Baksh, Cybersecurity Policy Reporter at NextGov. As a reporter on the front lines of security policy as it happens Mariam shares perspective on how cyber picked her, rhetorical catchphrases shaping global perception and cyber responses, gaining clarity on if or where cyber policy and partisan lines are drawn, drawing the line on sanctions, hybrid attacks, Cyber Diplomacy Act, the roles of standards bodies, auditing and incident response teams, ...
May 04, 2021•31 min•Ep. 131
This week we discuss the importance of a focus on assuring resiliency of critical functions as the cybersecurity path ahead with Eric Goldstein, Executive Assistant Director for Cybersecurity for the Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA). Eric also shares insights on executing CISA's mission in today's dynamic and exciting cybersecurity landscape, the criticality in prioritization and a risk-based approach in addressing security for critical in...
Apr 27, 2021•33 min•Ep. 130
This week we catch up with Lisa Donnan, Partner at Option3 Ventures to discuss the world of cyber venture capital and private equity and the importance of disruptive technology and commercialization for breaking through the white noise of the more than 3,500 cyber start-ups today. And she shares insights on why the SMB market is a $50B opportunity for cyber, why the U.S. needs a cyber moonshot to catch up, the criticality of security by design and why Cyberspace Solarium Commission is a good sta...
Apr 20, 2021•46 min•Ep. 129
This week we sit down with Charlene Mowery, Director of Strategic Initiatives at Red Hat who shares insights and lessons learned on leadership and moving forward seemingly impossible and incredibly complex multi-stakeholder initiatives to success, such as the Ford Island Master Development Agreement. She also dives into the impact of DevSecOps in recent years, the software supply chain, importance of a cloud-first mentality, hybrid cloud and shared responsibility models, and how the Cyberspace S...
Apr 13, 2021•41 min•Ep. 128
The next two weeks we catch up with SC Media Editor-in-Chief Jill Aitoro for a two-part discussion on the latest hot cybersecurity news drivers such as the continuing Microsoft Exchange hacker feeding frenzy and continuing discoveries from the SolarWinds supply chain attack. Both of which raise more questions than answers in how we collectively solve for these security challenges including pathways such as legal requirements for notifications, who do you notify and who is notified first, securit...
Apr 06, 2021•29 min•Ep. 127
The next two weeks we catch up with SC Media Editor-in-Chief Jill Aitoro for a two-part discussion on the latest hot cybersecurity news drivers such as the continuing Microsoft Exchange hacker feeding frenzy and continuing discoveries from the SolarWinds supply chain attack. Both of which raise more questions than answers in how we collectively solve for these security challenges including pathways such as legal requirements for notifications, who do you notify and who is notified first, securit...
Mar 30, 2021•25 min•Ep. 126
This week we catch up with Tom Kellermann, Head of Cybersecurity Strategy at VMWare to discuss the explosion in, and growing aggression of, cyber cartels and the differences in attack motives across nation-state attackers and the offer that just can't be refused by the "untouchables". We also dive into the little known mission of the U.S. Secret Service and mandate to investigate financial crimes dating back to the Civil War - and the tell signs that cyber financial attacks foreshadow for future...
Mar 23, 2021•32 min•Ep. 125
Hacker turned lawyer. Professor. Geologist. Policy influencer. Just a few words to describe this week's guest Evan Wolff, partner in Crowell & Moring's D.C. office and Co-Chair for the firm's Privacy and Cybersecurity Group. After a career spent in cyber risk management and helping organizations through more than 1,000 breaches, Evan shares why he is optimistic for the cyber path ahead as well as insights around collective defense, re-victimization of companies after a breach, the new admini...
Mar 16, 2021•43 min•Ep. 124
We pick up part two of our discussion with C2 Labs Co-Founder and CTO Travis Howerton looking at how the best laid plans start with the truth. And we explore the security path forward in a hyper-connected world where we move more heavily into IoT and everything is connected, dying air gaps and distributed VPNs, identity management as the new firewall, identifying clear lines of deterrence with nation-states particularly within no consequence environments, the continuing skills gap and the loomin...
Mar 09, 2021•29 min•Ep. 123
The Picasso of Cyberattacks Has Only Just Begun – Part I Travis Howerton of C2 Labs joins the podcast for an insightful discussion on the global threat landscape through the lens of his more than 20+ years working on the front lines of national security with organizations such as National Nuclear Security Administration, Oak Ridge National Laboratory, and Bechtel. In part one of our conversation Travis shares his thoughts on how the SolarWinds hack was the Picasso of modern cyberattacks, inheren...
Mar 02, 2021•20 min•Ep. 122
In this episode we explore the intersection of cybersecurity and human behavior with returning guest, Dr. Margaret Cunningham, Principal Research Scientist for Human Behavior at Forcepoint X-Labs. For public and private sector organizations, cybersecurity has always been addressed as a technology-first challenge. However as cyber threats evolve, the lack of behavioral science becomes a growing issue in today's threat environment. We discuss the challenge of calculating and addressing risk, the i...
Feb 23, 2021•39 min•Ep. 121
Michael Daniel, President and CEO of the Cyber Threat Alliance (CTA) and former Special Assistant to President Obama and Cyber Coordinator on the National Security Council staff shares insights from his front row seat on the federal government cyber frontline from 2012 to 2017, perspective on the new Biden administration's cyber priorities, growing cyber threats and trends as a result of mass remote work during the pandemic, defining standard of care and cyber responsibilities for state/local go...
Feb 16, 2021•36 min•Ep. 120
In this episode we dive into the complex world of cloud security with Chris Hughes, Managing Cybersecurity Consultant, Oteemo. For organizations in both the public sector and the enterprise, navigating the needed cloud acceleration the last year in the midst of mass remote work has created both significant opportunity and vast cloud security challenges. We discuss how security practitioners should be thinking about moving forward their cloud security strategy for the new normal and the key consi...
Feb 09, 2021•24 min•Ep. 119
Dr. Chase Cunningham, previously with Forrester Research and now with Ericom, discusses Zero Trust and how COVID-19 was the nail in the coffin of the defensible perimeter. He shares his view on the importance of multi-factor authentication and user monitoring, and how Zero Trust can be applied to the supply chain. Finally, Dr. Cunningham weighs in on if government security mandates like CMMC go too far or not far enough -- and how best to approach security in a multi-cloud, BYOD world. For links...
Feb 02, 2021•33 min•Ep. 118
Marco Figueroa Cyber Threat Hunter takes us inside the mind of the #Sunburst adversary. The timeline and what he would be doing were he the adversary. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e117 Have a guest you think would be great for the podcast? Please email Carolyn cford@forcepointgov.com.
Jan 26, 2021•45 min•Ep. 117
Jason Retired FBI Supervisory Special Agent and digital laboratory director Jason G. Weiss is counsel in the Los Angeles office of the law firm Faegre Drinker, Biddle and Reath's cybersecurity and incident response group.has been doing cybersecurity his entire career, he pioneered a cybersecurity collaboration model 20 years ago still in use today. He shares his top cyber defense tips. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/go...
Jan 19, 2021•41 min•Ep. 116
Elements of an Insider threat programs, the role Privileged users play, and how #Sunburst has affected insider threat programs with Mike Crouse, Director Insider Threat Strategies, Forcepoint, and Jared Quance, US Gov Insider Threat Program Manager. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e115 Have a guest you think would be great for the podcast? Please email Carolyn cford@forcepointgov.com....
Jan 12, 2021•40 min•Ep. 115
What a fantastic year of guests, Eric and Carolyn review their top 10 guests. Be one of the first 10 to share this episode to receive your choice of one of these books (Spoiler alert): Cyber Nation, David Sanger Burn-in, Peter Singer Ghost Fleet, Peter Singer LikeWar, Peter Singer This 2020's final episode, Happy Holidays and see you in the new year! For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e114 Have a guest you think...
Jan 05, 2021•29 min•Ep. 114
