All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Steve Zalewski . Joining us is our sponsored guest, Amir Khayat , CEO and co-founder, Vorlon Security . In this episode: The evolving challenges of incident response Repetition isn’t always the mother of automation Third-party APIs, first-party risk You know what they say when you assume something Thanks to our podcast sponsor, Vorlon Secur...
Jul 30, 2024•35 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining us is our sponsored guest, Danny Jenkins , CEO, ThreatLocker . In this episode: The limits of zero-trust Pentesting for SMBs An ounce of prevention is worth a pound of response The cream of the security crop Thanks to our podcast sponsor, ThreatLocker! ThreatLocker® is a global leader in Zero Trust endp...
Jul 23, 2024•39 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining us is our sponsored guest, Abhishek Agrawal , CEO and co-founder, Material Security . In this episode: What does defense in depth look like in the cloud? Collaborating on insider risk Email is a vector and a target Understand risk during an IPO Thanks to our podcast sponsor, ...
Jul 16, 2024•34 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining us is Jana Moore , CISO, Belron . In this episode: SEC disclosure rules require cyber readiness Breaking up the “boys club” Building a threat intelligence ecosystem Blending InfoSec communities and careers Thanks to our podcast sponsor, Vanta! Whether you’re starting or scaling your security program, Vanta ...
Jul 09, 2024•39 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining us is our sponsored guest, Jason Clark , chief strategy officer, Cyera . In this episode: Does AI require new security measures? Meeting the new SEC requirements Empowerment through data security Upskilling with Gen AI? Thanks to our podcast sponsor, Cyera! Cyera’s AI-powered data security platform give...
Jul 02, 2024•39 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining us is our guest and winner of Season 2 of Capture the CISO , Russell Spitler , CEO and co-founder, Nudge Security . In this episode: The Gordian knot of EDR Can we keep up with patching? Making AI practical Standardization or granularity? Thanks to our podcast sponsor, Threat...
Jun 25, 2024•40 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining us is our sponsored guest, Allan Alford , CISO, Eclypsium . In this episode: Evolving public-private partnerships New technology, but not a new challenge Securing the hidden layers of the supply chain Balancing usability and control Thanks to our podcast sponsor, Eclypsium Eclypsium is helping enterpris...
Jun 18, 2024•37 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining us is our guest, Ryan Bachman , evp and global CISO, GM Financial . In this episode: A changing of the executive guard? Playing nice with cyber insurance What does leadership want out of a CISO? Who does a CISO call first? Thanks to our podcast sponsor, Vanta Whether you’re s...
Jun 11, 2024•38 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining me is my guest, Aamir Niazi , executive director and CISO, SMBC Capital Markets . In this episode: Communicating security accomplishments Spotting red flags in an interview What does offensive security look like today? Where Gen AI is fitting into cybersecurity Thanks to our ...
Jun 04, 2024•37 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining us is Steve Zalewski , co-host, Defense in Depth . Recorded live at BSidesSF . In this episode: Are companies taking the air out of the open source balloon? What’s broken about cybersecurity hiring? Do we need minimum requirements for cybersecurity knowledge in sales? Thanks to our podcast sponsors, Dev...
May 28, 2024•44 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining us is our sponsored guest, Jeremiah Roe , advisory CISO, OffSec . In this episode: What happens as data minimization in the US changes from a potential policy goal to a regulatory imperative? How does this impact the rest of the industry? How do CISOs start getting ready for ...
May 21, 2024•35 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining us is our guest, Martin Mazor , vp and CISO, onsemi . In this episode: Has the shine worn off the cybersecurity promise of MFA? Why are threat actors increasingly finding ways to get around it? Given the high profile attacks we've seen getting around MFA, how much security st...
May 14, 2024•36 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining us is our guest, TC Niedzialkowski , CISO, Nextdoor . In this episode: Has the line between work and personal devices blurred? Why are we seeing signs that that line no longer exists for employees? What is the path of cybersecurity to keep company data secured when its continually commingling with perso...
May 07, 2024•45 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining me is our sponsored guest, Aaron Shaha , CISO, CyberMaxx . In this episode: Is technical debt an inevitability in any organization? How do you go about "paying it down?" How do you decide when you need a systematic refresh and when can you kick the can down the road a little longer? Thanks to our podcas...
Apr 30, 2024•36 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining us is my guest, Thom Langford , CISO, Velonetic . In this episode: Why do lots of businesses pledge to never pay ransomware demands? And why do their priorities quickly change when they need to get the business back to normal after an attack occurs? What good is a pledge like...
Apr 23, 2024•36 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining me is our sponsored guest, Matt Radolec , vp, incident response and cloud operations, Varonis. In this episode: Why is retaining cyber talent so hard? How can organizations keep an employee from going elsewhere? Why do organizations often not prioritize the factors to keep key employees? Thanks to our p...
Apr 16, 2024•38 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining us is our guest, Joshua Brown , vp and global CISO, H&R Block . In this episode: Why is retaining cyber talent so hard? How can organizations keep an employee from going elsewhere? Why do organizations often not prioritize the factors to keep key employees? Thanks to our podc...
Apr 09, 2024•43 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining me is our guest, Alex Green , CISO, Delta Dental . In this episode: Is it true that employees cause as many significant cybersecurity incidents as outside threat actors? Does this come down to a lack of awareness or poorly designed security implementation? And what can we do ...
Apr 02, 2024•36 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining us is our guest, Shawn Bowen , svp and CISO, World Kinect Corporation . In this episode: Is it true that CISOs feel their jobs are harder than ever with higher levels of stress? Yet why does research also show that CISO job satisfaction increasing? How do we make sense of thi...
Mar 26, 2024•39 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining me is our sponsored guest, Nadav Lotan , product management team leader, Cisco . In this episode: How can security teams do their jobs without seeming like an impediment to developers? Why can this relationship seem oppositional? How can both sides work together to better secure software without seeming...
Mar 19, 2024•37 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining me is our guest, Jamil Farshchi , evp and CISO, Equifax . In this episode: Data leaks are hard enough to deal with when caused by threat actors, but how bad is a self-inflicted data leak? Why do these types of incidents happen? How should an organization assess the risk it introduced? Thanks to our podc...
Mar 12, 2024•35 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining me is our sponsored guest, Yoav Nathaniel , co-founder and CEO, Silk Security . In this episode: Why does it seem like securing APIs is so hard? Is it just a matter of complexity? Why does it seem like we can’t go a week without hearing reports of a data leak caused by a fail...
Mar 05, 2024•35 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining me is our sponsored guest, Jay Trinckes , director of compliance, Thoropass . In this episode: Why do credential stuffing attacks put organizations in such a tricky spot? Why is blaming the victim rarely the right move? What kind of reasonable expectations can companies have ...
Feb 27, 2024•39 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining me is our guest Kelly Haydu , vp, infosec, technology, and enterprise applications, CarGurus . In this episode: What other career fields are rife with talent that could successfully transition into our industry? What kind of framework do we need to surface a more diverse array of talent? Also, what happ...
Feb 20, 2024•39 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining me is our guest, Grant Anthony , CISO, Orion Health . In this episode: Why getting buy-in to your security awareness program is so critical? Why do so many organizations get it so wrong? What framework can we apply to actually build trust with security awareness? Thanks to ou...
Feb 13, 2024•35 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Brett Conlon , CISO, American Century Investments . Joining me is our guest, Mical Solomon , CISO, Port Authority of NY and NJ . In this episode: Does the hype around generative AI tools make it seem like these are a totally new technological challenge for cybersecurity? Are many of the challenges with securing them the same that we've seen...
Feb 06, 2024•42 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Mike Johnson , CISO, Rivian . Joining me is our guest, Shyama Rose , CISO and head of IT, Affirm . In this episode: What is the impact of burnout to your security team directly? Does burnout directly play a role in how an organization can respond to security incidents.? All jobs involve dealing with stress, but what should we consider norma...
Jan 30, 2024•34 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining me is our guest, Trina Ford , CISO, iHeartMedia . In this episode: Why has the landscape for CISOs seemed particularly perilous in the past year? Does there seem to be more responsibilities with very real legal consequences attached to the role? There is a lot of guidance out...
Jan 23, 2024•45 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Andy Ellis ( @csoandy ), operating partner, YL Ventures . Joining me is our guest, Bob Schuetter , CISO, Ashland . In this episode: What should a company do when their name is in the press, but they didn't actually suffer a security incident? How much difference is there in responding to a fake data breach versus a real one? How would you h...
Jan 16, 2024•38 min•Transcript available on Metacast All links and images for this episode can be found on CISO Series . This week’s episode is hosted by me, David Spark ( @dspark ), producer of CISO Series and Billy Norwood , CISO, FFF Enterprises . Joining us is our guest, Joshua Barons , head of information security at San Diego Zoo Wildlife Alliance . In this episode: Wasn't single sign-on supposed to solve all of our security woes? So why are we still seeing everything from phishing to session hijacking with SSO? Is this just growing pains fo...
Jan 09, 2024•43 min•Transcript available on Metacast 
