Locked Down - Security Podcast

This show was recorded INSIDE BBC Broadcasting House in Central London interviewing the amazing Bill Thompson for a second time. We talk about digital transformation, digital rights, security of data and reputation. Recorded live on the studio floor of the BBC Science team responsible for BBC Click.

This is part 2 of the 2 part podcast talking to Lance James of Flashpoint who you may have seen on Mr Robot Decoded the Season 2 warmup for USANetwork's award winning Mr Robot. Companies and conferences globally pay a fortune to have Lance appear on stage. So for you guys to have an hour of his time in two half hour podcasts this stuff is worth it's weight in gold. We talk how to build out your network, be a better infosec professional, how to lead and how to build usecases and risk operations strategies seriously. These two shows are some of the best security content you'll listen to in 2016 so download and share !

Lance previously joined me at RSAC in March. If you saw Mr Robot Decoded - the warmup show for Mr Robot season 2 you'll have seen Lance talking about what drives hackers. So we thought wouldn't it be good to really do a deep dive about why hackers do what they do, what it means for you. This is education as good as it gets and it's costing you nothing to listen to. This is part 1 of a 2 part show. Tune in next week for the next one.

Jim Reavis joins me from Cloud Security Expo 2016 at London ExCel centre. Jim is now on his fifth podcast with me since 2012 and we talk Cloud Security Access Brokers, changes at the CSA, we talk about why you can't be lax about not using freely available matrixes and resources and why you should be working with the CSA. We look ahead to the end of May where we will be presenting in Dublin so for more info check the website or the Twitter (or my Twitter) feeds.

Joining me on the show today are Eurotech who are partnering with Red Hat in the IoT world. We talk with Andrea Ceiner who is Product Marketing Manager M2M/IoT at Eurotech. Recently Red Hat announced publically that we had chosen Eurotech as our partner for intelligent gateways and this podcast gives you a deep dive as to why we are working so closely together. More to follow at Red Hat Summit

I am joined on this show by Evelyn de Souza from Cisco. Evelyn is a huge security voice in Cisco Systems working in the Chief Technology and Architecture Office (CTAO). Well known for her public speaking and security leadership. Like me she also contributes and supports the Cloud Security Alliance where she is a strategy advisor. We talk about her CHAOS thery concept and also how Cloud Access Service Brokers will change cloud security, how we need to think about the positioning of security services and solutions and just be more grown up about architecture.

Joining me on the show this morning is Martin Percival Senior SI Solutions Architect here at Red Hat EMEA. Martin is one of our global team of solution architects who works daily with our customers to add strength in depth to their aspirations. We try to explain what Red Hat brings to the marketplace, what we actually do - compared to what you think we do. Listen in.

Dr JR Reagan is one of the most forward thinking CiSO in the security industry, a thought leader an inspirational security professional that is highly in demand for speaking opportunities. A coup to get him on the show and we talk with honesty and brevity about how to think about security management in cloud and to try and work out roles, responsibilities, security engineering, scalability etc. A must listen to for the savvy CIO or CiSO.

Mikko Hypponen is one of the nicest security guys on the planet. Chief Research Scientist at F-Secure, 25 year veteran of the security industry. Probably the BEST security orator in the world and this podcast is long overdue. We talk about threat landscape, some predictions, fads, trends, pinball, container security, ransomware etc. Tune in - we keep it real.

ExoScale are one of my favourite companies in Switzerland a country I adore since childhood. Come listen to them talk to me about their community built secure cloud. This is the second time they've been on my podcast - first time was a few years ago in Amsterdam. Listen in now.

Neira Jones is one of the most forthright exponents of doing security right in the financial and payments industry. Acclaimed by the press and fellow professionals as the top of her field it was great to have her come and sit in on the show and be on my panel here at CES2016.

David Cass CISO of IBM Cloud joins Richard at CloudSecurityExpo 2016 at London ExCel centre.

I am joined by Daniel Ingevaldson of Easy Solutions on this show at RSA. Daniel is ex ISS and a smart cookie, we talk about how Easy are making a major impact by being brighter.

Bastille-Networks are clever folk. They are in the top three IoT security companies on the planet and Marc Newlin is a smart engineer, listen in because there is a vulnerability he has discovered which should concern us all. I'm not going to spoil this - Go listen....

Ever seen the thriller series "Person of Interest" ? In the show an overarching computer called "The Machine" knows and sees everything, Nuix an Australian company staffed by former military intelligence staffers has produced just that. Keith and I discuss.

I mentioned ZoneFox in my column on TheStack yesterday. Well I think it's time you heard them talk. They are an ethical and hugely talented startup in Scotland. I really hope they are NOT acquired soon. I think being acquired could be the dumbest thing they could do unless it was on the promise of their product and futures being assured. This technology, and I am really hard to impress, is one of the diamonds of RSAConference this year. Sadly 99.8% of the people attending will come away without ever hearing of it. So lets do something about that. Listen to this show because if you are a developer or a company executive you're going to come away thinking - I want or need this product. It's THAT good.

Joining me on the show is Andy Williams, the UK CyberEnvoy to Washington DC to talk about RSAConference 2016.

Jim Reavis is one of my trusted long term friends in the world of security. He has built up with tenacity the global presence of the CSA and to work hard to ensure that tools that have come of CSA have slowly but surely affected the way governments understand threat.

The RSA Conference organising committee do an amazing job every year to spend 365 days putting together the best conference they can and the continual planning for other geographic RSA events. I'm joined on the show by Todd Inskeep and he and I detail why attending RSA, being an exhibitor or an attendee is so vital to be taken credibly and to increase your chances of succeeding in security or dealing with emerging threat.

Sat down with me today is Lance James, Chief Scientist at Flashpoint. Flashpoint are probably THE guys to go to when you think about emerging threat. If you've seen Mr Robot, Flashpoint is about as close to that as it gets, except real world. Threat identification, planning and looking at emerging threat globally, looking at terrorist threat, cyber terrorism, ransomware etc. Lance is a good friend and I always panic before recording as he and I will laugh like drains if allowed. Lance is the author of "Phishing Exposed", former Deloitte, working with CBC, CNN, the BBC, the David Lawrence Show, ZDNet, Wired News, CSO, USA Today, Fox News, and the Washington Post and now seen live on US TV as a security anchorman. He's also my drinking buddy.

There are forces of nature and there are forces for change. Seldom do you get both in one package. Raj Samani is one of those packages. Intel's authority on security, globally recognised and accepted as one of the most gifted speakers of his generation, Raj gives us the benefit of appearing on this show. We've recorded before a few years ago at another security show and I count him as a valued friend. This show more than any other deserves your attention. Theres a reason he has twice packed RSAC this year both at the CSA conference on Monday and then today in his keynote. He gets it. A visionary looking ahead at the challenges we face in security and the positive force for good that building the right practical controls can mean to the journey we're jointly on as we try to embrace that transformation. Sit back, relax, listen to Raj as he and I put the world to rights as best we can.

Josh Bressers for 12 years now has been the quiet unassuming security hero at Red Hat working with the Security Response Team to build common sense practices and polished security processes into the operating system Red Hat Enhanced Linux (RHEL), and all derivative products in the virtualisation space (RHEV), and our products in middleware, storage and now containers and the cloud. He is presenting at RSAConference on Friday as well as talking at the Red Hat security breakfast on Wednesday this week here in San Francisco. It's overdue that I put a microphone in front of him. This is what happens when you put two security geeks in that position.

Richard Morrell, Red Hat's Principal Security Strategist returns to the radio mic to talk to Richard Stiennon live from The Moscone Center San Francisco as part of RSA Conference 2016. Talking about CNAP, challenges of US Federal Government security and some realities.