To The Point - Cybersecurity

Welcome back to the "To the Point" cybersecurity podcast! In this episode, hosts Rachael Lyon and Jonathan Knepher continue their enlightening conversation with Maria Roat, former US Deputy Federal Chief Information Officer and Small Business Administration CIO. Maria brings her wealth of experience from both government and private sectors to the table, sharing practical advice for aspiring cybersecurity professionals, insights on how CIOs can tackle prioritization in the face of endless cyber threats, and what it takes to drive sustained improvement in large organizations. The discussion also dives into the challenges of serving on diverse boards—from healthcare to cybersecurity consulting—and how Maria adapts her advocacy and expertise for each unique environment. She opens up about the importance of mentorship in the field, sharing powerful stories and encouraging both mentors and mentees to connect and learn from one another. Plus, Maria gives us a glimpse into her personal journey, adventures, and love for lifelong learning—whether that's traveling the world or taking on a Spartan race with her family. Tune in for an episode packed with career wisdom, leadership strategies, and Maria's signature perspective on creating an impact across the cybersecurity landscape. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e333

Welcome back to To the Point Cybersecurity Podcast, brought to you by Forcepoint! In this week's episode, hosts Rachael Lyon and Jonathan Knepher are joined—once again—by the remarkable Maria Roat, former US Deputy Federal Chief Information Officer and past CIO of the Small Business Administration. With over three decades of federal IT and cybersecurity leadership experience, Maria shares an insider's view on how organizations can remain vigilant amid the waves of change, such as leadership transitions and rising cyberattack tactics. Tune in as Maria recounts real-world challenges, like handling phishing attacks during critical moments and fostering a culture of cyber awareness, even when the threat isn't headline news. She also offers invaluable advice on building resilient, long-term cybersecurity strategies that persist through policy changes—and weighs in on the critical role of communication, both for technology professionals and leaders. Whether you're in the public or private sector, considering a career in cybersecurity, or seeking strategies for small business protection, this episode is packed with practical insights and candid discussion. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e332

Welcome back to another episode of To the Point Cybersecurity, where hosts Rachael Lyon and Jonathan Knepher dig into the evolving world of cyber threats, national security, and the intersection of technology and society. In this episode, we continue our conversation with John Cohen, Executive Director of the Program for Countering Hybrid Threats at the Center for Internet Security. John shares real-world examples from the frontlines, detailing how threat actors—from nation-states to extremist groups—leverage open forums and online platforms not only to carry out cyberattacks, but also to coordinate, inspire, and instruct physical violence. He explains the challenges of rapidly getting critical threat intelligence into the right hands, the importance of distinguishing between protected speech and real threats, and the new mindset needed to effectively respond to increasingly hybrid and ideologically-driven dangers. Tune in for insightful stories, actionable advice for both the public and private sectors, and a candid discussion on the societal challenges of disinformation, online radicalization, and the need for open conversations to build resilience in our digital and physical worlds. And to learn more about Center for Internet Security's Threat WA initiative visit https://www.cisecurity.org/threatwa . For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e331

Welcome to a brand new episode of To the Point Cybersecurity! This week, hosts Rachael Lyon and Jonathan Knepher are joined by John Cohen, Executive Director of the Program for Countering Hybrid Threats at the Center for Internet Security. With more than forty years of experience in law enforcement, counterintelligence, and homeland security, John brings a wealth of insights into the ever-evolving landscape of multidimensional threats—where cyber, physical, and information operations are increasingly intertwined. In this episode, John unpacks how bad actors, from foreign intelligence to criminal organizations, are leveraging online platforms and social media not just to carry out cyberattacks, but also to influence public perception, disrupt critical infrastructure, and undermine trust in institutions. The discussion dives into real-world scenarios—like attempts to disrupt elections, attacks on local government systems, and the complex challenges these “hybrid” threats pose to traditional cybersecurity models. You'll hear how new frameworks and collaborative approaches are helping state and local governments—and the private sector—move the needle toward greater resilience. Plus, John explains key initiatives like ThreatWire and Secure Cyber Cities, which are reshaping how threat intelligence is gathered, shared, and acted on in real time. Get ready for an eye-opening conversation that blends practical advice, thought-provoking examples, and a forward look at the shifting threat landscape. Whether you're a cybersecurity professional, policymaker, or just curious about how online threats are changing our world, this episode is packed with timely insights you won't want to miss! Learn More By Visiting The Center for Internet Security https://www.cisecurity.org/threatwa For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e330

Welcome back to the To the Point cybersecurity podcast! In this episode, co-hosts Rachael Lyon and Jonathan Knepher are joined once again by Dr. Bill Anderson, Principal Product Manager at Mattermost and founder of Oculus, for a deep dive into some of the most pressing cybersecurity topics of today. Bill draws on his background in cryptography and experience with the defense and intelligence communities to break down the ever-evolving landscape of regulatory compliance, incident response, and the growing role of automation and AI in securing critical infrastructure. Tune in as they discuss how regulations like GDPR, HIPAA, and CMMC are shaping industry standards and why proactive preparation is essential for effective cyber incident response. Bill also sheds light on the impending advent of quantum computing, the "store and harvest" threat, and the urgent need to adopt post-quantum cryptography. Plus, he takes us on a personal journey through his career in cybersecurity and offers predictions about the next wave of innovations that could change our digital lives. Whether you're a security professional or just fascinated by the future of technology, this episode is packed with insights on how to navigate and stay ahead in a rapidly changing cyber world.   For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e329

In this episode of the "To the Point Cybersecurity" podcast, hosted by Jonathan Knepher and Rachael Lyon, we delve into the intricate world of cybersecurity with Dr. Bill Anderson, the Principal Product Manager at Mattermost. With a focus on AI, quantum cryptography, and secure communications, Bill brings a wealth of experience from his time in the defense and intelligence communities. Throughout the discussion, the team explores the unique challenges faced by defense, intelligence, security, and critical infrastructure organizations in defining cyber resilience. They compare this with the approaches taken by commercial organizations, providing valuable insights into the importance of leadership, training, and collaboration in building a robust cybersecurity strategy. As they navigate issues like information overload, skills gaps, and the need for adaptive incident response, listeners will gain a deeper understanding of the complex landscape of cybersecurity today. Stay tuned for part two of this engaging conversation next week. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e328

In this exciting episode of "Forcepoint's To the Point Cybersecurity Podcast," hosted by Rachael Lyon and co-hosted by Jonathan Knepher, we dive back into conversation with Saaim Khan, founder, and principal adviser at Cyber Matters. Known for redefining the cyber consulting landscape with an "unconsults" approach, Saaim shares engaging stories and insights on the evolving cybersecurity industry. Together, they explore the complexities and misconceptions surrounding AI in threat detection and incident response, the importance of simplicity and restraint in cybersecurity strategies, and the abundant technological resources at our disposal. With anecdotes and practical advice, this episode offers a unique perspective on navigating the cyber world today. Tune in to discover valuable lessons learned over Saaim's extensive career and how these can help businesses tackle current and future cybersecurity challenges. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e327

Welcome back to the Forcepoint podcast, where we bring you the latest in global cybersecurity. Today, we're diving into part one of our two-part series with Saaim Khan, founder and principal advisor at Cyber Matters. Saaim is redefining cyber consulting with an "unconsult" approach. In this episode, hosts Rachael Lyon and Jonathan Knepper engage Saaim in a conversation about the apparent cybersecurity talent shortage that NIST predicts will influence significant incidents by this year. Is it a lack of talent, or perhaps a shortage of experience? As Saaim suggests, it's all about the right attitude and the importance of nurturing humility and the ability to extrapolate in the next generation. Tune in as we explore the nuances of cybersecurity talent, the potential impacts of AI on the industry, and the role of true mentorship. It's a discussion packed with insight and real-world anecdotes that any cybersecurity professional or enthusiast can't afford to miss. So grab your headphones and let's get to the point! For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e326

Welcome to another episode of "To the Point Cybersecurity," brought to you by Forcepoint. This week, hosts Rachael Lyon and Jonathan Knepper are joined by Deepak Dutt, the founder and CEO of Zighra. With over a decade of experience in behavioral biometrics, Deepak provides fascinating insights into the intersection of artificial intelligence, sensor technology, and cybersecurity. In this episode, we delve into the transformative world of behavioral biometrics. Deepak explains how Zighra utilizes AI-powered continuous authentication solutions to ensure seamless user security. We explore the nuances of sensor data and how it can create unique models for every user, ultimately redefining authentication methods. The episode also touches on the importance of privacy, the evolving threats in electronic defense, and how organizations can build resilience in critical systems. Whether you're interested in the evolution of cybersecurity or curious about the latest in electronic defense technology, this episode is packed with insights and future-forward thinking. Stay tuned to learn more about the groundbreaking work being done at Zighra and how it impacts our digital world. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e325  

Welcome back to the To the Point cybersecurity podcast, presented by Forcepoint! In this episode, hosts Rachael Lyon and Jonathan Knepper continue their engaging conversation with Michele Rigby Assad, a former CIA intelligence officer and renowned author of "Breaking Cover" and "Get Off the X." Join us as Michele shares her unique insights into the global threat landscape and the security challenges we face domestically. From discussing the imperative of modernizing the intelligence workforce with STEM education to her message of embracing discomfort and taking risks for meaningful growth, Michele offers a compelling perspective that is both inspiring and thought-provoking. We'll explore the impact of cultural and linguistic isolation on the U.S.'s ability to engage globally and the pressing threats poised by countries like Iran. Plus, Michele reveals her personal philosophy on overcoming adversity and the importance of getting "off the X" to achieve extraordinary things, no matter how ordinary you start. Tune in for an enlightening discussion filled with personal anecdotes and actionable advice for navigating today's complex world. Don't miss this opportunity to hear Michele's compelling stories and invaluable expertise on the intricacies of intelligence and cybersecurity. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e324

In this episode of the "To the Point cybersecurity podcast," hosts Rachael Lyon and Jonathan Knepper dive into a compelling conversation with Michele Rigby Assad, a former CIA intelligence officer with vast experience in The Middle East. Michele shares insights from her latest book, "Get Off the X," which explores the importance of getting out of one's comfort zone and reassessing effectiveness in both personal and professional contexts. The discussion navigates the complexities of the current threat landscape, highlighting the dangers posed by nation-states like Iran and China, and the evolving challenges in cybersecurity. Michele underscores the significance of collaboration between public and private sectors to tackle these threats. With her background in intelligence, Michele offers a unique perspective on the interplay between traditional espionage techniques and modern technology, including the role of social engineering and the challenges of artificial intelligence in amplifying cyber threats. Tune in for an enlightening conversation about the need for innovation, proactive measures, and adept leadership in the realm of global cybersecurity. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e323

Welcome to Part 2 of this To the Point cybersecurity podcast episode, brought to you by Forcepoint. This week, hosts Rachael Lyon and Jonathan Knepper continue their conversation with Trevor Hilligoss, Senior Vice President at SpyCloud Labs. In this episode, Trevor provides an in-depth look at the rising use of infostealers, the changing tactics of cybersecurity adversaries, and how cybercrime enablement services are impacting organizations. He also examines the evolving role of AI and the importance of robust data protection strategies in mitigating these threats. Trevor shares valuable insights drawn from his career, including his transition from military service to becoming a leader in cybersecurity. Whether you're a seasoned professional or simply interested in cybersecurity, this discussion offers practical perspectives on the challenges and solutions shaping this critical field. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e322

Welcome to another thrilling episode of the To the Point cybersecurity podcast brought to you by Forcepoint. This week, hosts Rachael Lyon and Jonathan Knepper dive deep into the world of cybercrime with Trevor Hilligoss, the Senior Vice President at SpyCloud Labs. Trevor brings his expertise to the table, sharing insights into the intricate workings of the criminal underground, from the rise of infostealers to the evolution of cybersecurity adversaries. We explore the dynamics of cybercrime enablement services and discuss the role of AI and data protection measures in combating these threats. Prepare to be captivated by Trevor's intriguing journey from the military to becoming a key player in the fight against cybercrime, and learn what it truly means to be on the frontlines of cybersecurity. Whether you're an industry veteran or just cybersecurity-curious, this episode promises to keep you informed and engaged with the ever-evolving world of cybersecurity. Don't miss it!   For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e321

Welcome to another engaging episode of the "To the Point Cybersecurity" podcast, brought to you by Forcepoint. This week, hosts Rachael Lyon and Jonathan Knepher delve into the intersection of sports and cybersecurity with a fascinating guest, Steve Kain, an adversary emulation manager with the Maryland Department of IT. With a background spanning both offensive and defensive security roles across the media industry, government entities like the DOD, and even sports organizations including the Baltimore Ravens, Steve brings a unique perspective to the table. This episode explores the cybersecurity challenges faced by high-profile sports teams, the rise of online impersonation, and the value of adversary emulation in proactively defending against threats. Listen in as Steve shares insights from his diverse career path, offering valuable advice for those looking to enter the cybersecurity industry and highlighting the importance of mentorship and continuous learning in today's dynamic cyber landscape. Don't miss out on the expertise and compelling stories that Steve brings to the podcast in this must-hear episode.   For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e320

In this episode of the To the Point cybersecurity podcast, hosts Jonathan Knepher and Rachael Lyon dive into the complex world of IT and OT network integration with Richard Robinson, CEO of Cynalytica. Richard shares his expertise on the critical differences between IT and OT networks, highlighting their unique security priorities and life cycles. He provides insights into the challenges organizations face when merging these historically siloed domains, offering strategies to bridge the gaps in culture, communication, and risk tolerance. The conversation explores the rising threats of ransomware, the importance of holistic monitoring, and the use of innovative technologies to protect critical infrastructure. Tune in as Richard discusses the significance of realistic cyber exercises, the evolution of cyber threats, and his remarkable journey through the cybersecurity industry, from his early days in San Francisco to leading innovations at Cynalytica. This episode is packed with valuable insights for anyone interested in enhancing cybersecurity in the digital age.   For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e319

Trish Cagliostro, Head of Business Development for security - Worldwide Public Sector for Security Services at Amazon Web Services (AWS) explains Cloud security, how Threat Intelligence factors in and her Cloud wish for the future. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e318

Dive into the world of cryptocurrency with this week's guest Jeff Roberts, executive editor at Decrypt and author of the book “Kings of Crypto: One Start-Up's Quest to Take Cryptocurrency Out of Silicon Valley and On To Wall Street”. For those that are wondering, Jeff shares that cryptocurrency today is definitely mainstream and while it is still a speculative investment - with big banks getting into the game it may not stay that way for long. (HINT: in the next 10 years, we just may have an FDIC version for cryptocurrency!) He also shares how cryptocurrency such as bitcoin is serving as a nefarious and anonymous currency scapegoat for endeavors such as Silk Road and ransomware, however there are many fantastic applications it can also be used for and countries such as the US/Silicon Valley, South Korea, Switzerland and even China are helping to drive this forward. (Did you know bitcoin is legal tender in El Salvador today?!) And for those interested in his follow-up book, it just may be about currency wars. Stay tuned for more. Learn more about “Kings of Crypto” For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e318

This week Leonard Bailey, Head of Computer Crime and Intellectual Property Section's (CCIPS) Cybersecurity Unit for the Department of Justice (DOJ), Criminal Division, joins us this week. We dive into the role of the DOJ in addressing the vast and ever-changing landscape of cybersecurity. Bailey shares insights on partnering with federal agencies as well as the private sector, navigating information sharing pathways, evolution of incident and cyber threat reporting procedures, and the recent release of the Harmonization of Cyber Incident Reporting to the Federal Government. He also helps debunk information sharing myths and spotlights available tools and benefits of cyber threat information disclosure.   Leonard Bailey The Head of Computer Crime and Intellectual Property Section's (CCIPS) Cybersecurity Unit and Special Counsel for National Security in the Department of Justice's (DOJ) Criminal Division. He has prosecuted computer crime cases and routinely advised on cybersecurity, searching and seizing electronic evidence, and conducting electronic surveillance. He has managed DOJ cyber-policy as Senior Counselor to the Assistant Attorney General for the National Security Division and then as an Associate Deputy Attorney General. He has also served as Special Counsel and Special Investigative Counsel for DOJ's Inspector General. Bailey is a graduate of Yale University and Yale Law School. He has taught law courses at Georgetown Law School and Columbus School of Law in Washington, DC. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e317

This week joining the podcast is Anton (Tony) Dahbura, executive director of the Johns Hopkins University Information Security Institute and co-director of the Johns Hopkins Institute of Assured Autonomy. We deep dive into the realm of AI/ML technology and the exponential applications for it across every aspect of our lives. And the criticality of building trust, implications of bias, the realities of planning for “edge cases” that just can't be planned for, and the growing sophistication and personalization of AI-leveraged attacks. He also shares details on the most awesome CyberCorps: Scholarship for Service program. Learn more here: https://isi.jhu.edu/scholarship-service-program/ Executive Director of Johns Hopkins - Information Security Institute and Co-Director of the Johns Hopkins Institute for Assured Autonomy Anton (Tony) Dahbura is the executive director of the Johns Hopkins University Information Security Institute, co-director of the Johns Hopkins Institute of Assured Autonomy, and an associate research scientist in computer science. His research focuses on security, fault-tolerant computing, distributed systems, and testing. He received his BSEE, MSEE, and PhD in Electrical Engineering and Computer Science from the Johns Hopkins University in 1981, 1982, and 1984, respectively. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e316

We're back with part-two of our discussion with Jill Aitoro, SVP for Content Strategy at CyberRisk Alliance where we pick the conversation up on privacy today and efforts by big tech and government to protect sensitive information. We also dive into the slippery slope of consumer apps and health information used for convenience and, for some, entertainment and the realization of how that information could be shared and used by third parties in the coming decades. (And the check boxes you might mindlessly click today could come back to haunt you.) Jill Aitoro, senior vice president of content strategy for CyberRisk Alliance She has more than 20 years of experience editing and reporting on technology, business and policy. Prior to joining CRA, she worked at Sightline Media as editor of Defense News and executive editor of the Business-to-Government Group. She previously worked at Washington Business Journal and Nextgov, covering federal technology, contracting and policy, as well as CMP Media's VARBusiness and CRN and Penton Media's iSeries News. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e315

Jill Aitoro, SVP for Content Strategy at CyberRisk Alliance joins the podcast this week for a hot topics discussion across recent developments in the ongoing cyber war involving Ukraine, Russia and a supporting cast of many public and private entities including NATO, Microsoft, Lithuania and others. We also dive into recent exploits by China with social media microtargeting campaigns against rare earth mining companies and where their ‘playing the long game' implications could lead. Jill Aitoro, senior vice president of content strategy for CyberRisk Alliance She has more than 20 years of experience editing and reporting on technology, business and policy. Prior to joining CRA, she worked at Sightline Media as editor of Defense News and executive editor of the Business-to-Government Group. She previously worked at Washington Business Journal and Nextgov, covering federal technology, contracting and policy, as well as CMP Media's VARBusiness and CRN and Penton Media's iSeries News. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e314

Curt Dukes, Executive Vice President and General Manager for Security Best Practices at the Center for Internet Security (CIS) joins the podcast this week. He shares insights from his more than 30 years with the NSA and how that journey led to the CIS and the synergies between the two organizations in providing cyber resources and fostering threat intelligence information sharing. And for those not familiar with the CIS he provides a great primer on this vital organization started 20 years ago by a group of private industry and government individuals who saw the escalating cyber threat landscape ahead and decided to organize and do something about it to make the connected world a safer place. And you don't want to miss his perspective on multi-factor authentication and its 99% success rate. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e313

Welcome to our first SPECIAL EPISODE where we cover breaking news as it happens. Today we catch up with Joe Uchill, senior reporter at SC Media, to discuss the Colonial Pipeline ransomware attack making headlines this week and why we continue to see escalating attacks in frequency, ransom demands and high value targets such as critical infrastructure. Joe shares insights from his many years reporting from the cyber front lines speaking with government, regulatory, industry and hacking groups on what it would take to decrease the financial incentive and increase the criminal risk to make ransomware an undesirable pursuit. Spoiler alerts….ransomware gangs make mistakes and often hit “accidental” targets, regulating cryptocurrency is just as hard as it sounds, and while ransomware task forces can't agree on the most effective solution(s) to mitigate ransomware, most agree global cooperation would be at the top of the list! For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e312

This week, Rachael Lyon and Vince Spina continue their riveting conversation with Gemma Moore, a renowned expert in pen testing and red teaming and cofounder of Cyberus, a leading cyber consultancy. In this second part of their discussion, Gemma delves deep into the evolving landscape of cybersecurity, touching on the complexities introduced by cloud services, the intricacies of red teaming, and the critical interplay with blue teams. She even shares a few fascinating anecdotes from her career, including some high-stakes physical infiltration assignments that sound straight out of a spy movie! Don't miss out as we explore the cutting edge of cybersecurity and the ongoing battle to keep our digital world safe. Tune in, subscribe, and let's get to the point! For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e311

Welcome back to another episode of Forcepoint! In this week's episode, hosts Rachael Lyon and Vince Spina dive deep into the intriguing and often underestimated world of cybersecurity with special guest Gemma Moore, co-founder of Cybers, a renowned cybersecurity consultancy. We'll kick things off with Vince's alarming personal story about a scam call that mimicked his wallet company, shedding light on the growing concerns of voice capture and security. Gemma brings her wealth of expertise to the table, sharing stories from the front lines of ethical hacking. We explore the ins-and-outs of penetration testing, distinguishing between compliance-based and scenario-based tests, and uncover the real vulnerabilities that hide in outdated systems and shared passwords. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e310

In this episode, hosts Rachael Lyon and Vince Spina delve into the dynamic and evolving landscape of global cybersecurity with their guest, David DiMolfetta, a seasoned cybersecurity reporter at Nextgov FCW and former researcher for The Washington Post's Tech 202. Together, they unpack the latest National Cybersecurity memo on integrating AI into military and intelligence operations, exploring AI's potential to enhance strategic planning and data analysis while navigating strict regulatory considerations. We'll dive into the pivotal "cyber trust mark" initiative for IoT devices, the emerging quantum computing threats, and the complex web of regulatory overlap affecting critical infrastructure. Join us as we examine the international ramifications of cybersecurity policies, the ethical quandaries posed by AI, and the multi-faceted challenges of safeguarding national security in the digital age. Additionally, we'll touch on recent espionage attacks and the relentless pursuit of robust, adaptive regulations to counter future cyber threats. Stay tuned for a comprehensive discussion that brings you right to the heart of cybersecurity's most pressing issues. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e309

This is part 2 of our talk with Marios Savvides This episode delves into the transformative role of AI in enhancing everyday life and providing security, from alerting homeowners of potential threats to preventing poolside accidents. Dr. Savvides provides insight into the ethical use of AI, the burgeoning future of biometric data, and the rapid pace of technological advancements poised to shape our futures. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e308

In today's episode, we're thrilled to dive deep into the fascinating world of biometric security with our special guest, Professor Marios Savvides from Carnegie Mellon University. Marios is not only a leading expert in artificial intelligence and biometric technology but also the founder and director of the Biometric Center, and he was named Inventor of the Year in 2022 by the Pittsburgh Intellectual Property Association. We'll explore a range of intriguing topics, including the exceptional robustness of iris recognition technology, advancements in non-intrusive biometric systems, and the critical role of human-computer interaction in security. Marios will share insights on overcoming challenges in iris and facial recognition, tackling biases in AI, and the ethical implications of AI decision-making, especially in autonomous vehicles. We'll also touch on pressing privacy and security concerns, such as the impact of facial recognition in public spaces and the emerging threat of deep fakes. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e307

Our hosts Vince Spina and Rachael Lyon are thrilled to welcome Kelly McCracken, Senior Vice President of Detection and Response at Salesforce. With over two decades of experience in cybersecurity and technology, Kelly dives deep into the evolving landscape of AI and its pivotal role in security operations. We'll explore how AI enhances detection and response capabilities, especially against phishing threats, and discuss the critical integration of threat intelligence in security programs. Kelly will shed light on the importance of tailored incident response playbooks and the necessity of training stakeholders for effective decision-making during security incidents. Join us as we navigate key elements like risk reduction strategies, the balance between security and business enablement, and the evolving transparency in reporting security incidents. Kelly also shares insights from her experience in coauthoring a NIST guide, the shift to remote work, and the complexities of managing hybrid cloud environments. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e306

From the notorious Ticketmaster hack during Taylor Swift's ticket sales to the geopolitical cyber issues involving heavyweights like China and Israel, Maggie provides a comprehensive overview of the current cyber landscape. We'll explore the bipartisan effort needed to safeguard US infrastructure, including the vulnerabilities of our satellite systems, and the intricate dynamics of election security poised to affect the upcoming U.S. presidential election. Maggie also sheds light on the disinformation campaigns waged by nation-states and the role of AI in shaping public perception. And, with her unique background and serendipitous journey into cybersecurity journalism, we'll get a glimpse into her fascinating career path. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e305

Today, we're diving deep into the intricate world of compliance and third-party risk management with none other than Alastair Parr, the Senior VP for Global Products and Services at Prevalent. We'll explore the 80/20 Rule in Compliance, the challenges organizations face with DORA reporting, and the pivotal role of data in effective compliance management. Alastair will share insights from his extensive background in auditing, emphasizing the importance of pragmatism and proportionality in risk assessments. We'll also discuss the growing significance of AI in cybersecurity, including the cautious approach needed to manage data hallucinations and the importance of human validation. Plus, we'll delve into real-world scenarios, like the SolarWinds attack, that reshaped board-level discussions on operational resilience and vendor risk management. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e304

Welcome back to Forcepoint! In today's episode, hosts Rachael Lyon and Vince Spina dive deep into the ever-evolving world of cybersecurity with special guest Ross Young, CISO in Residence at Team 8. Drawing on his extensive experience with top companies and intelligence agencies, Ross shares insights on critical issues like flexible work arrangements, AI-induced challenges, and the future of cybersecurity. From the importance of innovative data security solutions to the shifting dynamics of remote work, this conversation is packed with actionable insights and forward-thinking strategies. Stay tuned as we explore the complexities of modern IT environments, the rise of AI, and the strategic role of CISOs in navigating these turbulent waters. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e303

Welcome to "To The Point Cybersecurity," the podcast where we dive deep into the most pressing issues in global cybersecurity, explore emerging threats, and discuss innovative solutions. In this episode, titled "E302 - Philippe_mixdown," our hosts Rachael Lyon and Vince Spina welcome Philippe Humeau, CEO of CrowdSec, an expert in adaptive cybersecurity measures. Philippe brings to light the evolving challenges of managing IP reputations and the complexities cybercriminals face in influencing systems globally. He critiques the traditional use of honeypots and advocates for the richer insights gained from real-world data. Philippe delves into the use of data science and deep learning to detect and block malicious IPs, emphasizing adaptive and dynamic firewall systems over static rules. Rachael and Vince guide the conversation through various intriguing topics, from the economic and logistical difficulties of mass manipulation by attackers to the importance of crowdsourcing and collaboration in defense strategies. Philippe's thoughts on AI's escalating role in cybersecurity, the need for shared intelligence, and the impactful concept of multiplayer firewalls are discussed at length. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e301

Welcome to another episode of Forcepoint! In today's discussion, hosts Vince Spina and Rachael Lyon are joined by Aaron Painter, CEO of Nametag, to delve into the evolving complexities of identity verification and cybersecurity. We'll explore the limitations of current Multi-Factor Authentication (MFA) solutions, with a spotlight on the high-profile MGM attack in 2023, where social engineering compromised IT help desks. Aaron shares insights on alternatives like biometric authentication, the importance of user provisioning and recovery processes, and the balance between security and user experience. We'll also discuss privacy concerns, innovative consent practices, and the daunting challenges posed by deepfakes. Whether you're interested in the intricacies of digital identity, the impact of AI on security, or the future of secure online interactions, this episode is packed with valuable insights. Tune in and stay ahead of the cybersecurity curve! For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e301

Welcome to another insightful episode of "To The Point Cybersecurity," brought to you by Forcepoint! In today's episode, we're diving into the nuances of modern data security with our special guest, Yasir Ali, CEO of Polymer. As networks become increasingly borderless, the challenges for data security are escalating. We'll explore crucial technologies like Data Security Posture Management (DSPM) and Data Loss Prevention (DLP), and discuss the importance of reducing risk profiles and managing access control effectively.   Whether you're grappling with data security in a cloud-based world or curious about the future of AI in cybersecurity, this episode serves as an essential listen. Don't forget to subscribe and leave a review on Apple Podcasts or Google Podcasts. Let's get started!  For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e300

This week, Audra is joined by Mark Montgomery, senior director of the FDD's Center on Cyber and Technology Innovation and director of the CSC 2.0. Today's discussion focuses on the progress made implementing the recommendations of the Cyberspace Solarium Commission's 2020 report and securing critical infrastructure more broadly, including insights from Mark on the need for a distinct military force focused exclusively on cybersecurity.   Mark Montgomery serves as senior director of the Center on Cyber and Technology Innovation, where he leads FDD's efforts to advance U.S. prosperity and security through technology innovation while countering cyber threats that seek to diminish them. Mark also directs CSC 2.0, an initiative that works to implement the recommendations of the congressionally mandated Cyberspace Solarium Commission, where he served as executive director. Previously, Mark served as policy director for the Senate Armed Services Committee under the leadership of Senator John S. McCain, coordinating policy efforts on national security strategy, capabilities and requirements, and cyber policy. Mark served for 32 years in the U.S. Navy as a nuclear-trained surface warfare officer, retiring as a rear admiral in 2017. He was assigned to the National Security Council from 1998 to 2000, serving as director for transnational threats. Mark has graduate degrees from the University of Pennsylvania and the University of Oxford and completed the U.S. Navy's nuclear power training program. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e277

This week Eric and Arika discuss the process of creating real innovation in cybersecurity with Audra Simons, Director of Forcepoint's Innovations Labs. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e276

Joining us this week is Peter W. Singer, a New York Times bestselling author of books including Ghost Fleet, LikeWar and the techno-thriller Burn In. He shares details on the New America volunteer, non-profit organization and its awesome #SharetheMicinCyber program helping to bring diversity of thought to the cybersecurity front lines. We also discuss the future of social media, what defines a cyberwar, Ukraine's leverage of social media to garner global support this year, and the great work Useful Fiction is delivering to organizations to address the age old problem of translating complex themes (such as cyber) into compelling business narratives audiences understand and can learn from. And definitely take a few minutes to learn more about Passing the Mic's cybersecurity fellowship program this week. Read more here: https://www.newamerica.org/the-thread/passing-the-mic-introducing-new-americas-cybersecurity-fellowship/ Peter Warren Singer is Strategist at New America, a Professor of Practice at Arizona State University, and Founder & Managing Partner at Useful Fiction LLC. A New York Times Bestselling author, described in the Wall Street Journal as “the premier futurist in the national-security environment” and “all-around smart guy” in the Washington Post, he has been named by the Smithsonian as one of the nation's 100 leading innovators, by Defense News as one of the 100 most influential people in defense issues, by Foreign Policy to their Top 100 Global Thinkers List, and as an official “Mad Scientist” for the U.S. Army's Training and Doctrine Command. No author, living or dead, has more books on the professional US military reading lists. His non-fiction books include Corporate Warriors: The Rise of the Privatized Military Industry, Children at War, Wired for War: The Robotics Revolution and Conflict in the 21st Century; Cybersecurity and Cyberwar: What Everyone Needs to Know and most recently LikeWar, which explores how social media has changed war and politics. It was named an Amazon and Foreign Affairs book of the year and reviewed by Booklist as “LikeWar should be required reading for everyone living in a democracy and all who aspire to.” He is also the co-author of a new type of novel, using the format of a technothriller to communicate nonfiction research. Ghost Fleet: A Novel of the Next World War was both a top summer read and led to briefings everywhere from the White House to the Pentagon. His latest is Burn-In: A Novel of the Real Robotic Revolution. It has been described by the creator of Lost and Watchmen as “A visionary new form of storytelling—a rollercoaster ride of science fiction blended with science fact,” and by the head of Army Cyber Command as “I loved Burn-In so much that I've already read it twice.” For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e274

Joining the podcast this week is Tony Sager, Senior Vice President and Chief Evangelist for the Center of Internet Security and shares insights from his 45+ years on the security front lines, including 34 years at the NSA. Risk was a big theme of the discussion particularly looking at risk through a similar lens as we view other risky domains, such as the great work being done with the Cyber Safety Review Board. (And he shares color on the power of being okay with the risk of being wrong sometimes.) He also shares perspective on moving to incentive-based cyber models (such as what's been done in Ohio and Connecticut), and the criticality of translating technology, attacks & attackers into public policy and market incentives. And it can't be a great cyber discussion without addressing the growing sophistication of cyber criminals and their organizations – really becoming the defacto organized crime success path today. Tony Sager, Senior Vice President and Chief Evangelist for the Center for Internet Security Sager is a SVP and Chief Evangelist for CIS. He leads the development of the CIS Critical Security Controls™, a worldwide consensus project to find and support technical best practices in cybersecurity. Sager champions of use of CIS Controls and other solutions gleaned from previous cyber-attacks to improve global cyber defense. He also nurtures CIS's independent worldwide community of volunteers, encouraging them to make their enterprise, and the connected world, a safer place. In November 2018, he added strategy development and outreach for CIS to his responsibilities. In addition to his duties for CIS, he is an active volunteer in numerous community service activities: the Board of Directors for the Cybercrime Support Network; and a member of the National Academy of Sciences Cyber Resilience Forum; Advisory Boards for several local schools and colleges; and service on numerous national-level study groups and advisory panels. Sager retired from the National Security Agency (NSA) after 34 years as an Information Assurance professional. He started his career there in the Communications Security (COMSEC) Intern Program, and worked as a mathematical cryptographer and a software vulnerability analyst. In 2001, Sager led the release of NSA security guidance to the public. He also expanded the NSA's role in the development of open standards for security. Sager's awards and commendations at NSA include the Presidential Rank Award at the Meritorious Level, twice, and the NSA Exceptional Civilian Service Award. The groups he led at NSA were also widely recognized for technical and mission excellence with awards from numerous industry sources, including the SANS Institute, SC Magazine, and Government Executive Magazine. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e273

Joining us this week is Jennifer Cook, Senior Director of Marketing at the National Cybersecurity Alliance and we discuss all the hot and trending online scams facing consumers today including the growing prevalence of romance scams ($1.3B in losses last year!), job seeker scams, tax fraud scams, sextortion, and the latest scam making the rounds – pig butchering scams. Jennifer shares insights on the many free resources available to consumers – and the awesome work being done by the National Cybersecurity Alliance working with partners and champions around the globe – that raise awareness of what to look for and how to avoid online and mobile scams that take advantage of our day-to-day engagement channels including email, social media and, increasingly, mobile text messages. Jennifer Cook, Senior Director of Marketing at the National Cybersecurity Alliance Jennifer Cook is the Senior Director of Marketing at the National Cybersecurity Alliance (NCA). Jennifer leads the development and coordination of NCA's growing suite of campaigns and programs, including Cybersecurity Awareness Month and Data Privacy Week. She joined the National Cyber Security Alliance in 2017 and holds a degree in Marketing from Drexel University. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e272

This week we dive into the hot topic of cyber insurance with Dr. Josephine Wolff, Associate Professor of Cybersecurity Policy at Tufts University The Fletcher School and author of the book “You'll See This Message When it is Too Late: The Legal and Economic Aftermath of Cybersecurity Breaches” (MIT Press 2018). We explore the dynamic industry of cyber insurance and key policy areas such as defining cyber war, the impact of the increase of ransomware the last two years (some stats put it at 150% increase!), and how to change security behaviors. She also shares insights on AI and the always looming theme of bias as well as the importance of always keeping a human in the loop. And, be sure to look out for her new book on cyber insurance with MIT Press coming out in August 2022. Josephine Wolff - Associate Professor of Cybersecurity Policy at Tufts University's The Fletcher School Josephine Wolff is an associate professor of cybersecurity policy and has been associated with The Fletcher School at Tufts University since 2019. Her research interests include international Internet governance, cyber-insurance, security responsibilities and liability of online intermediaries, government-funded programs for cybersecurity education and workforce development, and the legal, political, and economic consequences of cybersecurity incidents. Her book "You'll See This Message When It Is Too Late: The Legal and Economic Aftermath of Cybersecurity Breaches" was published by MIT Press in 2018. Her writing on cybersecurity has also appeared in Slate, The New York Times, The Washington Post, The Atlantic, and Wired. Prior to joining Fletcher, she was an assistant professor of public policy at the Rochester Institute of Technology and a fellow at the New America Cybersecurity Initiative and Harvard's Berkman Klein Center for Internet & Society. She received received a Ph.D. in Engineering Systems and M.S. in Technology and Policy from MIT, and an A.B. in mathematics from Princeton. As a student, she also spent time at Microsoft, the Center for Democracy and Technology, the White House Office of Science and Technology Policy, and the Department of Defense. https://www.linkedin.com/in/josephine-wolff-1baa414b/ For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e271

Want to know what this week's episode title means? Listen to our two-part episode with Juan Andrés Guerrero Saade (aka JAGS), principal researcher at SentinelOne and Adjunct Professor of Strategic Studies at Johns Hopkins School of Advanced International Studies (SAIS). JAGS takes us on an exciting and educational ride through his research efforts on Moonlight Maze, one of the first widely known cyber espionage campaigns in world history, and how he came to be a featured hologram in the International Spy Museum in Washington, D.C. He also shares insights on the epic trolling endeavor through the recent “Meteor Express” wiper attack of an Iranian railway and possible ties to early versions of Stardust and Comet malware. And you won't want to miss his perspective on monetization, Linux flying below the radar, why it's important to get more savvy in determining what you want from vendors and how a philosophy major found his way into the threat intel space. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e270

Want to know what this week's episode title means? Listen to our two-part episode with Juan Andrés Guerrero Saade (aka JAGS), principal researcher at SentinelOne and Adjunct Professor of Strategic Studies at Johns Hopkins School of Advanced International Studies (SAIS). JAGS takes us on an exciting and educational ride through his research efforts on Moonlight Maze, one of the first widely known cyber espionage campaigns in world history, and how he came to be a featured hologram in the International Spy Museum in Washington, D.C. He also shares insights on the epic trolling endeavor through the recent “Meteor Express” wiper attack of an Iranian railway and possible ties to early versions of Stardust and Comet malware. And you won't want to miss his perspective on monetization, Linux flying below the radar, why it's important to get more savvy in determining what you want from vendors and how a philosophy major found his way into the threat intel space. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e269

Buckle up for this week's episode because it is quite a ride! Greg Crabb, founder of TenEight Cyber and former CISO for the United States Postal Service shares insights from his more than 25 years in law enforcement and bringing cyber criminals to justice. And hear perspective on CISO best practices for a 630k+ employee organization with 43k facilities and 160 million daily delivery points and how he took a 40 person cyber team to 600 in just a few years. Also learn how his team partnered with CISA to secure the 2020 U.S. election, how postal inspectors serve as first responders (hint: anthrax vs cornstarch), the importance of identifying and quantifying risk for your organization today and the DevSecOps opportunity ahead. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e268

This week Leonard Bailey, Head of Computer Crime and Intellectual Property Section's (CCIPS) Cybersecurity Unit for the Department of Justice (DOJ), Criminal Division, joins us this week. We dive into the role of the DOJ in addressing the vast and ever-changing landscape of cybersecurity. Bailey shares insights on partnering with federal agencies as well as the private sector, navigating information sharing pathways, evolution of incident and cyber threat reporting procedures, and the recent release of the Harmonization of Cyber Incident Reporting to the Federal Government. He also helps debunk information sharing myths and spotlights available tools and benefits of cyber threat information disclosure.   Leonard Bailey The Head of Computer Crime and Intellectual Property Section's (CCIPS) Cybersecurity Unit and Special Counsel for National Security in the Department of Justice's (DOJ) Criminal Division. He has prosecuted computer crime cases and routinely advised on cybersecurity, searching and seizing electronic evidence, and conducting electronic surveillance. He has managed DOJ cyber-policy as Senior Counselor to the Assistant Attorney General for the National Security Division and then as an Associate Deputy Attorney General. He has also served as Special Counsel and Special Investigative Counsel for DOJ's Inspector General. Bailey is a graduate of Yale University and Yale Law School. He has taught law courses at Georgetown Law School and Columbus School of Law in Washington, DC. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e267

Stacy is a self starter with a passion for cyber security. Co-Founder of Connected Transport Business Unit at Irdeto. Evangelist and active speaker on cyber security for the connected transportation space. Strong and demonstrated Stacy Janes, Head of Security at Waymo technical history in cyber security areas such as PKI, authentication/authorization, end-point security and ethical hacking. Proven history of building teams to solve difficult industry problems.  For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e266

This week we welcome guest Combiz Abdolrahimi, a national security lawyer and Emerging Technology and Innovation Leader at Deloitte. We deep dive into today's critical infrastructure vulnerabilities and navigating the path forward to address the threat with systems that weren't originally designed with cybersecurity in mind. (Hint: don't approach 21st century cyber challenges with 20th century thinking) And he shares perspective from his time in government at the U.S. Departments of State, Treasury, and Commerce, among others, as well as insights across today's hot topic themes including ransomware, cryptocurrency regulations, international enforcement, and the criticality of information sharing and reporting requirements. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e265

For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e264

We're excited to welcome to the podcast David Travers, Director of the Water Infrastructure and Cyber Resilience Division at the U.S. Environmental Protection Agency (USEPA). During our discussion he addresses key themes including, why are water infrastructure systems targeted by ransomware; how cyberattacks on water systems impact the surrounding community; and the role of cyber hygiene in protecting water systems. He also shares what we like to call an “origin story” for the sometimes-winding career pathways that lead to awesome opportunities to make a positive impact on communities at large. Water impacts all of us and you won't want to miss any of the many insights David shares with us! Dr. David Travers, director of the Environmental Protection Agency's Water Security Division Director of EPA's Water Security Division in the Office of Water, Dr. Travers manages a team of engineers and scientists in providing tools, training, and direct technical assistance to the 152,000 drinking water systems and 16,000 wastewater systems in the US. Each year, the Water Security Division trains over 5,000 water/wastewater utilities, state/tribal officials, and federal emergency responders to become more resilient to any natural or manmade incident—including cyberattacks, climate change, hurricanes, drought—that could endanger water and wastewater services. Prior to David's current role, he directed the Drinking Water Infrastructure Survey which assessed the current and future capital investments needs of drinking water systems. David has a PhD in environmental engineering and a Master of Public Health from the University of Michigan, and a Bachelor's in History from the University of Chicago For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e263

We're excited to welcome to the podcast Lauren Zabierek, Senior Policy Advisor to the Cybersecurity and Infrastructure Security Agency (CISA). She deep dives into CISA's Secure by Design principles and approaches for secure by design software launched in April 2023 - with version two published on October 17, 2023. Lauren shares insights on the path to creation of CISA's Secure by Design principles and how this ‘living document' will continue to evolve in the dynamic and ever-changing landscape that is cybersecurity. We also discuss the global collaboration and interest in co-sealing the Secure by Design guidance across a multitude of international cybersecurity agencies - and moving forward this ‘need we can all agree on'. And it wouldn't be To The Point podcast episode without Lauren's awesome origin story and career pathway to today, including co-founding the online social media movement  #ShareTheMicInCyber. You don't want to miss this episode! Lauren Zabierek, Senior Policy Advisor and Lead Expert in Secure-by-Design at the Cybersecurity and Infrastructure Security Agency (CISA) In January 2023, Lauren Zabierek was named a Senior Policy Advisor to the Cybersecurity and Infrastructure Security Agency. Previously, she was the Executive Director of the Cyber Project at Harvard Kennedy School's Belfer Center. She came to this role as a 2019 graduate of the Kennedy School's mid-career MPA program.  Her work focused on strategic, national security issues in cyber and tech--ranging from international conflict, cooperation, and norms to domestic collaboration, diversity, privacy, and supply chain issues.  She was also the first woman participant in the Elbe Group discussions on cybersecurity, having been a part of the cyber-focused dialogue in 2019 in Stockholm, Sweden and again in 2021 virtually. Lauren is the co-founder of the online social media movement called #ShareTheMicInCyber, which aims to dismantle racism in cybersecurity and privacy. #ShareTheMicInCyber started as an online conversation on Twitter and LinkedIn but has become so much more--it is breaking down barriers in the cyber industry through individual and collective action. Since its inception, the movement has garnered over 100 million Twitter impressions and featured participation by the nation's cyber leaders. For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e262