Podcast appearances and mentions of andy ellis

All links and images can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Alex Hall, CISO, Gensler. In this episode: Evaluating secure messaging beyond the app Reframing compliance as a business enabler Incremental security investment vs. crisis response Why culture, not punishment, drives secure behavior Huge thanks to our sponsor, Vanta Automate, centralize, & scale your GRC program with Vanta Vanta's Trust Management Platform automates key areas of your GRC program—including compliance, internal and third-party risk, and customer trust—and streamlines the way you gather and manage information. And the impact is real: A recent IDC analysis found that compliance teams using Vanta are 129% more productive. Get started at Vanta.com/ciso.  

All links and images can be found on CISO Series. This week's episode is hosted by me, David Spark, producer of CISO Series and Andy Ellis, partner, YL Ventures. Joining us is our sponsored guest, Sam Curry, global vp, CISO at Zscaler. This episode was recorded at a Zscaler event in Boston, MA. In this episode: Guardrails for decision making under fatigue Preparing for quantum threats Strategic use of generative AI Reassessing outdated knowledge Huge thanks to our sponsor, Zscaler Zscaler is a cloud-based cybersecurity company that provides secure internet access and private application access. Its platform replaces traditional network security by delivering Zero Trust architecture, protecting users, data, and applications regardless of location. Zscaler's scalable services help organizations modernize IT and reduce risk with seamless, cloud-native security solutions.

All images and links can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Alexandra Landegger, global head of cyber strategy & transformation, RTX. In this episode: A cybersecurity fast-track? When Ambition Becomes a Liability Giving the CVE Program the Credit It Deserves Elevating human cyber talent with AI Huge thanks to our sponsors, Nudge Security, SecurityScorecard, and Vanta Take control of SaaS security and AI governance with Nudge Security. Start a free trial today and get a full inventory of all SaaS and GenAI accounts in minutes along with risk insights and automation to help you quickly improve your security posture. Get started here: nudgesecurity.com/cisoseries   Third-party risk doesn't stop at monitoring. SecurityScorecard delivers real-time detection and response across your supply chain—helping you fix vulnerabilities before they become breaches. Empower your team with expert-driven remediation, continuous vendor oversight, and board-ready insights that drive results.   Automate, centralize, & scale your GRC program with Vanta Vanta's Trust Management Platform automates key areas of your GRC program—including compliance, internal and third-party risk, and customer trust—and streamlines the way you gather and manage information. And the impact is real: A recent IDC analysis found that compliance teams using Vanta are 129% more productive. Get started at Vanta.com/ciso.

Cybersecurity expert and venture capitalist Andy Ellis breaks down why the smartest organizations are using AI to augment their workers, not replace them. Today's AI systems are best used when they serve as “semi-pro” tools—fast, scalable, surprisingly effective, but still guided by some human oversight. In this conversation, he shares cautionary tales about hallucinations, prompt injections, unintended consequences, and outlines the common pitfalls he already sees companies falling into. You'll hear: - How to minimize resistance and bring the workforce onboard when deploying AI tools. - Why AI agents should be limited in scope and the advantage of stacking specialized agents which, acting together, enhance productivity and capacity. - Why AI is good for generating content for specific purposes but not good at creating writing, art, or materials which will have lasting impact. - How productivity “nag bots” can help workers get more done. Ellis sees this moment as the next SaaS-level transformation, arguing that the winners of today's AI arms race will become the trillionaires of tomorrow. Fundamentally, he believes the best way to implement this transformative new technology is to let humans decide and the AIs act. Connect with CSAIL Alliances: On our site: cap.csail.mit.edu/about-us/meet-our-team On X: x.com/csail_alliances On LinkedIn: linkedin.com/company/mit-csail

All links and images can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Tim Jacobs, vp, CISO, Commonwealth Care Alliance. In this episode: Starting from zero Prepare for decisive decisions Working back from unacceptable Discovering inefficiencies  A huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com.  

Co-hosts Corinne and Garrison Doctor sit down with Andy Ellis of TCO Fly Shop out of Pennsylvania to talk about his number one passion: smallmouth bass.  Garrison recently had the opportunity to fish out of Andy's beautiful drift boat for smallies.  The two tell tales from that day along with some other shenanigans Andy has found himself in.     To learn more about TCO Fly Shop visit https://www.tcoflyfishing.com/

WASHINGTON DC - As the regular season winds down, the race for the Major League Rugby playoffs couldn't be tighter in the Eastern & Western conferences. Old Glory DC now find themselves in 2nd place, after another wild "Storm Week" scheduling of matches. In the thick of it all is MLR Weekly's featured guest, Connor Buckley. The Old Glory scrumhalf talks about his unique New York-only pathway to the MLR, pressures of competing for playing time, the team's ups & downs, and the influence of players like All Blacks #9 Andy Ellis and Mike Petri, the 3X Rugby World Cup scrumhalf. He also sheds light on the John Powers conspiracy and Washington, DC pizza. INCLUDED: -John Fitzpatrick of Rugby Morning -Exclusive Highlights -TRN Play of the Week -Picks of the Week by The Rugby Odds -Analysis & Predictions Total show run time: 24 minutes. And don't miss another excellent installment of The Rugby Odds: https://rugbywrapup.com/category/the-rugby-odds/ Please share and join our weekly newsletter: http://rugbywrapup.com/weekly-updates/ Find All Here: -Web: www.RugbyWrapUp.com -X/Twitter: @RugbyWrapUp @TheRugbyOdds, @MLR Weekly @Matt_McCarthy00, @CollegeRWU, @JonnyLewisFilms -Face Book: Rugby Wrap Up -Instagram: RugbyWrapUp -YouTube: Rugby Wrap Up -Reddit: RugbyWrapUp -TikTok: RugbyWrapUp -Podcast Platforms: RugbyWrapUp -TRN Play of the Week -Picks of the Week by The Rugby Odds -Analysis & Predictions #USARugby #MajorLeagueRugby #RugbyWrapUp #OldGlory #RugbyATL #MLR2020 #SixNations #WorldRugby #SuperRugby #Top14 #PremiershipRugby #Pro14 #URC #UnitedRugbyChampionship #RugbyOdds #RugbyBetting #rfcla

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is our sponsored guest, Saket Modi, co-founder and CEO, SAFE Security. In this episode: Elevating AI to table stakes Security for the real world Using dynamic models for TPRM The agentic AI augmentation  Huge thanks to our sponsor, SAFE Security SAFE (#1 platform to unify the management of all cyber risks) has reinvented cyber risk management with Agentic AI. We help CISOs, TPRM, and GRC leaders become strategic business partners by automating the understanding, prioritization and management of cyber risk—accelerating AI adoption and digital transformation.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark, producer of CISO Series, and Andy Ellis, partner of YL Ventures. Their sponsored guest is Jadee Hanson, CISO of Vanta. In this episode: Find a partner to work with Fixing the root of burnout The limitations of human vigilance Balancing openness and control Thanks to our sponsor, Vanta. Automate, centralize, & scale your GRC program with Vanta Vanta's Trust Management Platform automates key areas of your GRC program—including compliance, internal and third-party risk, and customer trust—and streamlines the way you gather and manage information. And the impact is real: A recent IDC analysis found that compliance teams using Vanta are 129% more productive. Get started at Vanta.com/ciso.

Colin Gibson is joined by Stuart Webb, Colin Todd, Andy Ellis and Pat Murphy to look back at Derby County's First Division title winning season, 50 years on.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark, producer of CISO Series, and Andy Ellis, partner, YL Ventures. Joining us is Mandy Huth, svp, CISO, Ultra Clean Technology. In this episode: Start with good defaults Building talent bridges Don't forget the humans Differentiating with privacy Automate, centralize, & scale your GRC program with Vanta Vanta's Trust Management Platform automates key areas of your GRC program—including compliance, internal and third-party risk, and customer trust—and streamlines the way you gather and manage information. And the impact is real: A recent IDC analysis found that compliance teams using Vanta are 129% more productive. Get started at Vanta.com/ciso.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark, producer of CISO Series and Andy Ellis, partner, YL Ventures. Joining us is Mike D'Arezzo, executive director of infosec and GRC, Wellstar Health Systems. In this episode: The shift left myth Reconsidering CISO evaluations The power of “how” Building bridges Huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark, producer of CISO Series and Andy Ellis, partner, YL Ventures. Joining us is our sponsored guest Nathan Hunstad, director, security at Vanta. In this episode: Thinking like AI Building off a solid foundation Start with ownership Following the leader Big thanks to our sponsor, Vanta Automate, centralize, & scale your GRC program with Vanta. Vanta's Trust Management Platform automates key areas of your GRC program—including compliance, internal and third-party risk, and customer trust—and streamlines the way you gather and manage information. And the impact is real: A recent IDC analysis found that compliance teams using Vanta are 129% more productive. Get started at Vanta.com/ciso.

Andy Ellis is one of the most well connected lads on the planet and after this episode it's clear to see why. He's the ultimate ‘yes man', happy to give anything a crack which is evident by his list of achievements.Some of his achievements include…➖ Hosting the no1 TV show in NZ ‘Moving Houses'➖ Having the no1 song in NZ with C-City Brothers➖ Hosted the morning radio show➖ Qualified landscaper➖ Business owner of Black Origin (Wagu Beef), Gravity (internet company), Hello Kiwi (internet domains)➖ NPC winner with Canterbury➖ Super Rugby winner with the Crusaders➖ RWC winner with the All Blacks➖ Japan Top League winner with Kobe➖ MLR winner with New YorkSo there is obviously plenty to talk about in this one and Andy is a natural story teller and it's easy to see why he is so well respected, he is just a massive lad! Plenty of gold advice throughout that I'm sure you'll enjoy and if you do please give it a share to anyone else you think might enjoy it as well.EXCLUSIVE NordVPN Deal ➼ https://nordvpn.com/whatalad Try it risk-free now with a 30-day money-back guarantee Hosted on Acast. See acast.com/privacy for more information.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark, producer of CISO Series and Andy Ellis, partner, YL Ventures. Joining us is Edward Contreras, senior evp and CISO, Frost Bank.  In this episode: A gradual language shift Don't reflexively rise and grind Lean into focus Gauging the unmeasurable  Huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Mike Wilkes, former CISO, Major League Soccer. In this episode: Are we misusing vCISOs? Cybersecurity is out to sea Planning for your exit Building up your quantum reflexes Thanks to our podcast sponsor, Tines Build, run, and monitor your most important workflows with Tines. Tines' smart, secure workflow platform empowers your whole team regardless of their coding abilities, environment complexities, or tech stack. From low code, no code to natural language, anyone can get up and running in minutes – not days or weeks. Learn more at https://tines.com/cisoseries

All links and images for this episode can be found on CISO Series.   This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Adam Holland, former CISO, the Wendy's Company, now CISO of Ascension Healthcare.   In this episode: The long road to influence The effort to build a bridge Living within limits Motivation for security awareness  Thanks to our podcast sponsor, Vanta! Say goodbye to spreadsheets and screenshots. Vanta automates evidence collection needed for audits with over  350 integrations—giving you continuous visibility into your compliance status. And with cross-mapped controls across over 35 frameworks, you'll streamline compliance— and never duplicate your efforts.

In this episode, we demystify one of the biggest embedded finance deals in the UK! We sit down with Andy Ellis, CEO of NatWest Boxed, to explore its groundbreaking partnership with the AA, one of the country's most trusted brands. This strategic collaboration is set to revolutionise how financial services are embedded within everyday journeys, making banking and insurance seamless for millions of AA members. Andy shares insider insights on what makes this partnership unique, the challenges of embedding financial products, and how this signals a significant shift in the industry. We also discuss: > How embedded finance is redefining customer experiences > Why partnerships like this are shaping the future of fintech > The evolution of financial services beyond traditional banking If you're interested in the future of finance, embedded, and digital transformation, this episode is a must-listen. Tune in now and discover how embedded finance is driving (ho ho) innovation like never before!

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Shaun Marion, vp, CSO, Xcel Energy. In this episode: Setting policy The hard thing about soft skills Never let a good crisis go to waste Avoiding the tarpit  Thanks to our podcast sponsor, Noma Security! Secure your entire Data & AI Lifecycle—from development to production and classic data engineering to GenAI. Noma's full-lifecycle platform delivers seamless protection against risks like misconfigured data pipelines, malicious models, and adversarial AI attacks, empowering AppSec teams with complete visibility, security, and compliance—without disrupting data and AI teams' workflows.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is our sponsored guest, Danny Jenkins, CEO, ThreatLocker. In this episode: A zero-day upgrade Don't let a pentest go bad Improving user training Cybersecurity is made for people Thanks to our podcast sponsor, ThreatLocker! ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Deneen DeFiore, Vice President & Chief Information Security Officer, United Airlines. In this episode: Minding the gap Copilot overreliance Opening up the field Navigating the SMB cyber insurance conundrum Thanks to our podcast sponsor, Vanta! Say goodbye to spreadsheets and screenshots  Vanta automates evidence collection needed for audits with over  350 integrations—giving you continuous visibility into your compliance status. And with cross-mapped controls across over 35 frameworks, you'll streamline compliance— and never duplicate your efforts.

In this episode of Fund/Build/Scale, I talked with YL Ventures Partner Andy Ellis (a former CISO) about his approach to storytelling, tactics for founder-led sales and marketing, and why he thinks the cybersecurity hiring challenge isn't a talent shortage, but a market misunderstanding. We also discussed refining product-market fit, customer discovery methods and pitfalls like believing in one's own narrative too strongly. The conversation also touched on hiring strategies, managing design partnerships, and maintaining humility as a founder. “The basic entry level skill of reading the room is knowing when somebody already agrees with you,” said Andy. RUNTIME 44:15 EPISODE BREAKDOWN (1:44) Andy describes his day-to-day work at YL Ventures with founders. (4:08)  "It's like you now have an infant, and your only job as a parent is to create a competent adult.” (6:33) How he prefers to be pitched. (7:52)  ”The art of storytelling is taking a message and putting it in a narrative vehicle.” (14:38) The biggest storytelling mistakes early-stage founders make. (17:08) “ The basic entry level skill of reading the room is knowing when somebody already agrees with you.” (18:50) “ Fear is a hard, hard sale… It's so transparent and CISOs do this every day.” (19:36) Common cybersecurity GTM missteps. (21:40)  ”The moment that you can sell the same product to two different companies, you should have a sales rep.” (23:45) How Andy helps founders read the room when they're trying to make a sale. (27:20) “ You're hiring really out of a very different pool when you're in the cybersecurity space.” (29:08) “ Stealth is sort of a misnomer, but we're still sort of stuck in it.” (30:54) What to say if you want someone to quit their cushy job and join your risky startup. (32:46)  Rock-star hires are “fantastic if they stumble into your lap, but you can't go look for them.” (35:08) “ That first marketer you hire needs to be able to do a lot of things.” (39:05) “People with massive egos have a lot of humility.” (41:20) Trends in cybersecurity and AI he's excited about in 2025. LINKS Andy Ellis 1% Leadership: Master the Small, Daily Improvements that Set Great Leaders Apart csoandy.com YL Ventures YL Ventures' The State of the Cyber Nation 2024 (PDF) SUBSCRIBE TO FUND/BUILD/SCALE LinkedIn Substack Instagram Thanks for listening! – Walter.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Yabing Wang, VP and CISO, Justworks. In this episode: Building a path to action Cracking the EOL conundrum The burning platform question Uncertainty is our only constant Thanks to our podcast sponsor, Entro! Reclaim control of your non-human identities with Entro Security! Our platform securely manages non-human identities and secrets throughout their lifecycle. Detect and prevent unusual activity before it becomes a threat. Trust Entro to safeguard your non-human identities in today's complex digital ecosystem.

Send us a textIn the conclusion of Leaders of a Beautiful Struggle's Post-Election Analysis, we share a panel discussion hosted by Baltimore Racial Justice Action (BRJA), held the week after the election.Moderated by Julia Scott, the panel featured:Lawrence Grandpre, Director of Research at Leaders of a Beautiful StruggleAndy Ellis, Chairman of Baltimore for Democracy and 2026 Green Party candidate for Governor of MarylandCharlie Carter, long-time Baltimore community and political activistDiscussion topics included:The Left's anxiety around wielding power and the emotional toll of politics and criticismLikely outcomes of the 2024 electionUsing third parties to gain leverage over the Democratic PartyThe tension between class-first political models and the legacy of Black community activismWhile the panel focused on Baltimore and Maryland, its insights offer valuable lessons for progressives nationwide, especially as they pivot to state and local politics after Republicans took control of all three branches of the federal government.For additional resources, visit the BRJA website at bmoreantiracist.org, including a library of 13th of the Month videos on anti-racism and anti-oppression topics.Support the showIn Search of Black Power is a Black-owned internet show and podcast. This podcast is sponsored and produced by Leaders of a Beautiful Struggle (LBS). The internet show is published in collaboration with Black Liberation Media (BLM)

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Jimmy Benoit, vp, cybersecurity, PBS. In this episode: Starting early on security awareness The limits of gamification Technically qualified Understanding your risk tolerance Thanks to our podcast sponsor, Bitdefender! Enterprise-grade cybersecurity without complexity. Backed by extensive research from hundreds of experts in Bitdefender Labs and consistently top-rated in independent tests, Bitdefender GravityZone platform provides multi-layered prevention, protection, detection, and response capabilities, including managed security services.

On the Saturday Morning with Jack Tame Full Show Podcast for Saturday 16 November 2024, former All Black Andy Ellis joins Francesca Rudkin to chat about turning his hand to hosting duties on the new season of Moving Houses. Francesca proposes that redress for abuse in state care is not something to do half-heartedly. Chris Schulz reviews the biggest film of the year, Gladiator II, and shares his hot take after attending Friday night's Coldplay concert. Estelle Clifford celebrated her birthday at the Coldplay show and gives a full rundown on the experience. Plus, Margo Flanagan of Two Raw Sisters shares the best way to brilliantly grill asparagus. Get the Saturday Morning with Jack Tame Full Show Podcast every Saturday on iHeartRadio, or wherever you get your podcasts. LISTEN ABOVE See omnystudio.com/listener for privacy information.

Popular relocation series Moving Houses has returned for a third season, a former All Black behind the wheel. The show isn't one you'd expect to be as gripping as it is, but it turns out there's plenty of space for danger and suspense when you're moving a house on the back of a truck. After a colourful rugby career, Andy Ellis has honed his craft as a landscape designer, and has now taken over as host for the show. He told Francesca Rudkin that he really enjoyed meeting all the people involved in the show, from the truck drivers to the people moving their homes. “Their stories are actually really fascinating.” LISTEN ABOVE See omnystudio.com/listener for privacy information.

Today on the show  What was in ya eye continued Andy Ellis Thank Fact it's Friday Ian Jones Betcha Bets Nisbo Liam Finn Best bits of the Week  Musashi Sports Shield Winner

ON THE SHOW TODAY: Have a listen to Megan right after surgery! We have host of Moving Houses, Andy Ellis on the show We put ourselves in 3 different scenarios and try avoid hearing Mariah Carey! Ben shares a habit that annoys his wife (and old flat mates) We hear your Car Complaints! Could Producer Ellie's post Wisdom teeth removal be funnier than Megan's post surgery? Facebook: The Hits Breakfast with Jono and Ben Instagram: THEHITSBREAKFASTSee omnystudio.com/listener for privacy information.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is our sponsored guest Jadee Hanson, CISO, Vanta. In this episode: Embracing BYOAI The changing government contractor landscape Creating better security outcomes Automating supply chain security Thanks to our podcast sponsor, Vanta! Say goodbye to spreadsheets and screenshots. Vanta automates evidence collection needed for audits with over  350 integrations—giving you continuous visibility into your compliance status. And with cross-mapped controls across 30 frameworks, you'll streamline compliance— and never duplicate your efforts.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Jason Shockey, CISO, Cenlar FSB. In this episode: Ground the SOC in communication Training and mentoring talent Nailing a first security hire A case for optimism Thanks to our podcast sponsor, Bitdefender! Enterprise-grade cybersecurity without complexity. Backed by extensive research from hundreds of experts in Bitdefender Labs and consistently top-rated in independent tests, Bitdefender GravityZone platform provides multi-layered prevention, protection, detection, and response capabilities, including managed security services.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Steve Person, CISO, Cambia Health. In this episode: The changing CISO landscape Rethinking the cybersecurity talent shortage Sharpening your CISO skills Do CISOs need to go back to school? Thanks to our podcast sponsor, Vanta! Whether you're starting or scaling your security program, Vanta helps you automate compliance across SOC 2, ISO 27001, and more. Streamline security reviews by automating questionnaires and demonstrating your security posture with a customer-facing Trust Center. Over 7,000 global companies use Vanta to manage risk and prove security.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is Kush Sharma, Director Municipal Modernization & Partnerships, Municipal Information Systems Association, Ontario (MISA Ontario). In this episode: Your first security hire Moving beyond the basics with critical infrastructure Untangling the Gordian Knot of municipal cybersecurity Starting from square one Thanks to our podcast sponsor, Material Security! Material Security is a multi-layered email threat detection & response toolkit designed to stop attacks and reduce the threat surface across all of Microsoft 365 and Google Workspace. Learn more at material.security.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is Bethany De Lude, CISO, the Carlyle Group. In this episode: CISOs as storytellers Grinding a CISO's gears An evolving role Earning trust with vendors Thanks to our podcast sponsor, Scrut Automation! Scrut Automation allows compliance and risk teams of any size to establish enterprise-grade security programs. Our best-in-class features like process automation, AI, and 75+ native integrations reverse compliance debt and help manage risk proactively as your business grows. Visit www.scrut.io to learn more or schedule a demo.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is Ty Sbano, CISO, Vercel. In this episode: Perception is the reality for insider threats Coaching rather than shaming Working to make DevOps redundant Fixing a strained relationship Thanks to our podcast sponsor, Backslash! Backslash Security is your modern AppSec solution, focusing on what truly matters—real risks. Gain clear visibility into your applications and fix only the code and open-source software that's actually in use, making your AppSec smarter and more efficient. Learn more at https://www.backslash.security/.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is Fredrick Lee (Flee), CISO, Reddit. In this episode: The case for the technical CISO Making Recall safe for business The aches and pains of cybersecurity hiring Leveling up municipal cybersecurity Thanks to our podcast sponsor, ThreatLocker! ThreatLocker® is a global leader in Zero Trust endpoint security offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com.

Aside from president and senator, the most important votes in Maryland this November will be ballot questions. In Montgomery, a ballot question could reduce the possible tenure of the county executive from 3 to 2 terms. In Baltimore, the mayor and city council are suing to keep the “baby bonus” question off the ballot while other petitions want to cap property taxes and reduce the size of the city council. Sunil Dasgupta talks with Andy Ellis, who as a Green Party activist and a Baltimore Charter Commission member, has developed a keen understanding of the politics of referendums in the state. Music for this episode comes from Alexandria, Virginia, alt-rock band, Jackie and The Treehorns.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is Justin Somaini, partner, YL Ventures. In this episode: The startup balancing act Giving back is its own reward When to pen test Getting ahead with generative AI policy Thanks to our podcast sponsor, Vanta! Whether you're starting or scaling your security program, Vanta helps you automate compliance across SOC 2, ISO 27001, and more. Streamline security reviews by automating questionnaires and demonstrating your security posture with a customer-facing Trust Center. Over 7,000 global companies use Vanta to manage risk and prove security.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is Patti Titus, CISO, Booking Holdings. In this episode: Defense vs. Resilience Communication is on par with mitigation Preparing like its post-quantum The challenges and opportunities of diversity Thanks to our podcast sponsor, Cyera! Cyera's AI-powered data security platform gives companies visibility over their sensitive data, context over the risk it represents, and actionable, prioritized remediation guidance.
 As a cloud-native, agentless platform, Cyera provides holistic data security coverage across SaaS, PaaS, IaaS and on-premise environments. Visit www.cyera.io to learn more.

A Crowdstrike update takes down IT systems worldwide. A U.S. District Court judge dismissed most charges against SolarWinds. Sophos examines the ransomware threat to the energy sector. European web hosting companies suspend Doppelgänger propaganda. An Australian digital prescription services provider confirms a ransomware attack affecting nearly 13 million. A pair of Lockbit operators plead guilty. N2K's CSO Rick Howard speaks with AWS' CISO Chris Betz about strong security cultures and AI. A look inside the world's largest live-fire cyber-defense exercise.  Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guests Dave is joined by Andy Ellis, to discuss today's top story on the CrowdStrike-induced Microsoft outage. N2K's CSO Rick Howard recently caught up with AWS' CISO Chris Betz at the AWS re:Inforce 2024 event. They  discuss strong security cultures and AI. You can watch Chris' keynote from the event here. Read Chris' blog post, “How the unique culture of security at AWS makes a difference.” Selected Reading Huge Microsoft Outage Linked to CrowdStrike Takes Down Computers Around the World (WIRED) Counting the Costs of the Microsoft-CrowdStrike Outage (The New York Times) Major Microsoft 365 outage caused by Azure configuration change (Bleeping Computer) Most of SolarWinds hacking suit filed by SEC dismissed (SC Magazine) Ransomware Remains a Major Threat to Energy (BankInfoSecurity) Investigation prompts European hosting companies to suspend accounts linked to Russian disinfo (The Record) MediSecure Data Breach Impacts 12.9 Million Individuals (SecurityWeek) Russians plead guilty to involvement in LockBit ransomware attacks (Bleeping Computer) Inside the world's largest ‘live-fire' cyber-defense exercise (CSO Online) Share your feedback. We want to ensure that you are getting the most out of the podcast. Please take a few minutes to share your thoughts with us by completing our brief listener survey as we continually work to improve the show.  Want to hear your company in the show? You too can reach the most influential leaders and operators in the industry. Here's our media kit. Contact us at cyberwire@n2k.com to request more info. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is our sponsored guest, Abhishek Agrawal, CEO and co-founder, Material Security. In this episode: What does defense in depth look like in the cloud? Collaborating on insider risk Email is a vector and a target Understand risk during an IPO Thanks to our podcast sponsor, Material Security! Material Security is a multi-layered email threat detection & response toolkit designed to stop attacks and reduce the threat surface across all of Microsoft 365 and Google Workspace. Learn more at material.security.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is our guest and winner of Season 2 of Capture the CISO, Russell Spitler, CEO and co-founder, Nudge Security. In this episode: The Gordian knot of EDR Can we keep up with patching? Making AI practical Standardization or granularity? Thanks to our podcast sponsor, ThreatLocker! ThreatLocker® is a global leader in Zero Trust endpoint security offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is our guest, Ryan Bachman, evp and global CISO, GM Financial. In this episode: A changing of the executive guard? Playing nice with cyber insurance What does leadership want out of a CISO? Who does a CISO call first? Thanks to our podcast sponsor, Vanta Whether you're starting or scaling your security program, Vanta helps you automate compliance across SOC 2, ISO 27001, and more. Streamline security reviews by automating questionnaires and demonstrating your security posture with a customer-facing Trust Center. Over 7,000 global companies use Vanta to manage risk and prove security.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining me is my guest, Aamir Niazi, executive director and CISO, SMBC Capital Markets. In this episode: Communicating security accomplishments Spotting red flags in an interview What does offensive security look like today? Where Gen AI is fitting into cybersecurity Thanks to our podcast sponsor, Cyera Cyera's AI-powered data security platform gives companies visibility over their sensitive data, context over the risk it represents, and actionable, prioritized remediation guidance.
 As a cloud-native, agentless platform, Cyera provides holistic data security coverage across SaaS, PaaS, IaaS and On-premise environments. Visit www.cyera.io to learn more.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is our sponsored guest, Jeremiah Roe, advisory CISO, OffSec. In this episode: What happens as data minimization in the US changes from a potential policy goal to a regulatory imperative? How does this impact the rest of the industry? How do CISOs start getting ready for compliance? Thanks to our podcast sponsor, OffSec OffSec helps companies like Cisco, Google, and Salesforce upskill cybersecurity talent through comprehensive training and resources. With programs ranging from red team and blue team training and more, your team will be ready to face real-world threats. Request a free trial for your team to explore OffSec's learning library and cyber range.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is our guest, Martin Mazor, vp and CISO, onsemi. In this episode: Has the shine worn off the cybersecurity promise of MFA? Why are threat actors increasingly finding ways to get around it? Given the high profile attacks we've seen getting around MFA, how much security stock should we put into it going forward? Thanks to our podcast sponsor, Material Security Material Security is a multi-layered email threat detection & response toolkit designed to stop attacks and reduce the threat surface across all of Microsoft 365 and Google Workspace. Learn more at material.security.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is my guest, Thom Langford, CISO, Velonetic. In this episode: Why do lots of businesses pledge to never pay ransomware demands? And why do their priorities quickly change when they need to get the business back to normal after an attack occurs? What good is a pledge like that without the infrastructure and organizational commitment to make it possible? Thanks to our podcast sponsor, CyberMaxx CyberMaxx offers MaxxMDR, our next-generation managed detection and response (MDR) solution that helps customers assess, monitor, and manage their cyber risks. MaxxMDR fuels defensive capabilities with insights from offensive security, DFIR, and threat hunting, on top of a technology-agnostic deployment model. We think like an adversary but defend like a guardian.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is our guest, Joshua Brown, vp and global CISO, H&R Block. In this episode: Why is retaining cyber talent so hard? How can organizations keep an employee from going elsewhere? Why do organizations often not prioritize the factors to keep key employees? Thanks to our podcast sponsor, CyberMaxx CyberMaxx offers MaxxMDR, our next-generation managed detection and response (MDR) solution that helps customers assess, monitor, and manage their cyber risks. MaxxMDR fuels defensive capabilities with insights from offensive security, DFIR, and threat hunting, on top of a technology-agnostic deployment model. We think like an adversary but defend like a guardian.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining me is our guest, Alex Green, CISO, Delta Dental. In this episode: Is it true that employees cause as many significant cybersecurity incidents as outside threat actors? Does this come down to a lack of awareness or poorly designed security implementation? And what can we do to improve this situation? Thanks to our podcast sponsor, Silk Security Silk makes it easy for security teams to resolve more critical cyber risks in a fraction of the time. Instead of toiling over spreadsheets, and watching alert backlog graphs go up, Silk helps security teams contextualize, prioritize and collaborate with stakeholders in IT to regain control over their risk posture.

All links and images for this episode can be found on CISO Series. This week's episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is our guest, Shawn Bowen, svp and CISO, World Kinect Corporation. In this episode: Is it true that CISOs feel their jobs are harder than ever with higher levels of stress? Yet why does research also show that CISO job satisfaction increasing? How do we make sense of this contradiction? Thanks to our podcast sponsor, Silk Security Silk makes it easy for security teams to resolve more critical cyber risks in a fraction of the time. Instead of toiling over spreadsheets, and watching alert backlog graphs go up, Silk helps security teams contextualize, prioritize and collaborate with stakeholders in IT to regain control over their risk posture.