Podcast appearances and mentions of mark weatherford

This week, Marc Maiffret sits down with Mark Weatherford to discuss his role in responding to the Moonlight Maze incident, one of the first major cyber espionage operations targeting U.S. government systems in the late 1990s. Mark talks about how Moonlight Maze highlighted significant vulnerabilities and reshaped cybersecurity strategies within the government and beyond. Mark also discusses broader topics in cybersecurity, the evolution of cyber threats, and the impact and security challenges AI is bringing to the table. 

Mark Weatherford, Chief Strategy Officer at the National Cybersecurity Center, is an Advisory Board Member at SecurityScorecard. In this episode, he joins host Steve Morgan to discuss cybersecurity metrics and KPIs, as well as how companies can determine security posture and reduce risk, and more. SecurityScorecard is the leading security rating company, used by more than 2,500 top companies. To learn more about our sponsor, visit https://securityscorecard.com

In this episode of The New CISO, Steve is joined by returning guests Michael Meis, Associate CISO at The University of Kansas Health System, and Mark Weatherford, the Chief Strategy Officer at The National Cybersecurity Center.For the 100th episode, Mark and Michael are back to share their thoughts on decision-making, mentorship, learning, and leadership, amongst other topics essential to the security industry. Tune into today's episode to learn more about the career opportunities Mark and Michael didn't take, how to measure your journey and the importance of an effective team.Listen to Steve, Michael, and Mark discuss managing stress while diving head-first into challenging situations and how to maximize the growth of junior team members:Welcome Back (1:32)Jumping in, Steve presses returning guests Mark and Michael on the most interesting career opportunities they didn't take. While in the navy, Mark received a call transferring him to Virginia for a promotion. Although he did not want to go, this transfer was great for him.For Michael, when he was in the army, he turned down a promotion multiple times. He decided early on in his career that the military would not be his long-term career.Sound Career Advice (13:04)Determining when you feel fulfilled professionally allows you to make better career choices. Although our goals evolve, it's important to reevaluate our priorities at different life stages.From a leadership perspective, it's valuable to not think of yourself as the most intelligent person in the room but instead surround yourself with people who can fill in the gaps in your skillset. Leaders need their junior-level colleagues to succeed, and giving these employees real responsibilities allows them to transition into more significant roles.Best Mentorship Books (21:30)Mark and Michael share the books they would recommend to new and future leaders. These books are worthwhile resources that help prepare CISOs to take on higher-level work when it is presented.New To The Job (28:02)Mark and Michael explore what new CISOs should assess when new to running their teams. It's essential to determine if you have good people who have lacked effective mentorship or if your organization lacks talent. Ultimately, you must ensure you have the right employees to succeed.Ultimately, you need to see if people add value or not in a crisis.Owning A Crisis (35:40)Steve presses Mark and Michael on their leadership perspective in a crisis. Mark reflects on an experience involving the government, where one of his employees took ownership of their security breach. Mark is still in touch with this colleague today and credits his help resolving a high-level issue.Michael reflects on a junior analyst who quickly worked his way up because he had a can-do attitude. The best career advice is to take work off of other's plates because the people you help will never forget.Staying Grounded (40:46)To close, Steve asks Mark and Michael a more individualized question. What helps them stay grounded during stressful times in the field?For Mark, he admits he's not great at taking a step back from work. He is passionate about the business and understands a 9-5 clock would not work for most security professionals. He can manage his stress, but he knows he lacks life balance. Though to relax, he keeps honey bees.Michael encourages everyone to eliminate the preconceived notion that this path is like other jobs. Security professionals are all-in on their work and must decide what balance means to them. For Michael, he does meditation to center himself and regulate the physical manifestations of stress.Links mentioned:

In this episode, John and Brian talk with Mark Weatherford, a skilled cybersecurity veteran with a diverse background in both government and private sectors. Having held positions such as CISO for California and Colorado and serving in the Obama administration as the Deputy Under Secretary for Cybersecurity, Mark has a unique perspective on IoT security and critical infrastructure protection challenges. In addition to his government roles, Mark has ventured into the private sector, working with startups and as the Chief Security Officer at NERC. His expertise in IoT security is incredibly valuable for cybersecurity professionals looking to stay informed in this rapidly evolving field.Listen in for a conversation on:Navigating the complicated obstacles involved in securing IoT devices and defending crucial infrastructureIdentifying the underestimated hazards linked to the perception that air-gapped networks are entirely protected from breachesAcknowledging the powerful impact of education and awareness in tackling IoT security challengesRecognizing the importance of implementing more regulatory measures and policies for bolstering IoT device securityInvestigating the escalating threats of IoT attacks and the need for integrating security solutions within IoT devicesAs a cybersecurity professional, staying up-to-date on IoT security challenges is crucial to protecting critical infrastructure. Don't fall for the common misconceptions - Mark Weatherford will share the truth with John and Brian about the complex challenges of securing IoT devices and infrastructure. Stay informed and stay protected. Let's get into Things on the IoT Security Podcast!Follow Brian Contos on LinkedIn at https://www.linkedin.com/in/briancontosAnd you can follow John Vecchi at https://www.linkedin.com/in/johnvecchiThe IoT Security Podcast is powered by Phosphorus Cybersecurity. Join the conversation for the IoT Security Podcast — where xIoT meets Security. Learn more at https://phosphorus.io/podcast

In this episode of The New CISO, Steve is joined by returning guest Mark Weatherford, CSO and SVP of Regulated Industries at AlertEnterprise.In last week's episode, Mark shared how he set the foundation for his incredible career, from his start in the Navy to his time working for Governor Arnold Schwarzenegger. Today, Mark delves into his lasting legacy in the cyber security field. Listen to part two of this episode to learn more about being the plus one at security meetings, Mark's mentorship perspective, and putting in the work to succeed.Listen to Steve and Mark discuss what it means to be coachable and the importance of experience:The White House Basement (1:33)Host Steve Moore presses his guest Mark Weatherford on a meeting he attended in the White House basement.Mark was initially instructed to use this meeting as a learning experience to see how things worked. Unexpectedly, John, the National Security Advisor, asked Mark his thoughts on an issue, and Mark answered on the spot. Strong Leadership (6:44)John asking Mark a security question showed strong leadership because it allowed Mark, who was new to the team, to be included.When you're the CISO in charge, you should bring a team lead or a middle manager to meetings, so they can learn and provide input. This type of experience will allow them to build skills and develop confidence, which they will need as they climb the cyber security ladder. Mentorship Advice (10:29)Mark advises the younger leader to always look for opportunities to mentor people. Generally, Marks tries to be available to those who ask him to chat about leadership and security. On the other side, younger people need to be willing to ask for help.The Mentorship Exchange (16:10)Steve asks Mark what people should expect from mentorship lunches. Is it just lunch or something more pressing?Mark explains how in his case, he was friends with his mentor, so they mostly just enjoyed meals together. However, his mentor would ask him questions about work to see how he could help. Of course, different dynamics operate differently, but the main thing mentees should consider about themselves is, “am I coachable?”Steering The Mentee (19:47)Mark and Steve discuss how to guide mentees away from vanity. Nowadays, new security professionals may focus too much on the job title than becoming a leader. Mark then further explains what it means to be coachable: a willingness to take in the tough feedback to improve.In the Meeting (21:24)When Mark meets with potential mentees, he'll give them a homework lesson and ask them what their goals are. He will also ask them what efforts they've made to achieve their goals.With so many CISO opportunities out there, people are getting jobs without putting in the hard work, though having experience is essential.The New CISO (24:08)To Mark, being a new CISO is a wide-open field. One must understand the job's responsibilities and be creative with their resources. Ultimately, being a new CISO is having the experience that validates your position in the role.Links mentioned:LinkedIn

In this episode of The New CISO, Steve is joined by guest Mark Weatherford, CISO and Head of Regulated Industries at AlertEnterprise.After many years in CISO roles, Mark eventually found himself in the White House. Reflecting on his incredible career journey, Marks evaluates the opportunities that led him to success. Listen to part one of this episode to learn more about Mark's navy experience, the importance of delegating in leadership, and how to become the guy who always gets the call.Listen to Steve and Mark discuss when to put the fear aside and embrace the possibility of failure and the willingness to take on new opportunities:Meet Mark (1:51)Host Steve Moore introduces our guest today, Mark Weatherford. The current Chief Security Officer at AlertEnterprise, specializing in IT and OT security.Before starting his cyber security career, Mark wanted to build dams and roads in the navy. Instead, the navy had other ideas and picked Mark to be placed in the advanced electronics program, leading him to the CISO industry. Measuring Your Day (7:21)Mark measures his work day by the goals his team achieved or when a project is done. Although it's a different set of standards than when you see a road or other construction projects completed before you, cyber security work can also be assessed.Life After The Navy (9:08)By the time Mark started his job at Raytheon, the Navy had a contract to complete a security project with them. Already determining when he would leave the Navy, Raytheon called him about a position that fit his skillset: building a security operations center from the ground up.Relying On Your Team (14:14)Steve presses Mark on what he learned from managing the start of the security operations center. Mark gathered that no one can do everything and that it's essential to have a core group of leaders to rely on.Good leadership comes from delegating authority to people without micro-managing, empowering them to excel at their jobs.Working With Fear (22:07)“That's all part of learning. Things are going to break now and then,” Marks explains when expanding on his leadership philosophy.Reflecting on his own experience with gaining new skills, Mark's advice to anyone is that mistakes happen when you're learning. We may be uncomfortable when things are unfamiliar, but as long as we're not doing anything malicious, we can figure things out.What Happens Next (24:14)One day Mark received a call from his boss about a project with the Federal Government in Colorado. A year later, Mark got another call from his next job, leading him to a cabinet position.Through his impressive work experience, Mark was considered for exciting political opportunities impacting our country.That's Politics (28:53)Mark discovered pretty quickly in politics that people aren't always truthful. Unfortunately, he understands that this is the industry's nature, and that is how things are. As a result, it's natural to become wary and not take everything you hear at face value, although Mark still gives people the benefit of the doubt.Working With The Legislature (31:13)Mark's work in government allowed him to influence policy as well. Mark learned about the trade-offs in politics during this experience and why opposition can create barriers to security policy. Becoming The Terminator's CISO (34:58)After leaving Colorado, Mark was called for the opportunity to work for Governor Arnold Schwarzenegger in California. Mark recognizes that the secret to his success derives from being prepared for new positions when they arise. Mark never directly worked with Governor Schwarzenegger, but...

Global supply chains have grown much more complex than simply figuring out how to get products and services from Point A to Point B. Companies also depend on second-tier, third-tier, and even nth-tier vendors they don't know and have no relationship with for the services and components they require to operate.Cyberattacks on software across these complex supply chain ecosystems have resulted in disruptions, defects, and diversions that are difficult to identify and resolve—one weak link in the chain can bring the entire ecosystem to a halt.In this episode, Mark Weatherford—CSO at AlertEnterprise and Chief Strategy Officer at the National Cybersecurity Center—examines the importance of understanding vendor cybersecurity postures, not only primary suppliers but also their suppliers as well. Weatherford also discusses how enterprise software components can come from vendors all over the world and how global events can impact supply chains. Weatherford then presents why the jobs of CISOs are so difficult in defending supply chains, along with a few tips for organizations to protect their operations._______________________Community Member Contributor: Mark WeatherfordCSO at AlertEnterprise [@AlertEnterprise] and Chief Strategy Officer at the National Cybersecurity Center [@NATLCyberCenter]On Twitter | https://twitter.com/marktwOn LinkedIn | https://www.linkedin.com/in/maweatherford/Host: Sean MartinOn ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/sean-martin______________________For more podcasts from Crucial Conversations with The Blue Lava Community, visit: https://www.itspmagazine.com/crucial-conversations-podcastTo access the full collection of Blue Lava Community resources, visit: https://itspm.ag/blclog22To learn more about Blue Lava, visit: https://itspm.ag/blue-lava-w2qs______________________Are you interested in sponsoring an ITSPmagazine Channel?

Global supply chains have grown much more complex than simply figuring out how to get products and services from Point A to Point B. Companies also depend on second-tier, third-tier, and even nth-tier vendors they don't know and have no relationship with for the services and components they require to operate.Cyberattacks on software across these complex supply chain ecosystems have resulted in disruptions, defects, and diversions that are difficult to identify and resolve—one weak link in the chain can bring the entire ecosystem to a halt.In this episode, Mark Weatherford—CSO at AlertEnterprise and Chief Strategy Officer at the National Cybersecurity Center—examines the importance of understanding vendor cybersecurity postures, not only primary suppliers but also their suppliers as well. Weatherford also discusses how enterprise software components can come from vendors all over the world and how global events can impact supply chains. Weatherford then presents why the jobs of CISOs are so difficult in defending supply chains, along with a few tips for organizations to protect their operations._______________________Community Member Contributor: Mark WeatherfordCSO at AlertEnterprise [@AlertEnterprise] and Chief Strategy Officer at the National Cybersecurity Center [@NATLCyberCenter]On Twitter | https://twitter.com/marktwOn LinkedIn | https://www.linkedin.com/in/maweatherford/Host: Sean MartinOn ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/sean-martin______________________For more podcasts from Crucial Conversations with The Blue Lava Community, visit: https://www.itspmagazine.com/crucial-conversations-podcastTo access the full collection of Blue Lava Community resources, visit: https://itspm.ag/blclog22To learn more about Blue Lava, visit: https://itspm.ag/blue-lava-w2qs______________________Are you interested in sponsoring an ITSPmagazine Channel?

Mark Weatherford, Homeland Security Cybersecurity Deputy Under President Obama talks about Cyber Risk and Leadership Mark Weatherford has a long career in public service including serving in Homeland Security and CISO for the state of California and Colorado. In this episode of Tuesday Morning Grind, Mark and Christian discuss cyber risks, cybersecurity legislation, and leadership in the public sector. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering services related to SOC 2, ISO 27001, PCI DSS, HITRUST, Virtual CISO, Privacy Programs (GDPR, CCPA, etc.), Penetration Testing, and a GRC Platform built for cloud technology companies, Phalanx. You can learn more about risk3sixty at www.risk3sixty.com.

Podcast: Control System Cyber Security Association International: (CS)²AIEpisode: 29: How to Be a Good CISO Even in the Face of Challenges with Mark WeatherfordPub date: 2022-03-08Derek Harp is happy to have Mark Weatherford, the CSO at AlertEnterprise, and the Chief Strategy Officer at the National Cybersecurity Center, joining him today for another episode in the series of security leader interviews!Mark grew up on a farm in an agricultural community in Northern California and left the farming life to embark on a career in the Navy and travel the world as a technologist, helping companies in cyberspace. Throughout his career, he always planned to get back into ranching. Apart from being a well-known security leader, Mark is a military veteran, technologist, beekeeper, hunter, pilot, and a soon-to-be rancher and gardener. He is also a husband and father.Mark has had various executive-level cybersecurity roles, including Global Information Security Strategist at Booking Holdings, Chief Cybersecurity Strategist at vArmour, a Principal at The Chertoff Group, Chief Security Officer at the North American Electric Reliability Corporation, and Chief Information Security Officer for the state of Colorado. He was appointed in 2008 by Governor Arnold Schwarzenegger to serve as California's first Chief Information Security Officer. In 2011, he got appointed by the Obama Administration as the Deputy Under Secretary for Cybersecurity at the U.S. Department of Homeland Security. Mark is a well-rounded individual who does a variety of interesting things. In this episode of the (CS)²AI Podcast, he shares his backstory and describes his career journey. He talks about the challenge CISOs face today, explains why relationships are vital, and discusses what it takes to be a good CISO today. He also offers some valuable nuggets of career advice for listeners.You will not want to miss this episode if you are in a first-time CISO role or considering making a career in cybersecurity. Stay tuned for more!Show highlights:Growing up, Mark was always playing around with electricity, wiring up motors and lights, and often overloading circuits and blowing breakers. (3:20)Mark became a cryptologic technician in the Navy and focused on signals intelligence. (4:50)In 1994, Mark wrote his grad school thesis on information security. That changed his life and set the stage for his future. (7:59)Mark created the Navy's first operational red team. (10:14)Mark explains why a CISO cannot be an expert today. (12:20)Mark got hired as the first CISO for the state of Colorado. It was a great learning experience! (15:06)Why is becoming a CISO is all about developing relationships? (19:47)Mentoring others is one of the most satisfying things Mark has ever done. (25:28)Mark had a lot of influence in his role at DHS. (32:01)Some advice for people thinking of taking on CISO roles. (35:34)What do you need to focus on and learn if you are aiming for a senior CISO position? (38:24)What do people in advisory board roles do? (46:08)Links:(CS)²AIMark Weatherford on LinkedInAlertEnterpriseNational Cybersecurity CenterThe podcast and artwork embedded on this page are from Derek Harp, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Derek Harp is happy to have Mark Weatherford, the CSO at AlertEnterprise, and the Chief Strategy Officer at the National Cybersecurity Center, joining him today for another episode in the series of security leader interviews! Mark grew up on a farm in an agricultural community in Northern California and left the farming life to embark on a career in the Navy and travel the world as a technologist, helping companies in cyberspace. Throughout his career, he always planned to get back into ranching. Apart from being a well-known security leader, Mark is a military veteran, technologist, beekeeper, hunter, pilot, and a soon-to-be rancher and gardener. He is also a husband and father. Mark has had various executive-level cybersecurity roles, including Global Information Security Strategist at Booking Holdings, Chief Cybersecurity Strategist at vArmour, a Principal at The Chertoff Group, Chief Security Officer at the North American Electric Reliability Corporation, and Chief Information Security Officer for the state of Colorado. He was appointed in 2008 by Governor Arnold Schwarzenegger to serve as California's first Chief Information Security Officer. In 2011, he got appointed by the Obama Administration as the Deputy Under Secretary for Cybersecurity at the U.S. Department of Homeland Security.  Mark is a well-rounded individual who does a variety of interesting things. In this episode of the (CS)²AI Podcast, he shares his backstory and describes his career journey. He talks about the challenge CISOs face today, explains why relationships are vital, and discusses what it takes to be a good CISO today. He also offers some valuable nuggets of career advice for listeners. You will not want to miss this episode if you are in a first-time CISO role or considering making a career in cybersecurity. Stay tuned for more! Show highlights: Growing up, Mark was always playing around with electricity, wiring up motors and lights, and often overloading circuits and blowing breakers. (3:20) Mark became a cryptologic technician in the Navy and focused on signals intelligence. (4:50) In 1994, Mark wrote his grad school thesis on information security. That changed his life and set the stage for his future. (7:59) Mark created the Navy's first operational red team. (10:14) Mark explains why a CISO cannot be an expert today. (12:20) Mark got hired as the first CISO for the state of Colorado. It was a great learning experience! (15:06) Why is becoming a CISO is all about developing relationships? (19:47) Mentoring others is one of the most satisfying things Mark has ever done. (25:28) Mark had a lot of influence in his role at DHS. (32:01) Some advice for people thinking of taking on CISO roles. (35:34) What do you need to focus on and learn if you are aiming for a senior CISO position? (38:24) What do people in advisory board roles do? (46:08) Links: https://www.cs2ai.org/ ((CS)²AI) https://www.linkedin.com/in/maweatherford/ (Mark Weatherford on LinkedIn) https://alertenterprise.com/ (AlertEnterprise) https://cyber-center.org/ (National Cybersecurity Center) Mentioned in this episode: Our Sponsors: We'd like to thank our sponsors for their faithful support of this podcast. Without their support we would not be able to bring you this valuable content. We'd appreciate it if you would support these companies because they support us! Network Perception Waterfall Security Tripwire KPMG Cyber Join CS2AI Join the largest organization for cybersecurity professionals. Membership has its benefits! We keep you up to date on the latest cybersecurity news and education. https://cs2ai.captivate.fm/cs2ai (Preroll Membership)

Mark Weatherford is an American cybersecurity professional who has held a variety of executive level positions in both the public and private sectors. He was appointed as the first deputy under secretary for cybersecurity at the U.S. Department of Homeland Security from 2011 to 2013. He is currently the Global Information Security Strategist for Booking Holdings. Mark Weatherford is investing his wealth of knowledge into helping emerging companies become more strategic in the risk, resilience, and security industry. He does this through a portfolio of private companies as a strategic advisor as well as with non-profits such as the National Cybersecurity Center (NCC) where he is the Chief Strategy Officer. The NCC is a non-profit helping with the cybersecurity of startups and state and local government. The Unfortunate 5000. There are three program pillars that help them meet their mission. 1. Education and outreach. The NCC's Cyber Education Program provides cybersecurity leadership, with two main pillars: K-12 education, NCC Student Alliance, and the Adult Education Initiative. As our nation addresses the critical gap in skilled cybersecurity talent, NCC addresses the importance of cyber education through programs and partnerships that invite students to participate in an ecosystem which encourages them to learn, explore, and build their skills. 2. The Space Information Sharing and Analysis Center (ISAC), a separate nonprofit organization, has the mission to facilitate collaboration across the global space industry to enhance our ability to prepare for and respond to vulnerabilities, incidents and threats; to disseminate timely and actionable information among member entities; and to serve as the primary communications channel for the sector with respect to this information. 3. Voting security. Secure the Vote seeks to increase voter confidence in the U.S. on the accuracy of vote-counting, and to generate greater awareness of possible solutions to critical gaps in the voting infrastructure. Secure the Vote supports jurisdictions' efforts to offer a secure, auditable mobile voting option for overseas voters through coordinating and evaluating pilots across the country. After exploring his portfolio and his work, we examine the technologies that are transforming our world.

Communication in any organization can be a challenge, especially when working with different levels of government and the various funding mechanisms. Join this podcast to lean how one State CISO navigated the rough waters by focusing on relationships and increased security spending and knowledge of security activities across government levels.   To view the article from the CISO COMPASS Book that sparked this interview, please visit: https://securityweekly.com/wp-content/uploads/2021/04/CISOCOMPASS_Mark_Weatherford_Article.pdf Weatherford, M. 2019. Relationships Matter. In CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers, 1st Ed, pg 473. Fitzgerald, T. CRC Press, Boca Raton, Fl. www.amazon.com/author/toddfitzgerald   Show Notes: https://securityweekly.com/csp22 This segment is sponsored by Cybereason. Visit https://www.cybereason.com/cisostories to learn more about them! Visit https://securityweekly.com/csp for all the latest episodes! Follow us on Twitter: https://www.twitter.com/cyberleaders Follow us on LinkedIn: https://www.linkedin.com/company/cybersecuritycollaborative/

The largest fuel pipeline in the United States, Colonial Pipeline, halted operations because of a ransomware attack. The attack was carried out the cybercriminal group DarkSide. Much of the pipeline remains offline, although the pipeline operator aims to restore service by the end of the week. Mark Weatherford is the CISO at AlertEnterprise, Chief Strategy Officer at the National Cybersecurity Center and the former Deputy Under Secretary for Cybersecurity at the U.S. Department of Homeland Security. He joins Juliet to discuss what the Colonial Pipeline attack suggests about the state of critical infrastructure security, national security concerns and what steps critical infrastructure companies should take to secure their enterprise.

Helena Wood joins SM Highlights host Chuck Harold to discuss the rising and evolving threat of synthetic identity fraud and how fraud threatens national security; Mark Weatherford shares an update on the state of cyber–physical convergence; and James Morris, CPP, explores changes in global security management over the past year. This episode of SM Highlights is sponsored by AlertEnterprise: https://alertenterprise.com/

Darin is joined by cybersecurity pioneer and expert Mark Weatherford. Mark has been invocled in cybercybersecurity for over 2 decades and serverd in government and the private sector. Mark served as the Chief Information Security Officer (CISO) for the states of Colorado and California. He also was Deputy Under Secretary for Cybersecurity, US Dept of Homeland Security. Mark worked as Principal at the Chertoff Group, Booking Holdings and vArmour and served as an Advisory and/or Board of Directors for Coalfire, Blue Lava, Interos, Tenable and many others.

Over the past decade, CSOs have had significantly more interaction with their boards of directors, becoming critical partners and driving risk management in many organizations. And cybersecurity, information security and privacy have become key topics of board meetings today, says Mark Weatherford, chief strategy officer at the National Cyber Security Center. Why the shift? "Just a few years ago... information security was background noise [to the board]. Now it's right in their face," he says.   Still, a board's time is limited and CSOs need to make the most of their time in front of the board. In this podcast episode, Weatherford shares his six guidelines for building board relationships, starting with inspiring confidence, which he says is the single most important thing a CSO can do.

Mark Weatherford is an icon in the cybersecurity field. He is widely known as a mission focused leader who builds teams and gets hard things done. His career included success in the US Navy as a cryptologist, leadership and management in a major defense integrator, CISO for two states (Colorado and California), CISO of the nation's regulatory organization for our power grid (the NERC), head of security efforts for the newly formed DHS, and operational CISO roles and advisory board positions for several US corporations. Our OODAcast with Mark focused on his insights for the cybersecurity community, including views on how to stay informed in dynamic environments, how to approach the position of CISO, how to optimize your career planning, and how to work with corporate boards as a CISO. He also provides advice for board members and CEOs on interacting with their CISO and security team.   Mark has written on CISO leadership, including two posts for OODA members at: 10 Rules For Cybersecurity Salespeople Embracing a Future of Technical and Political Churn Other Resources: Mark Weatherford on LinkedIn Covid-19 Sensemaking Mitigating Risks To America’s Cognitive Infrastructure 10 Red Teaming Lessons Learned Over 20 Years The Five Modes of HACKthink

Mark Weatherford is an icon in the cybersecurity field. He is widely known as a mission focused leader who builds teams and gets hard things done. His career included success in the US Navy as a cryptologist, leadership and management in a major defense integrator, CISO for two states (Colorado and California), CISO of the nation's regulatory organization for our power grid (the NERC), head of security efforts for the newly formed DHS, and operational CISO roles and advisory board positions for several US corporations. Our OODAcast with Mark focused on his insights for the cybersecurity community, including views on how to stay informed in dynamic environments, how to approach the position of CISO, how to optimize your career planning, and how to work with corporate boards as a CISO. He also provides advice for board members on interacting with their CISO and security team. Mark has written on CISO leadership, including two posts for OODA members at: 10 Rules For Cybersecurity Salespeople Embracing a Future of Technical and Political Churn Other Resources: Mark Weatherford on LinkedIn Covid-19 Sensemaking Mitigating Risks To America’s Cognitive Infrastructure 10 Red Teaming Lessons Learned Over 20 Years The Five Modes of HACKthink

Meet Mark Weatherford, who has one of the most impressive cybersecurity CVs we’ve ever seen! Learn how he created the U.S Navy’s first ever Red Team, and how he was hired by Arnold Schwarzenegger to help "change the way California did technology". Mark also talks about how he worked with many different groups to get laws passed to formerly establish a security program for the first time in several US states…And we talk about how Batman fits into all of this….Also in this episode, Ben and Hazel celebrate the anniversary of Snort becoming open source in our 'On this day" feature. It's a fascinating story that starts with a rainy day/weekends project that entered into the Hall of Fame as one of the best pieces of open source software of all time.And finally in our "Emerging threats" segment, Ben talks about a previously unknown type of Remote Access Trojans, recently discovered by Cisco Talos, which we're calling "PoetRAT." We talk about the unique features of this RAT, its impact, and what organizations can do to protect themselves.

How well do you understand your organization's supply chain structure?  You're likely familiar with your “first-tier” suppliers. You've probably got legal contracts, or even a physical relationship in place with them. But how familiar are you with those suppliers down the chain? What at Interos, we like to call the “N-th tier suppliers.”  The less you focus on understanding them, the more you get lulled into a false sense of security in thinking that you've got your supply chain security figured out, integrated, and fully understood.  And frankly, at least according to our most recent podcast guest, Mark Weatherford, most organizations do a very poor job of understanding even their first-tier suppliers, let alone those n-th tier ones.  Mark joined us on a recent episode of the What Lies Beneath? Podcast, to talk all about:  The difference in policy & standards development as it relates to government vs. the private sector What companies need to be doing to invest in their supply chain security Why it's become a priority for every company to invest in supply chain security right now

Mark Weatherford, Global Information Security Strategist at Booking Holdings and former CISO of the State of California and Colorado, has over twenty years of executive-level leadership experience in some of the world’s most important organizations. He and Brian Contos discuss misconceptions of cloud security, issues in the supply chain, and evaluating all areas of your cybersecurity environment.

Mark Weatherford, Global Information Security Strategist at Booking Holdings and former CISO of the State of California and Colorado, has over twenty years of executive-level leadership experience in some of the world's most important organizations. He and Brian Contos discuss misconceptions of cloud security, issues in the supply chain, and evaluating all areas of your cybersecurity environment.

How do you know that your security program is effective? Mark Weatherford, senior vice president and chief cybersecurity strategist of vArmour and senior advisor at The Chertoff Group, weighs in on the role of a Chief Information Security Officer in an ever-changing cybersecurity landscape. He provides insights on managing the relationship with security vendors, the challenge of ransomware, and how a lack of talent is hurting the industry.

We may be talking primarily to Salespeople with this episode, but… keep this in mind… if you need to get the CISO of your organization on your side… you are, indeed, selling your CISO on your idea.  One thing salespeople probably don’t realize is that a CIO or CISO typically agrees to a meeting for one of three reasons a favor to a friend a persistent – but not annoying – salesperson because he/she read about or saw your product and really wants to know more about it In this episode of the InSecurity podcast, host Matt Stephenson welcomes Mark Weatherford, SVP & Chief Cybersecurity Strategist at vArmour. Mark also sits on advisory boards for numerous companies. Based on his 30+ years of experience, he has assembled a set of guidelines that has proven to pave the way into a CISO’s office in order to get your story heard.   Some of this may seem like basic common sense, but you’d be surprised how successful you can be simply sticking to these rules.

In this episode: Mark Weatherford, first CISO of Colorado, and current Chief Cybersecurity Strategist for vArmour is our feature interview this week. News from: Shark Tank, CNBC, Denver International Airport, CTA, Coalfire, zvelo, Webroot and a lot more! Swim With Sharks In Denver What could be better than the Sharks coming to town? How about 25 awesome ice cream parlors? Denver is moving up the list of best states for business, and DEN (hard not to say DIA) is getting a massive overhaul. CTA gets a new CEO. Coalfire has TWO blogs so good I couldn't help but include them both this week. And blogs from zvelo and Webroot. Support us on Patreon! Fun swag available - all proceeds will directly support the Colorado = Security infrastructure. Come join us on the new Colorado = Security Slack channel to meet old and new friends. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com Local security news: Join the Colorado = Security Slack channel Shark Tank Open Casting Call in Denver 25 Best Ice Cream Shops in Denver Colorado moves up on CNBC's 'top states for business' list Denver International Airport's terminal is in for more than 3 years of construction -- here’s how it will play out Colorado Technology Association names Frannie Matthews new CEO Coalfire blog - Expanded Privacy Protections Granted to California Residents: The California Consumer Protection Act Coalfire blog - Transitioning to the New SOC 2 Criteria – What You Need to Know Securely Logging & Tracing HTTP Requests in Go | zvelo 3 Cyber Threats IT Providers Should Protect Against | Webroot CISO of the year voting Job Openings: Ping Identity - Site Reliability Engineer - Security Operations Ping Identity - Director of IT Denver Health - Security Analyst 3 LogRhythm - Manager, Security Operations NCC - Chief Operating Officer (COO) Pearson - Lead Enterprise Security Architect - Identity Arapahoe Community College - Cybersecurity Faculty NREL - Cybersecurity Research Engineer NBCUniversal - Cyber Security Architect DirectDefense - Security Analyst Team Lead Upcoming Events: This Week and Next: CSA - July Meeting - 7/17 ISSA COS - July Meetings - 7/17-18 DenSec - Meetup - 7/18 SecureSet - Career Convos: Alison Lawrence Daley - 7/19 ISC2 – Data Protection: Industry Practices to Identify and Protect Sensitive Information - 7/19 ISSA COS - Mini Seminar - 7/21 NCC - AFA CyberCamp - 7/23 GDPR Meetup - Hosting.com: GDPR and Compliance as a Service - 7/24 SecureSet - Expert Series: Douglas Brush - 7/26 ISSA COS - CISSP Exam Prep (1 of 5) - 7/28 Other Notable Upcoming Events Colorado Springs - Cyber Security Training & Technology Forum (CSTTF) - 8/22 View our events page for a full list of upcoming events * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

My guest today is Mark Weatherford, an American cyber security professional who has held extremely high positions in both the public and private sector. He was appointed the first deputy under secretary for cyber security at the US Department of Homeland Security from 2011-2013. Mark brings a wealth of experience and insight into a subject that all of us should be worried about in this day and age. He gives examples of how things are unfolding in regards to the cybersecurity and steps we can take to try and mitigate risk. The topic is cyber security. In this episode of Trend Following Radio we discuss: Cyber hacking Hillary Clinton server scandal Podesta hacking Cyber security “Model what you admire” Partisanship in cyber security Game theory Jump in! --- I'm MICHAEL COVEL, the host of TREND FOLLOWING RADIO, and I'm proud to have delivered 10+ million podcast listens since 2012. Investments, economics, psychology, politics, decision-making, human behavior, entrepreneurship and trend following are all passionately explored and debated on my show. To start? I'd like to give you a great piece of advice you can use in your life and trading journey… cut your losses! You will find much more about that philosophy here: https://www.trendfollowing.com/trend/ You can watch a free video here: https://www.trendfollowing.com/video/ Can't get enough of this episode? You can choose from my thousand plus episodes here: https://www.trendfollowing.com/podcast My social media platforms: Twitter: @covel Facebook: @trendfollowing LinkedIn: @covel Instagram: @mikecovel Hope you enjoy my never-ending podcast conversation!

Mark Weatherford is an American cyber security professional who has held extremely high positions in both the public and private sector. He was appointed the first deputy under secretary for cyber security at the US Department of Homeland Security from 2011-2013. Mark brings a wealth of experience and insight into a subject that all of us should be worried about in this day and age. He gives examples of how things are unfolding in regards to the cybersecurity and steps we can take to try and mitigate risk. The basic infrastructure of the internet is essentially the same as it was back in the 90’s. A lot of physical infrastructure hasn’t really changed for most things since they were designed, however there has been layers of technology added. Michael uses the Hoover Dam as an example of old infrastructure with new technology layered on and asks, “Is it possible for the dam’s security to be hacked?” Mark says he always works from the viewpoint that absolutely everything can be broken into. Michael moves on to ask about Hillary Clinton’s home server and what the scandal entailed. “Puzzling” is the word that Mark uses to describe the situation. She hired a company to build an email server and essentially put it physically in her basement but managed it remotely. None of this made sense or seemed well thought out. There are plenty of things you can do to protect infrastructure and it didn’t seem that they put any of those measures in place. Michael and Mark end on discussing the idea that intelligence is all about deception. This is one of the biggest challenges in working in cyber security — figuring out what is true and what is false. In this episode of Trend Following Radio: Cyber hacking Hillary Clinton server scandal Podesta hacking Cyber security “Model what you admire” Partisanship in cyber security Game theory

The Department of Homeland Security tapped a new man to work with cybersecurity partners across the country.  Mark Weatherford will discuss issues that affect the federal government. This year has been a very busy year for hackers.  You may remember Anonymous and LulzSec wreaking havoc on the federal government and businesses alike.  Sony, PBS and websites around the world were easy targets and cyber security experts say the attacks probably won’t stop anytime soon. Two Maryland men will spend plenty of time behind bars for their role in a major identity theft ring.  Prosecutors say there were more than 250 victims in the Washington area.