POPULARITY
I had a great discussion with Omar Khawaja, CDAO / Global Head Data & Analytics at Givaudan, on The Ravit Show. We discussed various topics, from the exciting new trends in Data and AI to the tools that are shaping the industry. Omar shared insights on the adoption and implementation of these technologies, along with some of the challenges teams face along the way. We also touched on what's next for Omar and his predictions for the future of Data and AI. #data #ai #bigdatalondon2024 #theravitshow
Guests:Dan Nutkis, Founder and Chief Executive Officer of HITRUSTOn LinkedIn | https://www.linkedin.com/in/daniel-nutkis-339b93b/Robert Booker, Chief Strategy Officer at HITRUSTOn LinkedIn | https://www.linkedin.com/in/robertbooker/Omar Khawaja, CISO, Client at DatabricksOn LinkedIn | https://www.linkedin.com/in/smallersecurity/Cliff Baker, CEO at CORL TechnologiesOn LinkedIn | https://www.linkedin.com/in/cliffbaker/Andrew Hicks, Partner and National HITRUST Practice Lead at Frazier & DeeterOn LinkedIn | https://www.linkedin.com/in/aehicks2000/____________________________Hosts: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/sean-martin____________________________Episode NotesThis episode of the On Location series takes place during HITRUST Collaborate 2024 brought together leading figures in cybersecurity to share their experiences and insights. Moderated by Sean Martin, host of the Redefining CyberSecurity Podcast, the panel included Dan Nutkis, Founder and Chief Executive Officer of HITRUST; Robert Booker, Chief Strategy Officer at HITRUST and former Chief Information Security Officer at UnitedHealth Group; Omar Khawaja, CISO, Client at Databricks and former Chief Information Security Officer at Highmark Health; Cliff Baker, CEO at CORL Technologies and Managing Partner at Meditology Services; and Andrew Hicks, Partner and National HITRUST Practice Lead at Frazier & Deeter.The session kicked off with Sean Martin highlighting the importance of collaboration and conversation within the cybersecurity community. Dan Nutkis reflected on the early beginnings of HITRUST in 2007 and discussed the initial goal of establishing a comprehensive and effective framework for security. Nutkis highlighted the organization's ongoing commitment to continuous improvement and adaptability in addressing security needs.Omar Khawaja emphasized the need for setting high-security bars and how HITRUST has been instrumental in providing robust frameworks that simplify complex compliance requirements. He shared how Highmark Health leveraged the HITRUST certification to streamline their third-party risk management, ensuring better outcomes with fewer resources. According to Khawaja, HITRUST's efforts in adapting to market needs and developing new assurance levels like the i1 and e1 have been vital in meeting evolving security demands.Cliff Baker discussed the innovation driven by HITRUST in the compliance space. Baker stressed the importance of the HITRUST ecosystem, which is designed not only to meet today's security challenges but to anticipate future needs. The assurance framework and transparency provided by HITRUST have proven essential in building and maintaining trust within the healthcare industry.Andrew Hicks praised the rigorous QA process that HITRUST employs, which ensures that certified organizations maintain high standards of security. He emphasized how this rigorous process not only helps organizations achieve certification but also transforms their overall approach to cybersecurity.Robert Booker spoke about the continuous curiosity and commitment required to stay ahead in cybersecurity. He highlighted how HITRUST's data-driven approach and innovations in areas like AI and continuous monitoring are crucial in maintaining relevance and enhancing security outcomes.Throughout the discussion, the panelists collectively underscored the importance of a robust, adaptable, and comprehensive security framework. HITRUST's continuous innovation and commitment to addressing real-world security challenges position it as a leader in the industry. The collaborative efforts of HITRUST and its community not only improve organizational security but also strengthen the overall reliability of the healthcare system.As HITRUST continues to evolve and introduce new initiatives, it remains a pivotal player in setting high security and compliance standards. The insights shared during this episode of On Location provide a glimpse into the future of cybersecurity and the ongoing efforts to safeguard sensitive data in the healthcare sector.Be sure to follow our Coverage Journey and subscribe to our podcasts!____________________________This Episode's SponsorsHITRUST: https://itspm.ag/itsphitweb____________________________Follow our HITRUST Collaborate 2024 coverage: https://www.itspmagazine.com/hitrust-collaborate-2024-information-risk-management-and-compliance-event-coverage-frisco-texasBe sure to share and subscribe!____________________________ResourcesLearn more about HITRUST Collaborate 2024 and register for the conference: https://itspm.ag/hitrusmxayLearn more about and hear more stories from HITRUST: https://www.itspmagazine.com/directory/hitrust____________________________Catch all of our event coverage: https://www.itspmagazine.com/technology-cybersecurity-society-humanity-conference-and-event-coverageTo see and hear more Redefining CyberSecurity content on ITSPmagazine, visit: https://www.itspmagazine.com/redefining-cybersecurity-podcastTo see and hear more Redefining Society stories on ITSPmagazine, visit:https://www.itspmagazine.com/redefining-society-podcastWant to tell your Brand Story as part of our event coverage?Learn More
Guests:Dan Nutkis, Founder and Chief Executive Officer of HITRUSTOn LinkedIn | https://www.linkedin.com/in/daniel-nutkis-339b93b/Robert Booker, Chief Strategy Officer at HITRUSTOn LinkedIn | https://www.linkedin.com/in/robertbooker/Omar Khawaja, CISO, Client at DatabricksOn LinkedIn | https://www.linkedin.com/in/smallersecurity/Cliff Baker, CEO at CORL TechnologiesOn LinkedIn | https://www.linkedin.com/in/cliffbaker/Andrew Hicks, Partner and National HITRUST Practice Lead at Frazier & DeeterOn LinkedIn | https://www.linkedin.com/in/aehicks2000/____________________________Hosts: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/sean-martin____________________________Episode NotesThis episode of the On Location series takes place during HITRUST Collaborate 2024 brought together leading figures in cybersecurity to share their experiences and insights. Moderated by Sean Martin, host of the Redefining CyberSecurity Podcast, the panel included Dan Nutkis, Founder and Chief Executive Officer of HITRUST; Robert Booker, Chief Strategy Officer at HITRUST and former Chief Information Security Officer at UnitedHealth Group; Omar Khawaja, CISO, Client at Databricks and former Chief Information Security Officer at Highmark Health; Cliff Baker, CEO at CORL Technologies and Managing Partner at Meditology Services; and Andrew Hicks, Partner and National HITRUST Practice Lead at Frazier & Deeter.The session kicked off with Sean Martin highlighting the importance of collaboration and conversation within the cybersecurity community. Dan Nutkis reflected on the early beginnings of HITRUST in 2007 and discussed the initial goal of establishing a comprehensive and effective framework for security. Nutkis highlighted the organization's ongoing commitment to continuous improvement and adaptability in addressing security needs.Omar Khawaja emphasized the need for setting high-security bars and how HITRUST has been instrumental in providing robust frameworks that simplify complex compliance requirements. He shared how Highmark Health leveraged the HITRUST certification to streamline their third-party risk management, ensuring better outcomes with fewer resources. According to Khawaja, HITRUST's efforts in adapting to market needs and developing new assurance levels like the i1 and e1 have been vital in meeting evolving security demands.Cliff Baker discussed the innovation driven by HITRUST in the compliance space. Baker stressed the importance of the HITRUST ecosystem, which is designed not only to meet today's security challenges but to anticipate future needs. The assurance framework and transparency provided by HITRUST have proven essential in building and maintaining trust within the healthcare industry.Andrew Hicks praised the rigorous QA process that HITRUST employs, which ensures that certified organizations maintain high standards of security. He emphasized how this rigorous process not only helps organizations achieve certification but also transforms their overall approach to cybersecurity.Robert Booker spoke about the continuous curiosity and commitment required to stay ahead in cybersecurity. He highlighted how HITRUST's data-driven approach and innovations in areas like AI and continuous monitoring are crucial in maintaining relevance and enhancing security outcomes.Throughout the discussion, the panelists collectively underscored the importance of a robust, adaptable, and comprehensive security framework. HITRUST's continuous innovation and commitment to addressing real-world security challenges position it as a leader in the industry. The collaborative efforts of HITRUST and its community not only improve organizational security but also strengthen the overall reliability of the healthcare system.As HITRUST continues to evolve and introduce new initiatives, it remains a pivotal player in setting high security and compliance standards. The insights shared during this episode of On Location provide a glimpse into the future of cybersecurity and the ongoing efforts to safeguard sensitive data in the healthcare sector.Be sure to follow our Coverage Journey and subscribe to our podcasts!____________________________This Episode's SponsorsHITRUST: https://itspm.ag/itsphitweb____________________________Follow our HITRUST Collaborate 2024 coverage: https://www.itspmagazine.com/hitrust-collaborate-2024-information-risk-management-and-compliance-event-coverage-frisco-texasBe sure to share and subscribe!____________________________ResourcesLearn more about HITRUST Collaborate 2024 and register for the conference: https://itspm.ag/hitrusmxayLearn more about and hear more stories from HITRUST: https://www.itspmagazine.com/directory/hitrust____________________________Catch all of our event coverage: https://www.itspmagazine.com/technology-cybersecurity-society-humanity-conference-and-event-coverageTo see and hear more Redefining CyberSecurity content on ITSPmagazine, visit: https://www.itspmagazine.com/redefining-cybersecurity-podcastTo see and hear more Redefining Society stories on ITSPmagazine, visit:https://www.itspmagazine.com/redefining-society-podcastWant to tell your Brand Story as part of our event coverage?Learn More
When life presents to you your favorite Muslim children's story-book author, you gotta interview him!In this episode I interview the renowned creator of the "Ilyas and Duck" children's story books, Omar Khawaja and it was an absolute pleasure being able to find out how this dynamic boy and duck duo came into being, and why it has such great appeal amongst kids!We go into the reason behind the creation of Ilyas and Duck and how it has grown into a complete Ilyas and Duck universe, through online webtoons and in-person shows! And with a new book just released, this well-loved series of children's stories is here to stay!You can also watch this interview on my YouTube channel here: https://youtu.be/SEVXVGnWhvoTo find out more about Ilyas and Duck books and where to buy them from you can check out the book website: https://www.littlebigkids.com/And you can also follow them on Instagram at: https://www.instagram.com/ilyasandduck/Support the showPlease don't forget to follow me here and on social media! Click the links to keep up with my shenanigans on social media and listen to all my episodes in one place: https://www.imamuslimpodcast.com/ https://www.instagram.com/imamuslimpodcast/ https://www.youtube.com/c/ImAMuslimAndThatsOkayPodcast
About the CISO Circuit SeriesSean Martin and Michael Piacente will join forces roughly once per month to discuss everything from looking for a new job, entering the field, finding the right work/life balance, examining the risks and rewards in the role, building and supporting your team, the value of the community, relevant newsworthy items, and so much more. Join us to help us understand the role of the CISO so that we can collectively find a path to Redefining CyberSecurity. If you have a topic idea or a comment on an episode, feel free to contact Sean Martin.____________________________Guests: Michael Piacente, Managing Partner and Cofounder of Hitch PartnersOn ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/michael-piacenteOmar Khawaja, VP Security, Field CISO at Databricks [@databricks]On LinkedIn | https://www.linkedin.com/in/smallersecurity/On Twitter | https://twitter.com/smallersecurity____________________________Host: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/sean-martin____________________________This Episode's SponsorsImperva | https://itspm.ag/imperva277117988Pentera | https://itspm.ag/penteri67a___________________________Episode NotesIn this special CISO Circuit Series edition of the Redefining CyberSecurity podcast episode, Sean Martin and Michael Piacente engage in a thought-provoking conversation with Omar Khawaja, VP of Security and Field CISO at Databricks. Driven by a conversation with 75 of his CISO peers, Omar brings his unique perspective to the table, discussing the evolving role of a CISO and the importance of aligning security efforts with business needs.Drawing on his experiences transitioning from a CISO at a large healthcare organization to a Field CISO, Omar shares insights on how he assists other CISOs, particularly in managing their data and implementing AI. He emphasizes the necessity of effective communication, audience awareness, and collaboration. Using the metaphor of a plane journey, Omar illustrates the importance of delivering a clear, simplified view of security efforts to stakeholders.A significant part of the conversation revolves around the importance of building strong relationships with other executives and being open about vulnerabilities. Omar stresses the value of maintaining a relentless curiosity and refraining from judgment to foster better relationships and collaboration. He also shares some practical techniques for CISOs, encouraging them to continuously work on the craft of asking the right questions and demonstrating curiosity.This episode serves as a valuable resource for anyone interested in the ever-changing role of the CISO and the critical task of aligning security efforts with business needs. With its blend of practical advice, insightful metaphors, and real-world experiences, it's a must-listen for those looking to understand the complexities and challenges in the world of cybersecurity.____________________________Watch this and other videos on ITSPmagazine's YouTube ChannelRedefining CyberSecurity Podcast with Sean Martin, CISSP playlist:
About the CISO Circuit SeriesSean Martin and Michael Piacente will join forces roughly once per month to discuss everything from looking for a new job, entering the field, finding the right work/life balance, examining the risks and rewards in the role, building and supporting your team, the value of the community, relevant newsworthy items, and so much more. Join us to help us understand the role of the CISO so that we can collectively find a path to Redefining CyberSecurity. If you have a topic idea or a comment on an episode, feel free to contact Sean Martin.____________________________Guests: Michael Piacente, Managing Partner and Cofounder of Hitch PartnersOn ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/michael-piacenteOmar Khawaja, VP Security, Field CISO at Databricks [@databricks]On LinkedIn | https://www.linkedin.com/in/smallersecurity/On Twitter | https://twitter.com/smallersecurity____________________________Host: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/sean-martin____________________________This Episode's SponsorsImperva | https://itspm.ag/imperva277117988Pentera | https://itspm.ag/penteri67a___________________________Episode NotesIn this special CISO Circuit Series edition of the Redefining CyberSecurity podcast episode, Sean Martin and Michael Piacente engage in a thought-provoking conversation with Omar Khawaja, VP of Security and Field CISO at Databricks. Driven by a conversation with 75 of his CISO peers, Omar brings his unique perspective to the table, discussing the evolving role of a CISO and the importance of aligning security efforts with business needs.Drawing on his experiences transitioning from a CISO at a large healthcare organization to a Field CISO, Omar shares insights on how he assists other CISOs, particularly in managing their data and implementing AI. He emphasizes the necessity of effective communication, audience awareness, and collaboration. Using the metaphor of a plane journey, Omar illustrates the importance of delivering a clear, simplified view of security efforts to stakeholders.A significant part of the conversation revolves around the importance of building strong relationships with other executives and being open about vulnerabilities. Omar stresses the value of maintaining a relentless curiosity and refraining from judgment to foster better relationships and collaboration. He also shares some practical techniques for CISOs, encouraging them to continuously work on the craft of asking the right questions and demonstrating curiosity.This episode serves as a valuable resource for anyone interested in the ever-changing role of the CISO and the critical task of aligning security efforts with business needs. With its blend of practical advice, insightful metaphors, and real-world experiences, it's a must-listen for those looking to understand the complexities and challenges in the world of cybersecurity.____________________________Watch this and other videos on ITSPmagazine's YouTube ChannelRedefining CyberSecurity Podcast with Sean Martin, CISSP playlist:
As part of our ongoing coverage on cybercrime and cybersecurity, we recently spoke to several top experts about how they see it. On this episode, Javvad Malik, Lead Security Awareness Advocate at KnowBe4, is joined by Paul Connelly, former Chief Security Officer at HCA Healthcare; Ken Foster, former VP of IT Governance, Risk & Compliance at FLEETCOR; Omar Khawaja, former CISO at Highmark Health; and Susan Koski, CISO at PNC. Sponsored by: https://www.knowbe4.com/
Cybersecurity executives have one of the world's most stressful positions: faced with external threats from hackers who never rest and tasked with protecting critical data, government security, and medical information. Not surprisingly, more than half of CISO's and CIO's say stress will make them leave the job within the next 24 months. Omar Khawaja is a former CISO who decided to help others in similar positions recognize their stress and prioritize their lives in order to develop better balance in their lives. Now, as a CISO to the CISO's, Omar talks with Sheila about resilience, burnout, and one of the world's most high-stakes job.
Please Rate and Review us on your podcast app of choice!If you want to be a guest or give feedback (suggestions for topics, comments, etc.), please see hereEpisode list and links to all available episode transcripts (most interviews from #32 on) hereProvided as a free resource by Data Mesh Understanding / Scott Hirleman. Get in touch with Scott on LinkedIn if you want to chat data mesh.Transcript for this episode (link) provided by Starburst. See their Data Mesh Summit recordings here and their great data mesh resource center here. You can download their Data Mesh for Dummies e-book (info gated) here.Kim's LinkedIn: https://www.linkedin.com/in/vtkthies/Mike's LinkedIn: https://www.linkedin.com/in/2mikealvarez/Ferd's LinkedIn: https://www.linkedin.com/in/ferdscheepers/Omar's LinkedIn: https://www.linkedin.com/in/kmaomar/In this episode, guest host Kim Thies, Director of Intelligence Automation at PayPal facilitated a discussion with Ferd Scheepers, Chief Information Architect at ING, Mike Alvarez, Former VP of Digital Services at a large healthcare distribution company (guest of episode #236), and Omar Khawaja, Head of Business Intelligence at Roche (guest of episode #96). As per usual, all guests were only reflecting their own views.Scott note: I wanted to share my takeaways rather than trying to reflect the nuance of the panelists' views individually.Before we jump in, I think the main takeaway here would be a data mesh implementation leader's journey can be a lonely one. Find peers and exchange information. You can reach out to me (Scott) but there are also many leaders that want to exchange information with each other. The other is the meaning of journey: it's never done; be prepared to continue to push - it can feel Sisyphean but it's important to keep moving forward and expect to continue to drive buy-in.Scott's Top Takeaways:Everyone sees the 'Instagram photos' version of other organizations' data mesh journeys - it's not the reality. Everyone is struggling with certain aspects of data mesh because if this were easy, people would read Zhamak's book and be done with it. It's just not realistic to expect that, give your leaders (yourself?) a...
As part of our ongoing coverage on cybercrime, we recently spoke to several top experts about how they view security awareness training. On this episode, James McQuiggan, Security Awareness Advocate at KnowBe4, is joined by Paul Connelly, Chief Security Officer at HCA Healthcare; Mary Rose Martinez, VP and CISO at Marathon Petroleum Corporation; Alissa Abdullah, Deputy CSO and Senior VP of Emerging Corporate Security Solutions at Mastercard; and Omar Khawaja, former CISO at Highmark Health. To learn more about our sponsor, KnowBe4, visit https://knowbe4.com
As part of our ongoing coverage on cybercrime, we recently spoke to several top experts about how they view phishing simulation. On this episode, James McQuiggan, Security Awareness Advocate at KnowBe4, is joined by Alissa Abdullah, Deputy CSO and Senior VP of Emerging Corporate Security Solutions at Mastercard; Omar Khawaja, former CISO at Highmark Health; Keith O'Sullivan, former CISO at Standard Industries; and Laura Deaner, CISO at Northwestern Mutual. To learn more about our sponsor, KnowBe4, visit https://knowbe4.com
As part of our ongoing coverage on cybercrime, we recently spoke to several top experts about how they view the human threat to businesses. On this episode, Anna Collard, SVP Content Strategy & Evangelist at KnowBe4 Africa, is joined by Omar Khawaja, CISO at Highmark Health, Jason Lau, CISO at Crypto.com, Ian Anthony Baxter, CISO, UK, at Bank of Ireland, and Kathy Hughes, CISO at Northwell Health. To learn more about our sponsor, KnowBe4, visit https://knowbe4.com
Too often when we think of the human element in cybersecurity it's the insider threats. But more often it's the hardworking protectors inside the organization who, while passionate about their jobs, would rather work to live rather than live to work. Although that reality can easily flip due to the nature of the cyber world. That's where today's guest Omar Khawaja, who's been the CISO at Highmark Health for nine years, comes into the picture. As you'll hear, Khawaja's been on the cutting edge of cultivating talent and creating a cyber culture that empowers the human element of an organization with more than 37,000 employees. What you'll learn: How the power of language, relationships and story can be used to effectively communicate cybersecurity strategies and best practices with partners outside of the space. And how the benefits of this can lead to better culture, retention of talent and business growth.
Data Mesh is probably the hottest topic in data world right now. But where are the real world examples or successes with Data Mesh? Omar Khawaja (Head of BI @ Roche) talks with us about how they actually built a real world Data Mesh at Roche. Omar's LinkedIn: https://www.linkedin.com/in/kmaomar/ #datamesh #dataengineering #data
https://www.patreon.com/datameshradio (Data Mesh Radio Patreon) - get access to interviews well before they are released Episode list and links to all available episode transcripts (most interviews from #32 on) https://docs.google.com/spreadsheets/d/1ZmCIinVgIm0xjIVFpL9jMtCiOlBQ7LbvLmtmb0FKcQc/edit?usp=sharing (here) Provided as a free resource by DataStax https://www.datastax.com/products/datastax-astra?utm_source=DataMeshRadio (AstraDB) Transcript for this episode (https://docs.google.com/document/d/1JyEGeFHqLz3_WdGviNZeAYMJZQzI8ttS9r8I5ffqqwo/edit?usp=sharing (link)) provided by Starburst. See their Data Mesh Summit recordings https://www.starburst.io/learn/events-webinars/datanova-on-demand/?datameshradio (here) and their great data mesh resource center https://www.starburst.io/info/distributed-data-mesh-resource-center/?datameshradio (here) In this episode, Scott interviewed Omar Khawaja, Head of Business Intelligence at Roche Diagnostics. To be clear, Omar was only representing his own viewpoints and learnings, not necessarily those of Roche. Some interesting thoughts/takeaways from Omar's point of view and learnings: If you are going to make progress in a data mesh journey, you must be okay with "good enough". Perfect is the enemy of good and done. Measure, learn, and adjust along the way but get moving and keep moving. It's okay to make mistakes - recognize and correct them. Echoing a number of past guests, change management and organizational challenges will take a large portion of a data mesh implementation leader's time and effort - likely far more than most would expect. Focus on empowering people and showing them why this can work for them. And what it means for them. Data mesh cannot be your entire data strategy. If you are implementing data mesh, it must only be part of your data strategy. Start from the why. Why undertake something as transformational and difficult as implementing data mesh? What business value will it deliver? Data-as-a-product thinking is the true heart of a data mesh implementation. It's far more than just creating data products. Data product discovery is crucial, much like discovery in regular product management. Take considerable learnings from product management in other disciplines. Focus on outcomes in day-to-day data work. What are you trying to deliver? What is the value in it? For whom? How will we measure if we are successful? And were we actually successful? We need to get data people to rethink creating point solutions - sometimes called project management thinking - where they deliver a dashboard and the dashboard itself is the focus. This leads to fragility that could be prevented by focusing on the entire data lifecycle to create the dashboard with the dashboard - and many other chances for data reuse - as an output. Roche is being quite flexible around who develops data products - it is all about the capabilities and needs. Often, it is data engineers in the domains, enabled by the central platform team. But it can be data/business analysts or software engineers too. If the data product isn't overly complex or if a business analyst really understands data, why can't they be the data product developer? It would have been the definition of insanity - trying the same thing over and over and expecting different results - for Roche to just move from an on-prem data lake that was having scaling and quality issues to a cloud data lake. Many other aspects needed to change. The organization needed to unlearn and relearn a number of things and data mesh was a great vision for where they could go. Roche saw some duplication of work across data products so they adjusted and made their data product discovery and design phases very public. Making it public can increase collaboration early in a data product's life as well so you might find additional data consumers in the development phase. Omar started the conversation with a definition of what Business...
Some of the greatest breakthroughs throughout human history can be attributed to the biotech field, from life-saving vaccines to advances in supply chains. So it's no surprise that biotech is also a fast-mover when it comes to innovative socio-technical paradigms like data mesh. In this episode, Tim, Juan, and Omar Khawaja, Global Head of BI at Roche, break down the good, the bad, and the ugly of the company's data mesh journey. This episode will also feature: How to identify potential use cases and pick the one to prioritize How to think about ownership when data and tools are widely distributed You'll be at Snowflake Summit in Las Vegas next month. So will we. What's the best buffet food?
Some of the greatest breakthroughs throughout human history can be attributed to the biotech field, from life-saving vaccines to advances in supply chains. So it's no surprise that biotech is also a fast-mover when it comes to innovative socio-technical paradigms like data mesh. In this episode, Tim, Juan, and Omar Khawaja, Global Head of BI at Roche, break down the good, the bad, and the ugly of the company's data mesh journey. This episode will also feature: How to identify potential use cases and pick the one to prioritize How to think about ownership when data and tools are widely distributed You'll be at Snowflake Summit in Las Vegas next month. So will we. What's the best buffet food?
On this episode of Hashmap on Tap, host Kelly Kohlleffel is joined by Omar Khawaja. Omar is Head of Business Intelligence at Roche where he and the team are building data products utilizing modern data principles and a modern data stack. Kelly and Omar get into some exciting data topics like the potential for data mesh along with practical advice for starting each project by making the user's experience around the outcome their focus. Listen in to hear Omar's fascinating story and great perspectives. Show Notes: Learn more about Roche: https://www.roche.com/ Watch Change is the Only Constant with Omar Khawaja by Snowflake: https://www.youtube.com/watch?v=Ft0ySNHRMyw Start a conversation around the perfect data stack for your use case: https://www.hashmapinc.com/workshop-dataintegration On tap for today's episode: Cappucino & Bulletproof Original Coffee Contact Us: https://www.hashmapinc.com/reach-out
In this episode of CyberTalk, Omar Khawaja, CISO at Highmark Health, joins host Hillarie McClure to discuss zero trust, how Highmark created "cyber scores" for employees to improve and inspire proper cyber hygiene, how to create a cybersecurity culture, and more. CyberArk is centered on privileged access management, providing the most comprehensive security offering for any identity – human or machine. To learn more about our sponsor CyberArk, visit https://cyberark.com
Omar Khawaja is an experienced CISO with a strong technical background, who managed to find some very creative ways to manage his security program that go against his engineering instincts. Join Allan and Omar as they discuss why trust-based security is the more suitable option to have a fundamentally better security program and team. Hear why Omar and Allan believe that investing in people will pay far more dividends than the latest tech tool. And more importantly, gain some very practical and concrete tips for managing and measuring your security program. Key Takeaways: 01:19 Bio 03:26 What is wrong with tech-centric security? 06:00 Using tech tools as nothing more, and using them appropriately 12:22 Trust, then risk, then control 14:30 Customer first, always 19:02 Helping foster a trust-centric culture 28:40 Culture = mindset = best measurable quality 29:33 What surprises Omar in cyber security? 32:50 The “change agent network” Links: Learn more about Omar on Twitter and LInkedIn Follow Allan Alford on LinkedIn and Twitter Purchase a Cyber Ranch Podcast T-Shirt at the Hacker Valley Store Learn more about Hacker Valley Studio and The Cyber Ranch Podcast Sponsored by our good friends at Uptycs
In recognition of Cybersecurity Awareness month, WDEDI is pleased to present a cybersecurity session from our recently concluded national conference. An excellent "CISO Summit" featuring Jacki Monson of Sutter Health, Erik Decker of Intermountain and Omar Khawaja from Highmark Health. The panel was moderated by Marilyn Zigmund Luke (AHIP) and Tina Grande (Healthcare Leadership Council), WEDI's Privacy and Security Workgroup Co-Chairs.
In this episode, Omar Khawaja, Global Head BI Roche Diagnostics at Roche, discusses the intersection of healthcare and big data, how to handle the balance of centralized and decentralized data, the future of data sharing, and much more._________This podcast is sponsored by Snowflake, the Data Cloud company.Data has transformed business forever, and now you can read the inside story of the company making it happen in “Rise of the Data Cloud,” by Snowflake CEO Frank Slootman.This is the definitive book on how businesses can connect, collaborate, and thrive with data. “Rise of the Data Cloud” is the perfect holiday gift for anyone interested in the future of data and business. It's on sale now at Snowflake.com/databook.
On today's episode of Experiencing Data, I'm so excited to have Omar Khawaja on to talk about how his team is integrating user-centered design into data science, BI and analytics at Roche Diagnostics. In this episode, Omar and I have a great discussion about techniques for creating more user-centered data products that produce value — as well as how taking such an approach can lead to needed change management on how data is used and interpreted. In our chat, we covered: What Omar is responsible for in his role as Head of BI & Analytics at Roche Diagnostics — and why a human-centered design approach to data analytics is important to him. (0:57) Understanding the end-user's needs: Techniques for creating more user-centric products — and the challenges of taking on such an approach. (6:10) Dissecting 'data culture': Why Omar believes greater implementation of data-driven decision-making begins with IT 'demonstrating' the approach's benefits. (9:31) Understanding user personas: How Roche is delivering better outcomes for medical patients by bringing analytical insights to life. (15:19) How human-centered design yields early 'actionable insights' that can lead to needed change management on how data is used and interpreted. (22:12) The journey of learning: Why 'it's everybody's job' to be focused on user experience — and how field research can help determine an end-users needs. (27:26) Omar's love of cricket and the statistics collected about the sport! (31:23) Resources and Links: Roche Diagnostics: https://www.roche.com/ LinkedIn: https://www.linkedin.com/in/kmaomar/ Twitter: https://twitter.com/kmaomar Quotes from Today's Episode “I've been in the area of data and analytics since two decades ago, and out of my own learning — and I've learned it the hard way — at the end of the day, whether we are doing these projects or products, they have to be used by the people. The human factor naturally comes in.” - Omar (2:27) “Especially when we're talking about enterprise software, and some of these more complex solutions, we don't really want people noticing the design to begin with. We just want it to feel valuable, and intuitive, and useful right out of the box, right from the start.” - Brian (4:08) “When we are doing interviews with [end-users] as part of the whole user experience [process], you learn to understand what's being said in between the lines, and then you learn how to ask the right questions. Those exploratory questions really help you understand: What is the real need?” - Omar (8:46) “People are talking about data-driven [cultures], data-informed [cultures] — but at the end of the day, it has to start by demonstrating what change we want. ... Can we practice what we are trying to preach? Am I demonstrating that with my team when I'm making decisions in my day-to-day life? How do I use the data? IT is very good at asking our business colleagues and sometimes fellow IT colleagues to use various enterprise IT and business tools. Are we using, ourselves, those tools nicely?” - Omar (11:33) “We focus a lot on what's technically possible, but to me, there's often a gap between the human need and what the data can actually support. And the bigger that gap is, the less chance things get used. The more we can try to close that gap when we get into the implementation stage, the more successful we probably will be with getting people to care and to actually use these solutions.” - Brian (22:20) “When we are working in the area of data and analytics, I think it's super important to know how this data and insights will be used — which requires an element of putting yourself in the user's shoes. In the case of an enterprise setup, it's important for me to understand the end-user in different roles and personas: What they are doing and how their job is. [This involves] sitting with them, visiting them, visiting the labs, visiting the factory floors, sitting with the finance team, and learning what they do in the system. These are the places where you have your learning.” - Omar (29:09)
Sponsored by: https://www.fortinet.com For more on cybersecurity, visit us at https://cybersecurityventures.com/ Follow Cybersecurity Ventures / Cybercrime Magazine here: LinkedIn: https://linkedin.com/company/cybercri... Twitter: https://twitter.com/CybersecuritySF SoundCloud: https://soundcloud.com/cybercrimemaga... Instagram: https://instagram.com/cybercrimemagaz... Apple Podcasts: Cybercrime Magazine Podcast
All links and images for this episode can be found on CISO Series (https://cisoseries.com/defense-in-depth-best-starting-security-framework/) If you were building a security program from scratch, which many of our listeners have done, which framework would be your starting point? Check out this post initiated by Sean Walls, vp, CISO of Visionworks, who asked, "If you were building a security program from scratch, would you align with ISO 27001, NIST CSF, or another framework, and why?" That conversation sparked this week’s episode co-hosted by me, David Spark (@dspark), the creator of CISO Series and Allan Alford (@AllanAlfordinTX). Our guest for this episode is Omar Khawaja (@smallersecurity), CISO, Highmark Health. Thanks to this week’s podcast sponsor, Palo Alto Networks. Palo Alto Networks, the global cybersecurity leader, is shaping the cloud-centric future with technology that is transforming the way people and organizations operate. By delivering an integrated platform and empowering a growing ecosystem of partners, we are at the forefront of protecting tens of thousands of organizations across clouds, networks, and mobile devices. On this episode of Defense in Depth, you’ll learn: When determining a starting security framework, always lead with the "Why?" What are you trying to accomplish and achieve? In some cases you're building a framework to build trust. Although most in security take a risk-based approach. That's not always necessary when picking a framework. Frameworks are often very regulatory driven. Framework decisions will be built on both internal and external pressures. If you don't have a specific security problem, a specific security solution makes no sense. The Secure Controls Framework is a free meta-framework that allows users to pick and choose elements from multiple frameworks. Check out Allan Alford's four-year mapping of NIST CSF, CIS CSC 20, and ISO 27001. While there are plenty of great frameworks out there, for someone who is truly starting from scratch, many security professionals pointed to the CIS top 20 because it maps to frameworks like NIST and ISO.
Links and images for this episode can be found on CISO Series (https://cisoseries.com/getting-over-our-security-%e2%89%a0-compliance-obsession/) We repeat "Security ≠ Compliance" so often it's become our mantra. Does anyone pay attention to it anymore? We're unpacking our compulsion to keep saying it on the latest episode of CISO/Security Vendor Relationship Podcast. This episode is hosted by me, David Spark (@dspark), producer of CISO Series and founder of Spark Media Solutions and Mike Johnson. Our guest this week is Chris Hymes (@secwrks), head of information security, enterprise IT, and data protection officer, Riot Games, makers of League of Legends. Thanks to this week's podcast sponsor Expel Expel is flipping today’s managed security model on its head (Ouch!) for on-prem and cloud, taking a technology-driven approach that lets analysts focus on what humans do best: exercise judgment and manage relationships. The company offers 24x7 monitoring through its security operations center-as-a-service, using the security tools customers already have. On this week's episode Why is everyone talking about this now? On LinkedIn, Omar Khawaja, CISO, Highmark Health, argued that every time a security person repeats the "Security does not equal compliance" trope, it translates to a belief that compliance is useless. This caused a flurry of discussion. Is compliance useless? If not, Omar asks what should "Security does not equal compliance" be replaced with? Essentially, how should compliance be viewed in an overall security program? Ask a CISO Scott Holt, sales engineer, cmd, asked our CISOs how they're balancing keeping their information and infrastructure private while at the same time working with vendors to fill security needs? "What's Worse?!" We've got a question based on the build vs. buy debate. Hey, You're a CISO, what's your take on this? Paul Makowski, Polyswarm, asks a question that's very relevant to their business. He said, "Enterprises often subscribe to multiple feeds [of threat intelligence]. They learn their strengths and weaknesses and develop weighting algorithms to divine highest quality intelligence in the context of what's being analyzed. How can the industry close the feedback loop with threat intelligence providers, providing them with an opportunity to improve coverage and efficacy (false positive / false negative rates)?" The Shared Responsibility Model for cloud is, as Amazon and others describe it, the difference between the “security OF the cloud” and “security IN the cloud,” with cloud service providers taking care of the OF, and clients taking care of the IN. “In the cloud” means the data, the access – especially guest access, and the usage. More on CISO Series. Check out lots more cloud security tips sponsored by OpenVPN, provider of next-gen secure and scalable communication software. OpenVPN Access Server keeps your company’s data safe with end-to-end encryption, secure remote access, and extension for your centralized UTM. Close your eyes. Breathe in. It’s time for a little security philosophy. Steven Trippier, Group CISO, Anglian Water Services, asked, "What are the right metrics to use to illustrate the success / performance of the security team?" We've asked this question before and one of the most popular answers was "mean time to identify and remediate." But here's the philosophical question that Steven asks, "How does this change in an environment where breaches/malware outbreaks are uncommon and stats such as mean time to identify and mean time to contain are not relevant?"
In this bonus episode we read the book "Ilyas and Duck Ramadan Joy". Below is the link for Ramadan Joy as well as other Ilyas and Duck books. Thank you to Omar Khawaja for allowing me to read his book. https://www.littlebigkids.com/Email us your suggestions and your questions at littlemuslimspodcast@gmail.com . I appreciate all emails!Special thanks to Native Deen for allowing me to use their song "Tala'al Badru" for my podcast.
Uzma Jafri and Zaiba Hasan talk to Omar Khawaja. He is the creator and author of Ilyas & Duck. A children's book series for young Muslim kids. Omar discusses the effects of rhetoric on his parenting journey to teach his kids universalism and how to be good neighbors.
Omar Khawaja, the Chief Information Security Officer for Highmark Health, appears on Episode #76 of Task Force 7 Radio to talk about the biggest challenges for CISO's in the industry today, what keeps him up at night, and how he deals with what has become one of the stressful jobs in the country today. Khawaja talks about the importance of leadership, how he manages his time as the chief executive of his organization, and how important it is to balance both tactical and strategic objectives with the limited amount of time he has every day. Khawaja gives valuable insight into the most effective controls he has implemented in his environment, how the talent war is affecting his attrition rate, how he attracts and retains talent for his organization, and how he prioritizes risk when dealing with third party business partners. All this and much much more on this week's episode of Task Force Radio - the Voice of Cyber Security.
Mahin, SIM and new host Summer talk to Omar Khawaja, author of the popular children's books 'Ilyas and Duck'. We discuss his inspirations, parenting and going beyond the 40 hour work week. Omar is a Muslim American born in Saudi Arabia with family roots in Pakistan. He grew up in New York and now lives in the Washington D.C area with his wife, three young children, and lots of noise. Omar is the founder of Little Big Kids and creator of the Ilyas & Duck cartoon characters. Ilyas & Duck Search for Allah is his first children's book. Ilyas & Duck Search for Allah - 2014 Moonbeam Children's Book Awards Silver Medal (Religion/Spirituality) Ilyas & Duck and the Fantastic Festival of Eid-al-Fitr - 2015 Moonbean Children's Book Awards Silver Medal (Multicultural - Non-Fiction picture book) Twitter: IlyasandDuck Facebook: https://www.facebook.com/IlyasAndDuck/
Omar Khawaja and Larry Bickner of Verizon Business, give an insider’s view on current and future enterprise security. Michael Johnson caught up with them at RSA 2007 in San Francisco.