Podcasts about security awareness training

In this eye-opening episode of Unspoken Security, host AJ Nash welcomes notorious hacker and security expert Jayson E. Street to discuss why traditional security awareness training falls short. Jayson explains that most corporate security training is merely policy-driven compliance, not actual security education.Instead of focusing on checkbox exercises once a year, Jayson advocates for building situational awareness—a security mindset that extends beyond the workplace into everyday life. He shares practical strategies for gamifying security training, fostering a culture where employees feel like participants rather than targets, and creating year-round engagement through creative competitions.Through entertaining stories and candid insights from his experience as a simulated adversary for hire, Jayson challenges the industry's approach to security training and offers a refreshing perspective on how to make organizations genuinely more secure.Send us a textSupport the show

The European Vulnerability Database (EUVD) has officially launched, providing a vital platform for monitoring critical security flaws amid challenges faced by the U.S. in cybersecurity funding and management. This initiative aims to enhance transparency and deliver essential information on vulnerabilities, addressing gaps left by the U.S. Common Vulnerabilities and Exposures program, which has been hindered by budget cuts and operational delays. The EUVD not only identifies disclosed bugs but also offers real-time updates on critical vulnerabilities, ensuring users have access to the latest security risk information.As the EUVD begins operations, it highlights a strategic divergence in cybersecurity approaches between the EU and the U.S., which could have direct implications for Managed Service Providers (MSPs) and their clients. If U.S. vulnerability reporting continues to decline, there may be a shift towards EUVD as a primary source for global security tooling and threat feeds. This would necessitate a reevaluation of the sources used for threat detection and patch prioritization by providers, especially if vendor feeds start integrating EUVD data more directly.In the realm of artificial intelligence, tech executives are increasingly adopting agentic AI, with nearly half of respondents in a recent survey indicating they have begun implementing such systems. However, despite the enthusiasm, many organizations are struggling to achieve significant returns on their AI investments, with only a small percentage reporting successful scaling of AI initiatives. The disconnect between ambition and execution presents an opportunity for IT service providers to bridge the gap and help organizations effectively deploy AI solutions.Additionally, product-related news highlights the launch of new tools aimed at enhancing cybersecurity and operational efficiency for MSPs. Coro has introduced a Security Awareness Training module to combat phishing attacks, while Sophos has launched a program to help MSPs expand their cybersecurity offerings. FlexPoint and StackPak have also secured funding to enhance their platforms, focusing on automating payment processes and improving vendor management, respectively. These developments underscore the growing importance of AI-driven operational tools and the need for MSPs to deepen their involvement in their clients' business operations. Four things to know today 00:00 Europe Launches Public Vulnerability Database as U.S. Transparency Falters04:29 Despite Bold Claims on Agentic AI, Most Firms Struggle to Scale—AT&T's Open-Source Model Stands Out07:56 From Phishing Defense to AI Payments: Vendors Equip MSPs to Tackle Operational Complexity11:26 Overpatching May Be a Bigger Risk Than Underpatching, Gartner VP Warns Supported by:  https://afi.ai/office-365-backup/ All our Sponsors: https://businessof.tech/sponsors/ Do you want the show on your podcast app or the written versions of the stories? Subscribe to the Business of Tech: https://www.businessof.tech/subscribe/Looking for a link from the stories? The entire script of the show, with links to articles, are posted in each story on https://www.businessof.tech/ Support the show on Patreon: https://patreon.com/mspradio/ Want to be a guest on Business of Tech: Daily 10-Minute IT Services Insights? Send Dave Sobel a message on PodMatch, here: https://www.podmatch.com/hostdetailpreview/businessoftech Want our stuff? Cool Merch? Wear “Why Do We Care?” - Visit https://mspradio.myspreadshop.com Follow us on:LinkedIn: https://www.linkedin.com/company/28908079/YouTube: https://youtube.com/mspradio/Facebook: https://www.facebook.com/mspradionews/Instagram: https://www.instagram.com/mspradio/TikTok: https://www.tiktok.com/@businessoftechBluesky: https://bsky.app/profile/businessof.tech

In this episode, we reconnect with Nick O'Donovan, who provides an overview of Huntress' operations, particularly their growth and expansion into Europe, with a focus on enhancing relationships with MSPs. He highlights Huntress' efforts in recruiting and maintaining a strong team, despite industry challenges, and the success of their recent roadshow series. Nick also discusses the company's product offerings, including EDR, Microsoft 365 identity protection, security awareness, phishing solutions, and a SIEM offering. Key topics covered include the importance of affordable security solutions for small to medium businesses, the integration with Microsoft Defender, and Huntress' innovative Neighbourhood Watch program. The episode concludes with valuable advice for MSPs on improving their closure rates for upselling security products to clients.    00:00 Introduction and Reconnection  00:26 Overview of Huntress  01:02 Huntress' European Expansion  01:43 Roadshow Success and Community Engagement  03:14 Recruitment Challenges and Strategies  04:25 Neighbourhood Watch Program  08:15 Approaching Cybersecurity as an MSP  16:50 Security Awareness Training  20:37 Final Thoughts and Tips for MSPs    Connect with Nick O'Donovan on LinkedIn by clicking here –https://www.linkedin.com/in/nicholasodonovan    Connect with Daniel Welling on LinkedIn by clicking here – https://www.linkedin.com/in/daniel-welling-54659715/     Connect with Adam Morris on LinkedIn by clicking here – https://www.linkedin.com/in/adamcmorris/   Visit The MSP Finance Team website, simply click here – https://www.mspfinanceteam.com/    We look forward to catching up with you on the next one. Stay tuned! 

In this episode, we break down the real-world risks of cyber threats targeting finance professionals — including a recent incident where funds were sent to the wrong place due to a sophisticated email scam. Learn how attackers mimic branding, usernames, and even voices to trick you into clicking malicious links or bypassing security. We cover red flags to watch for, simple ways to prevent phishing (hint: code words are your friend), and what to do if you suspect fraud — including when to loop in the FBI. A must-listen for anyone handling money or sensitive data.Pick up your copy of Cyber Rants on Amazon.Looking to take your Cyber Security to the next level? Visit us at www.silentsector.com. Be sure to rate the podcast, leave us a review, and subscribe!

In this eye-opening episode of Unspoken Security, host AJ Nash welcomes notorious hacker and security expert Jayson E. Street to discuss why traditional security awareness training falls short. Jayson explains that most corporate security training is merely policy-driven compliance, not actual security education.Instead of focusing on checkbox exercises once a year, Jayson advocates for building situational awareness—a security mindset that extends beyond the workplace into everyday life. He shares practical strategies for gamifying security training, fostering a culture where employees feel like participants rather than targets, and creating year-round engagement through creative competitions.Through entertaining stories and candid insights from his experience as a simulated adversary for hire, Jayson challenges the industry's approach to security training and offers a refreshing perspective on how to make organizations genuinely more secure.Send us a textSupport the show

On today's episode, we're going even deeper into my stalker situation. I'll be sharing more details about his delusional tendencies—including how he's gone as far as pretending to be a police officer to manipulate and control people (which is a crime, by the way). I'll also be answering the questions I've received from you all about this ongoing situation.Law enforcement is now more involved (actual police, not to be confused with blue light bandits), we know everything, and we'll be handling it all legally. Tune in for the full update.—https://policecoffee.com/?gad_source=1&gbraid=0AAAAACG7qmJnibJBpoe9p7ReNXovwJMQN&gclid=Cj0KCQjwqIm_BhDnARIsAKBYcmsZOengz4NFStC14G_b2eziJgYpA8kGt2sokaR9i3PcTxs0QmcaPosaAtbGEALw_wcB

Today, I'm sharing something deeply personal and serious—my stalker story. For over a year, Timothy C. (we can share his full name soon if need be) has been physically stalking me, and his digital harassment goes back even further. Law enforcement is now involved, but I wanted to update you all in case anything happens to me—so there's no question about who did it. This episode isn't just about my experience; it's also about the reality of stalking, the dangers of obsession, and the importance of taking threats seriously. Stay aware, stay safe, and let's talk about it all, shall we?—https://noblegoldinvestments.com

All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week's episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Dan Walsh, CISO, Paxos. Joining us is Sharon Milz, CISO, Time. In this episode: A vicious cycle Not all training is created equal Don't forget the human factor We can still define success Thanks to our podcast sponsor, Intezer Intezer's AI-driven solution automates alert triage and investigations, cutting through the noise to highlight serious threats. By integrating with your security tools, it escalates only 4% of alerts for fast remediation, helping SOC teams focus on what matters. Learn more at intezer.com today!

Leveraging behavioural AI to mitigate the risk of phishing attacks Fortifying your defenses against the next wave of phishing threats Practical strategies for empowering colleagues while strengthening your cyber resilience This episode is hosted by Thom Langfordhttps://www.linkedin.com/in/thomlangford/Rebecca Stephenson, Specialist Lead Lecturer in Digital Pedagogy, Government of Jerseyhttps://www.linkedin.com/in/creative-minds-in-cyber/Ben Wynn-Jones, Information Awareness Lead, Canon EMEA https://www.linkedin.com/in/ben-wynn-jones/

We have all configured Email automation at some point and we often use systems and tools that automate email notifications with actions or instructions. With that being said, how often do we check in on the recipient as to whether or not the action and instructions are being followed. Listen to Charles Love of ShowTech Solutions share his experience and resolution when it comes to email automation as it pertains to Security Awareness Training. --- Support this podcast: https://podcasters.spotify.com/pod/show/msp1337/support

In this week's episode, Andy and guest Eric Siron discuss the cybersecurity landscape based on data from the Monthly Threat Report for May 2024. They cover a range of news items, including Microsoft's recent announcement to expand the Secure Future Initiative, the new PSTI (Product Security and Telecommunications Infrastructure) Act in the UK and a significant brand impersonation campaign targeting the German financial entity Commerzbank. Additionally, they provide updates on the Change Healthcare ransomware attack.  Key takeaways:  Microsoft's acknowledgement of security issues is crucial for building customer trust.  The PSTI Act in the UK sets standards for consumer device security and compliance.  Payment of ransoms in ransomware attacks needs to be carefully evaluated.  Data breaches in healthcare can have widespread and long-term consequences for patients and organizations.    Timestamps:  (04:02)  Insights from the Latest Monthly Threat Report: Decrease in Email Threats, Top Targeted Industries, and Impersonated Brands (14:02)  Breaking Bad Habits: QR Codes, OAuth, and User Training (15:18) Microsoft's Security Issues and Response to CSRB's Criticism: Committed to Improve Security (25:23)  New UK Law Mandates Security Standards for Consumer IoT Devices (34:02) Impact of Ransomware Attack on Change Healthcare and the Dilemma of Paying Ransom    Episode Resources: Full Monthly Threat Report May 2024 Sharpen your Instincts with Security Awareness Training  

Host Karl caught up with Dima Kumets, Principal Product Manager at Huntress Labs focused on their Security Awareness Training product. It was an entertaining interview! This interview focuses on the Security Awareness Training product, which features a truly engaging way for end users to learn about phishing attacks and other threats that arrive through email. Karl and Dima introduce you do the archvillain Didi and her role in educating clients - without irritating or alienating them! About Dima Kumets: Prior to joining Huntress, Dima was the product lead on OpenDNS (acquired by Cisco and now Cisco Umbrella.) He leverages his 20+ years of experience in technology to help partners grow their security practices and better protect the small and medium size businesses we all rely on. Partners can learn more at https://huntress.com/karl to sign up for a free trial. And, MSPs can sign up for the "Neighborhood watch" program that gives you free internal use licenses for all products. Thanks to Huntress for sponsoring this podcast.  --- Our upcoming events and more: Register for James's upcoming class at ITSPU! 5W22 – MSP Professional Sales starts April 23rd. Sign up now: https://www.itspu.com/all-classes/classes/msp-professional-sales-program/ MASTERMIND LIVE – Tampa, FL – April 27-28th http://bit.ly/kernanmastermind  Use “EARLYBIRD” as the coupon code to save $200! Catch James at the SMBTechfest! SMBTechfest – Irvince, CA – May 9-10th   https://www.smbtechfest.com/index.asp Check out Amy's weekly newsletter!  Sign up now : https://mailchi.mp/thirdtier/small-business-tech-news Our Social Links: https://www.linkedin.com/in/james-kernan-varcoach/ https://www.facebook.com/james.kernan https://www.facebook.com/karlpalachuk/ https://www.linkedin.com/in/karlpalachuk/ https://www.linkedin.com/in/amybabinchak/ https://www.facebook.com/amy.babinchak/ https://thirdtier.net https://www.youtube.com/@ThirdTierIT   Sponsor Memo: Huntress Today's SMB Community Podcast is brought to you by Huntress Managed Security. Cybersecurity is more than software—it's also the expertise needed to effectively fight against today's evolving threat landscape. Huntress Managed Security is custom-built to provide human expertise and save your clients from cyber threats. Huntress' suite of fully managed cybersecurity solutions is powered by a 24/7, human-led SOC dedicated to around-the-clock monitoring, expert investigation, and rapid response. While you focus on growing your business, we provide first response to hackers. Huntress has the #1 rated EDR for SMBs on G2 and a partner support Satisfaction score average of 99%. To start a trial today, visit https://huntress.com/karl

Verdict reported that cybersecurity training programs are not effectively preparing employees for cyber threats. In this episode, host Paul John Spaulding is joined by Steve Morgan, Founder of Cybersecurity Ventures and Editor-in-Chief at Cybercrime Magazine, to discuss. The Cybercrime Magazine Update airs weekly and covers the latest news, interviews, podcasts, reports, videos, and special productions from Cybercrime Magazine, published by Cybersecurity Ventures. For more on cybersecurity, visit us at https://cybersecurityventures.com

CISOs and security leaders are asking Cybercrime Magazine: Who's who in security awareness training? We've answered with “10 Hot Security Awareness Training Companies to Watch in 2024”. CybSafe may be the hottest company on our list. Their CEO and founder, Oz Alashe, says CybSafe is laser focused on human risk, and that's exactly what CISOs are looking for.

¡APRENDE SecTY Podcast! EP4.4 Cómo mantener tus datos a salvo de secuestros digitales (Ransomwares) Como te mantienes a salvo de un secuestro de datos, es lo que vamos a estar hablando hoy en este episodio presentado por Aeronet. Este episodio es presentado por AeroNet. Empresa de tecnología 100% puertorriqueña, líder en soluciones de conectividad para negocios y residencias en Puerto Rico. Go Faster, Go Save. AeroNet Wireless - Reliable High Speed Internet (aeronetpr.com) Si deseas orientación o evaluación sobre ciberseguridad para tu negocio o capacitar a tus empleados sobre seguridad de información en tu negocio, entra a nuestra página en https://wwwaprendesecty.com o escríbeme a itsec@sectycs.com para poder ayudarte porque ofrecemos capacitación de seguridad a grupos de usuarios para pequeños negocios. Recuerda: Síguenos en Facebook, Instagram, X y LinkedIN como: @SecTYCS SUSCRIBETE en nuestro canal de YouTube Aprende SecTY: https://www.youtube.com/channel/UC1E9yilgLf5HZMQVDf_ViRw Envíame tus preguntas o recomendaciones a: itsec@sectycs.com Deja tu reseña en iTunes/Apple Podcast y compártelo con personas que necesiten mejorar la seguridad en su negocio y en su vida. Puedes escucharnos también por medio de: iTunes/Apple Podcast, Spotify, Google Podcast, Amazon Music y iHeartRadio.

According to Cybersecurity Ventures, the security awareness training market is worth $5.6 billion in 2023 and is expected to almost double in value by 2027 to over $10 billion. In this episode, host Paul John Spaulding is joined by Steve Morgan, Founder of Cybersecurity Ventures and Editor-in-Chief at Cybercrime Magazine, to discuss. The Cybercrime Magazine Update airs weekly and covers the latest news, interviews, podcasts, reports, videos, and special productions from Cybercrime Magazine, published by Cybersecurity Ventures. For more on cybersecurity, visit us at https://cybersecurityventures.com

In this episode we talk to Gabi Friedlander at Wizer about how financial institutions can create effective awareness to educate their customers on online scams, and how educating kids in school about basic concepts of online safety can help prevent scams later in life, such as romance scams, investment scams, sextortion and phishing, to name a few. At the end of the episode Gaby provides concrete advice on how you, as fraud fighters, can collaborate with your marketing teams to drive differentiated scam awareness for your customers.You can find Gaby here: https://www.linkedin.com/in/gabrielfriedlander/Wizer: https://www.wizer-training.com/This podcast is hosted by Ayelet Biger-Levin who spent the last 15 years building technology to help financial institutions authenticate their customers and identify fraud. She believes that when it comes to scams, the story starts well before the transaction. She has created this podcast to talk about the human side of scams, and to learn from people who have decided to dedicate their lives to speaking up on behalf of scam victims and who take action to solve this problem. Be sure to follow her on LinkedIn and reach out to learn about her additional activities in this space. https://www.linkedin.com/in/ayelet-biger-levin/ScamRanger: https://scamranger.ai/

Ganesh Krishnan recounts his incredible 25+ year journey in security and shares why he Co-Founded Anzenna, a Cyber Security Engagement and Collaboration Platform.   Employees are key to maintaining overall security. Their actions can make a big difference. Cybersecurity teams handle monitoring and updating protocols, but employees must stay aware of trends and follow best practices. Prioritize cybersecurity by investing in security measures, providing training, and encouraging participation. When employees take responsibility for protecting data and systems, security becomes a collective effort. This is Anzenna.

In this episode of CISO Tradecraft, host G Mark Hardy talks to Kevin O'Connor, the Director of Threat Research at Adlumin. They discuss the importance of comprehensive cybersecurity for Small to Medium-sized Businesses (SMBs), including law firms and mid-sized banks. The conversation explores the complexities of managing security infrastructures, the role of managed security service providers, and the usefulness of managed detection and response systems. The discussion also delves into the increasing threat of ransomware and the critical importance of managing data vulnerabilities and providing security awareness training. Big Thanks to our Sponsor: Adlumin - https://adlumin.com/ Transcripts: https://docs.google.com/document/d/1V_qkMFdGC4NRLCG-80gcsiSA8ikT8SwP Youtube: https://youtu.be/diCZfWWB3z8   Chapters 00:12 Introduction and Sponsor Message 01:42 Guest Introduction: Kevin O'Connor 02:29 Discussion on Cybersecurity Roles and Challenges 03:20 The Importance of Defense in Cybersecurity 04:23 The Role of Managed Security Services for SMBs 07:26 The Cost and Staffing Challenges of In-House SOCs 14:41 The Value of Managed Security Services for Legal Firms 16:30 The Threat Landscape for Small and Mid-Sized Banks 18:19 The Difference Between Compliance and Security 20:08 Understanding the Reality of Cybersecurity 20:45 The Challenges of Building IT Infrastructure 21:08 Outsourcing vs In-house Security Management 21:55 The Importance of Understanding Your Data 22:43 Security Operations Center vs Security Operations Platform 24:21 The Role of Managed Detection and Response 24:54 The Importance of Quick Response in Security 28:07 The Threat of Ransomware and Data Breaches 34:31 The Role of Pen Testing in Cybersecurity 36:33 The Growing Threat of Ransomware 38:28 The Importance of Security Awareness Training 40:42 The Role of Incident Response and Forensics 42:11 Final Thoughts on Cybersecurity

Training employees to spot phishing attempts and raise security awareness is a multi-billion-dollar business, but does it really work? Recent high-profile cyberattacks have shown that it is still relatively easy for attackers to get employees to provide access to computer systems and networks. Keith chats with Kelly Reeves, a cybersecurity expert and researcher, about how companies can improve their security awareness training.

Cybercrime Magazine CISO Minute host Theresa Payton, Former White House CIO, goes over the 2023 Security Awareness Training Report, sponsored by KnowBe4 and published by Cybercrime Magazine. The CISO Minute is sponsored by https://knowbe4.com/ • For more on cybersecurity, visit us at https://cybersecurityventures.com/

In this series we're focusing on 15 Ways to Keep Your Organization Safe from Cyber Attacks - in this episode we'll focus on way #6: Security Awareness Training. Making sure you and your employees know how to avoid scams and phishing attacks is vital to keeping your company safe from compromise.   Connect with us:   https://www.linkedin.com/company/envisionitllc   marketing@envisionitllc.com      

Benjamin Netter, Security expert, Hacker, Investor & Entrepreneur share how ai is changing how we train people in security awareness. He joins us today discussing innovative ways to build a security culture and leveraging AI for security awareness. Benjamin is the Founder of RIOT. Located online at https://Tryriot.com founded in Jan 2020 a next generation unique platform to building a security culture. Benjamin/RIOT evolved into customized educational content that grow a cybersecurity culture supporting over 100K employees globally. Riot's main interface is a chatbot called Albert, which is available on Slack, Microsoft Teams and the web. Its cybersecurity courses are interactive, with content that dynamically changes depending on each employee's cybersecurity knowledge.Topics: How Ai Is Changing How We Train People In Security Awareness, Leveraging Ai For Security Awareness, How To Use Ai For Security Awareness,  Innovative Ways To Build A Security Culture, Best Ways To Create A Security Culture, How To Use Ai To Protect From Phishing, How To Use Ai For Cyber Security Awareness, How To Use Ai To Improve Cyber Security, How Young Leaders Help Culture, New Approach To Build A Security Culture, New Tips On How To Create A Security Culture, How To Train On Using Ai Securely, Best Ways To Train On Phishing Attack, New Tips On How To Create A Security Culture, Ways To Create A Security Culture, What It Means To Build Security Culture, Best Ways To Spot A Phishing Email, Innovative Ways To Build Security Cultures,VIDEO Episode Link:

¡Aprende SecTY! EP3.22 Cómo proteger a los hijos conectados al internet Las vacaciones de verano significan que los niños estén mas expuestos al internet. Con esto, hay unos riesgos que los niños corren al estar en línea sin supervisión. Hoy te brindamos unos consejos para proteger a tus hijos de los peligros que pueden enfrentar al estar conectados al internet.   Este episodio es presentado por AeroNet. Empresa de tecnología 100% puertorriqueña, líder en soluciones de conectividad para negocios y residencias en Puerto Rico. Go Faster, Go Save. AeroNet Wireless - Reliable High Speed Internet (aeronetpr.com) Episodios recomendados: Ep 35: Aplica seguridad en los videojuegos online: https://aprendesecty.libsyn.com/ep-35-aplica-seguridad-en-los-videojuegos-online Anótate en la lista de espera para el próximo taller de ciberseguridad llamado: Conoce tu información y administra de manera segura AQUÍ-> https://aprendesecty.com/listaparataller Si deseas orientación o evaluación sobre ciberseguridad para tu negocio o capacitar a tus empleados sobre seguridad de información en tu negocio, escríbeme a itsec@sectycs.com para poder ayudarte porque ofrecemos capacitación de seguridad a grupos de usuarios para pequeños negocios. Recuerda: Síguenos en Facebook, Instagram, Twitter y LinkedIN como: @SecTYCS SUSCRIBETE en nuestro canal de YouTube Aprende SecTY: https://www.youtube.com/channel/UC1E9yilgLf5HZMQVDf_ViRw Envíame tus preguntas o recomendaciones a: itsec@sectycs.com Deja tu reseña en iTunes/Apple Podcast y compártelo con personas que necesiten mejorar la seguridad en su negocio y en su vida. Puedes escucharnos también por medio de: iTunes/Apple Podcast, Spotify, Stitcher, Google Podcast, Amazon Music y iHeartRadio.

Latest news, interviews, podcasts, reports, videos, and special productions from Cybercrime Magazine, published by Cybersecurity Ventures. For more on cybersecurity, visit us at https://cybersecurityventures.com

Today on the Social-Engineer Podcast: The Security Awareness Series, Ryan and I are joined by John Young. Like many security experts, John started out on the wrong side of the law by manipulating the AT&T phone system as a teenage phone phreak in New York City before he was scared straight by the FBI. His career started four decades ago in 1982, and by 1987 Young became the network director at McDonnell Douglas's $41.8 billion C-17 program. He eventually retired from IBM after a 30-year career in the corporate cyberwar trenches to launch his own company, CyberDef.   Regarded as one of America's top corporate cybersecurity experts and thought leaders, Young's published dozens of articles, appeared on countless podcasts, and is designing a video course for people based on his book so that they can thrive in cybersecurity.   [May 15, 2023]   00:00 - Intro 00:53 - Intro Links: -          Social-Engineer.com - http://www.social-engineer.com/ -          Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ -          Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ -          Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ -          Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb -          CLUTCH - http://www.pro-rock.com/ -          innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/                                                04:51 - John Young Intro 06:41 - Scared Straight 15:38 - Imposter Syndrome 16:53 - Don't Quit Your Day Job! 22:54 - Integration is Key 28:05 - The Effect of AI on Cyber Security 32:32 - Tips to Stay Ahead 38:17 - Policies, Processes and Procedures 38:37 - Book Recommendations: -          Don't Hack! – John Young 43:22 - Find John Young Online -          LinkedIn: linkedin.com/in/john-young-4aa083151/ -          Website: https://cyberdef.tv 43:55 - Learn to Thrive 46:42 - Wrap Up & Outro -          www.social-engineer.com -          www.innocentlivesfoundation.org

Proofpoint Security Awareness Training empowers people to defend their organizations with a holistic solution. Via tailored cybersecurity courses that are targeted to the vulnerabilities, roles, and competencies of the user, Proofpoint Security Awareness Training offers a proven framework that drives behavioral change and verifiable security outcomes, such as 30 percent fewer clicks on verifiable malicious links. Visit https://proofpoint.com for more.

¡Aprende SecTY! EP3.18 Tu seguridad personal se refleja en tu seguridad profesional Cuando el amor por la seguridad de la información comienza contigo, desde tu  uso personal, aplicarlo en tu negocio será mas fácil. Escucha el episodio 3.18 para que te enteres cuales son las medidas que debes tomar en tu vida personal para que puedas aplicarlo en tu negocio. Este episodio es presentado por AeroNet. Empresa de tecnología 100% puertorriqueña, líder en soluciones de conectividad para negocios y residencias en Puerto Rico. Go Faster, Go Save. AeroNet Wireless - Reliable High Speed Internet (aeronetpr.com) Episodios recomendados: Ep 4: Como amar los passwords: https://aprendesecty.libsyn.com/ep-4-como-amar-los-passwords      EP2.43: STOP, piensa antes de dar click: https://aprendesecty.libsyn.com/ep243-stop-piensa-antes-de-dar-click     EP2.26 Usa el sentido común para no caer en un phishing: https://aprendesecty.libsyn.com/ep226-usa-el-sentido-comn-para-no-caer-en-un-phishing   Si deseas orientación o evaluación sobre ciberseguridad para tu negocio o capacitar a tus empleados sobre seguridad de información en tu negocio, escríbeme a itsec@sectycs.com para poder ayudarte porque ofrecemos capacitación de seguridad a grupos de usuarios para pequeños negocios. Recuerda: Síguenos en Facebook, Instagram, Twitter y LinkedIN como: @SecTYCS SUSCRIBETE en nuestro canal de YouTube Aprende SecTY: https://www.youtube.com/channel/UC1E9yilgLf5HZMQVDf_ViRw Envíame tus preguntas o recomendaciones a: itsec@sectycs.com Deja tu reseña en iTunes/Apple Podcast y compártelo con personas que necesiten mejorar la seguridad en su negocio y en su vida. Puedes escucharnos también por medio de: iTunes/Apple Podcast, Spotify, Stitcher, Google Podcast, Amazon Music y iHeartRadio.

As part of our ongoing coverage on cybercrime, we recently spoke to several top experts about how they view security awareness training. On this episode, James McQuiggan, Security Awareness Advocate at KnowBe4, is joined by Paul Connelly, Chief Security Officer at HCA Healthcare; Mary Rose Martinez, VP and CISO at Marathon Petroleum Corporation; Alissa Abdullah, Deputy CSO and Senior VP of Emerging Corporate Security Solutions at Mastercard; and Omar Khawaja, former CISO at Highmark Health. To learn more about our sponsor, KnowBe4, visit https://knowbe4.com

Erich Kron is the Security Awareness Advocate & Technical Evangelist, at KnowBe4, the world's first and largest new-school security awareness training and simulated phishing platform that helps you manage the ongoing problem of social engineering. In this episode, Kron joins host Steve Morgan to discuss the state of security awareness training. Visit https://knowbe4.com to learn more about our sponsor.

GuestsSteve Luczynski, Senior Manager / Critical Infrastructure Security, Accenture Federal Services [@Accenture] and Chairman of the Board for the Aerospace Village [@secureaerospace]On LinkedIn | https://www.linkedin.com/in/steveluczynski/On Twitter | https://twitter.com/cyberpilot22Henry Danielson, Adjunct Professor/Lecturer, Cal Poly College of Liberal Arts [@CalPolyCLA], Technical Advisor, California Polytechnic State University California Cybersecurity Institute [@CalPolyCCI], and Volunteer at Aerospace Village [@secureaerospace]On LinkedIn | https://www.linkedin.com/in/henry-danielson-43a61213/On Twitter | https://twitter.com/hdanielsonAt Cal Poly | https://cci.calpoly.edu/about-cci/staff____________________________Hosts:Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/sean-martinMarco Ciappelli, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining Society PodcastOn ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/marco-ciappelli____________________________This Episode's SponsorsBlackCloak | https://itspm.ag/itspbcweb____________________________Episode Notes"Discover the exciting world of the Aerospace Village at RSA Conference 2023, and dive into hands-on experiences with cybersecurity experts and cutting-edge technology." Welcome to ITSPmagazine's RSA Conference 2023 coverage, where we dive into the world of cybersecurity and engage with experts in a week full of fun and exciting activities. We're on the road to RSA Conference 2023 in San Francisco, and one event we can't miss is the Sandbox, specifically the Aerospace Village. In this podcast episode, we're joined by our good friends Steve Luczynski and Henry Danielson from the Aerospace Village to discuss what's in store for us at this year's conference.The Aerospace Village is a small nonprofit run by volunteers from around the world, aiming to build relationships between government, industry, security researchers, and hackers, inspire people to join the cybersecurity workforce, and promote awareness in the aviation and space sectors. This year, RSA Conference 2023 features a Sandbox where attendees can interact with the latest technical hands-on experiences, learn from experts, and explore what's happening in the cybersecurity world.In this episode, our guests discuss the various partners and activities in the Aerospace Village, such as CT Cubed's drone quadcopter simulation in AR and VR experience, IntelleGenesis's runway lighting scenario demonstration, and Boeing's continuous security level maintenance activity. You'll also get a chance to try out a real Airbus simulator, courtesy of pen test partners, to understand the potential vulnerabilities in electronic flight bags and their impact on pilot operations.Join us for an exciting, fun-filled week at RSA Conference 2023, where you can learn, network, and discover the latest trends in cybersecurity. Don't miss out on this unique opportunity to interact with experts, explore cutting-edge technologies, and immerse yourself in the world of aerospace cybersecurity. Be sure to listen, share, and subscribe to ITSPmagazine's podcast for more exciting episodes and insights from the RSA Conference 2023!____________________________ResourcesLearn more, explore the agenda, and register for RSA Conference: https://itspm.ag/rsa-cordbw____________________________Catch the video here: https://www.youtube.com/watch?v=Htvn7AkCJSsFor more RSAC Conference Coverage podcast and video episodes visit: https://www.itspmagazine.com/rsa-conference-usa-2023-rsac-san-francisco-usa-cybersecurity-event-coverageAre you interested in telling your story in connection with RSA Conference by sponsoring our coverage?

As part of our ongoing coverage on security awareness training, host Steve Morgan recently spoke to several top experts about how they see it. On this episode, Anna Collard, SVP Content Strategy & Evangelist at KnowBe4 Africa, is joined by Devon Bryan, Global Chief Information Security Officer at Carnival Corp.; Kathy Hughes, CISO at Northwell Health; Paul Connelly, Chief Security Officer at HCA Healthcare; and Susan Koski, CISO at PNC. To learn more about our sponsor, KnowBe4, visit https://knowbe4.com

How to Build Security Culture Security. Lowering Risk by Security Awareness Training with international Croatian security researcher, educator and well-respected leader leader Tomislav Vuk. Topics include  | best security awareness training for small business,  latest security awareness training for enterprise,  how security awareness training lowers risk and the global view of security awareness. Connect with Tomislav on Linkedin//LETS CONNECT. Can you help us by Subscribing?//We Really want people to be able to Watch and Listen  and we NEED YOUR HELP.

All links and images for this episode can be found on CISO Series. Tabletop exercises are critical procedures to learn how everyone will react during an actual attack. Panic is usually the first response, so why don't we do that when we're playing our pretend game of getting our business compromised by a nefarious hacker? This week's episode of CISO Series Podcast was recorded in front of a live audience in Clearwater, Florida for the Convene conference produced by the National Cybersecurity Alliance (AKA StaySafeOnline.org). Joining me on stage for the recording was my guest co-host, Hadas Cassorla, CISO, M1 and our guest, Kathleen Mullin (@kate944032), CISO, Cancer Treatment Centers of America. Thanks to our podcast sponsors, Cofense, KnowBe4 & Terranova Cofense is the only company to combine a global network of 32 million people reporting phish with advanced AI-based automation to stop phishing attacks. Our global phishing defense centers work 24/7 to support more than 2,000 enterprise customers, providing the technology and insights needed to identify & block threats. KnowBe4 is the world's largest integrated Security Awareness Training and Simulated Phishing platform. KnowBe4 helps organizations manage the ongoing problem of social engineering through a comprehensive new-school awareness training approach. Tens of thousands of organizations worldwide use KnowBe4's platform to mobilize their end users as a last line of defense. Get free phishing benchmarking data to drive effective behavior change and grow your organization's security-aware culture with the latest edition of the Phishing Benchmark Global Report! Taken from this year's Gone Phishing Tournament, this report gives security and risk management leaders the insight they need to strengthen data protection. More at terranovasecurity.com. In this episode: Where do you see tabletops coming apart and being ineffective and what are the core elements that truly make them succeed? Have you ever seen a real incident play out where you can point to the tabletop as the reason you were able to handle the incident? Are people the safety net for your security controls OR should security controls the safety net for your people?

In this episode of the Global CISO Report, host Steve Morgan speaks with Kathy Hughes, CISO at Northwell Health. Together, they discuss Hughes' role in securing the healthcare system, why security awareness training is so important, the cyber threat facing today's organizations, and more. The Global CISO Report is sponsored by KnowBe4, the world's first and largest New-school security awareness training and simulated phishing provider that helps you manage the ongoing problem of social engineering. To learn more about our sponsor, KnowBe4, visit https://knowbe4.com

In this episode of the Global CISO Report, host Steve Morgan speaks with Alissa Abdullah, PhD, aka Dr Jay, Deputy Chief Security Officer & Senior Vice President of Emerging Corporate Security Solutions at Mastercard. Together, they discuss security awareness training for employees, the responsibilities that security leaders have, do's and don'ts for phishing your own employees, and more. The Global CISO Report is sponsored by KnowBe4, the world's first and largest New-school security awareness training and simulated phishing provider that helps you manage the ongoing problem of social engineering. To learn more about our sponsor, KnowBe4, visit https://knowbe4.com

In this special episode I had the honor of MC'ing a Security Awareness Month online panel for Cadre Information Security and the topic was Human Factors in Cybersecurity. The panelists were Phil Swaim, Mike Davenport, Tim O'Connor and Mike Peterson.  We not only had great discussions on how to build your Security Awareness Program but actions steps you can take right now to create 'Security Champions' in your organization. Talking Points:So how is a Security Awareness Program different from Security Awareness Training?Why would an organization want a Security Awareness Program?Do only larger organizations typically have Security Awareness Programs?Why should Social Media exploits be covered in your program and ultimately your training?What are some of the pitfalls organizations should try to avoid when implementing Security Awareness Programs and training?

Oz Alashe, founder and CEO at CybSafe, a security awareness training company based in London, joins host Steve Morgan for a discussion on the cybersecurity awareness training market, ransomware, and more. This episode is brought to you by our sponsor Evolution Equity Partners, an international venture capital investor partnering with exceptional entrepreneurs to develop market-leading cyber-security and enterprise software companies. Learn more at https://evolutionequity.com

Javvad Malik is the Lead Security Awareness Advocate at KnowBe4, a provider of security awareness training. Javvad talks about how to select a cyber security and security training partner and shares some best practices to deploying effective training programs. KnowBe4 www.knowbe4.com/

If you're not offering a security awareness training solution, then you're not only doing a disservice to your customers, but you could, under some scenarios, be exposed to legal liability.  Wait, what? Legal liability for not offering security awareness training?  Listen up.   (After listening, check out this link: https://www.everythingmsp.com/videos.html#video-gallery-1)

Mathieu Gorge of VigiTrust talks about the Marriott Hotel data breach that happened back in June, including the facts of the event and why once-per-year security awareness training isn't enough when many employees only work seven months of the year. He also offers some privacy tips that will keep your hotel system privacy compliant under a whole host of different compliance frameworks.  – Get your FREE cybersecurity training resources: https://www.infosecinstitute.com/free – View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast0:00 - Security awareness and data breaches2:50 - Elephant in the boardroom book5:42 - Gorge's latest projects and book9:38 - Hacking of the Marriott Hotel19:22 - Marriott's privacy and data collection policies23:20 - Ensuring data privacy worldwide 30:13 - How hotel franchises handle security34:32 - Skills needed for securing the hotel industry38:12 - What is DigiTrust?41:20 - OutroAbout InfosecInfosec believes knowledge is power when fighting cybercrime. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and privacy training to stay cyber-safe at work and home. It's our mission to equip all organizations and individuals with the know-how and confidence to outsmart cybercrime. Learn more at infosecinstitute.com.

Conversation with Perry Carpenter, C | CISO, MSIA, who currently serves as chief evangelist and strategy officer for KnowBe4, the world's most popular security awareness and simulated phishing platform.   Perry and I talked about the history of KnowBe4, his journey in cyber security, what students and early professionals can study to succeed in social engineering among other topics.  Perry talks about his background and how he took his Arts and Science education to become an extremely successful cyber security professional.  Perry gives advice on what he looks for in hiring early professionals.Please make sure to send questions, comments, and episode recommendations to cybergreybeard@gmail.comFor those interested in supporting Josh, my mentee looking to relocate to Canada and study cyber security, please visit GiveSendGo.Perry is A recognized thought leader on security awareness and the human factors of security, he's provided security consulting and advisory services for the world's best-known brands. His previous book, Transformational Security Awareness: What Neuroscientists, Storytellers, and Marketers Can Teach Us About Driving Secure Behaviors, quickly gained a reputation as the go-to guide for security awareness professionals worldwide, and, in 2021, he was inducted into the Cybersecurity Canon Hall of Fame.  He's the creator and host of the popular 8th Layer Insights podcast and co-author of the new book The Security Culture Playbook: An Executive Guide to Reducing Risk and Developing Your Human Defense Layer (Wiley; April 19, 2022). Learn more at SecurityCultureBook.com. KnowBe4The Art of Deception by Kevin MitnickThe Art of Invisibility by Kevin Mitnick

Table top exercises, Security Awareness Training, and vulnerability management are all ways that we look to improve our security posture. Join me as I talk to Kevin Ireland of Hack The Box regarding teaching your team to participate in red team exercises.

All links and images for this episode can be found on CISO Series We all know and have experienced bad security awareness training. People can learn, and should learn about being cyber aware. How do you build a security awareness training program that sticks? Check out this post for the discussions that are the basis of our conversation on this week's episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Geoff Belknap (@geoffbelknap), CISO, LinkedIn with our guest Lisa Kubicki (@lmk2), trust and security, training and awareness director, DocuSign. Thanks to our podcast sponsor, Drata Save 200+ hours with Drata's automated continuous compliance solution for SOC 2, ISO 27001, PCI DSS, HIPAA, GDPR, & CCPA. Drata connects to your techstack with 75+ integrations, including AWS, GitHub, GCP, & more to automate the compliance process. Kickstart your compliance journey by requesting a demo and get 10% off In this episode: We ask, “How do you build a security awareness training program that sticks?” How do you develop a program that resonates with staff and actually improves security outcomes? We get tips from the community on how they built a security awareness training program. We examine what a successful engagement would look like.

James McQuiggan, Security Awareness Advocate for KnowBe4, joins host Steve Morgan to discuss the 2022 Security Awareness Training Report, sponsored by KnowBe4. KnowBe4 is the world's first and largest New-school security awareness training and simulated phishing platform that helps you manage the ongoing problem of social engineering. To learn more about our sponsor, visit https://knowbe4.com To read the full report, visit https://cybersecurityventures.com/security-awareness-training-market-to-hit-10-billion-annually-by-2027/

On This Week in Enterprise Tech, Curt Franklin and Brian Chee discuss how the QR code that leads to menus and payment apps can also be a CISO nightmare. Subscribe and watch the full 'This Week in Enterprise Tech' podcast: https://twit.tv/twiet/489 Hosts: Curt Franklin and Brian Chee You can find more about TWiT and subscribe to our podcasts at https://podcasts.twit.tv/

Microsoft Hacked!, Apple sued for storing data on someone else's servers, Town of Plainfield Ransomed, SAT – Security Awareness Training, Nestle hacked? Nope they leaked their own data, Looking for a Laptop what should I look for? What do I need for a computer for gaming specs?, Outlook not working? Do I need to Subscribe? Yahoo mail attachments going to Downloads rather than opening it's a Firefox bug.  

In just the first half of 2021, the financial industry saw a 1,318% in ransomware attacks. How can knowledge of ransomware gangs' encryption strategies help employees at every level of an organization to develop stronger incident response plans? Paula Januszkiewicz, acclaimed security leader, pen tester, and CQURE CEO, offers practical guidance on inclusive approaches to security awareness training. As the threat landscape evolves alongside new technological innovations, questions emerge about how we need to rethink password protection, privilege access, and at-home security. Enjoy this thought-provoking conversation about the value of curiosity and teamwork in forward-thinking security strategy development. Connect with Paula! ~ LinkedIn ~ Twitter Follow us on Social!! ~Cybrary Twitter ~Delinea Twitter ~Instagram ~Facebook ~YouTube ~Cybrary LinkedIn ~Delinea LinkedIn