Podcasts about should cisos

There has been much discussion lately about Quantum Computing and the future threats to encryption and authentication it could cause. Should CISOs be worried? Are there steps that should be taken now? Join us as we discuss Quantum computing and the implications for the CISO – today. This segment is sponsored by Wiz. Visit https://securityweekly.com/wiz to learn more about them! Visit https://securityweekly.com/csp for all the latest episodes! Follow us on Twitter: https://www.twitter.com/cyberleaders Follow us on LinkedIn: https://www.linkedin.com/company/cybersecuritycollaborative/ Show Notes: https://securityweekly.com/csp87

On this special episode of The New CISO, Steve chats once again with Chuck Markarian and Sean Murphy. The CISO for Paccar and BEC U respectively, Chuck and Sean share their insights on the current trends in cybersecurity, as well as delve into their predictions for the field and the changing relationships within it. Listen to the episode to hear more about how the government has influenced cybersecurity, the importance of cyber insurance, and much more. Listen to Steve, Chuck and Sean discuss cybersecurity trends: Who are Chuck and Sean? (2:23) Chuck and Sean explain their current roles at Paccar and BEC U respectively, as well as the backgrounds that led them there. Political Influence (4:32) Steve, Chuck, and Sean touch on the increasing presence of politics in cybersecurity. Sean weighs in on how relationships to law enforcement are altering, as well as how perceptions on cybersecurity have evolved and changed. The Perception of the Hacker (9:57) As the government becomes more involved, the blame on organizations for being attacked has now shifted to the attacker, rightfully so. No longer are hackers a kid in basement; hackers are real and dangerous threats that need to be stopped. This greater understanding of cyber warfare has better informed the public and organizations of what could truly happen. Investment and Involvement (14:22) With this increasing awareness of cybercrimes, boards and executes are more willing to invest in CISOs and their teams. It's better to invest in preventative tools than to pay a bigger price after an attack. Steve, Chuck, and Sean also discuss what changes when the FBI gets involved and when organizations have to wait to fix problems. Tabletops (21:30) When simulating a breech, Chuck and Sean urge any leaders to really mimic the chaos that would naturally happen at that time. Be sure to include executives in this simulation, so they can gain practice and understanding of what will be a stressful situation in the future. In doing so, you'll also be able to identify who is making what decisions before an event occurs. Cyber Insurance (24:20) Cyber insurance is becoming more common. CISOs need to educate themselves on policies and the language of cyber insurance. This brings up other questions such as, should individuals have coverage? Should CISOs and board members? Additionally, insurance forces companies and leadership to define what an incident and breech are. This helps in determining what to report externally. A Third Party (34:43) With a third party involved, like vendors, your risk level increases. From there, you need to assess how important that third party is and the level of risk with which you're comfortable. It is part of the CISO's job to help navigate those relationships and dynamics, and to make sure the organization is still protected. The New CISO (45:27) Before wrapping up, Sean touches on the importance of connecting and having conversations with other CISOs. If listeners have any questions, they can contact him via LinkedIn. Links: https://www.exabeam.com/library-by-type/ciso-podcasts/ (Exabeam Podcasts) https://www.linkedin.com/in/seanmurphy092009/ (Sean Murphy - LinkedIn )

This episode of Dark Rhino Security's, Security Confidential podcast and video cast features Dr. Calvin Nobles as the guest and he discusses how human factors can impact cybersecurity. The topics covered in the discussion are: How organizations should assess risk The human factor in cybersecurity Lessons learned from the aviation industry, the dirty dozen Risk frameworks in cybersecurity Cybersecurity and national security, the new underbelly The cybersecurity threat to small and medium business Business leveraging the dark web to conduct business Is cybersecurity a business problem or an IT problem? Should CISOs report to the CIO? Change the thinking on cybersecurity to be sustainable Over reliance on tools in cybersecurity, the unknown unknowns Findings in cybersecurity involving human factors You can't stop stupid Dog tired The link to the videocast About Dr. Calvin Nobles Dr. Calvin Nobles is a cybersecurity professional and human factors practitioner with more than 25 years of experience. Dr. Nobles retired from the U.S. Navy and currently works in the financial services industry as a Cybersecurity / Information Security subject matter expert. He recently earned a Doctor of Philosophy in Human Factors. His previous degrees are Doctor of Philosophy in Management and Engineering, graduate degrees in Information Systems Security, Aeronautical Science, Business Administration, Military Strategy and Operational Art. Additionally, He has completed several certificates in cybersecurity from Harvard University. Calvin is an adjunct faculty member at several universities teaching cybersecurity and MBA courses. He authored a book on the integration of technologically advanced aircraft in general aviation. Dr. Nobles’ personal story is featured in the book Black Men Changing the Narrative Through Education. He recently completed a Cybersecurity Policy Fellowship with the New America Think Tank in Washington, DC. Dr. Nobles serves on the Cybersecurity Advisory Board for Stillman College and serves on the Cyber Council for the Intelligence and National Security Alliance. Dr. Nobles led a global Cyber Intelligence Planning Group to align cybersecurity objectives for multiple international entities. He spearheaded a national-level technology prototype project enabling the U.S. to deploy strategic capabilities around the world, which established precedence of leveraging emerging technologies using agile practices. Dr. Nobles served as an advisor to senior executives to optimize cyber operations, developed business continuity and disaster recovery procedures, enhanced the information security strategies, and provided consultancy on big data analytics, machine learning, the internet of things, and artificial intelligence. To learn more about Dark Rhino Security Host: Manoj Tandon Guest: Calvin Nobles

All links and images for this episode can be found on CISO Series (https://cisoseries.com/defense-in-depth-should-cisos-be-licensed-professionals/) Many professionals are required to obtain a license before they can do their job legally. The demands of cybersecurity professionals, especially CISOs, has become more critical as evidenced by the increasing number of regulations demanding a person oversee security and privacy controls. Should CISOs be licensed to maintain a minimum standard? Check out this post for the basis for our conversation on this week’s episode which features me, David Spark (@dspark), producer of CISO Series, co-host Allan Alford (@allanalfordintx), and our guest Patrick Benoit (@patrickbenoit), vp, global head of GRC and BISO, CBRE. Thanks to this week's podcast sponsor, F5 External threats to your organization’s security are constantly evolving. Your apps need broad and preventive protection from bot attacks that cause large-scale fraud, higher operational costs, and problems for your users. And they need to be optimized for secure operation internally. Silverline Shape Defense helps you stay ahead of cyber threats and fraud. Get a free trial. Highlights from this episode of Defense in Depth: Almost universally, nobody liked the idea of requiring a CISO to have a license in order to practice. But, with that said, the subject stirred up a hornet's nest of discussion. Main complaint is the job changes so drastically depending on what industry you're in. Many argued that a license won't translate into success. Hard to tell how to put a license around someone who is managing risk, but doesn't own the risk.

Mike Koss, Head of Security and Risk at N Brown Group reminisces about the ‘good old days’ when security was just a hobbyist thing, his career in IT security and how he believes the future of the CISO role it should be developed into a business position and a separate technical position. Key points include: 0’30 Guest introduction 1’38 IT security in retail 11’21 Security relationships with the board 14’37 When security was just a hobbyist thing! 24’13 The pros and cons of bug bounties 30’16 Capture The Flag vs testing in the ‘real world’ 43’43 Should CISOs have a technical degree or a business degree? The future is a CTSO role! 49’20 Defence in depth, not just an annual Pentest Download on iTunes: apple.co/2Ji61Ek Listening time: 60 minutes For more information, follow us on Twitter @secarma or @secarmalabs or email us at podcast@secarma.com Hosted by: Holly Grace Williams, Technical Director at Secarma Guest: Mike Koss, Head of Security and Risk at N Brown Group

Recently, at RSA 2019, Dan Woods of Early Adopter Research (EAR) spoke with Nick Lantuh, CEO of Fidelis in cybersecurity, for the EAR Podcast. During the interview, Woods asked Lantuh his three pressing cybersecurity questions for 2019, as well as getting a sense of where Fidelis fits into the cybersecurity landscape. Their conversation covered: * 3:15 - Why zero trust is additive * 10:15 - Should companies prune their cybersecurity portfolio? * 19:10 - Should CISOs focus on proving their ops discipline? * 25:45 - Is cyber insurance worth it?

Should CISOs use events or scenarios to drive security, not checklists? It also doesn’t matter how much you spend on cybersecurity if ends up becoming shelfware. Navigating one’s role as a CISO is no easy feat. Luckily, the path to becoming a seasoned CISO is now easier with practical classes and interviews. But when cybersecurity is assumed to not be not very important. Does that defeat the leadership role of a CISO? Panelists: Cindy Ng, Sean Campbell, Mike Buckbee, Kris Keyser

At this year’s RSA conference, Early Adopter Research’s Dan Woods sat down for a podcast conversation with Michael Covington, VP of product strategy for Wandera. They discussed a number of topics, including an overview of what Wandera does. Woods also asked Covington about his three key cybersecurity questions for 2019. Their conversation also covered: * 2:40 - Zero trust * 9:10 - The need for visibility in a BYOD environment * 14:10 - Should CISOs focus on operational discipline? * 17:30 - How to improve the people side of security * 20:45 - Is cybersecurity insurance necessary?