Security Weekly Podcast Network (Audio) Compliance & Privacy - SWN Vault
Dec 24, 2024
Josh Marpet, a compliance and privacy expert, joins the discussion with Doug to tackle the complex world of cybersecurity regulations. They share humorous insights about the absurdities of compliance procedures and the disconnect between management and IT. The conversation highlights data privacy challenges in a surveilled society and critiques regulations like GDPR for their loopholes. Marpet emphasizes the need for stricter penalties to enforce accountability, while reflecting on AI concerns and the evolving impact of social media on personal privacy.
AI Snips
Chapters
Transcript
Episode notes
CISO Firing
- Doug White recounts firing a CISO for refusing to sign a compliance document.
- The CISO's boss confirmed this was typical behavior and authorized the firing.
Sarbanes-Oxley's Impact
- Sarbanes-Oxley aimed to protect shareholder wealth, highlighting a need for regulations.
- Many companies, even external auditors, lacked a clear understanding of compliance requirements initially.
CEO's Dismissive Attitude
- Doug White shares an anecdote about a CEO who dismissed security audits as "crap".
- Doug White threatened to expose the CEO's non-compliance to external auditors, leading to a change in attitude.