Defense in Depth

Building a Cyber Strategy for Unknown Unknowns

Nov 16, 2023

Guest Himaja Motheram from Censys discusses building a security program around unknown unknowns. The podcast explores strategies for anticipating, detecting, and responding to unknown unknowns. It emphasizes the importance of executive buy-in, resources, and individual involvement in creating a security culture. The distinction between known unknowns and unknown unknowns is explored, along with the role of technology and human creativity. The shift of security responsibility to the user is discussed, as well as the value of worst-case scenario simulations and relationship-building in cybersecurity.

29:57

Creator website

Episode guests

Himaja Motheram

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Creating a security program to address unknown unknowns requires prioritizing them and effectively communicating the priorities to the organization.

Building resiliency through having a robust response plan in place and focusing on relationships, communication, and collaboration within the organization helps to deal with unknown unknowns effectively.

Deep dives

Importance of Uncovering Unknown Unknowns

The podcast episode discusses the fear and challenges security professionals face when it comes to unknown unknowns. These are the security issues or vulnerabilities that they are not even aware of. The episode explores the importance of creating a security program to address these unknown problems and how to prioritize them. It emphasizes the need to have a strategy for uncovering unknown unknowns and effectively communicating the priorities to the organization. Examples of strategies mentioned include building a culture of security, encouraging creativity and critical thinking, and simulating worst-case scenarios.

Introduction

4min

Navigating Unknown Unknowns

6min

Building a Comprehensive Security Culture

8min

Unknown Unknowns in Cyber Strategy

8min

The Importance of Security in Software Products and the Value of Building Relationships

5min

All links and images for this episode can be found on CISO Series.

Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Geoff Belknap (@geoffbelknap), CISO, LinkedIn. Joining us is our sponsored guest, Himaja Motheram, Censys.

In this episode:

How can one create a security program around unknown problems?
Don’t we know a lot of the things we lack visibility into that can cause security issues?
But what about the things you don't even know about in the first place?
Will that thing we don't even know to look at, ever cause a security issue?

Thanks to our podcast sponsor, Censys

Censys is the leading Internet Intelligence Platform for Threat Hunting and Exposure Management. We provide the most comprehensive, accurate, and up-to-date map of the internet, which scans 45x more services than the nearest competitor across the world’s largest certificate database (>10B). Learn more at www.censys.com.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Defense in Depth

Building a Cyber Strategy for Unknown Unknowns

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Importance of Uncovering Unknown Unknowns

Resilience and Preparedness

Promoting a Security Culture and Creative Thinking

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

Defense in Depth

Building a Cyber Strategy for Unknown Unknowns

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Importance of Uncovering Unknown Unknowns

Resilience and Preparedness

Promoting a Security Culture and Creative Thinking

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights