CISO Series Podcast As Long as We Keep Moving the Goalposts, We Have a Great Security Culture (LIVE in Dallas, TX)
25 snips
Jan 28, 2025 
Lamont Orange, CISO at Cyera and expert in data security, discusses key themes from a live conference in Dallas. He emphasizes the shift from a zero-incident mindset to building resilience in cybersecurity. The conversation highlights the importance of AI and automation in data security, and addresses the balance between security, integrity, and availability. Lamont also engages in lively debates on integrated platforms versus niche solutions, urging for better integration in response to evolving threats while promoting curiosity and innovation in the field.
AI Snips
Chapters
Transcript
Episode notes
CISO's Coding Mistake
- Lamont Orange described a time he coded something as CISO and caused a denial-of-service on himself.
- This highlights the importance of "trust but verify", even for technical tasks.
Resilience over Recovery
- Security programs should shift from traditional recovery to resilience.
- Resilience integrates security deeply with business functions for effective crisis management.
Assessing Downtime Tolerance
- To build resilience, determine the maximum downtime the business can tolerate.
- Conduct surprise breach exercises to realistically assess this and identify vulnerabilities.