CISO Series Podcast

We’ll Invest in Resilience as Soon as the Ransom Payment Clears

Apr 23, 2024

Thom Langford, CISO at Velonetic, discusses businesses pledging not to pay ransom demands but changing priorities post-attack. The importance of infrastructure and organizational commitment is highlighted. The podcast also explores ransomware resistance strategies, data security, communication styles, and cybersecurity talent shortage.

35:35

Creator website

Episode guests

Thom Langford

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Businesses may pledge not to pay ransom demands, but priorities shift post-attack for quick recovery.

Impact of talent shortages in cybersecurity, leading to competitive landscape and challenges for skill development.

Deep dives

Tackling Cybersecurity Mistakes: Learning from a Personal Blunder

A significant takeaway from the podcast delves into an insightful experience shared by a security professional who had sent out numerous questionnaires, ultimately drawing minimal responses. The lesson learned was the value of asking succinct and direct questions instead of overwhelming respondents. This highlights the importance of effectively structuring inquiries to yield meaningful responses.

Introduction

4min

Ransomware Resistance and Data Security Strategies

8min

Effective Communication Strategies for Diverse Perspectives and Different Communication Styles

4min

What's Worse: Sharing Credentials with Third Party or Ex-Employee Exploiting Active Vulnerabilities

15min

Reflections on Past Predictions and Critique of Future Technology Speculation

2min

Consistency of Cybersecurity Concerns and Acknowledgment of a Sponsor

3min

All links and images for this episode can be found on CISO Series.

This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is my guest, Thom Langford, CISO, Velonetic.

In this episode:

Why do lots of businesses pledge to never pay ransomware demands?
And why do their priorities quickly change when they need to get the business back to normal after an attack occurs?
What good is a pledge like that without the infrastructure and organizational commitment to make it possible?

Thanks to our podcast sponsor, CyberMaxx

CyberMaxx offers MaxxMDR, our next-generation managed detection and response (MDR) solution that helps customers assess, monitor, and manage their cyber risks. MaxxMDR fuels defensive capabilities with insights from offensive security, DFIR, and threat hunting, on top of a technology-agnostic deployment model. We think like an adversary but defend like a guardian.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

CISO Series Podcast

We’ll Invest in Resilience as Soon as the Ransom Payment Clears

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Tackling Cybersecurity Mistakes: Learning from a Personal Blunder

Diversity in Cybersecurity: Creating Inclusive Environments

Navigating Cybersecurity Talent Shortages: Addressing Skill Gaps

Innovative Cybersecurity Tools: Dreaming Up Ideal Solutions

Remember Everything You Learn from Podcasts