CISO Series Podcast

It’s Like a Trust Fall, But We Know You’ll Hit the Floor

Feb 13, 2024

Grant Anthony, CISO of Orion Health, discusses the importance of buy-in to security awareness programs, the challenges organizations face, and building trust. The podcast also covers vulnerability management, threat informed defense, and sharing best practices for performance improvement.

34:42

Creator website

Episode guests

Grant Anthony

AI Summary

Highlights

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

A risk-based approach in security awareness training, tailored to individual needs, yields better results.

Prioritizing vulnerabilities based on risk and openly communicating patching limitations are crucial in effective patch management.

Deep dives

Threat Informed Defense and Its Challenges

Building a security program around threat intelligence can be challenging due to various reasons. Some organizations lack basic security hygiene or mature IT capabilities, while others struggle with bridging the gap between threat intelligence and security controls. Compliance-focused approaches can also hinder effective threat informed defense. The key is to customize and tailor security programs based on specific threats and risks faced by the organization.

Tailored Training for Effective Cybersecurity Awareness

01:35

Introduction

4min

The Challenges of Security Awareness Training

11min

The Challenges of Vulnerability Management and Communication

5min

Threat Informed Defense and Engaging with Other Organizations

11min

Sharing Best Practices and Strategies for Improved Performance

4min

All links and images for this episode can be found on CISO Series.

This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining me is our guest, Grant Anthony, CISO, Orion Health.

In this episode:

Why getting buy-in to your security awareness program is so critical?
Why do so many organizations get it so wrong?
What framework can we apply to actually build trust with security awareness?

Thanks to our podcast sponsors, Varonis

Ready to reduce your risk without taking any? Try Varonis’ free data risk assessment. It takes minutes to set up and in 24 hours you’ll have a clear, risk-based view of the data that matters most and a clear path to automated remediation. Get started for free today.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

CISO Series Podcast

It’s Like a Trust Fall, But We Know You’ll Hit the Floor

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Threat Informed Defense and Its Challenges

The Challenges of Security Awareness Training

Patch Management: Prioritizing Known Vulnerabilities

Using Metrics for Outreach and Building Trust

Tailored Training for Effective Cybersecurity Awareness

Remember Everything You Learn from Podcasts