OODAcast

Episode 116: Joe Sullivan on Managing Complex Security Challenges

Oct 11, 2023

Joe Sullivan, experienced security risk manager, discusses his career journey from federal prosecutor to CSO at Facebook, Uber, and Cloudflare. He shares insights on building and managing security teams, managing risk at companies like Facebook and Uber, and his experiences being prosecuted for a breach at Uber. Sullivan also talks about the future of executive liability in cybersecurity and his current work supplying technology for remote learning to children in Ukraine.

01:06:38

Creator website

Episode guests

Joe Sullivan

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Cooperation between the public and private sectors is essential in cybersecurity, requiring better collaboration between companies, researchers, and government agencies.

Clear lines of transparency and accountability are crucial in cybersecurity incidents, with executive leadership and board members being held accountable for their roles.

Bug bounties are valuable in incentivizing ethical behavior, and security leaders should focus on building effective teams, communicating with executives, and collaborating with the security community.

Deep dives

Path to Cybersecurity Career

Joe Sullivan shares his journey into the cybersecurity industry, starting from his background in technology and his initial interest in working for the government. He discusses his involvement in technology within the US Department of Justice and his role as a federal prosecutor focusing on cybercrime cases. Sullivan also highlights his transition to the private sector, where he worked for companies like eBay, PayPal, Facebook, and Uber, and the unique challenges he faced in each organization.

Introduction

4min

From DOJ to Facebook: A Journey in Security

12min

The State of International Computer Crime Cooperation and Challenges Faced

3min

Managing Complex Security Risks and Enhancing Safety Measures

12min

Discussion on the Breach and Handling by the Team

1min

Handling a Vulnerability and Attribution

26min

From Volunteer to CEO: A Journey with Ukraine Friends

9min

Joe Sullivan has been at the forefront of managing security risk in rapidly growing high tech companies over the past 20 years serving as the Chief Security Officer at Facebook from early start-up through the IPO, CSO of Uber and CloudFlare, and as a security leader at eBay/PayPal. Joe was also involved in a landmark legal case for a breach at Uber which resulted in a criminal conviction that serves as a precedent for executive liability in cybersecurity going forward.

In this OODAcast we discuss:

Joe's early career and how he got interested and involved in technology and started his career as a federal prosecutor focused on cyber crime.
The transition into serving as a technology company CSO and his experiences at eBay/PayPal, Facebook, Uber and Cloudflare.
Lessons learned from building and managing highly functional security teams in dynamic environments.
Frameworks for managing risk at companies like Facebook and Uber.
His experiences being prosecuted and convicted surrounding circumstances associated with a 2016 incident at Uber.
How the courts will handle future cases like this and the associated liability for C-suite executives.
His current work focused on supplying technology for remote learning to displaced children in Ukraine.

Official Bio:Joe Sullivan is CEO of Ukraine Friends and President of Joe Sullivan Security LLC. Previously, Joe had served as the Chief Security Officer of Cloudflare since July (2018 - 2022). Prior to that, Joe was employed as Chief Security Officer at both Uber (2015 - 2017) and Facebook (2008 - 2015). His first private sector experience was in senior security and legal roles at eBay and PayPal (2002 - 2008). He also held the position of Commissioner for the United States Presidential Commission on Enhancing National Cybersecurity in 2016 and spent the first eight years of his career with the US Department of Justice, including as a federal prosecutor focused on cyber crime. Joe also advises a number of companies on security practices and mentors a number of developing security leaders.

Recommended Books:

Russia: Revolution and Civil War, 1917-1921

Beneath A Scarlet Sky

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

OODAcast

Episode 116: Joe Sullivan on Managing Complex Security Challenges

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Path to Cybersecurity Career

Cooperation Between Public and Private Sectors in Cybersecurity

Lessons Learned and Future Outlook

Utilizing technology for safer rides

Handling a security incident at Uber

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

OODAcast

Episode 116: Joe Sullivan on Managing Complex Security Challenges

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Path to Cybersecurity Career

Cooperation Between Public and Private Sectors in Cybersecurity

Lessons Learned and Future Outlook

Utilizing technology for safer rides

Handling a security incident at Uber

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights