CISO Series Podcast

Well, I Think My Relationship With the CIO Improved When I Took Their Job

Aug 27, 2024

In a lively conversation, Ty Sbano, the CISO at Vercel, shares his journey in cybersecurity and how taking on the CIO role helped improve relationships within the organization. He emphasizes the significance of employee well-being in managing insider threats and suggests coaching instead of shaming to foster a positive workplace culture. The discussion includes the value of phishing simulations and the evolving dynamics between CISOs and CIOs, alongside a cultural shift needed for integrating security practices into DevOps.

37:21

Creator website

Episode guests

Ty Sbano

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The relationship between CISOs and CIOs can be improved through collaboration and shared accountability for the organization's technological landscape.

Addressing employee morale is crucial for security, as a positive company culture reduces the likelihood of insider threats and misconduct.

Deep dives

Lessons from a Security Mishap

One significant mistake highlighted in the episode involves a previous experience of a security head who accidentally disabled G Suite access for an entire company. This incident rapidly escalated, eliciting panic from both employees and the CEO, ultimately leading to a lighthearted moment where the security head jokingly considered resigning. This example underscores the importance of thorough account management and the potential repercussions of miscommunication within an organization. It serves as a stark reminder that even minor oversights in IT can result in company-wide disruptions.

Intro

4min

Navigating Insider Risks: The Role of Employee Well-being

6min

Phishing Simulations and Workplace Culture

8min

Navigating Compliance and Security in the AI Era

15min

Navigating the Data-Driven Landscape in Cybersecurity

4min

All links and images for this episode can be found on CISO Series.

This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining us is Ty Sbano, CISO, Vercel.

In this episode:

Perception is the reality for insider threats
Coaching rather than shaming
Working to make DevOps redundant
Fixing a strained relationship

Thanks to our podcast sponsor, Backslash!

Backslash Security is your modern AppSec solution, focusing on what truly matters—real risks. Gain clear visibility into your applications and fix only the code and open-source software that’s actually in use, making your AppSec smarter and more efficient. Learn more at https://www.backslash.security/.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

CISO Series Podcast

Well, I Think My Relationship With the CIO Improved When I Took Their Job

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Lessons from a Security Mishap

The Role of CISO in Employee Well-being

Approaches to Security Policy Violations

The Evolving Roles of CIO and CISO

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

CISO Series Podcast

Well, I Think My Relationship With the CIO Improved When I Took Their Job

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Lessons from a Security Mishap

The Role of CISO in Employee Well-being

Approaches to Security Policy Violations

The Evolving Roles of CIO and CISO

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights