In this episode, Ciaran and James sit down with investigative journalist and author, Geoff White, to explore the booming business of cyber crime. Geoff sheds light on this murky criminal underworld, its far-reaching consequences, and how cybersecurity has evolved in the public eye.Highlights:[1:30] Overview of Geoff’s notable work[4:00] Cybersecurity in the Limelight[10:15] Transformative Hacking Stories[20:00] Global Cyber Criminals Overview[30:00] Gripping Stories Covered by Geoff in his latest book, Rinsed[45:00] National Crime Agency EffortsLinks:Crime Dot Com - Crime Dot ComThe Lazarus Heist - Podcast | BookRinsed - RinsedWorld Economic Forum on Misinformation | World Economic Forum Annual  Meeting 2024 AlphaBay ShutdownSnowden Leaks: The Guardian| BBC NewsAnonymous Hacking: Britannica on AnonymousSony Pictures Entertainment Hacking: Vox | CCDCOE Nation State Hackers: Nation State HackersOrganized Cybercrime: Rise of RansomwareHacktivists: HacktivismAxie Infinity Hack: The BlockTornado Cash: US DoJ | FBIMoney Laundering Sisters from Bury: GMP News | Bury TimesNCA on DDoS AttacksContact: Have questions or comments? Email us at ciso-network@sans.org

In this episode, Ciaran and James sit down with Helen Rabe, CISO for the BBC, to discover the challenges of breaking into the industry and her experiences leading security for one of the world’s largest broadcasters. Helen shares her expertise as a certified industry leader, discussing the rising tide of personal liability for CISOs and the intense media scrutiny that comes with managing incident responses in the public eye. Highlights: [8:30] The Evolution of Organizational Security Postures[11:00] CISOs and Personal Liability[18:00] The Challenges of Media Scrutiny in Incident ResponseLinks:Why more transparency around cyber attacks is a good thing for everyoneThe History of the General Data Protection Regulation Impact of the GDPR on Cyber Security Outcomes Backstory Of The World’s First Chief Information Security OfficerFormer Uber security chief convicted for concealing a felony | Sentencing SEC Charges SolarWinds and CISO with Fraud | Case Dismissed MOVEit hack: BBC, BA and Boots among cyber attack victims CL0P Ransomware Gang Exploits MOVEit Vulnerability EDS, an HP Company 'Cat Herders' video Contact: Have questions or comments? Email us at ciso-network@sans.org

Frank Kim, a SANS fellow and former CISO, shares his expertise on uniting cybersecurity with business leadership. He discusses why cybersecurity often gets sidelined in board discussions and offers effective strategies for elevating its importance. The conversation dives into the crucial role of CISOs in aligning security priorities with business objectives, fostering trust among non-technical stakeholders, and managing daily security operations while driving strategic transformation. His insights empower cybersecurity leaders to adapt and thrive in a changing landscape.

In this episode, Ciaran and James meet Jen Ellis, founder of NextJenSecurity, to discuss the pervasive threat of ransomware, the power of cyber security advocacy and importance of security best practices. Jen shares her expertise on humanising security and working with governments to build robust defenses against cyber attacks. Highlights: [3:00] Overview of Jen’s achievements and engagements[8:30] Legislating Cyber Crime[11:00] Notable Ransomware Attacks[18:00] Ransomware Task Force[21:00] Global Counter Ransomware Initiative[23:30] Debating Ransomware Payments[26:00] Current Concerns[30:00] Cybersecurity Collaboration Links:Rapid7 | Center for Cybersecurity PolicyNational Cyber Strategy 2022 policy paperDistilling Cyber PodcastJen testifying to the Senate on cyber crime [1:08:00 onwards]DMCA exemption for security researchDepartment of Justice policy on Computer Fraud and Abuse ActGerman Hospital Attack: Details of the attack.Colonial Pipeline: Incident overview | White House remarks| CISA analysisHSE Attack: Incident details | Post-incident review.JBS Attack: BBC report.Contact: Have questions or comments? Email us at ciso-network@sans.org

Christine Bejerasco, CISO of WithSecure and cybersecurity veteran with over 20 years of experience, shares her journey from tech roles to leadership. She reminisces about the wild early days of cyber threats like network worms and mobile malware. The discussion dives into the significance of regulations like GDPR, balancing security, and compliance across global organizations. Christine emphasizes the need for community safety in cybersecurity, highlighting the shared responsibility of all employees in ensuring digital security.

Shashank Joshi, Defence Editor at The Economist, shares his insights into the geopolitics of cybersecurity. He discusses the tension between Iran and Israel in the cyber realm and explores the complex narratives of recent cyber warfare. The conversation dives into the US-China tech rivalry and domestic vulnerabilities, highlighting how historical events shape contemporary threats. Shashank also examines the evolving role of technology and intelligence in counter-terrorism strategies and the challenges of effectively communicating cybersecurity risks.

Join us for an unfiltered journey into the minds of the leaders shaping the future of cybersecurity. In each episode, we embark on a curiosity-driven exploration to uncover hidden truths, share unlearned lessons, and offer critical insights to help you enhance your knowledge, sharpen your strategies, and lead the way in a rapidly evolving digital landscape.Contact: Have questions or comments? Email us at ciso-network@sans.org