She Said Privacy/He Said Security

Jared Coseglia is the Founder and CEO of TRU Staffing Partners, an award-winning staffing company representing talent and opportunities in data privacy, e-discovery, and cybersecurity. TRU has been voted a top-three legal and/or litigation support staffing agency for seven consecutive years in both the National Law Journal and the New York Law Journal and has been named one of the Inc. 5000 Fastest Growing Private Companies in America.  Jared has placed over 3000 professionals in full-time and temporary positions at the Fortune 1000 and Am Law 200 levels and throughout the global consultancy, service, and software provider communities. As an active member of the legal and cybersecurity community, he is a member of the Board of Editors for Cybersecurity Law and Strategy, has written over 90 articles, regularly appears in podcasts and webinars, and has spoken at over 50 conferences.  In this episode… When it comes to hiring, data privacy and security companies aren’t sure what to look for in candidates. Similarly, professionals are struggling to understand businesses’ qualifications and gain the skills needed for each discipline. With so much variability surrounding hiring practices, how can organizations maintain clarity to attract and retain top talent? Privacy and security staffing expert Jared Coseglia says that companies need to develop robust, transparent, and simple privacy and security programs. This demonstrates that you recognize your business’ requirements and can assess the market effectively. Some companies have employed AI technology to streamline the hiring process. Yet, this raises representation issues, so Jared says it’s crucial to utilize this technology to enhance diversity and provide candidates with an inclusive experience.  In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels chat with Jared Coseglia about hiring and staffing trends in privacy and security. Jared talks about how companies can attract and retain privacy talent, AI’s role in the hiring process, and compensation in privacy versus security.

Zenobia Godschalk is the SVP of Communications at Hedera, an enterprise-grade public network for building decentralized applications. As the Founder and CEO of the technology marketing firm ZAG Communications, she has launched and grown multiple $1B, high-growth, global technology companies. Zenobia has experience in distributed databases, cybersecurity strategies, public relations, and financial reporting. She is also a board member of Stanford FLAN (First-Generation and/or Low-Income Alumni Network).  In this episode… Blockchain is surging in popularity — everything from banking transactions to digital concert tickets uses some form of decentralized finance. Yet, consumers distrust this software as it poses security risks and often results in adverse online experiences. So, what does this mean for the future of blockchain? Early adopters of this technology have employed a more synthetic version of decentralized finance (DeFi), exploiting customers by claiming unrealistic ROIs. Given that blockchain and other types of DeFi are still unregulated by FDIC and venture capital, Zenobia Godschalk says that the road to full adoption is likely to be hindered. Meanwhile, she notes that companies seeking to integrate blockchain must understand its underlying protocols and technology infrastructure to create seamless consumer interactions.  In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels welcome Zenobia Godschalk, SVP of Communications at Hedera, to discuss security trends in the blockchain space. Zenobia talks about venture capital’s security regulations for blockchain, how to build trust in decentralized finance, and how to optimize digital transactions.

Ian Cohen is the Founder and CEO of Lokker, a company committed to protecting businesses from third-party privacy risks. Before Lokker, he served as CEO of Credit.com, where he transformed the company into a trusted high-growth hub for consumers seeking guidance on credit and finance. Ian is also a Board Member of Uqual, an Industry Advisor at Long Ridge Equity Partners, and an Advisor and Investor at PolyScale.  In this episode… Data collection has become increasingly obscure, and companies like Meta and Oracle are facing lawsuits for unauthorized data tracking and sharing across third parties. With data sharing largely unregulated among companies, how can you protect customer data? When collecting consumer data, companies often struggle to interpret the data and lack knowledge about its location and usage. With the emergence of GDPR (General Data Protection Regulation) in the US, businesses must go beyond internal privacy programs to regulate external data sharing and comply with the law. Ian Cohen stresses the importance of establishing awareness campaigns and fostering transparency and visibility among third parties. In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels host Ian Cohen, Founder and CEO of Lokker, to discuss protecting consumer data from third-party access. Ian explains how Lokker collects and analyzes data, discusses the compliance challenges of third-party data, and offers advice on third-party data sharing.

Vaibhav Antil is the Co-founder of Privado.ai, a developer-friendly privacy platform. Privado was purpose-built as a code-scanning solution for privacy to discover personal data, usage, flows, and leakages, as well as flag privacy issues in the code for GDPR regulations. Vaibhav became a privacy consultant to help companies remain compliant after the introduction of GDPR. Before Privado, he was the Co-founder of Jukebox Studio, which was acquired by Gaana, where he served as the Senior Product Manager of Subscriptions. In this episode… When developing apps and other software, engineers often collect excessive consumer data and lack consideration for potential breaches. As a privacy professional, how can you implement developer-friendly privacy programs? According to privacy consultant Vaibhav Antil, there is a knowledge barrier between engineering and privacy teams. To address and mitigate this, it’s essential to provide developers with readily-available privacy tools that display each code's data leaks and breaches. By collaborating with engineers and using familiar language when giving instructions, you can mitigate risks to your software. In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels host Vaibhav Antil, Co-founder of Privado.ai, to discuss building privacy programs for developers. Vaibhav explains privacy debt, the qualities of a developer-friendly privacy program, and how Privado scans codes for privacy risks.

Gary Vecchiarelli is the Chief Financial Officer at CleanSpark, a sustainable Bitcoin mining company solving modern energy challenges. As a licensed CPA, he has over 10 years of experience in public accounting, having worked for international firms with clientele ranging in size from $50 million to $1 billion while operating in various industries. Gary serves on the board of directors for the Doral Academy of Nevada and Financial Executives International Las Vegas Chapter. He was named by VEGAS INC magazine to the “Las Vegas 40 Under 40” list in 2014. In this episode… With the enforcement of the Sarbanes-Oxley Act of 2002, finance departments must remain transparent in their reporting practices to mitigate fraudulent activity. Yet these departments continue to struggle with privacy and security measures and as a result, fall victim to wire fraud and phishing scams. So, how can you assess and prevent risks to stay compliant and combat attacks? Finance and accounting expert Gary Vecchiarelli recommends implementing internal security controls to conduct preventative risk analyses and assessments and forecast potential attacks. At the foundational level, finance departments can invest in firewalls and encryption and instruct team members to approve transactions. To ensure maximum security, Gary advises incorporating the COSO Framework into your business processes to comply with industry standards and identify, monitor, and eliminate risks effectively. In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels host Gary Vecchiarelli, Chief Financial Officer at CleanSpark, to discuss managing risks in financial environments. Gary shares how he manages security from a financial perspective, how finance departments can prevent fraud and hacking, and the impact of risk assessments on financial decisions.

Dimitri Sirota is the Co-founder and CEO of BigID, a data platform that helps entrepreneurs acquire actionable intelligence in the data center and cloud to solve data privacy, protection, and prospective problems. As an established serial entrepreneur, investor, mentor, and strategist, he founded two enterprise software companies focused on security and API management. Dimitri is a contributor to Forbes Tech Council and was a finalist for the 2021 EY Entrepreneur of the Year Award. In this episode… With increasing ambiguity around sensitive consumer data, businesses are struggling to identify and manage personal information securely. So, how can you distinguish and reduce security risks on regulated data to provide your customers and organization with valuable insights? Privacy and identity expert Dimitri Sirota maintains the importance of understanding your company’s data. This necessitates pinpointing and recognizing the precise location and forms of your data to determine the associated risks. BigID provides businesses with the data analytics technology and tools needed to generate actionable insights, discard unnecessary data, and transfer personal information and transparency back to the customer. In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels host Dimitri Sirota, Co-founder and CEO of BigID, to talk about identifying and managing regulated and personal data. Dimitri discusses how to leverage data to deliver value to customers and organizations, how companies can identify and minimize cloud data risks, and the key trends in businesses’ privacy programs.

Troy Bettencourt is the Associate Partner of the X-Force Incident Response Team at IBM, a company that helps blue teams improve incident response plans and minimize the impact of a breach. As a technically-skilled person and process leader, he has over 10 years of leadership experience in the DFIR, law enforcement, and military spaces. Troy also has 18 years of digital forensics and incident response experience and three years of eDiscovery experience, which includes an assignment as the National eDiscovery Program Manager for a federal government agency. In this episode… With the rise in cyber attacks, it’s essential to develop proactive incident response measures. So, what are some steps you can take to mitigate breaches and make informed security decisions? With a breadth of technical expertise in incident response consultations, Troy Bettencourt emphasizes the importance of investing in proactive services to prepare for and emulate cyber attacks. These services include ransomware readiness assessments and tabletop exercises designed to optimize incident response measures and decision-making. When assessing and selecting services, businesses need to determine the service’s value-add to their security efforts. In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels host Troy Bettencourt of IBM to discuss developing incident response measures to combat cyber attacks. Troy explains how to select and purchase incident response services, the factors influencing the pricing and delivery of these services, and how he advises companies on incident response measures.

Marlon Williams is the Founder of Atlanta Blockchain Center, a company that aims to be the catalyst for Atlanta’s emergence as the global premier blockchain innovation hub. He is also the Founder of Starter Labs and Qubicles, Co-founder of Telos, and a Partner at Starter Capital. At 16 years old, Marlon attended Central Florida Vocational School to study computer programming and business management before attending Miami Dade College and Kaplan University to study computer information systems and information technology. In this episode… With the rise of Bitcoin and other forms of cryptocurrency, blockchain has become increasingly common. But its emergence raises privacy and security concerns, particularly with regard to digital assets and transactions. So, what do companies and developers need to consider before adopting blockchain or creating a blockchain platform? Software developer Marlon Williams says that in order to mitigate transaction exploits, designers need to implement proven frameworks when writing code to consider blockchain’s nuances and lengthy finalization times. Yet when it comes to personal digital assets, privacy remains an issue, so Marlon asserts the importance of federal regulatory guidelines to simplify asset representation and functionality and help companies build privacy features into their blockchains.  In today’s episode of She Said Privacy/He Said Security, Jodi and Justin Daniels interview Marlon Williams, Founder of Atlanta Blockchain Center, about considerations and concerns surrounding blockchain’s widespread use. Marlon shares tips for developing blockchain platforms, how privacy impacts brands’ use of blockchain, and the importance of regulatory guidelines in its mass adoption.

Michael Hahn is the Executive Vice President and General Counsel at the Interactive Advertising Bureau and IAB Technology Laboratory, a trade association that develops industry standards, conducts research, and provides legal support for the online advertising industry. In his role, he leads the organization’s legal affairs counsel and internal compliance efforts.  With extensive experience in litigation, Michael has provided multiparty class-action antitrust defense representation and directed lawsuits involving competitor conduct, distributional restraints, monopolization, and price discrimination claims. He serves as Co-chair of the New Jersey State Bar Association Antitrust Law Committee and previously served on the Editorial Advisory Board of Competition Law 360 and the Advisory Board of the American Bar Association Antitrust Section’s Civil Torts & RICO Committee. In this episode… Privacy regulations in the digital marketing and advertising technology space have become increasingly complex, with uncertainty surrounding the concept of data sales and the exchange of personal information. So, how can you navigate consent and interpret the many regulations in this industry? According to the settlement documents of Sephora’s enforcement action, a sale in advertising technology involves all manner of analyzing and measuring consumer data. Antitrust litigator Michael Hahn says that businesses must develop a contract that complies with state privacy laws to communicate consumer privacy preferences to organizations involved in digital ad distribution. IAB has developed a multi-state privacy agreement to help businesses remain compliant and act as a mediator in contract agreements.  In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels interview Michael Hahn, EVP and General Counsel at IAB, about managing evolving privacy consent laws in the advertising technology space. Michael discusses the conditions surrounding the sale of data, how IAB helps members comply with privacy laws, and the impact of Sephora’s settlement action on digital advertising.

Michelle Dennedy is the CEO of PrivacyCode, a privacy engineering SaaS platform that translates complex privacy policies for developers. She is also the Co-founder and Partner of Privatus Consulting, a company that assists clients with privacy engineering and governance, WickedPrivacy leadership solutions, and ESG metrics.  Michelle works closely with families, executives, and innovators at all levels and with businesses and organizations at all stages to support the combination of privacy policies, practices, and tools. She has held many leadership roles in data strategy and privacy at Sun Microsystems, McAfee, Intel, and Cisco as well as startup companies. In this episode… Data is becoming increasingly complex and nuanced, making privacy and security integral components of an organization’s enterprise — but many companies fail to budget and plan accordingly for these policies. So, how can you implement privacy strategies into your business plan? Michelle Dennedy recommends adopting a problem-solving framework known as WickedPrivacy. This involves executing immediate, systematic approaches to address complex and uncertain privacy challenges, including ethics, public safety, user data, and shareholder access. PrivacyCode helps privacy engineers and officers identify use cases to integrate and deploy privacy programs utilizing a compliance and soft systems method. In this episode of She Said Privacy/He Said Security, Jodi and Justin Daniels interview Michelle Dennedy, CEO of PrivacyCode and Co-founder and Partner of Privatus Consulting, about developing strategic approaches to privacy. Michelle explains the major privacy challenges companies face, the WickedPrivacy methodology, and advice for implementing a privacy budget.