UNSECURITY: Information Security Podcast

Evan has always been a strong proponent of weaving mental health transparency and help into the information security industry—one that tends to have long hours, stressful moments, and many other challenges that contribute to mental health struggles. With Brad out this week, Evan is joined by Ryan Cloutier for an honest and transparent discussion of mental health in infosec, their own personal mental health challenges, and the Mental Health First Aid certification.Give episode 122 a listen and send your questions, comments, and feedback to unsecurity@protonmail.com.

In light of the SolarWinds attack (which you've more than likely heard of by now), the US Senate met about the events surrounding the attack and what can be done to prevent (or at least reduce the likelihood of) similar events in the future. There were some very interesting witness testimonials, but not all good. If policymakers draft policy based solely on what these witnesses said, we might be in some serious trouble!Evan and Brad recount the hearing and discuss their thoughts on the attacks, the witnesses, the hearing itself, and more.Give episode 121 a listen/watch and send us your questions, comments, and feedback to unsecurity@protonmail.com.

The UNSECURITY Podcast welcomes special guest Tony Alsleben this week. Tony is the head of security for CentraCare. With Brad and Evan, Tony discusses his career and current role, what being a CISO (and similar positions) in healthcare is like, some of the industry's biggest security challenges, and advice for healthcare security colleagues. The three of them also touch on the vCISO Handbook, the CISSP Mentor Program, and some industry news.Give this episode a listen or watch, and send comments, questions, and feedback to unsecurity@protonmail.com.

Episode 119 of the UNSECURITY podcast is jam-packed with a number of current events topics Evan and Brad have been following. The discussion includes a super useful and free “Legal Guide to Privacy and Data Security” written by a friend, a novel attack vector used to target the supply chain of some big tech players, and more on the water facility attack from last week and what that might mean for our national infrastructure as a whole.Give this episode a listen or watch, and as always, send us your questions, comments, and feedback to unsecurity@protonmail.com.

Since the initial announcement of CMMC requirements and certification, the information security industry has abruptly shifted its focus towards preparing for it. While there are differences between "compliant" and "secure," CMMC seems to be one of the best compliance approaches to date—really taking important security fundamentals into account. In this episode, Brad and Evan discuss the differences between security and compliance, how to approach information security the right way, and how those relate to CMMC.Give episode 118 a listen or watch and then send your comments, questions, and feedback to unsecurity@protonmail.com.

In episode 117 of the UNSECURITY Podcast, Evan and Brad listen to an impressive scam voicemail Evan received and talk about the novelty of it and how effective it might be. Then, they discuss privacy and whether it's truly the "right" people claim it to be. Finally, they talk about a well-known problem across the industry: burnout.Give this episode a listen/watch, then send us your questions, comments, and feedback to unsecurity@protonmail.com!

Episode 116 of the UNSECURITY Podcast can really be broken into two parts. First. Evan and Brad discuss the CIS Controls Version 8 Public Call (running through 2/8/2021) and the changes that are expected made. Second, Evan posed a question about the root of all problems in the infosec industry on LinkedIn and has gotten an overwhelming response. Brad and Evan also chat about some of the responses. Finally, the guys provide an update on their free CISSP training course.Give this episode a listen/watch, then send us your questions, comments, and feedback to unsecurity@protonmail.com!

Recurring guest and friend of the program, Amy McLaughlin, returns to the UNSECURITY Podcast this week to discuss her new book titled "Learning Continuity Planning: A Handbook for Schools, Colleges & Universities." With Evan and Brad in the process of co-authoring a book as well, the three of them discuss their new works in detail. They also touch on the 2021 CISSP Mentor Program (which registration just launched for) and news stories like DarkMarket Shutdown, Hackers Leak Stolen Pfizer-BioNTech COVID-19 Vaccine Data, and Serious Windows 10 Flaw Could Corrupt Your Hard Drive If You Open a Folder.Give it a watch or listen and then send your comments, questions, and feedback to unsecurity@protonmail.com.

Thanks to Brad, FRSecure is now an official CMMC Registered Provider Organization (RPO). Given this, and the requirements beginning to trickle out to DoD service providers and supply chain, he and Evan chat about the upcoming requirements. Tune in to episode 114 to get an idea of what it looks like, what FRSecure is going to do for it, and what you can do to start preparing. As always, feel free to send questions, comments, and feedback to us at unsecurity@protonmail.com.

If you're a loyal follower of the UNSECURITY Podcast, you know that from time to time Evan takes trips down to Mexico to get away from everything so he can write. Well, he's back. This time, he's co-authoring a vCISO Handbook with Brad. In this week's episode, the co-hosts (and soon to be co-authors) talk about what readers can expect in their upcoming piece—which hopes to be done before fall of this year.Check it out anywhere you consume podcasts, and send us your questions, comments, and feedback to unsecurity@protonmail.com.