Caffeinated Risk

Threat modeling expert discusses integrating expertise into risk assessment, no AI magic in identifying threats. Exploring fusion of metrics and opinions in attack tree modeling, analyzing cybersecurity architecture using historical attacks for security assessment.

Dr. Jack Freund, risk management thought leader, discusses quantifying risk, breach reports, cultural change in organizations, and prioritizing security efforts. Insightful and humorous, he shares his expertise in risk management with the hosts.

Exploring the benefits of a converged approach in security, the podcast discusses the challenges of silos in cyber-physical security convergence. It touches on data privacy, GDPR regulations, and the balance between privacy and security in the workplace. The discussion also delves into the importance of encryption, trust in data sources, and the evolution of IoT devices in enhancing security measures.

Realtors have long advocated  "location, location, location" as a path to investment  success. Fast forwarding  a few generations,  location intelligence applied to risk management is paying dividends well beyond real-estate and Esri is a world leader in this fascinating application  of geo-spatial information.  Esri business solutions leader Alex Martonik shares examples of businesses making improvements to  resilience and the bottom line  by combining  GIS, financial, technological and political data  into risk calculations. Mr. Martonik  also shares Esri's approach to "democratizing risk insights", helping solve the all to common problem of procuring buy-in.    

A great discussion point that didn't make it to air from the original 2021. Not all data is of equal value to the organization and the viable shelf life is seldom tracked or even discussed. This espresso shot takes a humorous look at a serious question about privacy considerations during the development cycle and check out the original full episode with privacy thought leader Michelle Finneran Dennedy.

Paul Mercer, a former Royal Navy member, developed a risk management software. He emphasizes prioritizing mitigation over analysis in enterprise security risk management and effective communication with executives. The importance of gaining customer trust through standardized processes is highlighted. The podcast discusses prioritizing key rules in risk-based compliance and aligning control measures with specific risks for effective security management.

Exploring the evolution of security in business partnerships, transitioning from silos to collaborative partners. Understanding risk tolerance in budgeting for risk management and aligning efforts with business risk levels.

Learn from international crisis management thought leaders Alexandra Hoffman and Tim Wenzel about building resilience in risk management strategies, navigating influence in organizations, and the ongoing journey of fostering organizational resilience. Explore real-life examples and the challenges of breaking down silos for sustainable business growth.

Exploring the impact of the July 2022 nationwide telecom outage, discussion on ethics and commitment to the common good. Navigating challenges in telecom industry resilience, cybersecurity concerns, and legislative developments. Exploring ethics in legislation and cyber security, driving organizational resilience with ethical considerations for societal welfare.

Explore how a security practitioner created a custom solution for risk management, challenges in risk registry development, tying risks to assets for evaluation, the role of a CISO in business operations, and translating technical risks into business decisions.