
ISF Podcast
The ISF Podcast brings you cutting-edge conversation, tailored to CISOs, CTOs, CROs, and other global security pros. In every episode of the ISF Podcast, Chief Executive, Steve Durbin speaks with rule-breakers, collaborators, culture builders, and business creatives who manage their enterprise with vision, transparency, authenticity, and integrity. From the Information Security Forum, the leading authority on cyber, information security, and risk management.
Latest episodes

Nov 21, 2017 • 11min
IoT: All I did was press the button on my smartphone
The smartphone has become an extension of our work and our personal life – everyone expects to be able to access something with a click of the button. But what are some of the serious consequences that a culture of convenience has given rise to? With 21 billion connected devices estimated to be around the world by 2020 this is surely a question all technology users should be asking.
In this podcast, Steve Durbin, Managing Director, ISF, discusses the business and personal security consequences of IoT and how technology providers need to ensure security is built in rather than tapped on to IoT devices. For more information visit www.securityforum.org.
https://www.securityforum.org/videos-podcasts/isf-podcast-iot-on-my-smartphone/

Sep 6, 2017 • 10min
Tackling the Cyber Skills Shortage: Innovation is Key
As organisations of all sizes try to be more agile in responding to emerging threats, finding people with the right skill set is something of a challenge. With cyber now integrated into the DNA of business, the big question remains: how do we attract, train and retain the cyber specialists of the future?
In this podcast, Steve Durbin, Managing Director ISF, offers insights into how educational bodies and organisations, such as the ISF, can educate the next generation of cyber security professionals. Steve highlights the constantly evolving and dynamic nature of the role that makes cyber security such an attractive career path, whilst also discussing the importance of helping business people transition into the security space.
https://www.securityforum.org/videos-podcasts/isf-podcast-tacknnovation-is-key/

Aug 15, 2017 • 9min
Falsification: How to protect the integrity of data
As organisations become increasingly dependent on data, unscrupulous competitors and cyber criminals are using falsified information as a form of attack. Falsification has been used to inflict both product and brand damage on organisations that have been too slow to protect their information. So, what steps can organisations take to protect the integrity of their data and minimise the impact upon their brand?
In this podcast, Steve Durbin, Managing Director ISF, provides solutions for businesses. Steve discusses what has contributed to the growth of falsified information, how businesses should protect the integrity of their data and how they should work collaboratively with third parties to tackle the threat.
https://www.securityforum.org/videos-podcasts/falsification-hontegrity-of-data/

Jul 26, 2017 • 11min
GDPR Compliance: Full disclosure becomes a reality
Many organisations with a footprint in Europe are still unclear if the GDPR applies to them, or if they have the right team and resources to address it. The GDPR will require a collaborative effort between businesses and third parties to ensure that all areas of the information life cycle are protected – a daunting project for security teams.
In this podcast, Steve Durbin, Managing Director ISF, offers top tips and insights into the steps organisations must take to comply with the GDPR – to produce a security model of ‘privacy by design’. Fundamentally, organisations will need to know what data they are storing, how they are storing it and how they are protecting it – to show regulatory bodies that they have taken every possible step to preserve the integrity of customer data.
For more information visit: www.securityforum.org

Jun 27, 2017 • 13min
Emerging Technology: AI's role in business
Artificial Intelligence is a growing trend across industry sectors from medical and legal to automotive and manufacturing. However, the new capabilities of AI technologies, can lead to unexpected outcomes and new risks on the threat horizon, such as: AI machines misunderstanding information, new means for criminals to extract an organisation’s mission critical information and AI technologies learning from wrong or incomplete data to make poorly informed decisions. Such cybersecurity risks raise the questions, what does the growth of AI mean for businesses and how can business leaders ensure that the benefits of AI outweigh the risks?
In this podcast, Steve Durbin, Managing Director ISF, offers insights for C-suite and business leaders into how to collaborate across the organisation to create best practice methods for deploying AI systems. Steve provides an overview of the risks associated and maps out the security by design argument to enable companies to successfully handle emerging technology and develop a robust cyber resilience strategy.
https://www.securityforum.org/videos-podcasts/4696-2/

Jun 12, 2017 • 10min
Building Cybersecurity into the mergers and acquisitions process
Increasingly, organisations are waking up to the negative business impact of poor cybersecurity programmes and are taking cyber incidents more seriously in their mergers and acquisitions deals (e.g YAHOO! and Verizon). However, trying to get a grasp of the cyber profile of an organisation is extremely difficult – as integrity of information is often difficult to monitor. For companies to grow and become desirable for acquisition deals, they need to be able to demonstrate their cyber resilience strategies. Businesses must be able to prove to their stakeholders, clients, potential buyers and shareholders that they have taken every reasonable step to ensure that their mission critical information is protected.
Steve Durbin, Managing Director ISF, discusses the nature of the mergers and acquisitions process in a digital age and offers insights into how organisations can build a strong cyber resilience programme to move with confidence as they pursue new acquisitions.
https://www.securityforum.org/videos-podcasts/building-cyberseisitions-process/

May 22, 2017 • 13min
Threats to Critical Infrastructure: Internet as a utility
In a digital age, the internet is viewed by businesses and individuals alike as a basic utility. Businesses are dependent upon it and this, in itself, is a threat that cyber criminals can take advantage of. We saw earlier in May 2017 how the NHS attack on its critical infrastructure led to a shutdown of the NHS Windows systems, causing medical professionals to have to resort to pens and paper when noting patient data. Moreover, a few years ago Russian hackers cut the internet off in Estonia in a national attack on their critical infrastructure, resulting in business grinding to a halt. The internet is a part of every businesses infrastructure, so what is the impact if this is compromised and what should a business response plan look like?
Steve Durbin, Managing Director ISF, offers solutions for C-suite leaders, should their critical infrastructure come under attack and advises how a reliance on older technology can assist an organisation through an internet attack. Fundamentally, whilst the future is becoming more and more digitised, organisations need to be planning for the day when their technology is not working.
https://www.securityforum.org/videos-podcasts/threats-to-critinet-as-a-utility/

May 4, 2017 • 8min
The NY DFS: How the ISF can help
In March 2017, the New York Department for Financial Services (DFS) implemented a Cyber Security regulation, requiring financial institutions to establish a cyber security programme to protect consumer data. But how will this affect New York businesses and what measures should they put in place to meet these requirements?
In this podcast, Steve Durbin, Managing Director of the ISF, addresses these questions and offers insights into how the ISF can help New York financial institutions put in place the mechanisms to comply with the NY DFS.
https://www.securityforum.org/videos-podcasts/isf-podcast-the-the-isf-can-help/

Feb 22, 2017 • 10min
The Role of the End User - the Weakest or Strongest Link
People remain a ‘wild card’ to the cyber security of an organisation. Many businesses recognise people as their biggest asset, yet still fail to recognise the need to secure ‘the human element’ of information security. Steve Durbin, Managing Director at the ISF, tackles the question: how can organisations make people their strongest line of defence against cyber-attack?
https://www.securityforum.org/videos-podcasts/isf-podcast-the-izon-2017-series/

Feb 1, 2017 • 11min
Government & Regulators Won't Do it for You
The GDPR will require extreme preparation in order for organisations to meet new compliance rules. Businesses cannot rely on the government and regulatory bodies to do the work for them. In this podcast, Steve Durbin, Managing Director at the ISF, talks through the checklist of regulations, financial and operational challenges and data management that organisations must take responsibility for and address this year.
https://www.securityforum.org/videos-podcasts/isf-podcast-govent-do-it-for-you/