All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week’s episode  co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Steve Zalewski. Joining us is our sponsored guest, Itai Tevet, CEO, Intezer. In this episode: Build for what you can handle Rethinking alerts Building trust into your system Seeing the bigger picture Thanks to our podcast sponsor, Intezer Intezer’s AI-driven solution automates alert triage and investigations, cutting through the noise to highlight serious threats. By integrating with your security tools, it escalates only 4% of alerts for fast remediation, helping SOC teams focus on what matters. Learn more at intezer.com today!

Yaron Levi, the CISO of Dolby and an expert in cybersecurity and vulnerability management, dives deep into the distinctions between vulnerability discovery and management. He emphasizes that without knowing what vulnerabilities exist, effective management is impossible. Discussion revolves around the ongoing nature of vulnerability management, the need for prioritization, and the fascinating role of AI in reducing alert fatigue. Levi's insights reveal that context and collaboration are vital for creating a robust cybersecurity strategy.

All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Dan Walsh, CISO, Paxos. Joining us is Sharon Milz, CISO, Time. In this episode: A vicious cycle Not all training is created equal Don’t forget the human factor We can still define success Thanks to our podcast sponsor, Intezer Intezer’s AI-driven solution automates alert triage and investigations, cutting through the noise to highlight serious threats. By integrating with your security tools, it escalates only 4% of alerts for fast remediation, helping SOC teams focus on what matters. Learn more at intezer.com today!

Ross Halleluk, an expert in cybersecurity startups and author of 'Venture in Security', teams up with Sid Trivedi, a partner at Foundation Capital. They discuss the unique challenges cybersecurity startups face, including issues with customer trust and market oversaturation. The conversation covers the importance of innovation in security solutions, the pitfalls of acquiring tools without implementation, and the need for specialized sales skills. They advocate for more startups in this space to address the pressing security needs of modern technology.

Allan Cockriel, Group CISO at Shell, dives into the impact of new SEC regulations on cybersecurity roles. He discusses the heightened accountability CISOs now face and the complexities of meeting regulatory demands amidst cyber threats. Cockriel highlights the importance of transparency while balancing security risks and the potential for a talent exodus in the field. Additionally, he emphasizes the need for industry collaboration and robust control frameworks to navigate these challenges successfully.

Karthik Krishnan, Founder and CEO of Concentric AI, dives into the risks associated with generative AI tools and how organizations can use them safely. He emphasizes the importance of proactive strategies for effective risk management. The conversation highlights the integration challenges of AI with traditional data security practices and the need for solid governance. Krishnan also warns against the disillusionment with AI-generated information, urging businesses to critically evaluate content and focus on data protection for successful AI adoption.

Steve Zalewski, a cybersecurity expert in identity access management, teams up with Damon Fleury, Chief Product Officer at SpyCloud, to discuss the evolving landscape of identity security. They highlight the necessity of centralized identity management and dynamic risk assessments. The conversation dives into the role of automation and user awareness in combating unauthorized access. Their insights focus on proactive defense strategies, tailored access controls, and the importance of adapting security measures to stay ahead of cyber threats.

Joe Lewis, CISO for the CDC and an expert in managing a remote workforce, dives into the evolving landscape of work-from-home dynamics. He highlights the impressive quality of life benefits that remote work offers and the need for flexibility. The conversation explores how to foster corporate culture remotely through strong communication and personal connections, while also addressing the challenges of staff retention. Joe critiques traditional office strategies, advocating for dedicated spaces over flex desks to promote employee comfort and productivity.

Adam Fletcher, CSO of Blackstone, shares his expertise on the critical dangers of neglected cybersecurity tools. He highlights how these tools can drain resources and emphasizes the need for regular updates and investment in cybersecurity. The conversation dives into the complications resulting from excessive alerts and the importance of a technology-agnostic approach. Adam also discusses the significance of strategic decision-making in selecting security tools and warns against cutting corners in foundational cybersecurity practices.

All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Shawn Bowen, VP, Deputy CISO - Gaming, Microsoft. Joining us is Patty Ryan, senior director, CISO, QuidelOrtho. In this episode: Recognizing humanity Death by a thousand meetings What are we looking for? Find your value Thanks to our podcast sponsor, GitGuardian GitGuardian is a Code Security Platform that caters to the needs of the DevOps generation. It provides a wide range of code security solutions, including Secrets Detection, Infra as Code Security, and Honeytoken, all in one place. A leader in the market of secrets detection and remediation, its solutions are already used by hundreds of thousands of developers in all industries. Try now gitguardian.com.