Defense in Depth cover image

Defense in Depth

Latest episodes

undefined
Apr 3, 2025 • 29min

Can AI improve Third-Party Risk Management (TPRM)

All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark, the producer of CISO Series, and Jason Elrod, CISO, MultiCare Health System. Joining us is our sponsored guest, Nick Muy, CISO, Scrut Automation. In this episode: Supercharging teams Shifting to proactive A unique opportunity A human in the legal loop HUGE thanks to our sponsor, Scrut Automation Scrut Automation empowers compliance and risk teams of all sizes to build enterprise-grade security programs effortlessly. With powerful automation, AI-driven efficiencies, and seamless integrations, Scrut eliminates compliance debt and enables proactive risk management—helping your business stay secure as it scales. Visit www.scrut.io to learn more or schedule a demo.
undefined
Mar 27, 2025 • 32min

Cybersecurity Is NOT an Entry-Level Position

All links and images for this episode can be found on CISO Series. Check out this post by Tallis Jordan of the U.S. Army Cyber Command for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark, the producer of CISO Series, and Steve Zalewski. Joining us is Montez Fitzpatrick, CISO, Navvis. In this episode: Start with foundations Learning to learn Don’t get hustled Building a pipeline HUGE thanks to our sponsor, Scrut Automation Scrut Automation empowers compliance and risk teams of all sizes to build enterprise-grade security programs effortlessly. With powerful automation, AI-driven efficiencies, and seamless integrations, Scrut eliminates compliance debt and enables proactive risk management—helping your business stay secure as it scales. Visit www.scrut.io to learn more or schedule a demo.
undefined
Mar 20, 2025 • 28min

Hey Vendors, What Problem Is Your Product Solving?

All links and images for this episode can be found on CISO Series. Check out this post from Yaron Levi for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark, the producer of CISO Series, and Mike Johnson, CISO, Rivian. Joining us is Yaron Levi, CISO, Dolby. In this episode: A knowledge deficit Talk is cheap What’s the difference? Answer the preliminaries HUGE thanks to our sponsor, Scrut Automation Scrut Automation empowers compliance and risk teams of all sizes to build enterprise-grade security programs effortlessly. With powerful automation, AI-driven efficiencies, and seamless integrations, Scrut eliminates compliance debt and enables proactive risk management—helping your business stay secure as it scales. Visit www.scrut.io to learn more or schedule a demo.
undefined
10 snips
Mar 13, 2025 • 26min

We've Been Fooled. There Is No Talent Shortage.

In this conversation, Ngozi Eze, the CISO at Levi Strauss, unpacks the illusion of a cybersecurity talent shortage, attributing it to inflated job posts and outdated compensation practices. She discusses salary trends revealing significant increases for roles like CISOs, challenging the narrative of companies' unwillingness to pay. Eze also highlights the need for cultural fit and transparent recruitment to attract top talent, while addressing the complexities of the job market and the importance of realistic job expectations.
undefined
Mar 6, 2025 • 32min

Is There an Increasing Consolidation of Vendors in the SOC?

All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Howard Holton, CTO, GigaOm. Joining us is Francis Odum, founder, Software Analyst Cybersecurity Research. In this episode: Rebalancing the SOC The case for consolidation It comes down to data Concentric cycles Thanks to our podcast sponsor, Palo Alto Networks Cortex Cloud, the next generation of Prisma Cloud, merges best-in-class CDR with industry-leading CNAPP for real-time cloud security. Harness the power of AI and automation to prioritize risks with runtime context, enable remediation at scale, and stop attacks as they occur. Bring together your cloud and SOC on the unified Cortex platform to transform end-to-end operations. Experience the future of real-time cloud security at https://www.paloaltonetworks.com/cortex/cloud.
undefined
13 snips
Feb 27, 2025 • 32min

Are CISOs Struggling to Get Respect?

Lee Parrish, CISO at Newell Brands and author, joins David Tyburski, CISO at Wynn Resorts, to discuss the unique challenges facing CISOs today. They delve into the importance of fostering a strong security culture within organizations and the need for clear communication with boards. The conversation emphasizes empowering non-cyber staff through innovative programs and strengthening relationships to enhance cybersecurity governance. Their insights reveal how strategic engagement can elevate cybersecurity’s importance in corporate discussions.
undefined
11 snips
Feb 20, 2025 • 29min

Is Platformization Vs Best-of-Breed a False Dichotomy?

Elad Koren, VP of Product Management for Cortex Cloud at Palo Alto Networks, brings a wealth of expertise in cloud security. He dives into the ongoing debate of platformization versus best-of-breed solutions, challenging the simplistic views often held. Topics include the critical role of context in decision-making, the urgent security challenges faced by leaders, and the necessity of balancing budgets with effective purchasing. Koren emphasizes the importance of understanding organizational needs and the value of integrated security strategies.
undefined
12 snips
Feb 13, 2025 • 30min

Protecting Your Backups from Ransomware

DJ Schleen, a former distinguished security architect at Yahoo, and Heath Renfrow, co-founder of Phoenix 24 specializing in ransomware recovery, bring valuable insights on protecting backups. They discuss the rising threats of ransomware and the need for proactive backup strategies. The duo emphasizes the importance of rigorous testing and collaboration in improving data resilience. They also delve into real-world case studies, highlighting common pitfalls organizations face and the necessity for robust recovery solutions to combat cyber threats effectively.
undefined
Feb 6, 2025 • 25min

Can a Security Program Ever Reach Maintenance Mode?

Andrew Wilder, CISO at Vetcor, offers a wealth of knowledge in cybersecurity risk management. The conversation centers on the complexities of achieving 'maintenance mode' in security programs. Wilder discusses the balance between proactive measures and optimizing existing tools while navigating organizational growth. He emphasizes the importance of continuous improvement over merely shifting to maintenance mode, highlighting the necessity for effective incident response and ROI assessment in security investments. Wilder also touches on the evolving role of CISOs in business alignment.
undefined
22 snips
Jan 29, 2025 • 26min

The Hardest Problems in Security Aren't "Security Problems"

Sneha Parmar, an Information Security Officer at Lufthansa Group Digital Hangar, discusses the importance of viewing cybersecurity as a collective responsibility. She emphasizes the critical role of foundational practices like asset inventory and maintenance, arguing that overlooking these can lead to vulnerabilities. Sneha highlights how understanding organizational assets and fostering accountability can enhance security measures. The conversation also stresses that prioritizing operational discipline is key to building a resilient cybersecurity posture.

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.
App store bannerPlay store banner

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode