Defense in Depth

David Spark, Steve Zalewski, Geoff Belknap
undefined
Apr 25, 2024 • 35min

Should CISOs Be More Empathetic Towards Salespeople?

Emily Heath, general partner at Cyberstarts, joins the podcast to discuss the relationship between CISOs and sales representatives. They delve into the challenges CISOs face with aggressive sales tactics, emphasizing the necessity of empathy and authenticity in sales interactions. The conversation highlights the importance of setting boundaries, providing strategic feedback, and building relationships based on trust and value.
undefined
Apr 18, 2024 • 30min

Managing Data Leaks Outside Your Perimeter

Developer advocate Mackenzie Jackson discusses managing data leaks outside your perimeter, addressing the challenges of third-party leaks, the need for security-conscious culture in software development, securely managing secrets and credentials, proactive measures like scanning code repositories for leaks, and safeguarding keys with tools like Gigi Shield and hasmysecretleaked.
undefined
Apr 11, 2024 • 36min

What Are the Risks of Being a CISO?

Guest Phil Davis, healthcare cybersecurity attorney, discusses the risks and responsibilities of CISOs in today's climate. Topics include liability, balancing responsibility and authority, and the evolving role of CISOs in organizations. Emphasis on security accountability, regulatory challenges, and the transition to cybersecurity attorney.
undefined
Apr 4, 2024 • 31min

Onboarding Security Professionals

Former CISO, Paul Connelly, discusses the crucial role of onboarding new cybersecurity talent, emphasizing the need for effective training and avoiding common mistakes. Strategies include fostering engagement, cross-team collaboration, and early exposure to different departments to create a positive onboarding experience.
undefined
Mar 28, 2024 • 29min

How to Improve Your Relationship With Your Boss

Jerry Davis, division director for cyber defense at Truist Bank, discusses the importance of building relationships with your boss to advance your cyber career. Topics include developing soft skills, effective communication strategies, setting clear expectations, and mastering leadership dynamics for success in the workplace.
undefined
5 snips
Mar 21, 2024 • 28min

Improving the Responsiveness of Your SOC

Exploring the challenges of integrating new tools in a SOC and the importance of readiness measures. Discussing the shift from past events to current activities, focusing on speed and measurable outcomes. Highlighting the role of Security Orchestration in boosting SOC efficiency. Delving into the shift towards behavioral monitoring in cloud environments. Reflecting on the ineffectiveness of current security measures and the need for proactive actions.
undefined
Mar 14, 2024 • 29min

The Demand for Affordable Blue Team Training

Exploring the high cost of blue team training compared to free red team education, discussing the impact on cybersecurity talent shortage. Highlighting the importance of self-learning and versatile tools in cybersecurity defense. Emphasizing the need for collaboration between red and blue teams, and the evolving threats in the cybersecurity landscape.
undefined
Mar 7, 2024 • 33min

Why are CISOs Excluded from Executive Leadership?

Exploring the absence of CISOs in executive leadership, challenges faced by CISOs in Fortune 100 companies, importance of clear guidelines and compliance, CISOs' role in disclosure decision-making post-security breaches, and contrasting perspectives on privacy and security prioritization.
undefined
Feb 29, 2024 • 31min

What Is Your SOC's Single Search of Truth?

Exploring the limitations of consolidating data from various sources with a single pane of glass concept. Discussing the challenges of centralized data analysis in cybersecurity operations. Introduction of Query Federated Search as a solution for managing security data sources. Emphasizing the importance of understanding and leveraging security data efficiently in SOC operations.
undefined
Feb 22, 2024 • 35min

When Is Data an Asset and When Is It a Liability?

The podcast discusses the balance between data being an asset and a liability for organizations, the risks of data collection, and the importance of data minimization. It explores privacy laws, lawsuits targeting tech companies, and ethical considerations surrounding data collection. The Electronic Frontier Foundation emphasizes the significance of minimizing data collection upfront for better privacy and security.

The AI-powered Podcast Player

Save insights by tapping your headphones, chat with episodes, discover the best highlights - and more!
App store bannerPlay store banner
Get the app