Some of the most aggressive cyber attacks originate out of Russia. The 2022 invasion of Ukraine was a pivotal moment for nation state attacks. Mikko is close to the front lines and one of the best sources of current research and perspectives. Listen to his pragmatic insights and let’s separate the fear from reality.
We take a hard look at when organizations make big cybersecurity mistakes, how the attackers see those as opportunities, and how they will maneuver to take advantage.
The explosive growth of GenAI has serious repercussions for cybersecurity. But is the fear being overplayed in the media? What are the realistic risks and what should security and business leaders be doing to protect their organization.
Should victims of ransomware be allowed to pay the cybercriminals? With the continuing rise of digital extortion, such as ransomware, the world has realized that typical security practices cannot keep pace and the impacts are threatening the critical infrastructure sector. That has significant ramifications to the security and safety of entire nations.
Effectively responding to cybersecurity crisis events is crucial, yet many organizations lack a mature capability.
I speak with Lisa Forte, a legend when it comes to helping organizations prepare for handling cybersecurity crisis events, who shares her rich insights and recommendations.
Donna Kidwell, CISO of Arizona State University, is one of the best and brightest in our community! I am continually amazed at her insights, strategic focus, and ability to creatively tackle some of the biggest problems in cybersecurity.
The cybersecurity community is in an uproar over the recently announced SEC case against SolarWinds and their CISO. I talk with Ira Winkler, a longtime respected veteran of the industry, to debate the various issues of this SEC fraud and Internal Control Failures.
The SEC case against SolarWinds and their CISO continues to reverberate across the cybersecurity community. I talk with Edward Amoroso, the Founder and CEO of TAG Infosphere, to discuss different aspects of the case and recent SEC requirements for disclosure of material incidents.
Some companies, after being breached are attempting to shift the 'narrative of blame' away from themselves and sometimes towards their customers! I talk with Christine Bejerasco, CISO of WithSecure, and discuss how this is coming about and what both companies and consumers should be doing to protect sensitive data.
We are doing cybersecurity metrics wrong! There are better ways and my guest Rick Howard, the CSO at N2K and longtime cybersecurity metrics expert, provides insights into how metrics can support cybersecurity programs and decisions. This is a timely topic as there are more pressures on CISOs, from new regulations, emerging standards, higher Board expectations, and SEC enforcements, that are increasing the need for better cybersecurity metrics.
Cybersecurity metrics as it relates to risk management, regulations, resource optimization, board communications, and grandmothers! We cover it all! Another great conversation with Gavin Grounds, longtime industry veteran and thought-leader in the enterprise cybersecurity metrics space. If you think metrics are important or you need better metrics, be sure to listen in!
Securing the software supply chain, including 3rd party vendors and suppliers, is a difficult problem that the cybersecurity industry is trying to tackle. The threats and risks are growing, which can have catastrophic impacts on companies and their downstream customers. Cassie Crossley, the VP of Supply Chain Security at Schneider Electric and the author of the book “Software Supply Chain Security”, shares her insights and recommendations for cybersecurity leaders.
Recent ransomware attacks against Las Vegas casinos has created serious reprocussions in the board room. I talk with Andrzej Cetnarski about what boards should be thinking and doing to adapt to regulatory and business cybersecurity problems.
In this Cybersecurity Vault episode, I talk with the legendary cybersecurity metrics maestro Wade Baker about the challenges of measuring what is important, manipulation through poor metrics, and where the cybersecurity industry is heading.
