The Business of Security

Technology Podcasts

This podcast focuses on many non-technical aspects of cyber risk, cyber security and information security at the intersection of technology and managing to business expectations. Guests include CIOs, CEOs, and CISOs discussing the many facets of the information security industry, what matters, what needs to change and how to deal with modern-day challenges in this dynamic industry.

Location:

United States

Description:

This podcast focuses on many non-technical aspects of cyber risk, cyber security and information security at the intersection of technology and managing to business expectations. Guests include CIOs, CEOs, and CISOs discussing the many facets of the information security industry, what matters, what needs to change and how to deal with modern-day challenges in this dynamic industry.

Language:

English

Contact:

9525440234


Episodes

#42 - CIS Controls for Business with Valecia Stocchetti

12/9/2022
The Center for Internet Security, Inc. (CIS®) makes the connected world a safer place for people, businesses, and governments through our core competencies of collaboration and innovation. Join us as we discuss the impact that CIS Controls can have on your small to medium business. We dive into the mission of the Center for Infromation Security, membership, CIS Critical Controls, CIS Implementation Groups and much more! Hosts: Josh Bruyning, Sr. Solutions Engineer @TrustMAPP and Chad...

Duration:00:38:36

#41 - Investing in Supply Chain Solutions with Marcus Bartram

11/3/2022
Marcus Bartram is a General Partner at Telstra Ventures, a San Francisco-based VC firm that invests in mid-stage tech companies. He's on the founding team and has led investments in cybersecurity companies like CrowdStrike, Auth0, Anomali, Cequence, CloudKnox, Cofense, CyberGRX, Elastica, vArmour, and Zimperium. Hosts: Josh Bruyning, Sr. Solutions Engineer @TrustMAPP and Chad Boeckmann, Founder/CEO @TrustMAPP Sponsor: TrustMAPP (https://trustmapp.com)

Duration:00:25:28

#40 - Mind the Tech Gap with Dr. Nikki Robinson

9/23/2022
In this episode of The Business of Security, we discuss Dr. Robinson's upcoming book, Mind the Tech Gap, and how to manage the problem of low to non-existent collaboration between IT and Security teams. This conversation covers tools and techniques for creating a rich, collaborative environment for organizations in order to achieve security goals. Guest: Dr. Nikki Robinson, Security Architect at IBM, Adjunct Professor at Capital Technology University Hosts: Josh Bruyning, Solution...

Duration:00:43:09

#39 - Don't Fire the CISO, with Quentyn Taylor

8/3/2022
Top Tips for getting into the security industry and future proofing your strategy. This podcast will focus on Quentyn’s long career in cyber security and how working for the same company for a long period of time years has enabled him to build resilience and always think years ahead when executing a strategy. Quentyn has a wealth of knowledge experience in both the IT and information security arenas and has driven Canon’s strategy to highlight the importance of document security and help...

Duration:00:36:21

#38 - Succession Planning, with John Checco

6/15/2022
In this episode, guest John Checco, Resident CISO at Proofpoint, makes a compelling case for CISO succession planning. As John takes us through his journey as a CISO, we learn how companies factor skills, background, and strengths into their short to long-term succession plans. The average estimated tenure of a CISO is only 26 months. 85% of surveyed CISOs say they are now looking for another role or would consider an opportunity if presented. Unless you take aggressive retention action, it...

Duration:00:38:58

#37 – Leveraging Information Sharing To Protect Your Organization, with Bill Nelson

5/4/2021
In this episode, guest Bill Nelson, CEO of the Global Resiliency Federation (GRF), talks about the GRF’s mission to help organizations in myriad industries share critical security threat information so they can all better defend themselves. Bill lays out the history of GRF – how it emerged from the work he did at FS-ISAC, where he grew membership from 170 banks to 7,000. Bill led a team that was tasked with helping other industries set up their own security information sharing programs,...

Duration:00:34:28

#36 – Sorting out CISOs, Deputy CISOs, BISOs, and vCISOs, with Will Klusovsky

4/14/2021
Join Chad and special co-host Allan Alford for an enlightening conversation with Wil Klusovsky, Global Cybersecurity Strategy, Governance, Risk & Compliance (SGRC) Offering Lead at Avanade. The three of them take on the sometimes confusing realm of CISOs, Deputy CISOs, Business ISOs, and virtual CISOs. In this episode, hear about: Guest: Wil Klusovsky, Global Cybersecurity Strategy, Governance, Risk & Compliance (SGRC) Offering Lead at Avanade Hosts: Allan Alford, CTO & CISO,...

Duration:00:35:00

#35 – Business Resiliency with Gus Thompson

3/25/2021
Join Chad and Malcolm as they chat with Gus Thompson, Consulting Managing Director at TruDoss, about business resilience. In this episode, hear about: Guest: Gus Thompson, Consulting Managing Director at TruDoss Hosts: Malcolm Harkins, Chief Security and Trust Officer, Cymatic Chad Boeckmann, Founder/CEO, TrustMAPP Sponsor: TrustMAPP (https://trustmapp.com)

Duration:00:27:00

#34 – SaaS Security Made Simple with Ben Johnson

2/3/2021
In this episode, guest Ben johnson, co-founder and CTO of Obsidian Security, discusses how he got into cybersecurity (after seeing the movie "Enemy of the State"), got into US intelligence, got tired of the polygraphs, and ultimately ended up co-founding Carbon Black. It's a fascinating journey! Today, Ben is focused on continuous security monitoring of SaaS environments, and figuring out how a security team can protect their organization's SaaS accounts that they don't even have access...

Duration:00:39:16

#33 – IoT Security in the US Federal Government with Drew Spaniel

1/7/2021
In this episode, guest Drew Spaniel walks us through the new law passed in late 2020, The IoT Cybersecurity Improvement Act of 2020 (HR 1668), and how if will affect not just US federal government procurement, but IoT device manufacturers, and consumers as well. The Act calls for IoT devices to be secured by manufacturers based on NIST guidance and cybersecurity best practices. From the Congessional Budget Office: "Under H.R. 1668, NIST also would publish standards for federal agencies,...

Duration:00:41:21

#32 – Do SMBs Need a CISO? – John Prokap, CISO

12/21/2020
In this episode, guest John Prokap discusses the cyber security needs of small and mid-sized businesses, and if and when they need to hire a CISO. His discussion with hosts Malcolm and Chad covers: Recoil in horror as John, Malcolm, and Chad share stories from their pasts, including: users with one-character passwords, RSA auth tokens zip-tied to forklifts, and how one company had more domain admins that IT staff. Guest: John Prokap, former CISO at HarperCollins Hosts: Malcolm Harkins,...

Duration:00:31:04

#31 - Miguel El Lakkis, CISO - Transitioning CISO Responsibilities

11/10/2020
In this episode, we feature our guest Miguel El Lakkis. Miguel recently transitioned from News Corp to Cantor Fitzgerald and in this process he describes the method commonly used by CISO's to properly transition a security program to a successor. We discuss the various aspects of a security program that may change over time and how to address constants to avoid duplication of efforts. The CISO responsibilities should be managed like a relay race not a marathon to make for a smoother...

Duration:00:32:40

#30 - Hiring and Securing a Remote Workforce - Lucinda DuToit, VP of HR, Digineer

10/1/2020
In this episode we discuss the process of recruiting, identifying culture fit and managing trust with a remote workforce and how these components impact the security profile of a company. The discussion begins with identifying an appropriate recruiting process for a remote workforce and measuring the appropriate candidates to hire in a remote workforce scenario. We also dive into how this remote work environment has opened up a potentially broader skillset that previously may not have been...

Duration:00:38:46

#29 - Emerging Trends in IoT Cyber Security Regulation - Drew Spaniel, ICIT and James Russell, Paul Phillips of Microchip Technology

9/15/2020
In this episode we invite special guests Drew Spaniel, Lead Researcher, Institute for Critical Infrastructure Technology (https://icitech.org), James Russell, Worldwide Group Leader, Wireless Connectivity Specialists and IoT Security Team, Microchip Technology (https://www.microchip.com) and Paul Phillips, Principal Embedded Solution Engineer, Microchip Technology. We also hear from privacy expert Kirk Nahra, Partner and Co-Chair of Privacy and Cybersecurity Practice at WilmerHale. This...

Duration:00:35:35

#28 - Culture of IoT Cyber Security - Drew Spaniel, ICIT and James Russell, Microchip Technology

7/21/2020
In this episode we invite special guests Drew Spaniel, Lead Researcher, Institute for Critical Infrastructure Technology (https://icitech.org) and James Russell, Worldwide Group Leader, Wireless Connectivity Specialists and IoT Security Team, Microchip Technology (https://www.microchip.com). In this episode we dive into the unique aspects of IoT Security and how the culture of security is so critical across engineering teams who previously designed and built systems that were not connected...

Duration:00:34:18

#27 - Benny Lakunishok, CEO, Zero Networks - Sine Wave of Prevention, Detection and Response

6/17/2020
On this episode of the podcast Benny Lakunishok, Co-Founder of Zero Networks, join Malcolm Harkins and Chad Boeckmann to explore the industry's continuous adoption and adaption of prevention -> detection -> prevention technologies. The group dives into the maturity of machine learning and where the industry is overall as well as how adoption of new technologies is imperative to maintain adequate risk posture over time while serving the best interests of business. Guest: Benny Lakunishok,...

Duration:00:41:46

#26 - John Brennan, Partner, YL Ventures - Investing and Managing Risk During COVID

5/26/2020
In this episode, Malcolm Harkins and Chad Boeckmann speak with John Brennan, Partner at YL Ventures. This episode provides a perspective of how venture capital firms are reacting to and supporting their cybersecurity portfolio companies during an unprecedented pandemic in our modern time. In this episode we discuss trends of security teams and John discusses advice their firm is providing to other cybersecurity startups. Further in the discussion Malcolm and John discuss the context of...

Duration:00:45:26

#25 - Michael Lines, CISO and Entrepreneur - Overloaded Security Leader?

1/6/2020
Overloaded Security Leader? In this episode Michael Lines joins Chad Boeckmann and Malcolm Harkins in a discussion about tactically prioritizing security efforts and what it means to get real traction. This episode explores supplier risk versus third-party risk and how this relates to overall business objectives and outcomes. Further discussion evolves into the problematic challenge of a new CISO where results must be achieved now and how to set-up a "trading" system internally to curtail...

Duration:00:32:39

#24 - Jason Lish, Chief Security, Privacy, and Data Officer - Build or Buy Your Security Leader?

12/3/2019
In this episode co-hosts Malcolm Harkins, Security and Trust Officer at Cymatic and Chad Boeckmann, CEO at TrustMAPP, speak with Jason Lish, Privacy, and Data Officer at Advisor Group about mentoring the next security leader and creating a back up for existing cyber security leadership. The discussion evolves into skill types, as well as organization maturity and fitting the right leader profile with the appropriate security program stage a company may be currently managing. Both Jason and...

Duration:00:38:12

#23 - Malcolm Harkins, Security & Trust Officer, Cymatic - Obtaining Value from Cybersecurity

11/4/2019
The podcast is back with fresh new content. In this episode Chad Boeckmann talks cybersecurity value, business engagement and contemplating risk versus measuring risk with Malcolm Harkins. The security team of course must align to the business but just as important the business must align with security. So how do we accomplish this? What approach is best practice? Do you need to quantify all the risk? How do I design my control environment to meet all the demands of the business while...

Duration:00:29:51