Talking Cyber Security podcast artwork

PODCAST · technology

Talking Cyber Security

Cyber Security, data breaches, Hackers, Chief Information Security Officers, Talking Cyber Security (formerly 'The Australian CISO') is a podcast for anyone interested in Cyber Security. Hear about data breaches, cyber news, how security personnel 'tick', how to answer questions at an interview, lessons learnt while doing the security role, how security people network, how they succeed etc. Use the email address [email protected] to make comments, pose questions or even ask to be on The Australian CISO podcast.The main presenter is Richard Heron. Richard is an experienced CISO and has learnt many tough lessons during the many and varied Security Management roles he has held since 2002. He also holds some security accreditations as well. Richard enjoys AFL, podcasting, e-Biking and charity work.

  1. 75

    Episode 106: Episode 106 Mythos, Quantum and the Canvas Breach

    In this episode, Richard briefly discusses Anthropic's Mythos, Quantum computing and the recent Canvas Breach.

  2. 74

    Episode 104: Episode 105 - Top 10 - Security knowledge alone is not enough

    In this 40 minute episode, Richard provides the top 10 recommendations to help you get to the next level. You can have all the certifications in the world, but without the non-security related skills... you will find it hard to progress. 

  3. 73

    Episode 103: Episode 103 - Part 4 - Security knowledge alone is not enough.

    In this episode, Richard finishes off the discussion on all the non-security related skills you will need to climb the corporate security ladder.

  4. 72

    Episode 102: Episode 102 - Part 3 - Security knowledge alone is not enough

    Richard continues his discussion about the non-security skills you require to be successful in a cyber role.

  5. 71

    Episode 101: Episode 101 - Part 2 - Security knowledge alone is not enough

    In Part 2 of this series, Richard continues with the lessons needed to get you to the next level in your security journey.

  6. 70

    Episode 100: Episode 100 - Security knowledge alone is not enough

    In this episode, Richard is of the opinion that security knowledge is just not enough to succeed in this field.

  7. 69

    Episode 99: Episode 99 - Quick AISA Melbourne Cybercon 2025 coverage

    In this episode, Richard briefly gives his thoughts about CyberCon Melbourne 2025.

  8. 68

    Episode 99: Episode 99 - Quick AISA Melbourne Cybercon 2025 coverage

    In this episode, Richard briefly gives his thoughts about CyberCon Melbourne 2025.

  9. 67

    Episode 98: Episode 98 - CyberCon Melbourne 2025

    In this episode, Richard discusses what to expect from CyberCon Melbourne 2025.

  10. 66

    Episode 97: Episode 97 - Part 2 - Scattered Spider

    In this episode, Richard completes his 2 part series on hacking group Scattered Spider.

  11. 65

    Episode 96: Episode 96 - Scattered Spider - Part 1 of 2

    In this episode, Richard commences his look into infamous hacking group Scattered Spider.

  12. 64

    Episode 95: Episode 95 - Security Awareness - What works?

    In this episode, Richard has a deep dive into Security Awareness. What works? What doesn't?

  13. 63

    Episode 94: Episode 94 - DLP Revisited Part 2

    In Episode 94, Richard concludes his in depth discussion about Data Loss Protection...or was that Data Loss Prevention. DLP by any other name.

  14. 62

    Episode 93: Episode 93 - Data Loss Protection - revisited

    Richard revisits the very important Cyber field of Data Loss Protection.

  15. 61

    Episode 92: Episode 92 - Day 2 - Gartner Risk and Security Conference (Sydney)

    Richard completes his summary of the March 2025 Gartner Risk and Security Conference held in Sydney Australia.

  16. 60

    Episode 91: Episode 91 - Day 1 of Gartner's Risk and Security Conference (Sydney)

    Richard describes Day 1 of Gartner's Sydney and Risk Conference held recently in Sydney.

  17. 59

    Episode 90: Episode 90 - Introduction to Crisis and Incident Management

    In this episode, Richard introduces basic concepts of Crisis and Incident Management. This is the first of a few episodes where Crisis and Incident Management will be discussed.

  18. 58

    Episode 89: Episode 89 - Lessons I have learnt along the way

    In this episode, Richard discusses 10 lessons and approaches that will help you survive in cyber security.

  19. 57

    Episode 88: Episode 88 - 2024 Talking Cyber Security Recap

    In this episode, Richard covers the top 25 lessons derived from the 2024 Talking Cyber Security podcast.

  20. 56

    Episode 87: Episode 87 - Leaning Forward - From 2024's stories to 2025's goals

    In this episode, Richard does a bit of a reflection of 2024, and prompts your thinking for the upcoming year.

  21. 55

    Episode 86: Episode 86 - A bit of everything!

    In this episode, Richard covers various topics including CyberCon Melbourne 2024, 2 new starters in the Cyber industry, some cyber personalities and plans for 2025. Please excuse the sound quality - it's good but not as good as it usually is. Thanks for listening!

  22. 54

    Episode 84: Episode 84 - Q & A - Part 2

    Richard continues answering commonly asked security questions.

  23. 53

    Episode 83: Episode 83 - Security Q & A - Part 1

    In this episode, Richard starts to answer many common security questions. More questions to come in future episodes.

  24. 52

    Episode 82: Episode 82 - AISA CyberCon 2024

    In this episode, Richard mentions last episode's Essential 3 basic hygiene practices as well as touching on the upcoming AISA CyberCon 2024 Conference.

  25. 51

    Episode 81: Episode 81 - Back to basics

    In this episode, Richard discusses 3 basic security hygiene activities that you're probably not doing as a diligent security staff member.

  26. 50

    Episode 80: Episode 80 - Part 2 - Interviewing for less experienced security roles

    In this episode, Richard finishes his discussion regarding questions and answers to expect when interviewing for less experienced security roles.

  27. 49

    Episode 79: Episode 79 - Part 1 - Interviewing for less experienced cyber roles

    In this episode, Richard discusses the types of questions you can expect in interviews if you are applying for "junior" roles.

  28. 48

    Episode 78: Episode 78 - Be ready for the phone screening call

    In this episode, Richard discusses with a friend the merits of doing 'phone screening' before the official interview process commences. It is amazing what can be gleaned during the screening process.

  29. 47

    Episode 77: Episode 77 - Know your presentation style

    In this episode, Richard discusses the various presentation styles he has witnessed. Are you a newsreader? Are you a Storyteller? A Ted Talker or a Data Diver?

  30. 46

    Episode 76: Episode 76 - Melbourne CISO 2024

    In this episode, Richard covers the recent Corinium Intelligence's Melbourne CISO 2024 and briefly mentions the recent world-wide IT outage.

  31. 45

    Episode 75: Episode 75 - We all need a bit of patching from time to time.

    In this episode, Richard asks us all to consider personal patches we could apply to ourselves to improve our own performance.

  32. 44

    Episode 74: Episode 74 - The music of Cyber Security

    In this episode, we discuss the music that reminds us of Cyber Security events.

  33. 43

    Episode 73: Episode 73 - Your personal Balanced Scorecard

    Many of us use business "balanced scorecards", but have you ever thought of a personal scorecard for the work you do in Security? Richard tries to piece one together.

  34. 42

    Episode 72: Episode 72 - Are passwords getting easier or harder to crack?

    In this episode, we revisit the latest statistics behind time to crack passwords. Are they getting easier or harder to crack?

  35. 41

    Episode 71: Episode 71 - Cracking the CISO Code - Revelations from the Interview Room

    Listen to Richard as he dissects CISO Interview questions and answers.

  36. 40

    Episode 70: Episode 70 - The Imposter in the Mirror: Reflecting on Self-Perception in Cybersecurity

    In this episode, Richard discusses Imposter Syndrome and the Kruger-Denning Effect with respect to the cyber security industry.

  37. 39

    Episode 69: Episode 69 - Artificial Intelligence Revisited

    Richard revisits the current capabilities of AI voice capabilities. He runs the same dialogue against 3 AI voice tools to determine whether they have improved since his last AI voice experiment 11 months ago.

  38. 38

    Episode 68: Episode 67 - Credential Stuffing - Part 3

    Richard and his guest Olly Stimpson (CyberArk) complete their discussion on credential stuffing.

  39. 37

    Episode 67: Episode 67 - Credential Stuffing - Part 2

    Richard continues his discussion with Olly Stimpson from CyberArk around the protection measures available for credential stuffing.

  40. 36

    Episode 66: Episode 66 - Credential Stuffing - Part 1

    In this episode, Richard discusses 'credential stuffing' with Olly Stimpson from CyberArk.

  41. 35

    Episode 65: Episode 65 - Artificial Intelligence

    In this episode, Richard introduces the basics of Artificial Intelligence and has a good look at the EU Artificial Act introduced in March 2024.

  42. 34

    Episode 64: Episode 64 - The Essential 8

    In this episode, Richard discusses the ASD's Essential 8 controls.

  43. 33

    Episode 63: Episode 63 - Data Loss Protection Part 2

    Richard wraps up his discussion on DLP.

  44. 32

    Episode 62: Episode 62 - DLP Part 1

    In Part 1, of a 2-part episode, Richard discusses all things Data Loss Protection (DLP).

  45. 31

    Episode 56: Episode 56 - Questions CISOs get asked

    In this episode, Richard answers questions some CISOs get asked.

  46. 30

    Episode 52: Episode 52 - Louay Ghashash (Spartans Security) - Part 3/3

    Richard and Louay complete their discussion about all things security.

  47. 29

    Episode 51: Episode 51 - Louay Ghashash - Part 2

    Richard and Louay Ghashash from Spartans Security continue their discussion and cover topics such as SOCs, 3rd party questionnaires, ISO 27001, risk based approaches, an analysis of security frameworks (NIST, Essential 8, ASD 35, ISO 27001) and other matters.

  48. 28

    Episode 50: Episode 50 - Louay Ghashash - Spartans Security - Part 1

    Richard is Talking Cyber Security with Louay Ghashash from Spartans Security.

  49. 27

    Episode 46: Episode 46 - Board Dashboards

    In this episode, Richard discusses Board Reporting, with emphasis on a Board Dashboard. 4 examples of his Board Dashboard are available to anyone. Listen to the episode to hear where to get your copy. 

  50. 26

    Episode 45: Episode 45 - Austyn Guo from Tesserent

    We hear from Austyn Guo (Managing Consultant - Offensive Security at Tesserent) talk about his job and discussing a much forgotten aspect of security - physical security.

Type above to search every episode's transcript for a word or phrase. Matches are scoped to this podcast.

Searching…

We're indexing this podcast's transcripts for the first time — this can take a minute or two. We'll show results as soon as they're ready.

No matches for "" in this podcast's transcripts.

Showing of matches

No topics indexed yet for this podcast.

Loading reviews...

ABOUT THIS SHOW

Cyber Security, data breaches, Hackers, Chief Information Security Officers, Talking Cyber Security (formerly 'The Australian CISO') is a podcast for anyone interested in Cyber Security. Hear about data breaches, cyber news, how security personnel 'tick', how to answer questions at an interview, lessons learnt while doing the security role, how security people network, how they succeed etc. Use the email address [email protected] to make comments, pose questions or even ask to be on The Australian CISO podcast.The main presenter is Richard Heron. Richard is an experienced CISO and has learnt many tough lessons during the many and varied Security Management roles he has held since 2002. He also holds some security accreditations as well. Richard enjoys AFL, podcasting, e-Biking and charity work.

HOSTED BY

Richard Heron

Frequently Asked Questions

How many episodes does Talking Cyber Security have?

Talking Cyber Security currently has 50 episodes available on PodParley. New episodes are automatically indexed when they're published to the podcast feed.

What is Talking Cyber Security about?

Cyber Security, data breaches, Hackers, Chief Information Security Officers, Talking Cyber Security (formerly 'The Australian CISO') is a podcast for anyone interested in Cyber Security. Hear about data breaches, cyber news, how security personnel 'tick', how to answer questions at an interview,...

How often does Talking Cyber Security release new episodes?

Talking Cyber Security has 50 episodes. Check the episode list to see recent publication dates and frequency.

Where can I listen to Talking Cyber Security?

You can listen to Talking Cyber Security on PodParley by clicking any episode. We provide an embedded audio player for direct listening, and you can also subscribe via your preferred podcast app using the RSS feed.

Who hosts Talking Cyber Security?

Talking Cyber Security is created and hosted by Richard Heron.
URL copied to clipboard!