1

Episode 187: The Role of a CISO as a Strategic Storyteller

May 13, 2026

39:44

2

Episode 186: Strong Cyber Defense Starts with IT Operations

May 6, 2026

38:45

3

Episode 185: AI Prompt Injection from a Risk Perspective

Apr 29, 2026

38:05

4

Episode 182: Striking a Balance on an AI Adoption Journey

Apr 8, 2026

32:34

5

Episode 181: Supply and Demand of Cybersecurity Ecosystems

Apr 1, 2026

46:08

6

Episode 180: Secure by Design Fused to Operational Practices

Mar 25, 2026

40:21

7

Episode 179: 2026 Cybersecurity Predictions from CIS — Pt 3

Mar 18, 2026

54:08

8

Episode 178: Appropriate Defense to Iranian Threat Activity

Mar 11, 2026

34:04

9

Episode 177: Power of Community-Developed Security Content

Mar 4, 2026

37:59

10

Episode 176: A Cybersecurity Journey of Incremental Wins

Feb 25, 2026

36:03

11

Episode 175: Practically Solving Cyber Problems at Scale

Feb 18, 2026

33:54

12

Episode 174: 2026 Cybersecurity Predictions from CIS — Pt 2

Feb 11, 2026

38:45

13

Episode 173: Scammer Jousting as Human Risk Management

Feb 4, 2026

34:01

14

Episode 172: Helping CISOs as a CIS Controls Ambassador

Jan 28, 2026

34:27

15

Episode 171: Securing CNI in U.S. SLTTs through AI Adoption

Jan 21, 2026

37:15

16

Episode 170: Visibility for SLTTs in Blocking Typhoon APTs

Jan 14, 2026

34:30

17

Episode 169: 2026 Cybersecurity Predictions from CIS — Pt 1

Jan 7, 2026

39:54

18

Episode 168: Institutionalizing Good Cybersecurity Ideas

Dec 31, 2025

37:56

19

Episode 167: Volunteers as a Critical Cybersecurity Resource

Dec 24, 2025

41:44

20

Episode 166: Foundations of Actuarial Science in Cyber Risk

Dec 17, 2025

40:46

21

Episode 165: An In-Depth Look at CIS Controls Implementation

Dec 10, 2025

51:31

22

Episode 164: Secure by Design in Software Development

Dec 3, 2025

44:48

23

Episode 163: K-12 Cybersecurity Made Practical

Nov 26, 2025

40:47

24

Episode 162: A Managed Approach to a Managed Attack Surface

Nov 19, 2025

41:24

25

Episode 161: An Ecosystem-Wide Approach to CNI Resilience

Nov 12, 2025

37:42

26

Episode 160: Championing SME Security with the CIS Controls

Nov 5, 2025

33:55

27

Episode 159: The Scariest Malware of 2025

Oct 29, 2025

34:48

28

Episode 158: Scaling CMMC Compliance with Nerdio

Oct 22, 2025

32:27

29

Episode 157: How a Modern, Mission-Driven CIRT Operates

Oct 15, 2025

38:53

30

Episode 156: How CIS Uses CIS Products and Services

Oct 8, 2025

37:02

31

Episode 155: The Story of CIS 2.0 and Adapting to a New Era

Oct 1, 2025

42:45

32

Episode 154: Integration of Incident Response into DevSecOps

Sep 24, 2025

33:12

33

Episode 153: Advice for Newcomers to IT and Cybersecurity

Sep 17, 2025

36:37

34

Episode 152: Driving Response Time While Enriching Telemetry

Sep 10, 2025

33:09

35

Episode 151: 2025 Cybersecurity Predictions H2 Review — Pt 2

Sep 3, 2025

46:42

36

Episode 150: A Roundtable Chat to Celebrate 150 Episodes

Aug 27, 2025

33:27

37

Episode 149: Human Error, AI Missteps, and Other VM Risks

Aug 20, 2025

33:22

38

Episode 148: How MDR Helps Shine a Light on Zero-Day Attacks

Aug 13, 2025

32:15

39

Episode 147: Actualizing Threat Intel for Effective Defense

Aug 6, 2025

43:11

40

Episode 146: What Security Looks Like for a Security Company

Jul 30, 2025

34:01

41

Episode 145: 2025 Cybersecurity Predictions H2 Review — Pt 1

Jul 23, 2025

35:33

42

Episode 144: Carrying on the MS-ISAC's Character and Culture

Jul 16, 2025

33:04

43

Episode 143: Iran's Growing Multidimensional Threat Activity

Jul 9, 2025

31:57

44

Episode 142: SLTTs and Their Nuanced Cybersecurity Needs

Jul 2, 2025

34:10

45

Episode 141: A Human-Centered Take on Password Policies

Jun 25, 2025

43:18

46

Episode 140: Threat-Informed Travel Safety Tips

Jun 18, 2025

34:28

47

Episode 139: Community Building for the Cyber-Underserved

Jun 11, 2025

34:46

48

Episode 138: The Use of GenAI to Refine Your TTX Development

Jun 4, 2025

34:36

49

Episode 137: National Cybersecurity Through SLTT Resilience

May 28, 2025

42:01

50

Episode 136: How WiCyS Advances Women in Cybersecurity

May 21, 2025

38:35

51

Episode 135: Five Lightning Chats at RSAC Conference 2025

May 14, 2025

23:50

52

Episode 134: How GenAI Lowers Bar for Cyber Threat Actors

May 7, 2025

39:48

53

Episode 133: DieNet's DDoS Hacktivism and Evolving TTPs

Apr 30, 2025

32:33

54

Episode 132: Day One, Step One, Dollar One for Cybersecurity

Apr 23, 2025

34:35

55

Episode 131: It Takes a Village to 'Reasonably' Secure SoCal

Apr 16, 2025

32:56

56

Episode 130: The Story and Future of CIS Thought Leadership

Apr 9, 2025

32:38

57

Episode 129: Embedding Cybersecurity in Project Management

Apr 2, 2025

32:18

58

Episode 128: How Cryptocurrency Is Used for Financial Fraud

Mar 26, 2025

35:17

59

Episode 127: Visible Ops as a Cybersecurity Foundation

Mar 19, 2025

37:45

60

Episode 126: A Day in the Life of a CTI Analyst

Mar 12, 2025

36:28

61

Episode 125: How Leadership Principles Influence CIS Culture

Mar 5, 2025

33:02

62

Episode 124: The Many Layers of a Malware Takedown Operation

Feb 26, 2025

32:44

63

Episode 123: An Operational Playbook for Security Impact

Feb 19, 2025

43:59

64

Episode 122: DeepSeek AI Security and Utility Considerations

Feb 12, 2025

37:12

65

Episode 121: The Economics of Cybersecurity Decision-Making

Feb 5, 2025

40:50

66

Episode 120: How Contextual Awareness Drives AI Governance

Jan 29, 2025

32:17

67

Episode 119: Multidimensional Threat Defense at Large Events

Jan 22, 2025

35:04

68

Episode 118: Preparing for Post-Quantum Cryptography

Jan 15, 2025

36:46

69

Episode 117: 2025 Cybersecurity Predictions from CIS Experts

Jan 8, 2025

33:44

70

Episode 116: AI-Enhanced Ransomware and Defending Against It

Jan 1, 2025

33:38

71

Episode 115: Continuous Feedback as CIS Employee Culture

Dec 25, 2024

32:03

72

Episode 114: 3 Board Chairs Reflect on 25 Years of Community

Dec 18, 2024

48:53

73

Episode 113: Cyber Risk Prioritization as Ransomware Defense

Dec 11, 2024

41:17

74

Episode 112: How SANS Fosters Action on Cybersecurity Trends

Dec 4, 2024

46:57

75

Episode 111: Distilling a First Principle of Cybersecurity

Nov 27, 2024

47:04

76

Episode 110: How Security Culture and Corporate Culture Mesh

Nov 20, 2024

41:38

77

Episode 109: The Scariest Malware of 2024

Nov 13, 2024

38:42

78

Episode 108: Gaming and Competition in Cybersecurity

Nov 6, 2024

40:49

79

Episode 107: Continuous Improvement via Secure by Design

Oct 30, 2024

37:36

80

Episode 106: How to Avoid Falling for a Donation Scam

Oct 23, 2024

32:05

81

Episode 105: Context in Cyber Risk Quantification

Oct 16, 2024

33:19

82

Episode 104: Inside the First Year of a Cybersecurity Career

Oct 9, 2024

32:57

83

Episode 103: Education vs. Experience in Cybersecurity

Oct 2, 2024

31:16

84

Episode 102: The Sporty Rigor of CIS Controls Accreditation

Sep 25, 2024

36:35

85

Episode 101: Visualizing Attack Paths in Active Directory

Sep 18, 2024

34:14

86

Episode 100: Celebrating 100 Episodes and Looking Ahead

Sep 11, 2024

41:59

87

Episode 99: How Cyber-Informed Engineering Builds Resilience

Sep 4, 2024

34:23

88

Episode 98: Transparency as a Tool to Combat Insider Threats

Aug 28, 2024

35:50

89

Episode 97: How Far We've Come preceding CIS's 25th Birthday

Aug 21, 2024

51:00

90

Episode 96: Making Continuous Compliance Actionable for SMBs

Aug 14, 2024

43:09

91

Episode 95: AI Augmentation and Its Impact on Cyber Defense

Aug 7, 2024

34:59

92

Episode 94: Community Defense at the ISAC Annual Meeting

Jul 31, 2024

37:06

93

Episode 93: Keeping Societal Confidence in a Connected World

Jul 24, 2024

29:27

94

Episode 92: A Framework to Counter Evolving Cyber Threats

Jul 17, 2024

33:19

95

Episode 91: What You Need to Know about CIS Controls v8.1

Jul 10, 2024

33:07

96

Episode 90: Migrating to the Cloud with Control Continuity

Jul 3, 2024

31:05

97

Episode 89: How Threat Actors Are Using GenAI as an Enabler

Jun 26, 2024

31:17

98

Episode 88: The Evolution of the Role of a CISO

Jun 19, 2024

30:02

99

Episode 87: Marking 11 Years as a Verizon DBIR Contributor

Jun 5, 2024

38:41

100

Episode 86 Evangelizing CIS's Message at RSAC 2024

May 29, 2024

34:07

101

Episode 85: Reenergizing Collective Action at RSAC 2024

May 22, 2024

50:51

102

Episode 84: Why We Need to Define Reasonable Cybersecurity

May 15, 2024

40:08

103

Episode 83: Why Meeting in Person Matters to CIS Employees

May 1, 2024

29:46

104

Episode 82: How CIS Leadership Values Team Building Events

Apr 24, 2024

22:54

105

Episode 81: Exploring IAM for Identity Management Day 2024

Apr 10, 2024

31:03

106

Episode 80: Advancing Common Good in Cybersecurity – Part 2

Apr 3, 2024

29:00

107

Episode 79: Advancing Common Good in Cybersecurity – Part 1

Mar 27, 2024

29:38

108

Episode 78: Conductors of Risk Building Harmony in Ambiguity

Mar 13, 2024

34:58

109

Episode 77: How to Use Data to Make Cybersecurity Decisions

Feb 28, 2024

49:54

110

Episode 76: The Role of Thought Leadership in Cybersecurity

Feb 16, 2024

45:36

111

Episode 75: How GenAI Continues to Reshape Cybersecurity

Feb 2, 2024

51:30

112

Episode 74: The Nexus of Cybersecurity & Privacy Legislation

Jan 19, 2024

47:24

113

Episode 73: A YIR for Our 2023 Cybersecurity Predictions

Jan 5, 2024

55:21

114

Episode 72: Cybersecurity in Education as a Balancing Act

Dec 22, 2023

67:30

115

Episode 71: Advancing K-12 Cybersecurity Through Community

Dec 8, 2023

51:12

116

Episode 70: How the Media Molds Public Perception of Infosec

Nov 22, 2023

46:20

117

Episode 69: How the NCSR Assessment Sows SLTT Cyber Maturity

Nov 9, 2023

35:13

118

Episode 68: Designing Cyber Defense as a Partnership Effort

Oct 27, 2023

46:27

119

Episode 67: Seizing the Moment after a Cybersecurity Audit

Oct 13, 2023

40:50

120

Episode 66: How RABET-V Verifies Non-Voting Election Tech

Oct 6, 2023

42:06

121

Episode 65: Making Cyber Risk Analysis Practical with QRA

Sep 29, 2023

39:12

122

Episode 64: Defining Your Data Management Standards

Sep 15, 2023

26:10

123

Episode 63: Building Capability and Integration with SBOMs

Sep 1, 2023

37:37

124

Episode 62: Inside the 'Spidey Sense' of a Pentester

Aug 18, 2023

49:19

125

Episode 61: Overcoming Pre-Audit Scaries Through Governance

Aug 4, 2023

48:14

126

Episode 60: Guiding Vendors to IoT Security by Design

Jul 21, 2023

39:46

127

Episode 59: Probing the Modern Role of the Pentest

Jul 7, 2023

55:20

128

Episode 58: Inside CIS's Award-Winning Workplace Culture

Jun 23, 2023

34:54

129

Episode 57: Celebrating the 20th Anniversary of the MS-ISAC!

Jun 9, 2023

84:10

130

Episode 56: Cybersecurity Risks and Rewards of LLMs

May 26, 2023

50:39

131

Episode 55: Live at RSA Conference 2023

May 12, 2023

38:32

132

Episode 54: How to Get Started in Cybersecurity

Apr 28, 2023

42:10

133

Episode 53: Fostering a Neurodiverse Cybersecurity Industry

Apr 14, 2023

39:26

134

Episode 52: Back in the Buzz of RSA Conference

Mar 31, 2023

45:04

135

Episode 51: Making a Roadmap for Your Cybersecurity Journey

Mar 15, 2023

61:23

136

Episode 50: The Best of Cybersecurity Where You Are

Mar 3, 2023

47:17

137

Episode 49: Artificial Intelligence and Cybersecurity

Feb 17, 2023

48:46

138

Episode 48: 3 Trends to Watch in the Cybersecurity Industry

Feb 3, 2023

26:38

139

Episode 47: How Security and Compliance Support Each Other

Jan 6, 2023

51:48

140

Episode 46: Integration as a Theme for 2023

Dec 30, 2022

54:33

141

Episode 45: The Importance of Mentorship

Dec 16, 2022

42:48

142

Episode 44: A Zero Trust Framework Knows No End

Dec 2, 2022

59:29

143

Episode 43: Giving Back Through CIS CARES

Nov 18, 2022

24:59

144

Episode 42: Advocacy for the Underserved

Oct 28, 2022

54:28

145

Episode 41: A Blueprint for Ransomware Defense

Oct 21, 2022

43:09

146

Episode 40 See Yourself in Cyber to Be Cyber Smart

Oct 7, 2022

41:15

147

Episode 39: Cybersecurity at Scale

Sep 16, 2022

44:40

148

Episode 38: How the Cyber Threat Landscape Is Changing

Sep 2, 2022

33:16

149

Episode 37: Collaboration at the 15th Annual MS-ISAC Meeting

Aug 19, 2022

23:17

150

Episode 36: Strong Elections are Cyber STRONG

Aug 5, 2022

41:10

151

Episode 35: Remembering the Late Alan Paller

Jul 15, 2022

40:39

152

Episode 34: A Survey of Hacking in Hollywood

Jul 8, 2022

46:00

153

Episode 33" The Shift-Left of IoT Security to Vendors

Jun 27, 2022

37:44

154

Episode 32: What You Need to Know Ahead of RSA 2022

Jun 3, 2022

40:15

155

Episode 31: To Achieve ICS Security Today, Look to Yesterday

May 19, 2022

47:18

156

Episode 30: Solving Cybersecurity at Scale with Nonprofits

May 6, 2022

46:33

157

Episode 29: Conceptualizing Reasonableness for Risk Analysis

Apr 28, 2022

51:49

158

Episode 28: The Convergence of Cybersecurity and Public Policy

Apr 8, 2022

52:46

159

Episode 27: Cyber Scams

Mar 29, 2022

50:04

160

Episode 26: Automating the Secure Configuration Management Process

Mar 11, 2022

40:34

161

Episode 25: Building an Internal Incident Response Team

Feb 25, 2022

47:19

162

Episode 24: How Do I Start a Career in Cybersecurity?

Feb 11, 2022

51:02

163

Episode 23: Cybersecurity Predictions for 2022

Jan 31, 2022

48:41

164

Episode 22: CIS Behind the Veil: Log4j

Jan 21, 2022

55:42

165

Episode 21: Year In Review; A List of our Favorite Episodes

Dec 28, 2021

53:17

166

Episode 20: The State of Election Cybersecurity

Dec 13, 2021

41:24

167

Episode 19: For Data Compliance, Automation is Key

Nov 15, 2021

41:25

168

Episode 18: Top 5 Scariest Malware

Oct 29, 2021

50:20

169

Episode 17: Cybersecurity Awareness Month: It's All About the Big Picture

Oct 13, 2021

48:32

170

Episode 16: Cybersecurity: Think INSIDE the Box

Sep 27, 2021

40:01

171

Episode 15: Cybersecurity Success Takes Soft Skills

Sep 10, 2021

55:59

172

Episode 14: The Top 5 Cybersecurity Tips for the Family

Sep 1, 2021

51:22

173

Episode 13: What's Important to You in Cybersecurity? A Host Q&A

Aug 23, 2021

60:25

174

Episode 12: Cybersecurity and Government: Less Wizardry, More Policy

Jul 30, 2021

39:30

175

Episode 11: Remote Attestation Helps Zero Trust

Jul 16, 2021

31:48

176

Episode 10: Hospitals in Need of Cybersecurity STAT!

Jun 28, 2021

41:48

177

Episode 9: Mitigating Risk: Information Security Governance

Jun 11, 2021

56:49

178

Episode 8: CIS Controls v8...First Impressions

May 28, 2021

52:55

179

Episode 7: CIS Controls v8...It’s Not About the List

May 14, 2021

56:41

180

Episode 6: 2020 Elections Year in Review

Apr 23, 2021

37:51

181

Episode 5: The Tools of Cyber Defense...an Ongoing, Repetitive Process

Apr 12, 2021

57:05

182

Episode 4: Dynamics of Cyber Defense...an Ongoing, Repetitive Process

Mar 26, 2021

41:25

183

Episode 3: Third-party Risk Management – Beyond the Questionnaire

Mar 12, 2021

43:58

184

Episode 2: Trends: Then, Now, and Into the Future

Mar 5, 2021

34:38

185

Episode 1: Welcome to the Basics

Jan 27, 2021

56:55

All Episodes