Friendly Fire: Mitigating Employee Risk

Security awareness training is not enough to protect ourselves from cyber risks. But how can we control these risks? Today, Kristina Belnap, the SVP and CISO of HealthEquity, brings the role of human resources in bringing human risk management into the organization. Educating everyone on AI and bringing awareness into the space are keys to protecting information and securing our environments. Kristina provides some great insights on mitigating risk here on the Friendly Fire Podcast! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Cybersecurity is a high-stakes card game, and sometimes, it's not about winning every hand but mastering the game as a whole. In this episode, we welcome Allison Miller of Cartomancy Labs for an illuminating discussion on "The Theoretical Floor" and why resilience is the secret sauce to defending against modern cyber threats. She expounds on the world of human risk, shedding light on how we can redefine our understanding of cybersecurity and fraud prevention. Allison explores the concept of "The Theoretical Floor" and why sometimes, perfection isn't the goal. She describes it as a card game, where we need to think not just about that one hand but the entire game if we're going to win against the bad actors in cyberspace. Join us as we dissect the challenges faced by cybersecurity professionals, the evolving trends in the industry, and how we can better protect ourselves, both as individuals and as organizations. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

For an API security platform to succeed in today’s fast-paced society, it must be widely familiar with the current trends of the digital world and keep its most skilled people for a long time. Tyler Shields sits down with Karl Mattson, CISO at Noname, to discuss these two vital factors. Karl explains how they approach cybersecurity as an up-to-date organization, the best way to keep up with APIs growing rapidly, and how not to acquire so many unnecessary cybersecurity tools in a constantly expanding team. Karl also talks about Noname’s high employee retention rate, emphasizing why it is important in navigating cybersecurity’s long list of risks. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Product security has greatly changed over time. How does human contribute to the changes going on? In this episode, Joern Freydank, a Lead Cyber (Application) Security Engineer, dissects the human issues in product security. He emphasizes the value of humans in providing a higher level of order intelligence operating the systems. Joern also shares the key component of the anti-patterns and discusses how threat modeling works in the modern era. There is so much to unpack in today’s episode. Tune in now! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

We should embrace the human side of cybersecurity, where knowledge and vigilance become our most potent weapons in the age of digital health. In this episode, Esmond Kane, a CISO at a leading healthcare organization, sheds light on the critical role of human risk management in safeguarding our digital lives. He emphasizes that no matter the technological advancement, the human touch will always be among our most potent weapons against threats. Cybersecurity is a shared responsibility, and together, we can forge a safer digital future. Tune in now and learn more about cybersecurity in healthcare! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

As technology advances, so does the threat posed in cyberspace. In this episode, Mark Weatherford, the SVP and Chief Security Officer at AlertEnterprise, navigates us through cyberspace and how AI and Government Policy impact change in cybersecurity threats. There is a monumental shift in positioning, treating, and regulating CISOs within the company, and generative AI has contributed much to the continuous change in the security environment. Mark shares his insights on how we can surf through this change. Learn more from Mark as you tune in to this conversation. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

People make mistakes, and these unintentional mistakes drastically impact an organization. You shouldn't dance with risks and wait for cyber attacks to steal your stage. It's time to take action with Andre Russotti of Altria Client Services as he explains how Zero Trust does not solve the user-behavior problem that causes insider risks. Would you relax security controls? You better hop on to this conversation because Andre fires up more touch points for driving user behavior risk at a minimum. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

In this episode, we unravel the complexities of Identity and Access Management (IAM) and explore the cutting-edge concept of Zero Trust. Join host Tyler Shields as he sits with Christine Owen, a recovering attorney who found solace in IAM and Zero Trust principles. Christine sheds light on the modern challenges of protecting digital assets in an ever-evolving threat landscape. Christine introduces us to the game-changing concept of Zero Trust, an approach that challenges traditional security paradigms. Tune in now and equip yourself with the knowledge to navigate the changes in cybersecurity. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Balancing risk and privacy is a delicate dance, but with the right solutions and strategies, organizations can effectively manage potential threats to their security while protecting their users' data. For today’s episode, Matthew Stephenson interviews renowned privacy and technology attorney Greg Silberman to discuss the fascinating and complex world of risk and privacy. With years of experience working in cybersecurity and developing solutions for intellectual property and privacy issues, Greg brings a wealth of expertise to the table. He shares his insights on whether it’s possible to choose one over the other. He discusses the challenges of balancing privacy concerns with the need for risk management and how organizations can find a way to strike a balance. Based on his extensive experience working with companies like Zoom, Blackberry, and Cylance, Greg also provides practical advice on how businesses can navigate the complex landscape of cybersecurity and data privacy. Tune in to discover the world of risk and privacy and learn the future of cybersecurity.  Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

If there is one sector that is keeping people cool, warm, and secure, that would be the utility sector. They are the ones who have been ensuring that our basic needs are well-provided and, in that process, well-functioning for decades. However, with the cyber element growing and taking root in the sector, threats to how utilities are delivered have become a concern. In this episode, Matthew Stephenson is joined by the Director of Energy Solutions at Finite State, Brian Proctor. Brian shares with us how the utility sector is taking cyber threats and eEvents head-on with their own cyber teams. He discusses the evolution of response teams as well as the regulations in the industrial control systems and operational technology. Brian also dives deep into open-source, how they are making things secure, and mitigating risks from the human element. Looking ahead, he then tells us what the industry needs to get better and improve at, especially as we look at the merge of people, process, and technology. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

There are a lot of factors that cause problems within the cybersecurity space, but the human element ranks as the top reason. With the huge communication chasm among IT experts, C-suite leaders, and hiring managers, there is still work to be done in bridging these gaps. Matthew Stephenson discusses how to solve this disconnect with the Founder and CEO of Cyber Risk Opportunities, Kip Boyle. They explain why senior leaders must set the tone of cyber hygiene practices, particularly in today's evolving hybrid business models. Kip shares tips on how hiring managers can create diverse teams to secure the best cybersecurity opportunities. He also breaks down the dangers of treating multifactor authentication as bulletproof security and misunderstanding the shared responsibility model of cloud services. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

"Privacy isn't dead, but people need to be made more aware of the invasiveness of the internet of things, digital devices, and tracking." – Theresa Payton. Every company has a duty of care to ensure they are tracking their employees on a certain level to ensure people are who they say they are, working when they say they're working, and taking care of the intellectual property and customer data. In this episode, Theresa Payton, the co-author of Privacy in the Age of Big Data, delves into security and privacy in the world of insider threats. Adding that layer of security doesn't mean you don't trust people. It is trust but verify the process to protect employees. Nothing is easy with the rise of AI in malicious attacks, but what should security leaders do? Tune in to this episode and hear how the 100% Woman Executive Team does in Mitigating Unintentional Insider Risk. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

This digital information age puts businesses vulnerable not only to external attacks but internal as well. Even more threatening when these happen to those in a highly-regulated industry with a significant amount of information needed securing. Suffice to say, friendly fires happen and must be dealt with as much as other threats. In this episode, Tim Callahan, the Senior Vice President and Global CISO at Aflac, dives deep into the potential friendly fire that happens within the business or organization. He talks about defending against unwitting human error and being aware of both outside and internal attackers, highlighting the importance of risk management and prevention. What is more, Tim lets us in on the challenges he encounters in his role as CISO, dealing with his teams and the board to ensure their philosophy to prevent, detect, and respond are rooted in what they do. Tune in to this conversation and gain great insights on navigating the threats in the cyber world, wherever they may come from. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Insight Global is a massive company that connects talent with the companies that need that talent. As such, it plays a critical role in the cybersecurity industry. In this episode, Jonathan Waldrop, the Senior Director at Insight Global, talks about how the company uses the human element when it comes to security. Jonathan discusses that changing the mindset of security practitioners educates customers and end users on the use of technology. That's where you find success instead of focusing on security. Find out more and tune in to this episode now. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Awareness, culture, and behavior. How are these things related to technology and security? In this episode, Kai Roer, the author of Build a Security Culture, provides some insights into the importance and impact of security culture. Kai highlights that there are social and cultural triggers that drive human behavior. Matthew Stephenson and Kai Roer also touch on Artificial Intelligence and Machine Learning. Tune in and find out more in this episode. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Data security awareness is indeed valuable, but how is it actually framed? Most people in the security space rely solely on the human firewall, and that is where the problem occurs. In this episode, Ira Winkler, author of Security Awareness for Dummies, explains why organizations should stop depending on user awareness alone in protecting their data. He explains how strong passwords may still prove unhelpful when cyberattackers are using password crackers. Tune in for an enlightening talk with Ira Winkler and Matthew Stephenson who help take your data security to the next level! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Most organizations don’t want to have adversarial conversations about cybercrime. They either don’t care enough or they don’t really understand it. But this lack of visibility within your network can result in a huge risk to your organization. Not knowing if you are dealing with an insider threat is scary. You can't prepare for it or set up countermeasures. If you can't see it, you can't protect it. Join Matthew Stephenson as he talks to Global Security Technologist at VMware, Chad Skipper. Learn what kind of security measures need to be done to protect your network from such internal risks. Discover what his move to digital transformation and multi-cloud means for cybercrime, as well as some tips on how to protect your systems before a major breach. Get visibility of your vulnerabilities right now! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

When a cybersecurity breach happens, expect things to go crazy. You will have to deal with legal teams and an all-out investigation with the authorities. You will have to find out who did it as soon as possible. Is it an attack from the outside or due to neglect from someone from the inside? How are your customers doing? How can you circumvent future attacks? There are a lot of things that you can learn from a cyberattack, and the guest today has been through a massive one himself. Join Matthew Stephenson as he talks to the Vice President of Security and CISO SolarWinds, Tim Brown. Discover what he has learned from the Russian attack on their company in 2020. Find out the lessons he learned from addressing, mitigating, and resolving such a serious incident. Tune in and learn what to do when a crisis strikes your precious data. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

A lot of cybersecurity assessments are done with a checklist of how many high-risk, medium-risk, and low-risk vulnerabilities there are. It's very non-human, which is something a lot of people will get turned off by. If you truly want executive leaders to start paying attention to cybersecurity, you need to present it in a more humane so that it’s more relatable. Join Matt Stephenson as he talks to Gary Barnabo and Eric Eames of CrossCountry Consulting, a trusted business advisory firm that provides customized finance, accounting, risk, operations, and technology consulting. Tune in and learn how they tackle cybersecurity and why the C-Suite needs to start looking at the human aspect of things. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Securing Humanity is a collective responsibility. In this episode, Matthew Stephenson interviews Elsine Van Os, the founder and CEO of Signpost Six, Insider Risk Management consultancy firm with behavioral science at its heart. Elsine discusses cybersecurity and risk management within the organization, and shares the psychological aspect of it all. Elsine also drops gold nuggets and information bombs on psychology, security, technology, and more. Tune in now and learn what it takes to keep our world secure, one person at a time! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Adobe is one of the most ubiquitous brands worldwide, being present in almost every tool or industry imaginable these days. How do you secure everything and keep data safe from cyberattacks when running such a huge company? Eric Anderson, Director of Enterprise Security at Adobe, joins Matthew Stephenson to discuss how they approach cybersecurity within a team of over 30,000 employees and more than 60,000 users and vendors around the world. Eric discusses how they protect their data by keeping an eye on internal threats and always taking customer experience into consideration. He also explains how to utilize advanced technology to improve cybersecurity practices, particularly artificial intelligence. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

In this digital age, leaving your data unprotected will surely invite cyber attackers to take advantage of your precious information. On top of ensuring a foolproof strategy that keeps away hackers, you must also be wary of insider threats that may jeopardize your data. Matthew Stephenson chats with Christine Gadsby, the Vice President of Product Security Operations at BlackBerry, to discuss how organizations can find vulnerabilities within their security practices and the best ways to use technology to mitigate them. Christine shares her experiences working with business owners in addressing the cracks in their digital armor while balancing product and organizational development. She also talks about Chief, a community where women executives come together to learn from each other and collectively improve the cybersecurity industry. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

How secure is your security? How can you ensure it is free from defects and critical vulnerabilities? In this episode, Derek Fisher, the author of the Application Security Program Handbook, shares how developers can position themselves to minimize risk in the space created. Derek tries to map everything back to risks in developing software to ensure security free from internal and external threats. He also highlights the threats you don’t know are the most concerning. With his skills in designing and implementing regulatory compliance systems and cutting-edge cybersecurity solutions to avoid security breaches, Derek has more gold to share in this conversation. So don’t miss out by tuning in as you gain more insights about mitigating unintentional insider threats! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

More often than not, the first thing that comes to mind with the term "cyber threat" is something external. But did you know that internal threats are just as serious as external ones? In this episode, Matthew Stephenson sits down with technologist Kurtis Minder, the Founder of GroupSense, to discuss how to watch out for cybersecurity attacks from the outside and issues that happen inside your team. Tune in and learn the best game plan to protect your business from those problematic internal threats!  Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

In this new technological age, it may seem like we have already made so much progress towards advancing with science, machines, software, and technology as a whole—but we actually still may not be as far off as we think we are. In this episode, Matthew Stephenson sits down with Arun Vishwanath and discusses cybersecurity, how much it has done so far, how many more problems it still hasn't solved until now, and its great and equally horrible potential depending on the intent and approaches it will be used. Arun Vishwanath is a technologist, researcher, educator, and author. Tune in and learn what keeps our world secure and how much more we have to go! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

How secure is your security program? The rampant issues of unauthorized access, use, and modification of customer data require a security program to further secure and protect this information. In this episode of Friendly Fire, Sean Cassidy, the Head of Security at Asana, sits with Matt to share his insights on how you can build a secure security program. A common failure from other companies is that the security team has to triage and fix all the bugs but does not have enough security engineers. Sean turns this around. Although security and engineering do not always have a harmonious relationship, Sean has built a development process and culture that helps his team work together. If you want to hear more about how Sean built a security team to build a secure security program, tune in to this episode of Friendly Fire! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Research shows that 80% of the users of your tools cause 8% of your security incidents. You cannot safeguard your entire business until you know who these people are. When identifying risky employees, reducing future incidents, and defending the workforce, Robert Fly is your security guy! In this episode, he sits with Matthew Stephenson to share his career path in the security space and his efforts to turn Elevate Security into an interesting company. He also discusses why security teams must understand that keeping a business productive is also one of their responsibilities. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

8% of your employees are going to cause 80% of your security incidents. Employee mistakes are inevitable, no matter how much training you give them. That is why you need to change the way you think about security and plan ahead. Instead of trying to put out fires, prevent them from happening in the first place. Join Matthew Stephenson as he talks to the Co-Founder & President of Elevated Security, Masha Sedova, about how she manages employee risk. Learn more about her security credit score method of finding out who is a security risk. Find out why training may not even be the best approach to managing these risks. And learn how she applies some behavioral science to her security measures. Start elevating your security right now! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Having a diverse background in our careers rewards us with diverse experiences and insights. Janet Heins brings the breadth of her career experience to her role as the Chief Information Security Officer (CISO) at iHeartMedia. In this episode, she sits down with Matthew Stephenson to tell us about her journey from the cruise line industry, manufacturing, biotech, and pharmaceutical before landing at her current position in one of the largest media streaming companies in the United States. Janet shares the key things she found in common across different industries that have helped her in the strategic direction of the company’s Information Security Program. Touching on the human component, she then talks about dealing with culture, especially as the team transitions into new leadership. Join Janet in this conversation and gain great insights from her wide experience. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

The role of a CISO is one with many responsibilities. How do people in this position manage and balance everything that comes with their role? Here to shed light with a psychoanalytical perspective on the role is Mark Eggleston, CSC's chief information security officer (CISO). He is responsible for the global security and privacy program design, operations, and continual maturation. Join host Matthew Stephenson as he sits down with Mark to touch on topics such as mental health and leadership. Do CISOs need psychotherapy or are they the psychotherapist for their organization from a security perspective? They also discuss the different processes and why delegation and collaboration are critical in managing a team. Plus, Mark shares some insight on the maturing tech he's looking into to improve processes and vendor relationships.  Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

In a Zero Trust model, you have to always assume a breach. This is a model that everyone needs to be aware of because everyone wants to know that they are being protected, especially in school. Parents want to know that their children are in a safe environment. This is what the Chief Information Security Officer at SMU, George Finney is tasked with daily. Join Matthew Stephenson as he talks to George Finney about his career as a CISO and how cybersecurity in a higher education environment feels. George also talks about his newest book about cybersecurity called Project Zero Trust: A Story about a Strategy for Aligning Security and the Business. Learn more about Zero Trust security and how it keeps people safe. Discover how George deals with the continuing evolution of technology and cybercrime and how he keeps everyone in his team up to date. Start upgrading your security today! Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Do you think your job is hard? Well, being the Chief Security Officer at HCA Healthcare, Paul Connelly was able to wrap his arms around an industry where there are 275,000 employees and 36 million patient care encounters each year. But how does he do that? In today’s episode, Paul Connelly shares his endeavours as a Chief Security Officer who built and led HCA’s programs since 2002. Through a good partnership within a very networked industry, they were able to deal with the hectic workload. Paul also shares his shift from being the first Chief Information Security Officer at the White House and into the private sector. So if you think your job is hard, think again and tune in to this episode and be inspired by Paul Connelly’s endeavor. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Zero Trust has been a thing for a few years now, and people have leaned into it. However, Booz Allen's Commercial Practice is changing that narrative and looking to the future to evolve the notion of Trust. In this episode, Matthew Stephenson welcomes the Vice President of Booz Allen's Commercial Practice, Luke Simonetti. Luke explains what Dynamic Trust is and how it differs from Zero Trust. He also shares what being intentional means regarding security and not being a weak spot in the organization. Don't miss this episode if you want to hear more from this informative chat about keeping the world secure. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Many people in workplaces around the world have been clicked dubious links thinking they’re important emails from work. These people have become victims of spear phishing, one of the biggest threats to workplace security right now. How can we protect ourselves from the bad actors that do this? In this episode, Camille Morhardt, the Director of Security and Communication at Intel, shares a three-pronged approach that can help to protect us from spear phishing. The three-pronged approach is about awareness, training, and tools.As part of the development and security world, Camille sees it her mission to make the cyberspace secure so that people can compute with freedom. Tune in for some of her tips on how you can start to protect yourself and your company from these attacks. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

If you are the smartest person in your organization, then you're doing something wrong. Listen to your host Matthew Stephenson as he talks with Nick Ryan, the CISO at Baker Tilly, about the value of being the dumbest person in the room. Together, they discuss team culture and the different elements that shape successful mergers and acquisitions. Nick also dives deep into the security industry and what we should be paying attention to. Build leadership unlike any other and focus on long-term goals! Tune in to learn more about empowerment for a team to thrive even in difficult times. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

A cyberattack is a real and ongoing danger for businesses today. Cybersecurity training can help you protect your company from the inside so you can feel as prepared as possible. The Cyber Range and Training Center in RIT's Global Cybersecurity Institute does just this. They train people by giving them immersive scenarios and emulation training. They also believe in bringing as many people into cybersecurity as possible. It doesn't matter if you're a nurse or disabled; as long as you're interested in cybersecurity, you can train and help protect the world from hackers. Join Matthew Stephenson as he talks to the Director of the Cyber Range and Training Center in RIT, Justin Pelletier, about their approach to training. Justin also oversees cybersecurity competitions that bring together top cyber talent from across the globe. Discover what it takes to get into cybersecurity and why diversity and inclusion are so important. Check out their Bootcamp and start your training today. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Leading a team takes a lot of skill. Imagine what it takes to lead a team of 12,000! Find out how first-time CISO and Vice President for Insight and Microsoft's 2022 Security Changemaker of the Year, Jason Rader, powers through his day as he talks about the vital role his team plays in his or any organization. With more than 25 years of providing security solutions, he shares how he leverages his experience in ensuring that everyone is educated and made to understand how they can affect the overall cybersecurity system of the company. If you think IT is just another department in your organization, tune in to this insightful conversation and learn how you can contribute to mitigating intentional or unintentional InfoSec risks from your own desk. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Cybersecurity can help an organization do strategic development and whole lot of other things. But the biggest thing it brings to the table is trust. If you work in cybersecurity, the people in the organization has to trust you and you need to have the credentials for that. There is not trust without credibility. Trust is key in the world of cybersecurity today, especially if you have to teach the employees about security awareness. Join Matthew Stephenson as he talks to the Senior Vice President and Chief Information Security Officer at BECU, Dr. Sean Murphy about delivering trust as a CISO. Dr. Sean Murphy is an accomplished cybersecurity executive with more than 20 years of experience. He has worked with fast-paced organizations in the military, healthcare, and financial services space. Listen in so you can learn more about the importance of being trustworthy and credible. Discover why you need to keep those curbs safe and painted yellow. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

"Be yourself" is always good advice. But as hackers get smarter, they can be you too! In this digital age, more people spend time online, from connecting with family and friends to doing business. At the same time, online risks keep growing. So do we take offense or defense? In this episode, Dan Lohrmann, Field CISO for Public Sector & Client Advisor at Presidio, talks about cybersecurity and how organizations and its leaders approach technological and digital challenges in securing proprietary information. He also touches on the "7 Reasons Security Pros Fail "and shares insights on what we can do about it and how company culture plays into getting an advantage against the bad guys.  Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Leaders and entrepreneurs know that there are a lot of factors in growing an organization. You must think about structures, making better decisions, and what truly matters. Matthew Stephenson sits down for a conversation with Dr. Shayla Treadwell on the importance of building a culture of trust in your organization to drive excellent results and happy people. Dr. Shayla manages information security programs and helps drive stakeholder collaboration on IT governance, risk, compliance, and assurance issues. In this episode, she shares in-depth insights on aligning the values and ethics of executive staff because that significantly affects the company as a whole. What mistakes are you making, and how can you manage your people effectively? Tune in to learn more about cybersecurity risk management programs, industry-leading security regulations, frameworks, and certifications. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

For any system that involves humans, there is always the potential for vulnerabilities. Whether it is a system of communication or a physical security system, if humans are involved in any way, there is always the potential for someone to exploit a weakness. In this episode, F (freakyclown) C, Co-CEO at Cygenta, explores some ways that any system involving humans can be vulnerable. FC is a well-known ethical hacker and social engineer. He has been working in the information security field for over 20 years and excels at circumventing access controls. As an ethical hacker and social engineer, FC 'breaks into' hundreds of banks, offices, and government facilities around the world. Join FC and Matthew Stephenson as they talk about how any system that involves humans can be vulnerable. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Cybersecurity is one of the most important issues facing businesses and organizations today. The increasing reliance on technology has also increased the threat of cyberattacks. While there are many challenges associated with cybersecurity, there are also opportunities for organizations to improve their cybersecurity posture. Dr. Edward Amoroso, CEO of TAG Cyber, sits with Matthew Stephenson to bring insights about keeping the world secure in the modern era. He also talks about the role of people in building a cybersecurity strategy and the three dogmas of cybersecurity. Ed started TAG Cyber in 2016 to democratize research and advisory services and unleash his inner entrepreneur. Business Insider tapped him as one of the country's 50 leaders "who helped lead the cybersecurity industry." Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Being a CISO requires you to be the team's incident commander. You need to be willing to tackle problems and risks with good leadership. Users are looking up to you to help solve problems effectively. You need to guide these people so they won't get compromised.Join us as we talk to Brent Deterding about what it takes to engage your people as a CISO leader. Brent is an Executive CISO whose mission is to enable Afni and its global workforce to support their clients securely and confidently. Learn how to make your users the frontline of the company. Discover how to properly calculate risks to get the most bang for your buck. Finally, find out why cybersecurity is so important, especially in this time and age. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

Companies need to put more effort into empowering their people when it comes to creating a cybersecurity culture. This is what’s called the people-centric approach to cybersecurity culture. When someone comes forward because they clicked a malicious link, reward them. Don't punish them because then they will keep quiet about what they're doing. Humans are at the highest risk when it comes to cyber-attacks, so you need to enable your people. Join Matt Stephenson as he talks to the co-CEO and co-founder at Cygenta, Jessica Barker about having a people-centric approach to your security culture. Jessica and her team at Cygenta look at security culture in terms of perceptions, values, awareness, and behavior. Learn how to apply that to your organization and start treating your people, not as the weakest links, but as the number one attack factor. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

There is a looming threat in the healthcare industry today: ransomware. Eddie Borrero, Vice President and Chief Information Security Officer at Blue Shield of California, advocates that companies must start prioritizing security to ensure the safety of businesses and, most importantly, people whose lives are on the line when systems go down. In today's episode, Matt Stephenson chats with Eddie to discuss the impact of not having the proper safety measures in place within your system. Technological advances and significant changes towards digitization of healthcare services offer conveniences and cost-cutting benefits, but leaders must also back these innovations with security. Tune in to learn more about what you can do to help mitigate these risks and how Blue Shield's example can help. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

A lot of people think that insider threats are always malicious, but most of the time, they are unwitting vectors of risk. Join Harris Schwartz as he talks to Co-Founder of the Cyentia Institute, Wade Baker, about his research on internal risks. Discover how much of it comes from human risks like email phishing or downloading malware. Learn how they try to curb people away from doing these risky events. Finally, find out Wade’s thoughts on business continuity and disaster recovery function.  Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.

When it comes to cybersecurity and protection, it's easy to blame the individual. But what are more effective methods to counter human risk? Joining Harris Schwartz for this episode is Mark Sangster. Mark is the Chief of Strategy for Adlumin. He is also an award-winning speaker and the author of No Safe Harbor: The Inside Truth About Cybercrime and How to Protect Your Business. Mark talks about the biggest security concerns for businesses and the challenges surrounding them, emphasizing the executive perspective on dealing with such issues. He also discusses solutions that encompass the process and the culture of the organization. Cyber security isn't just a concern for security leaders. It's important to create that understanding with executive leaders and down to every employee in the organization. Stay tuned for more of his insights and tips to protect your business better. Hosted by Simplecast, an AdsWizz company. See pcm.adswizz.com for information about our collection and use of personal data for advertising.