Business Security Weekly
SubscribeApps Gone Wild: Re-thinking App and Identity Security for SaaS – Guy Guzner – BSW #343
With hundreds or thousands of SaaS apps to secure with no traditional perimeter, Identity becomes the focal point for SaaS Security in the modern enterprise. Yet with Shadow IT, now recast as Business-Led IT, quickly becoming normal practice, it’s more complicated than trying to centralize all identities with an Identity Provider (IdP) for Single Sign-On (SSO). So the question becomes, “How do you enable the business while still providing security oversight and governance?”
This segment is sponsored by Savvy. Visit https://securityweekly.com/savvy to learn more about them!
In the leadership and communications section, The CISO Role Is Changing. Can CISOs Themselves Keep Up? , Why do 60% of SEC Cybersecurity Filings Omit CSO, CISO Info?, How Co-Leaders Succeed, and more!
Visit https://www.securityweekly.com/bsw for all the latest episodes!
Segments
CSO Role vs. Changing CISO Role as 60% of Both Roles are Omitted from SEC Filings – BSW #343
Apps Gone Wild: Re-thinking App and Identity Security for SaaS – Guy Guzner – BSW #343
How The Evolving Threat Landscape Drives Innovation In Cybersecurity – Tom Parker, Dave Dewalt – BSW #342
Dave DeWalt needs no introduction. A four-time CEO and currently the Founder and CEO of NightDragon, Dave collects, analyses, and disseminates more intelligence on the cybersecurity industry in a year than most of us ever will in a lifetime. We've invited Dave to Business Security Weekly to share some of that intelligence with our audience. Specifically, we'll hear about:
- The evolving threat landscape, including impacts of Artificial Intelligence
- The latest cybersecurity innovation, including what's working and what's NOT working
- The impact of budgets on buying decisions, including whether "best of breed" is dead in lieu of platforms
Tune in for this insightful discussion before you make your next strategic cybersecurity decisions.
Piggybacking off of our interview with Dave DeWalt, Tom Parker from Hubble joins Business Security Weekly to discuss a few of the key trends CISOs should be paying attention to. Yes, we'll cover Artificial Intelligence, but more from a business risk and governance perspective. We'll also cover quantum computing, technical debt, and how budgets will impact how organizations can or cannot prepare for these emerging trends. Buckle up and hang on for part two of our jam packed episode.
Visit https://www.securityweekly.com/bsw for all the latest episodes!
Segments
How The Evolving Threat Landscape Drives Innovation In Cybersecurity – Dave Dewalt – BSW #342
Emerging Trends CISOs Should Pay Attention To – Tom Parker – BSW #342
Protecting Executives: Why The Home Is The New Battle Ground – Chris Pierson – BSW #341
When you think of executive protection, you think of work related activities such as security details, travel planning, and other physical security protections. But in the world of Artificial Intelligence and DeepFakes, the risk landscape for executives goes far beyond work and into their personal lives. The home is now the new battle field and family life will never be the same.
Chris Pierson, CEO at BlackCloak, joins Business Security Weekly to discuss the changes in the risk landscape for executives, including Generative AI, and its impacts on social engineering, personal attacks, and family threats. Executive protection must now include digital protection, both at work and at home.
This segment is sponsored by BlackCloak. Visit https://securityweekly.com/blackcloak to learn more about them!
In the leadership and communications section, Cybersecurity in the C-Suite: A CISO’s Guide to Engaging the Board, The CISO's Guide to AI: Embracing Innovation While Mitigating Risk, Cyber Insurance Strategy Requires CISO-CFO Collaboration, and more!
Visit https://www.securityweekly.com/bsw for all the latest episodes!
Segments
Protecting Executives: Why The Home Is The New Battle Ground – Chris Pierson – BSW #341
CISO’s Guides to Engaging The Board, Artificial Intelligence, and Cyber Insurance – BSW #341
The Convergence of Security, Compliance, and Risk – Igor Volovich – BSW #340
The SEC's new cyber reporting requirements are forcing organizations to rethink their compliance and risk programs. No longer can compliance and risk be static, point in time assessments. Instead they need to match the speed of security which is dynamic and real-time. Couple the difference in speeds with whistleblowers and attack groups reporting non-compliance with the new SEC rules and organizations find themselves in a regulatory nightmare.
Igor Volovich, VP of Compliance Strategy for Cyber Compliance at Qmulos, joins BSW to share his "Notes from the battlefield" on how automation is the only way to effectively converge security, risk, and compliance into a dynamic, real-time discipline.
In the leadership and communications section, Effective cyber security starts at the top, CISOs Struggling to Balance Regulation and Security Demands With Rising Cybersecurity Pressures, Unlocking Leadership Excellence: Data-Driven Practices That Set Elite Leaders Apart, and more!
Visit https://www.securityweekly.com/bsw for all the latest episodes!
Segments
The Convergence of Security, Compliance, and Risk – Igor Volovich – BSW #340
Security Starts At The Top and as CISOs Struggle, do they replace the CIO? – BSW #340
AI Risks, Application Performance – Padraic O’Reilly, Shibu George – BSW #339
Released on January 26, 2023, the NIST AI RMF Framework was developed through a consensus-driven, open, transparent, and collaborative process that included a Request for Information, several draft versions for public comments, multiple workshops, and other opportunities to provide input. It is intended to build on, align with, and support AI risk management efforts by others.
Padraic O'Reilly, Founder and Chief Innovation Officer at CyberSaint, joins BSW to discuss why AI risks are a unique challenge and how they can impact both organizations and society. Without proper controls, AI systems can amplify, perpetuate, or exacerbate inequitable or undesirable outcomes for individuals and communities. With proper controls, AI systems can mitigate and manage inequitable outcomes.
This segment is sponsored by CyberSaint . Visit https://securityweekly.com/cybersaint to learn more about them!
Panoptica, Cisco’s cloud application security solution, was born out of Outshift, Cisco's incubation engine. Shibu George, Engineering Product Manager at Outshift, joins Business Security Weekly to discuss his transition from application performance monitoring to application security and how Panoptica was born.
This segment is sponsored by Panoptica. Visit https://securityweekly.com/panoptica to learn more about them!
Visit https://www.securityweekly.com/bsw for all the latest episodes!
Segments
The Unique Challenges of AI Risks – Padraic O’Reilly – BSW #339
How Application Performance Transformed into Application Security – Shibu George – BSW #339
The New BISO Role – A Career Path to CISO? – BSW Vault
Check out this interview from the BSW Vault, hand picked by main host Matt Alderman! This segment was originally published on February 22, 2022.
The Business Information Security Officer, or BISO, is relatively new and somewhat controversial role. Does this role act as the CISO's non-technical liaison to the business units or as the CISO's deputy to oversee strategy implementation at a granular level? Is this new role a necessary career path for future CISOs or an entry point into security? The BSW hosts debate!
Segments
The New BISO Role – A Career Path to CISO? – BSW Vault
Proactive Compliance, Improving Cybersecurity Culture, and Hiring The Right Skills – BSW #338
In the leadership and communications section, SEC’s Enforcement Head: It’s Time for ‘Proactive Compliance’, Improving cybersecurity culture: A priority in the year of the CISO, Breaking Down Barriers: 6 Simple Measures to Overcome Communication Barriers, and more!
Visit https://www.securityweekly.com/bsw for all the latest episodes!
Segments
Proactive Compliance, Improving Cybersecurity Culture, and Hiring The Right Skills – BSW #338
Security Money/Pick Your Battles To Avoid Overconsolidation – Jess Burn, Jeff Pollard – BSW #337
It's time to review the money of security, including public companies, IPOs, funding rounds and acquisitions from the previous quarter. We also update you on the Security Weekly 25 index. The index came roaring back last quarter. Here are the stocks currently in the index:
SCWX Secureworks Corp PANW Palo Alto Networks Inc CHKP Check Point Software Technologies Ltd. SPLK Splunk Inc GEN Gen Digital Inc FTNT Fortinet Inc AKAM Akamai Technologies, Inc. FFIV F5 Inc ZS Zscaler Inc OSPN Onespan Inc LDOS Leidos Holdings Inc QLYS Qualys Inc VRNT Verint Systems Inc. CYBR Cyberark Software Ltd TENB Tenable Holdings Inc DARK Darktrace PLC S SentinelOne Inc NET Cloudflare Inc CRWD Crowdstrike Holdings Inc NTCT NetScout Systems, Inc. VRNS Varonis Systems Inc RPD Rapid7 Inc FSLY Fastly Inc RDWR Radware Ltd ATEN A10 Networks Inc
Large security vendors and hyperscalers, including Microsoft, continue to expand their cybersecurity product and service portfolios. Microsoft’s extensive enterprise reach, massive partner network, and enormous influence in the C-suite puts pressure on CIOs and CISOs to consolidate on it as much as possible for cybersecurity. This report helps security leaders understand Microsoft’s cybersecurity portfolio, the tactics it uses, and how to manage peer and executive pressure to single-source security technology.
Visit https://www.securityweekly.com/bsw for all the latest episodes!
Segments
Security Money – The Index Comes Roaring Back – BSW #337
Pick Your Battles To Avoid Overconsolidation – Jess Burn, Jeff Pollard – BSW #337
Cyber Readiness: Train As You Fight – William Hutchison – BSW #336
How do you prepare for a cyber incident? You train as you fight, but in what environment? William "Hutch" Hutchinson, CEO and co-founder of SimSpace, joins BSW to share cyber best practices and why testing in your operational environment not a good idea. Learn what it takes to be Cyber Ready.
In the leadership and communications section, A tougher balancing act in 2024, the year of the CISO, CISOs Struggle for C-Suite Status Even as Expectations Skyrocket, Want to Be a Better Leader? Stop Thinking About Work After Hours, and more!
Visit https://www.securityweekly.com/bsw for all the latest episodes!
Segments
Cyber Readiness: Train As You Fight – William Hutchison – BSW #336
Year of the CISO as CISOs Struggle for C-Suite Status and Expectations Skyrocket – BSW #336
Say Easy, Do Hard, Hiring a CISO, Part 2 – BSW #335
Inspired by my co-host, Jason Albuquerque, we get our hands dirty and discuss the challenges of hiring a CISO. How will the new SEC regulations impact the role for both organizations and individuals?
In part 2, we get our hands dirty by addressing CISO hiring from the individual CISO. What should you look for in a CISO role? What questions should you be asking during the interview process? What are the non-negotiable items that must be part of the offer?
Visit https://www.securityweekly.com/bsw for all the latest episodes!