CISO Series Newsletter
Posts
01-14-20 - We Put the FUN in InFunSec

01-14-20 - We Put the FUN in InFunSec

We Put the FUN in InFunSec

January 14, 2020

View this email in your browser

CISO | Security Vendor Relationship Series

This week's episode of CISO/Security Vendor Relationship Podcast

We Put the FUN in InFunSec

This week's episode

was recorded in person in San Francisco. Joining me and co-host, Mike Johnson, was Adrian Ludwig, CISO, Atlassian. All three of us discussed:

The most fun part of security is red teaming.

We've come to the conclusion that offense is the most fun part of security. While there is some satisfaction of stopping the hacks, it's really fun being the cause of "approved" havoc.

CISO's balancing act.

If a business wants to get their CISO involved in business decisions all parties must agree on the expectation of value that the CISO is bringing to the business (maybe closing sales), to the security team, and to the rest of the business.

Phishing works when it takes advantage of interfaces we know and trust.

Phishing morphs over time as we become comfortable with new trusted communications. For example, who questions the "See translation" link underneath some apparently foreign copy? That link could be a compromise. Be wary of what you come to automatically accept and trust.

Special thanks to this week's CISO/Security Vendor Relationship Podcast sponsor, Encryptics.

Now you can share data without ever losing control of it. Our advanced architecture makes data self-protecting, intelligent and self-aware – wherever it goes, no matter who has it. Our .SAFE patented multi-key technology enables data to evaluate its own safety conditions, including geo-sensing, recipient authentication, and policy changes from its owner. Contact Encryptics today and see for yourself.

CISO Gary Hayslip on how he gets vendor recommendations

Live CISO-Vendor Recording with Silicon Valley ISSA (01-21-20)

Tuesday, January 21st, 2020, Mike Johnson and I will be recording the CISO/Security Vendor Relationship Podcast in front of a live audience at the Silicon Valley ISSA meeting. Our guest for the meeting will be Peter Liebert, former CISO for the State of California, and now an independent consultant and commander, cyber operations, California State Guard.

It all starts at 6 PM on January 21st, 2020 at Malwarebytes offices in Santa Clara, California.

CISO Kathy Wang on why to focus on remote hires

Sponsorship opportunities in 2020

We've got live events planned for San Francisco, New York, and Boston, plus tons of programs around podcasts, video chats, and live shows coming up, plus a full one-day live event. Please contact me, David Spark, for information.

SUBSCRIBE TO BOTH PODCASTS

Go ahead and click on any of these links to subscribe to the podcast feed of your favorite podcast catcher.

If you're already a subscriber, THANK YOU! If you like either or both shows, please tell all your friends on social media and write a review on iTunes.