06-11-20 - Oh Please. Who Needs a BISO?

Oh Please. Who Needs a BISO?

June 11, 2020

CISO | Security Vendor Relationship Series

This week's episode of Defense in Depth

Role of a BISO

 On this episode of Defense in Depth:

Co-host Allan Alford and guest  Nicole Dove, BISO, ADP, and host of Urban Girl Corporate World podcast, discussed:

  • A BISO becomes very valuable where they can be mapped to a specific business unit (by locale or business line).

  • The BISO role has become important because practically all companies are reliant on data and technology.

  • The BISO must have power to do their job. That requires autonomy and decision making ability.

  • Another way to describe a BISO is as a senior business analyst with a security focus.

  • From CISO to project manager, roles change often for a BISO.

  • Geo-aligned positions for BISOs have become extremely valuable in light of different and growing territorial regulations.

  • BISO is a good role for a wannabe CISO.

  • Only large companies have room for a BISO.

  • A BISO who can cozy up to a particular business units sales strategy is of enormous value.

  • Make sure the BISO is actually bringing value and not just acting as a gatekeeper between security and the business.

Thanks to this week's sponsor of Defense in Depth, Deep Instinct.

Deep Instinct is changing cybersecurity by harnessing the power of Deep Learning to prevent threats in zero time. Deep Instinct’s on-device, solution protects against zero-day, APT, ransomware attacks, and against both known and unknown malware with unmatched accuracy and speed. Find out more about the solution’s wide covering platform play.

 

 

Justin Berman, head of security, Dropbox on being accepting of bug bounties

Upcoming CISO Series Video Chats  Tomorrow! FRIDAY [6-12-20] Hacking Rogue IT

Featuring Joey Johnson, CISO, Premise Health and Anahi Santiago, CISO, ChristianaCare.

Next Friday [6-19-20] Hacking API Security

Featuring Nir Valtman, vp, head of product & data security at Finastra and Roey Eliyahu, co-founder & CEO, Salt Security.

Huge thanks to our sponsor, Salt Security.

Friday [6-26-20] Hacking Tool Optimization

Featuring Chris Kennedy, CISO, AttackIQ and Craig Goodwin, chief trust & risk officer, Fujitsu.

Huge thanks to our sponsor, AttackIQ.

All chats start at 10 AM PT/1 PM ET on Fridays.

Best Moments from "Hacking the Risk Decision Making Process"

Best Moments from "Hacking the Risk Decision Making Process" Video Chat

Here are six minutes of the best moments from last week's “Hacking the Risk Decision Making Process” Video Chat. To watch the full video and read the chat go

.

Featured in the video is Tony Sager, senior vp and chief evangelist, Center for Internet Security and Marnie Wilking, global head of security & technology risk management at Wayfair.

Check out the post for the best bad ideas and the best quotes from our chatroom.

See above for the next video chats. They happen every Friday at 10 AM Pacific.

Mike Johnson on the complexity of GRC needs

SUBSCRIBE TO BOTH PODCASTS

Go ahead and click on any of these links to subscribe to the podcast feed of your favorite podcast catcher.

If you're already a subscriber, THANK YOU! If you like either or both shows, please tell all your friends on social media and write a review on iTunes.