- CISO Series Newsletter
- Posts
- 07-14-20 - "I LOVE Cold Calls," Said the CISO on Opposite Day
07-14-20 - "I LOVE Cold Calls," Said the CISO on Opposite Day
"I LOVE Cold Calls," Said the CISO on Opposite Day
This week's episode of CISO/Security Vendor Relationship Podcast
"I LOVE Cold Calls," Said the CISO on Opposite Day
is hosted by me, David Spark, producer of CISO Series and Mike Johnson. Our guest is Helen Patton, CISO, The Ohio State University. All three of us discussed:
Aggressive vendor behavior has caused CISOs to ignore all cold calls.
Salespeople may have stats that show the success of their cold calls, but the behavior of cold calling has created a culture where CISOs are in avoidance mode. From a CISO's perspective, the solution is not a discussion around more effective cold calling, but rather security vendors using other forms of marketing so they're able to learn about solutions organically.
Create threat scenarios based on the most common user mistakes.
While we universally agreed calling end users "dumb" is not an effective security or relationship strategy, it would be a good idea to understand how your security program can withstand the most common user mistakes, such as clicking a phishing email. If you build out such a program, not only are you designing defense in depth, but you're letting your users know you're looking out for them.
Use feelings of impostor syndrome as a positive.
The overwhelming majority of security professionals have suffered from impostor syndrome. Any point you feel inadequate use that as an opportunity to learn rather than wallow in self doubt. And yes, it's easier said than done.
For cybersecurity podcasts, audience excitement trends in the wake of host excitement.
It's hard to stay up with so many great podcasts. We try our best to come up with interesting topics and guests for our shows. And we're having a lot of fun doing it. But, we know that podcast producing is hard and sometimes hosts don't stay to their schedule or just lose interest in producing altogether. That often shows in their production and the net result is their audience bails.
Special thanks to this week's podcast sponsor, GitGuardian.
empowers organizations to secure their secrets - such as API keys and other credentials - from being exposed in compromised places or leaked publicly. GitGuardian offers a threat intelligence solution focused on detecting secrets leaked on public GitHub and an automated secrets detection solution which tightly integrates with your DevOps pipeline.
This Friday [7-17-20] We're Hacking Active Directory
Join us for Friday, July 17th, 2020 at 10 AM Pacific/1 PM Eastern for "Hacking Active Directory: An hour of critical thinking on the key business service that’s got serious vulnerability issues”.
I'll be leading this discussion with Chris Roberts, hacker in residence, Semperis and
Norman Hunt, deputy CISO, GEICO.
Plus, join us just 30 minutes after the video chat (Friday 7-17-2020 at 11:30 AM PT/2:30 PM ET) for CISO Series Friday Meetup. Five 1-on-1 six-minute conversations with random cybersecurity professionals and fans of the CISO Series.
.
MORE upcoming CISO Series Video Chats7-24-20: Hacking AutomationAll video chats are held on Fridays and start at 10 AM PT/1 PM ET.
SUBSCRIBE TO BOTH PODCASTS
Go ahead and click on any of these links to subscribe to the podcast feed of your favorite podcast catcher.
If you're already a subscriber, THANK YOU! If you like either or both shows, please tell all your friends on social media and write a review on iTunes.