- CISO Series Newsletter
- Posts
- 09-15-20 - Enjoying My Blissful Ignorance of Cyber Vulnerabilities
09-15-20 - Enjoying My Blissful Ignorance of Cyber Vulnerabilities
Enjoying My Blissful Ignorance of Cyber Vulnerabilities
This week's episode of CISO/Security Vendor Relationship Podcast
Enjoying My Blissful Ignorance of Cyber Vulnerabilities
is hosted by me, David Spark, producer of CISO Series and Mike Johnson. Our guest is Dustin Wilcox, CISO, Anthem. All three of us discussed:
Propagating and believing in InfoSec myths can be dangerous to your cyber health.
Believing that you can spot a phishing scam and that you're safe just as long as you go to mainstream sites are both fallacies. Ever been tricked by a magician? Then guess what, you can be tricked by a phishing email. They're designed to look just like normal emails. And mainstream sites have modules of third parties that may not have such stringent security standards.
Sell your company in your job description.
A lazily written job description will speak poorly to your company's employer brand. Far too many job descriptions are an amalgamation of previous jobs, stolen from other job descriptions with poor to little editing, and/or they come off as an endless wish list and therefore ward off qualified candidates. Make it clear what requirements are and what's a bonus. And then spend a significant amount of time selling your company. If you want talent, you're going to need to really make a convincing argument to come work for your company.
We're not going to be able to hire our way out of the current debt of security talent.
You've seen the seemingly impossible statics that claim that we're well over a million or maybe two million short of cybersecurity professionals. Closing that gap is not a possibility especially as it's always growing wider. The answer is to still hire more cybersecurity talent, but to augment it by building a staff that's cyber savvy.
Special thanks to this week's podcast sponsor, Capsule8.
is defining modern enterprise protection by providing detection and response for Linux infrastructure in any environment. Capsule8 provides host-based detection and investigatory data for incident response with on-going support. Unlike anyone else, Capsule8 mitigates the financial, scalability and reliability limitations of protecting your Linux infrastructure.
Cyber Security Headlines
This week's sponsor of
Cyber Security Headlines
is Dtex Systems.
THIS Friday [9-18-20] We're Hacking Biometrics
Please join us on Friday, September 18th, 2020 at 10 AM PT/1 PM ET for “Hacking Biometrics: An hour of critical thinking about using ourselves as a means to enhance the identity journey and our security posture”.
Joining me in this discussion will be Jason Cramer, head of engineering, Daon and Sridhar Kotamraju, head of product strategy - digital identity, fraud/payments, PNC.
.
Plus, immediately after the video chat (11:00 AM PT/2:00 PM ET) we'll rollover to the CISO Series Friday Meetup. Each participant will be randomly matched up in impromptu 1-on-1 five-minute conversations with fellow cybersecurity professionals. Link to do that will be made available during the video chat.
Thanks to our sponsor Daon.
Subscribe to all our podcasts
Click any of the podcasts below to get access to the subscription feeds. If you're already a subscriber, thank you!
