12-03-20 - Join us tomorrow for "Hacking User Access"

View this email in your browser

TOMORROW! Friday [12-04-20] We're "Hacking User Access"

Please join us on Friday, December 4th, 2020 at 10 AM PT/1 PM ET for “Hacking User Access: An hour of critical thinking on managing initial and ongoing access to network and data”.I'll be leading this discussion with Chris Hatter, CISO, Nielsen and Corey Marshall, director of solutions engineering, F5.REGISTER

STICK AROUND FOR THE CYBERSECURITY SPEED DATING!

Immediately after the video chat (11:00 AM PT/2:00 PM ET) we'll rollover to our meetup where we'll match everyone who shows up with another cybersecurity professional. And we'll do it five times in less than 30 minutes.

Thanks to our sponsor F5

This week's episode of Defense in Depth

Why Don't More Companies Take Cybersecurity Seriously?

This week's episode

is hosted by me, David Spark, producer of CISO Series and Allan Alford. Our guest is Ben Sapiro, global CISO, Great-West LifeCo. All three of us discussed:

• Even with attacks and breaches on a constant march, far too many companies operate under the "it will never happen to me" ostrich strategy.

• Problem with the "I'm too small to attack" defense is you probably also have minimal security protections which also makes you far easier to attack. Far easier to penetrate 100 low defense targets than one huge target with high defenses.

• Watching other companies survive a breach makes one feel as if they'll be just as resilient.

• Many companies not showing interest in cybersecurity may simply not be doing appropriate risk-based analysis.

• A company in a highly regulated industry has no choice but to take cybersecurity seriously.

• Businesses that are highly built on trust and have a low barrier to exit often understand the need to take cybersecurity seriously. They are always cognizant of reputational risk.

• Many feel that they are powerless against the onslaught of attacks and even if they do take cybersecurity seriously and spend money defending themselves it will all be a giant waste of effort.

• Many people simply don't feel attached to any type of cybersecurity effort. If you're not vested in it, why care about it?

• Those of us in cybersecurity forget what it feels like to not know anything about cybersecurity.

Special thanks to this week's podcast sponsor, Sonatype.



Sonatype is laser focused on helping organizations continuously harness all of the good that open source offers, without any of the risk. Click to learn how we help over 1,000 organizations and 10 million developers make better decisions, innovate faster at scale, and rest comfortably knowing their applications consist of the highest quality open source components.

Cyber Security Headlines

This week's sponsor of

Cyber Security Headlines

is SecureLayer7.

Best Moments from "Hacking Data Protection and Visibility"

Here are six minutes of the best moments from our last CISO Series Video Chat "Hacking Data Protection and Visibility: An hour of critical thinking on how to gain back control of your data wherever it travels".

Joining me in this discussion were Elliot Lewis, CEO, Keyavi Data and David Tyburski, CISO, Wynn ResortsCheck out the blog post to watch the video, read the "Best Bad Ideas" and the best quotes from the chat room, and to get access to the full one-hour recording.

Huge thanks to our sponsor, Keyavi Data.

Subscribe to all our podcasts

Click any of the podcasts below to get access to the subscription feeds. If you're already a subscriber, thank you!