View this email in your browser

CISO Series Podcast
​​I Support Open Source as Long as I Don't Have to Invest in It

Open source is a bedrock of modern organizations. But we've taken securing it for granted, with many vital pieces of software still largely maintained by volunteers. So, how do we keep these software packages secure when the point of failure could be a single developer?

This week’s episode is hosted by David Spark , producer of CISO Series and Steve Zalewski. Joining them is their guest, Brett Perry, CISO, Dot Foods.

A new MDR policy

We’ve seen some cyber insurance carriers offering managed detection and response (MDR) services, but is that a good idea? Integrating MDR into insurance could lead to better preventative measures and more effective incident response, the same way fire departments conducting safety inspections can reduce risk, noted Peter Schawacker on LinkedIn. But this could create conflicts of interest, such as inflating costs or reducing competition. The worst outcome might be MDR becoming a compliance checkbox rather than a fully implemented and effective service. This has been the debate around cyber insurance for years: does it incentivize businesses to adopt robust security practices, or should they just meet minimum compliance requirements? From an organizational perspective, the key is to balance risk management, accountability, and the practicalities of building strong security programs.

Staying on top of the technical debt cycle

When managing technical debt within the cybersecurity stack, it’s crucial to fully deploy tools before purchasing new ones and adopting a "one-in, one-out" approach to maintain balance. Evolving threats can render tools obsolete faster than anticipated, creating challenges when organizations are locked into multi-year contracts. Regular evaluations of technology effectiveness and planning for replacements are crucial to staying ahead, but as Ericka Chickowski pointed out on CSO Online, it often doesn’t happen. Consolidation can streamline operations, but over-reliance on single vendors should be avoided. Additionally, having an exit plan for critical tools, including ensuring the ability to export data, helps organizations maintain flexibility and avoid becoming trapped by outdated or ineffective solutions.

Beating retention struggles

Creating a supportive and engaging work environment is the key to employee retention. Retention struggles are often linked to recruitment pressures, poor financial incentives, limited career development, and high stress levels, as outlined in a recent ISACA survey. CISOs can help by fostering a positive workplace culture, providing transparency about organizational performance, and ensuring employees feel secure in their roles. Focus on long-term development by blending strong leadership with practical management, such as offering clear career paths, mentoring, and regular external training and networking opportunities. Additionally, work-life balance is crucial; flexibility during calm periods helps offset the intense demands during crises. 

In the gully of SOAR

Gartner recently put SOAR (Security Orchestration, Automation, and Response) at the bottom of its vaunted hype cycle. On Dark Reading, Robert Lemos reminded us that Gartner initially coined the category in 2017; SOAR aimed to address the need for automated, machine-speed responses to security events. However, its decline is attributed to the realization that many of its challenges stem from people and business process issues rather than technology limitations. As its functions are increasingly integrated into broader security platforms, SOAR is seen as less distinct or necessary. This broadly aligns with established critiques of Gartner’s industry influence in defining industry trends; it can shape the market and focus on technology over systemic challenges. This comes to light as the industry shifts toward holistic approaches and tools that align with business processes.

Listen to the full episode on our blog or your favorite podcast app, where you can read the entire transcript. If you haven’t subscribed to the CISO Series Podcast via your favorite podcast app, please do so now.

Listen to the full episode.

Thanks to our podcast sponsor, Tines

Subscribe
Subscribe to CISO Series Podcast

Please subscribe via Apple Podcasts, Spotify, YouTube Music, Amazon Music, Pocket Casts, RSS, or just type "CISO Series Podcast" into your favorite podcast app.

Is AI Benefiting Attackers or Defenders?

"One of my pet peeves with the cybersecurity industry as a whole is the AI, obsession with AI, as in AI is going to save you. I think one of the things that we try to educate people about is the fact that it's just as likely to be used against you." - Rob Allen, chief product officer, ThreatLocker

Listen to the full episode of "Is AI Benefiting Attackers or Defenders?"

Subscribe to our newsletters on LinkedIn!

We've got our bi-weekly and daily Cyber Security Headlines newsletters available right here on LinkedIn. Go ahead and subscribe to one or both!

CISO Series Newsletter - Twice every week

Cyber Security Headlines Newsletter - Every weekday

LIVE!
Cyber Security Headlines - Week in Review

Make sure you register on YouTube to join the LIVE "Week In Review" this Friday for Cyber Security Headlines with CISO Series reporter Richard Stroffolino. We do it this and every Friday at 3:30 PM ET/12:30 PM PT for a short 20-minute discussion of the week's cyber news. Our guest will be Phil Beyer, Head of Security, Flex.

Thanks to our Cyber Security Headlines sponsor, Dropzone AI

Super Cyber Fridays!
Join us Friday [01-24-25], for "Hacking Platformization"

Join us Friday, January 24, 2025, for “Hacking Platformization: An hour of critical thinking of how stitching together data, tools, and processes is necessary for the success of your security program.”

It all begins at 1 PM ET/10 AM PT on Friday, January 24, 2025 with guests Elad Koren, vice president, product management, Palo Alto Networks and a special guest (that means we’re still in booking mode). We'll have fun conversation and games, plus at the end of the hour (2 PM ET/11 AM PT) we'll do our meetup.

Register

Thanks to our Super Cyber Friday sponsor, Palo Alto Networks

Thank you!
Thank you for supporting CISO Series and all our programming

We love all kinds of support: listening, watching, contributions, What's Worse?! scenarios, telling your friends, sharing in social media, and most of all we love our sponsors!

Everything is available at cisoseries.com.

Interested in sponsorship, contact me, David Spark.