Please Accept This Not-a-Bribe Gift as an Act of Desperation

Please Accept This Not-a-Bribe Gift as an Act of Desperation

February 09, 2021

CISO Series

CISO/Security Vendor Relationship Podcast

Please Accept This Not-a-Bribe Gift as an Act of Desperation

Please Accept This Not-a-Bribe Gift as an Act of Desperation

Mike Johnson and I welcome guest John Overbaugh, vp, security, CareCentrix to discuss:

  • Receiving gifts and lunches from vendors

  • Whether compliance should be treated as another form of risk

  • Incomplete patching of zero-days

  • Getting discouraged by "Capture the Flags"

.

Thanks to our podcast sponsor, Nucleus Security

Nucleus Security

Overheard on CISO/Security Vendor Relationship Podcast 

“One of the questions I ask when I’m interviewing with an organization is ‘Who owns security at this company?’ And if there isn’t a single person in the interview cycles who answers, ‘Everyone does,’ I know that’s a red flag.”

Kirsten Davies, svp, CISO, Estee Lauder Companies

Listen to full episode of

Cyber Security Headlines 

Top headlines for February 9, 2021:

  • A look at Iranian spyware operations

  • Florida water treatment plant hacked to distribute harmful chemicals

  • Microsoft to add 'nation-state activity alerts' to Defender

to this episode.

or subscribe to the daily newsletter.

Thanks to this week's headlines sponsor, Altitude Networks

Altitude Networks

Join us this Friday [02-12-02] for "Hacking Cloud Collaboration Tools"

Hacking Cloud Collaboration Tools

Our discussion will be 

"Hacking Cloud Collaboration Tools: An hour of critical thinking around securing apps like Google Workspace and Office 365". 

It all begins at 10 AM PT/1 PM ET on Friday, February 12 with guests Steve Tran, CISO, MGM Studios, and Michael Coates, CEO, Altitude Networks . We'll have fun conversation and games, plus at the end of the hour (11 AM PT/2 PM ET) we'll do our Icebreaker (AKA "cybersecurity speed dating").

Thanks to our video chat sponsor, Altitude Networks

Altitude Networks

Overheard on Defense in Depth 

“I don’t actually think reporting lines are as big an indicator as people might think… you really have to dig deeper… You can report to anyone in the business as long as they can provide you the influence you need to help affect change.”

Justin Berman, former CISO, Dropbox

Listen to full episode of