- CISO Series Newsletter
- Posts
- Productivity Tip! Get More Done By Refusing To Do Anything
Productivity Tip! Get More Done By Refusing To Do Anything
Productivity Tip! Get More Done By Refusing To Do Anything
This week's podcast episode of the CISO/Security Vendor Relationship Podcast
Productivity Tip! Get More Done By Refusing To Do Anything
Co-host Mike Johnson, CISO of Lyft, and our guest April Wright, CEO, ArchitectSecurity.org, discuss the following:
Who's responsibility is security? In what they claim is an effort to improve security for the 2020 Olympic games, the government of Japan will attempt to hack the Internet-connected devices of its own citizens. If the government is successful breaking in just using default passwords, they plan on alerting individual citizens to the status of their cyber hygiene. If individuals and manufacturers can't provide better security, and it's affecting all of us, is it appropriate for the government to intervene?
Is InfoSec rock star culture healthy or not? Mike and guests have talked in the past about their distaste for security rock star culture to which Mike says is based on individuals playing offense in security, rather than defense which requires an entire team. Our guest, April Wright actually liked the rock star culture because it gets people excited about being in security. What she doesn't like is the exclusionary behavior and the attitude of elitism.
Analysts' most important role is in future not present of security. An analyst's greatest value is in projecting future needs of security, and not necessarily reviewing what product is good or bad for your environment. Every CISO's environment is different and an analyst's review may or may not pertain.
Special thanks to Endgame for sponsoring this week's episode of the CISO/Security Vendor Relationship Podcast.
Endgame makes nation-state grade protection as easy as anti-virus. Their converged endpoint security platform is transforming security programs – their people, processes and technology – with the most powerful endpoint protection and simplest user experience, ensuring analysts of any skill level can stop targeted attacks before damage and loss. To learn more visit www.endgame.com. Endgame will be at RSA this year in booth 1827 in the south hall.
OUR LIVE SF RECORDING IS FILLING UP
We're doing another live recording of the CISO/Security Vendor Relationship Podcast on Wednesday, March 6th in San Francisco. Registrations are filling up much faster than I expected. If you want to get in, REGISTER now and come early. Doors open at 5:00 PM, and we begin recording at 6:00 PM.
This week's episode of Defense in Depth
Insider Threats
On this episode of Defense in Depth:
Co-host Allan Alford, CISO of Mitel, and our guest Vijay Bolina, CISO, Blackhawk Network, discuss the following:
Insider threat mistakes can take many forms. It could be someone carelessly leaving a USB key somewhere or it could be a developer simply not securing their code.
Security people make mistakes just like non-security people. Difference is when a security person makes a mistake, chances are the gravity of the damage will be much higher.
A breach doesn't necessarily have to damage the company. A breach simply means data left your protected area of the business. And that is still bad even if there was no actual damage.
Special thanks to this week's Defense in Depth podcast sponsor, Fluency Security.
Fluency's correlation and risk scoring technology combined with their approach of using pseudonyms in place of certain PII data greatly facilitates your organization's path towards compliance. Over time, machine learning and artificial intelligence algorithms detect anomalies at an impressive level of scalability. Run Fluency as a standalone or integrate it into your existing SIEM. Learn more by visiting us at booth #4529 at the RSA® Conference 2019.
SUBSCRIBE TO BOTH PODCASTS
Go ahead and click on any of these links to subscribe to the podcast feed of your favorite podcast catcher.
If you're already a subscriber, THANK YOU! If you like either or both shows, please tell all your friends on social media and write a review on iTunes.