10 episodes

Bob Bragdon, senior vice president and publisher of CSO, hosts this podcast featuring interviews with top chief information security officers from across the country. Listen in as these tech leaders discuss current security threats, critical IT projects, security skills and careers, and much more.

CSO Executive Sessions IDG

    • Technology
    • 5.0, 3 Ratings

Bob Bragdon, senior vice president and publisher of CSO, hosts this podcast featuring interviews with top chief information security officers from across the country. Listen in as these tech leaders discuss current security threats, critical IT projects, security skills and careers, and much more.

    Don’t be Batman: Why CISOs should embrace the sidekick role, Part 2

    Don’t be Batman: Why CISOs should embrace the sidekick role, Part 2

    In this second half, Akamai CISO Andy Ellis and host Bob Bragdon continue their talk about the good guy/bad guy dynamic in the infosec community and why it can result in you being marginalized in your organization. Ellis’ advice: Don’t try to be the hero; be the sidekick.
    Produced by IDG Communications, Inc.

    • 19 min
    Don’t be Batman: Why CISOs should embrace the sidekick role, Part 1

    Don’t be Batman: Why CISOs should embrace the sidekick role, Part 1

    There is a prevailing attitude in the infosec community that security pros are the good guys and the bad guys are, well, just about everyone else — users, developers, senior leadership. This good guy/bad guy dynamic can result in you being marginalized in your organization, says Akamai CISO Andy Ellis. His advice: Don’t try to be the hero; be the sidekick.
    Produced by IDG Communications, Inc.

    • 18 min
    Healthcare security in a time of crisis

    Healthcare security in a time of crisis

    Balancing security and business needs is challenging in the best of times, but in the midst of a global pandemic it takes on new urgency. For Gary Gooden, CISO at Seattle Children’s, this means protecting patient data while enabling frontline workers to service patients and families using new collaboration tools. Also pushed to the front burner for Gooden and his team are issues with remote work, as all non-essential staff (40% of the workforce and including Gooden himself) is now remote.

    • 23 min
    Security in a time of crisis

    Security in a time of crisis

    The biggest risk from the scramble to move to remote work at scale will likely be an increase in data exposed from misconfigured cloud storage buckets, says Christopher Burgess, a writer and speaker on security issues and former senior security adviser to Cisco. “You can choke a horse on the number
    of AWS storage regimes that have been misconfigured to allow the general public into data. Pick an industry and they’ve been affected by it.” But Burgess sees a silver lining outcome from the current crisis: “I think we’re going to also see a great deal of clever innovation on dumbing down the security infrastructure so that it can actually be understood.”

    • 29 min
    Building security in

    Building security in

    We can all remember a time not so long ago when security was the
    department of no. “We have moved past that to ‘yes, but,’" says Mike
    Towers, CSO at Takeda Pharmaceuticals International. For Towers, getting
    to a place where it is easy for the business to do the secure thing has
    meant placing a strong focus on business leadership and regular
    conversations about risks. The end result: Security can be built in from the
    beginning. “From a security perspective that’s a pretty big challenge,” says
    Towers. As for where the security industry could be doing a better job: “I
    think the biggest risk to security right now is arrogance,” says Towers. “And
    now we’re almost pushing ourselves away from the business because
    there’s a mentality of spending without understanding the true business
    value.”

    • 17 min
    In security, soft skills are king

    In security, soft skills are king

    For Chad Teat, CISO of Atlanta-based specialty retailer Floor & Decor, the secret to balancing risk and business opportunity comes down to reducing friction with the business. To do that, Teat says, the CISO, engineers, and analysts all need to make it their day-to-day job to build relationships and influence with the business. “I think every security professional has been a part of highly complex projects that succeeded because everybody was rowing in the same direction. And we’ve also been a part of short puts that fail miserably because of internal squabbles.” As for where security could be doing a better job, Teat points to risk quantification and communication. “We’ve got to be speaking the same language as the rest of the business and right now in the industry a lot of times we’re not even speaking the same language as IT.”

    • 18 min

Customer Reviews

5.0 out of 5
3 Ratings

3 Ratings

Top Podcasts In Technology

Listeners Also Subscribed To