Security Insights - Cybersecurity for Real-World Workplaces Ivanti: Cybersecurity and Information Technology Solutions

What does CSO stand for at your organization?

Is it short for Chief Security Officer... or Chief Scapegoat Officer?

In this episode, Ivanti CSO Daniel Spicer talks about how he never thought he'd be a CSO, and the unique pressures that security executives face from their own internal leadership teams and external regulations or (worse) insurance companies.

Listen in as Daniel and Ashley dig into:
What counts as a "breach" -- legally and ethically -- and the conflicting pressures to either report or not.How hackers try to bluff their way into a breach...... and how "breach coach" insurance lawyers may or may not try to pressure teams out of reporting incidents they should.Where to find the best internal allies to help you stand up to undue pressures and maintain your ethical high grounds.The #1 thing security leaders should do during their interview process to make sure they're signing on with the right organizationHow -- if you do get fired due to a breach -- it's not the end of your career as a security professional.
Next episode going live June 29, 2023!New episodes publish around the second and fourth Thursdays each month. For all show notes, resources and references, head to Ivanti.com/SecurityInsights Join the conversation online on LinkedIn (linkedin.com/company/Ivanti)

Daniel Spicer is back! Following up on last episode's discussion on the security risks of overemployment, Ivanti's Chief Security Officer returns to clear up the age-old myth of security tools being abused for employee investigations. Join Daniel, Chris and Ashley as they discuss:
What is (and most definitely is not) allowed in an employee investigation -- especially if the Security Team is requested to assistUser and management's misconceptions about security data, and how it's less "Big Brother," and more "Death by Data" The invaluable technique of using HR and Legal both to cover your asks and avoid abuse of security tools during investigationsHow you're more likely to investigate an employee due to a media outlet's DMCA request than overemploymentWhat a manager's "tipping point" is to request a more robust employee investigation, and what would trigger Security to get involvedJoin us for another episode in which empathetic management and a sympathetic legal department might be the best security tools you'll ever deploy when it comes to cracking down on bad employee behavior -- well, that, and a solid VPN / MDM combo.

Next episode going live June 29, 2023!New episodes publish around the second and fourth Thursdays each month. For all show notes, resources and references, head to Ivanti.com/SecurityInsights Join the conversation online on LinkedIn (linkedin.com/company/Ivanti)

Chris and Ashley use the current overemployment media trend as an example case study on evaluating security risks versus potential organizational impact. 

They cover: 
How overemployment existed before remote workWeighing the various security implications of overemployment — including shadow IT and insider threatsHow far an organization should go to remediate security risks due to unknown overemployed employees... and the cultural trade offs organizations may be required to make.
Next episode going live June 29, 2023!New episodes publish around the second and fourth Thursdays each month. For all show notes, resources and references, head to Ivanti.com/SecurityInsights Join the conversation online on LinkedIn (linkedin.com/company/Ivanti)

Chris (finally!) adds his insights to the 2023 Press Reset cybersecurity research report, especially how its findings impact vulnerability and patch prioritization processes — do you shoot for mission critical systems, active exploits, or something else first? — and why asset visibility lies at the core of every security framework on the planet.

Next episode going live June 29, 2023!New episodes publish around the second and fourth Thursdays each month. For all show notes, resources and references, head to Ivanti.com/SecurityInsights Join the conversation online on LinkedIn (linkedin.com/company/Ivanti)

JR Robinson, Head of Platform at generative AI startup Writer, joins VP of Endpoint Security Product Management Chris Goettl and Ashley Stryker to discuss current generative AI use cases for security teams that go beyond just chat bots.

(Please. For everyone’s sanity… go beyond chat bots.)

They’ll also preview a deeper webinar discussion with Chief Security Officer Daniel Spicer on the risks and rewards generative AI offers security teams at every organization, airing on April 26 — save your spot and bring your questions to "Generative AI for Infosec and Hackers: What Security Teams Need to Know!"

Next episode going live June 29, 2023!New episodes publish around the second and fourth Thursdays each month. For all show notes, resources and references, head to Ivanti.com/SecurityInsights Join the conversation online on LinkedIn (linkedin.com/company/Ivanti)

Daniel and Ashley review the latest research report from Ivanti -- Press Reset: A 2023 Cybersecurity Status Report -- including prioritizing phishing and DDoS attacks, security ROI challenges, and why organizations should never increase their cybersecurity budget by sacrificing their IT allocations.

Download the full report at Ivanti.com/CybersecurityReport  

Next episode going live June 29, 2023!New episodes publish around the second and fourth Thursdays each month. For all show notes, resources and references, head to Ivanti.com/SecurityInsights Join the conversation online on LinkedIn (linkedin.com/company/Ivanti)