26 min
Jason Loomis: Seeing risk from all sides- holistic vulnerability management Future of Exposure Management
-
- Business
In this episode, we speak with Jason Loomis, CISO of Freshworks. Jason has been in tech for over 20 years, working with various companies in fashion, health, finance, and banking. He is passionate about leadership and team-building, which influences how he approaches vulnerability risk management. Hear him discuss why people and the process are at the root of vulnerability risks and how configurations can help address them, plus more.
Other topics discussed:
How system shortcomings from 20 years ago are still creating problems and challenges
Understanding that patches are only one solution to preventing exploitation
How not to get distracted by “celebrity vulnerabilities” and stay focused on the risks that are causing the big problems
Methods to calculate your metrics to determine accountability and ownership of risks
What it means to be mature or immature in corporate policies, processes, and reporting
The importance of CISOs physically talking to people and avoiding screen-only interacting
How to make the best of your tools and understand how they work (or don’t work)
In this episode, we speak with Jason Loomis, CISO of Freshworks. Jason has been in tech for over 20 years, working with various companies in fashion, health, finance, and banking. He is passionate about leadership and team-building, which influences how he approaches vulnerability risk management. Hear him discuss why people and the process are at the root of vulnerability risks and how configurations can help address them, plus more.
Other topics discussed:
How system shortcomings from 20 years ago are still creating problems and challenges
Understanding that patches are only one solution to preventing exploitation
How not to get distracted by “celebrity vulnerabilities” and stay focused on the risks that are causing the big problems
Methods to calculate your metrics to determine accountability and ownership of risks
What it means to be mature or immature in corporate policies, processes, and reporting
The importance of CISOs physically talking to people and avoiding screen-only interacting
How to make the best of your tools and understand how they work (or don’t work)
26 min