The Brief on Cybersecurity, Compliance, Risk, AI

Charles Denyer
  • 0.0 (0)
  • TECHNOLOGY
  • UPDATED WEEKLY

The Brief with Charles Denyer is your guide to cybersecurity, AI, compliance, risk, and data privacy. Each week, Charles brings sharp insights and practical strategies to help you reduce risk, cut costs, and protect what matters most. From regulatory chaos to AI uncertainty, Charles breaks down the issues leaders face today — with real answers and real solutions. Listen on Apple, Spotify & more. Learn more: charlesdenyer.com Contact: info@charlesdenyer.com

  1. 22H AGO

    Information Security Policies vs. Procedures: The Missing Link in Real Security and Compliance | EP 22

    In episode 22 of The Brief with Charles Denyer, we tackle one of the most misunderstood — and dangerous — gaps in cybersecurity and compliance: the difference between policies and procedures. Charles exposes why so many companies think they’re secure because they have documentation — when in reality, most of it is just “shelfware.” He breaks down how policies define the what, while procedures define the how, and why both are essential for surviving audits, breaches, and today’s evolving threat landscape. Through real-world stories, hard-hitting examples, and field-tested advice, you’ll learn how to transform your documentation from static PDFs into living, operational tools that actually protect your business. From backups to access control, Charles shows how small details — like who verifies, when, and how — make the difference between passing an audit and failing a crisis. If you’ve ever wondered why your compliance program feels like paperwork instead of protection, this episode will change how you think about documentation forever. The Brief is a Charles Denyer Productions podcast hosted by Charles Denyer. Learn more at: • charlesdenyer.com • Instagram: @denyer.charles • Facebook: @charles.denyer Questions/Topics/Advertising: Have a topic you'd like Charles to cover on the podcast? Interested in advertising opportunities or something else? Reach out anytime at info@charlesdenyer.com Disclaimer: The Brief is a podcast produced by Charles Denyer Productions. The views and opinions expressed by the host and any guests are their own and do not constitute legal advice.

    12 min

  2. 1D AGO

    The Backbone of Security & Compliance: Why Information Security Policies and Procedures Matter | EP 21

    In episode 21 of The Brief with Charles Denyer, we uncover the hidden truth behind most security failures — not weak firewalls or fancy zero-days, but neglected policies and forgotten procedures. Charles takes you inside the boardrooms and breach investigations where “policy shelfware” — beautifully written, rarely followed — has cost companies millions in damages and trust. Through riveting storytelling and hard-earned lessons from over 2,000 security and compliance engagements, Charles reveals why information security documentation is far more than an audit requirement — it’s the backbone of every resilient organization. You’ll learn how to distinguish between a policy’s intent and a procedure’s execution, why customization is critical in today’s evolving threat landscape, and how to bring your documentation to life through ownership, training, and testing. This isn’t another lecture on compliance — it’s a reality check on leadership, accountability, and the price of complacency. The Brief is a Charles Denyer Productions podcast hosted by Charles Denyer. Learn more at: • charlesdenyer.com • Instagram: @denyer.charles • Facebook: @charles.denyer Questions/Topics/Advertising: Have a topic you'd like Charles to cover on the podcast? Interested in advertising opportunities or something else? Reach out anytime at info@charlesdenyer.com Disclaimer: The Brief is a podcast produced by Charles Denyer Productions. The views and opinions expressed by the host and any guests are their own and do not constitute legal advice.

    13 min

  3. NOV 2

    The Great Security Awareness Training Scam: How a Billion-Dollar Industry Is Failing to Protect You | EP 20

    Every year, companies spend billions on security awareness training — yet the breaches keep coming. Why? Because most of it doesn’t work. In The Brief with Charles Denyer, Episode 20: “The Great Security Awareness Training Scam: How a Billion-Dollar Industry Is Failing to Protect You,” Charles exposes the truth behind the glossy videos, generic PowerPoints, and annual compliance courses that give executives comfort but leave organizations defenseless. You’ll hear why the once-a-year “click next to continue” model is a dangerous illusion — and how attackers exploit the exact human behaviors these programs fail to change. Through real-world stories, psychological insights, and hard-hitting analysis, Charles reveals how to replace outdated, performative training with continuous, micro-based, real-world learning that actually works. This isn’t just another cybersecurity talk — it’s a wake-up call for every organization still treating awareness as an obligation instead of a weapon. Because the next breach won’t come from a firewall failure — it’ll come from a click, a habit, or a moment of misplaced trust that your training didn’t fix. The Brief is a Charles Denyer Productions podcast hosted by Charles Denyer. Learn more at: • charlesdenyer.com • Instagram: @denyer.charles • Facebook: @charles.denyer Questions/Topics/Advertising: Have a topic you'd like Charles to cover on the podcast? Interested in advertising opportunities or something else? Reach out anytime at info@charlesdenyer.com Disclaimer: The Brief is a podcast produced by Charles Denyer Productions. The views and opinions expressed by the host and any guests are their own and do not constitute legal advice.

    13 min

  4. OCT 30

    Pen Testing Is a Lie: Why Most Tests Are Fluff and What Really Matters in the Cloud | EP 19

    Pen Testing Is a Lie: Why Most Tests Are Fluff and What Really Matters in the Cloud | EP 19 Podcast Episode Description: Every company says they’ve done a pen test — but what if most of them mean absolutely nothing: In The Brief with Charles Denyer, Episode 19: “Pen Testing Is a Lie: Why Most Tests Are Fluff and What Really Matters in the Cloud,” Charles exposes one of cybersecurity’s biggest deceptions — that penetration testing automatically equals protection. He takes you inside the modern pen-testing industry to reveal how outdated methods, narrow scopes, and automated tools have created a false sense of security. From AWS to Azure, today’s threats don’t target your firewalls — they exploit your configurations, credentials, and APIs hiding in plain sight. Charles breaks down what real testing looks like in the cloud, why vulnerability scans are not penetration tests, and how companies can evolve toward continuous, intelligence-driven validation that actually strengthens security and compliance. Whether you’re a CISO, cloud architect, or compliance lead, this episode will challenge everything you think you know about testing, audits, and resilience. Because the next breach won’t care about your report — only your readiness. The Brief is a Charles Denyer Productions podcast hosted by Charles Denyer. Learn more at: • charlesdenyer.com • Instagram: @denyer.charles • Facebook: @charles.denyer Questions/Topics/Advertising: Have a topic you'd like Charles to cover on the podcast? Interested in advertising opportunities or something else? Reach out anytime at info@charlesdenyer.com Disclaimer: The Brief is a podcast produced by Charles Denyer Productions. The views and opinions expressed by the host and any guests are their own and do not constitute legal advice.

    13 min

  5. OCT 29

    Building a Real-World Incident Response Program for Security & Compliance | EP 18

    When a cyberattack hits, it’s not your technology that saves you — it’s your plan. In The Brief with Charles Denyer, Episode 18: “Building a Real-World Incident Response Program for Security & Compliance,” Charles takes listeners inside the chaos of a real breach to reveal how organizations can transform panic into precision. From the first 30 minutes of a security incident to the final audit report, this episode breaks down the anatomy of a world-class response program — how to identify, contain, eradicate, and recover from an attack with speed and structure. You’ll learn how frameworks like SOC 2, ISO 27001, CMMC, and PCI DSS shape the expectations for readiness, and why documentation and leadership are just as critical as detection tools. Drawing from decades of consulting experience, Charles exposes the gap between theory and reality — where most “plans” collapse under pressure and where real resilience begins. Whether you’re a CISO, IT director, or compliance leader, this episode will give you the roadmap to build, test, and prove that your organization can withstand the inevitable. Because in cybersecurity, it’s not if you’ll be tested — it’s how ready you’ll be when the call comes in. The Brief is a Charles Denyer Productions podcast hosted by Charles Denyer. Learn more at: • charlesdenyer.com • Instagram: @denyer.charles • Facebook: @charles.denyer Questions/Topics/Advertising: Have a topic you'd like Charles to cover on the podcast? Interested in advertising opportunities or something else? Reach out anytime at info@charlesdenyer.com Disclaimer: The Brief is a podcast produced by Charles Denyer Productions. The views and opinions expressed by the host and any guests are their own and do not constitute legal advice.

    13 min

  6. OCT 26

    Lock it Down: How to Secure Employee Endpoints | EP 17

    In the modern workplace, the greatest cybersecurity threat isn’t lurking in some distant data center — it’s sitting right on your desk. In this episode of The Brief with Charles Denyer, Episode 17: “Lock It Down: How to Secure Employee Endpoints,” Charles unpacks the hidden vulnerabilities behind every laptop, phone, and tablet that touches company data. From the rise of remote work to the explosive growth of ransomware and insider threats, this episode explores how the endpoint became the new frontline of digital warfare. You’ll hear the history of how cybersecurity lost its perimeter, why human behavior remains the weakest link, and how companies can strike a delicate balance between employee privacy and enterprise protection. Charles also breaks down what it takes to build a truly rock-solid endpoint protection program — from visibility and control to detection, response, and culture. Whether you’re a security professional, business leader, or simply someone trying to stay safe in an increasingly connected world, this episode will challenge how you think about cybersecurity at its most personal level: the device in your own hands. The Brief is a Charles Denyer Productions podcast hosted by Charles Denyer. Learn more at: • charlesdenyer.com • Instagram: @denyer.charles • Facebook: @charles.denyer Questions/Topics/Advertising: Have a topic you'd like Charles to cover on the podcast? Interested in advertising opportunities or something else? Reach out anytime at info@charlesdenyer.com Disclaimer: The Brief is a podcast produced by Charles Denyer Productions. The views and opinions expressed by the host and any guests are their own and do not constitute legal advice.

    13 min

  7. OCT 21

    Unplugged and Unsecured: The Real Risk of Rogue USB Devices | EP 16

    In episode 16 of The Brief, Charles Denyer delves into one of the most underestimated yet dangerous security threats facing organizations today: rogue USB drives and unauthorized external storage devices. Starting with the haunting story of the 2008 Agent.btz breach, where a single USB drive infected U.S. military networks with devastating consequences, Charles explores how these tiny, everyday tools can bypass even the most sophisticated security systems. From data theft and intellectual property loss to malware infections and compliance violations, USB drives present a significant risk. Charles takes listeners through real-world cases, including a government contractor’s $10 million breach and an infected USB attack that gave hackers access to a financial firm for nearly a year. He explains why USB devices remain such a vulnerability, often overlooked, unmonitored, and misunderstood—and offers a clear, actionable defense strategy. Learn how to lock down USB ports, enforce encryption, deploy Data Loss Prevention (DLP) software, and educate your team about the risks. If you’re still underestimating the threat of rogue USBs, this episode will change your perspective. Protect your organization before it’s too late. The Brief is a Charles Denyer Productions podcast hosted by Charles Denyer. Learn more at: • charlesdenyer.com • Instagram: @denyer.charles • Facebook: @charles.denyer Questions/Topics/Advertising: Have a topic you'd like Charles to cover on the podcast? Interested in advertising opportunities or something else? Reach out anytime at info@charlesdenyer.com Disclaimer: The Brief is a podcast produced by Charles Denyer Productions. The views and opinions expressed by the host and any guests are their own and do not constitute legal advice.

    10 min

  8. OCT 21

    How to Build a Remote Work Policy That Actually Works | EP 15

    In this powerful episode of The Brief, host Charles Denyer breaks down the modern realities of managing a distributed workforce — and the hidden cybersecurity threats that come with it. How to Build a Remote Work Policy That Actually Works goes beyond productivity tips and virtual meeting etiquette to reveal why most organizations are one weak password or unsecured Wi-Fi connection away from disaster. Charles opens with a relatable story of a scattered team juggling time zones and technology — then exposes the deeper truth: remote work has expanded the corporate attack surface like never before. From phishing scams and unsecured home routers to data leakage and compliance violations, the risks are real, rising, and often ignored. You’ll learn the five essential pillars of an effective remote work policy — covering eligibility, data protection, communication standards, performance management, and company culture — along with practical steps to harden your remote environment and protect your people. Whether you’re a business leader, HR executive, or IT professional, this episode is your blueprint for balancing flexibility with security in a hybrid world. The Brief is a Charles Denyer Productions podcast hosted by Charles Denyer. Learn more at: • charlesdenyer.com • Instagram: @denyer.charles • Facebook: @charles.denyer Questions/Topics/Advertising: Have a topic you'd like Charles to cover on the podcast? Interested in advertising opportunities or something else? Reach out anytime at info@charlesdenyer.com Disclaimer: The Brief is a podcast produced by Charles Denyer Productions. The views and opinions expressed by the host and any guests are their own and do not constitute legal advice.

    13 min
See All (23)

Trailer

About

The Brief with Charles Denyer is your guide to cybersecurity, AI, compliance, risk, and data privacy. Each week, Charles brings sharp insights and practical strategies to help you reduce risk, cut costs, and protect what matters most. From regulatory chaos to AI uncertainty, Charles breaks down the issues leaders face today — with real answers and real solutions. Listen on Apple, Spotify & more. Learn more: charlesdenyer.com Contact: info@charlesdenyer.com

Information