HomePodcastDefense in Depth

Defense in Depth

 

Defense in Depth is a 25-minute weekly advice podcast (Thursdays at 6 A.M. ET) that’s based on a single online discussion. The show is co-hosted by technology journalist David Spark and Geoff Belknap, CISO, LinkedIn or Steve Zalewski, former CISO, Levi Strauss.

Subscribe

DEFENSE IN DEPTH

Defense in Depth

Why Do Cybersecurity Startups Fail?

David Spark -
Why do security startups fail? All startups are an inherently risky proposition, but what are the specific challenges for startups in our industry? Check out...
Defense in Depth

Is “Compliance Doesn’t Equal Security” a Pointless Argument?

David Spark -
A security program shouldn't stop at compliance, but that doesn't mean we should undervalue it either. It's easy to just say compliance comes down...
Defense in Depth

CISO Responsibilities Before and After an M&A

David Spark -
Mergers and acquisitions always present challenges to an organization. When it comes to cybersecurity, how involved should a CISO be before AND after an...
Defense in Depth

Use Red Teaming To Build, Not Validate, Your Security Program

David Spark -
When did we all agree that red teaming was about validating security? It seems like increasingly red teaming is a catch all term for...
Defense in Depth

The Do’s and Don’ts of Approaching CISOs

David Spark -
Vendors need to reach out to CISOs, but what does a successful approach look like? Too often vendors spray and pray with outreach, rather...
Defense in Depth

Doing Third Party Risk Management Right

David Spark -
If third-party risk management becomes too broad, it effectively becomes worthless. But too narrow and you'll miss critical risks. So how do you strike...
Defense in Depth

Warning Signs You’re About To Be Attacked

David Spark -
What are the things that raise red flags that you're about to experience an attack? We know phishing is one major indicator, but what...
Defense in Depth

Do We Have to Fix ALL the Critical Vulnerabilities?

David Spark -
For years we've heard mantras like "patch all the things." But with limited resources, how do you actually focus your patching efforts on the...
Defense in Depth

Mitigating Generative AI Risks

David Spark -
As with any new technology, generative AI comes with a set of risks. So how can we address these risks to take advantage of...
Defense in Depth

Building A Cyber Strategy For Unknown Unknowns

David Spark -
As security professionals, we know a lot of the things we lack visibility into that can cause security issues. That alone is enough to...
Defense in Depth

Responsibly Embracing Generative AI

David Spark -
Businesses are walking a tightrope with generative AI. One the one hand, it's a potentially disruptive technology, and no one wants to be the...
Defense in Depth

People Are the Top Attack Vector (Not the Weakest Link)

David Spark -
In increasingly complex technical defenses, threat actors frequently target the human element. This makes them a top attack vectors, but are they actually the...
Defense in Depth

What’s Entry Level in Cybersecurity?

David Spark -
We often talk about the contradiction of seemingly entry-level security jobs requiring years of experience. But maybe that's because entry-level jobs don't actually exist. Check...
Defense in Depth

New SEC Rules for Cyber Security

David Spark -
The Securities and Exchange Commission issued new cyber rules. What do these new rules mean for CISOs and will they ultimately improve our cybersecurity...
Defense in Depth

The Value of RSA, Black Hat, and Mega Cyber Tradeshows

David Spark -
Are trade shows like RSA getting so big that there's not enough economic value for a CISO to attend? Or do these events have...
1...789...24Page 8 of 24