All links and images for this episode can be found on CISO Series.  What should a cyber job description require, and what shouldn't it? What's reasonable and not reasonable?    Check out this  post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Geoff Belknap (@geoffbelknap), CISO, LinkedIn. Our guest is Rob Duhart (@robduhart), deputy CISO, Walmart.  Thanks to our podcast sponsor, Normalyze  Normalyze is a cloud data security platform that continuously discovers sensitive data and their access paths across your cloud environments. Normalyze provides the ability to analyze, prioritize and respond to data threats to prevent damaging data breaches.  Discover, visualize, and secure your cloud data in minutes with Normalyze Freemium. In this episode:  What should a cyber job description require, and what shouldn't it? What's reasonable and not reasonable? Do these completely unrealistic job descriptions hurt the entire industry? What is it we need to put in a cyber job description, and what do we need to leave out? Who’s losing out here? 

Let's Write Better Cybersecurity Job Descriptions

Defense in Depth promises clear talk on cybersecurity’s most controversial and confusing debates. Once a week we choose one controversial and popular cybersecurity debate and use the InfoSec community’s insights to lead our discussion.

Technology

Tech News

Podcasting

Gadgets

Software How-To

News

All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Steve Zalewski. Joining us is our sponsored guest, Vivek Ramachandran, founder, SquareX. In this episode:   Are secure web gateways still an effective tool in the enterprise?   As the browser has changed a lot in the last decade, are Secure Web Gateways - SWGs still keeping up?    Why is this a problem?   Does anyone have a better solution?   Thanks to our podcast sponsor, SquareX  SquareX helps organizations detect, mitigate and threat-hunt web attacks happening against their users in real-time, including but not limited to malicious sites, files, scripts, and networks.  Find out more at sqrx.com.

Where Are Secure Web Gateways Falling Short?

All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Geoff Belknap (@geoffbelknap), CISO, LinkedIn. Joining me is our guest Richard Stiennon, chief research analyst, IT-Harvest. In this episode: In this episode:   Why do so many vendors claim to offer zero-trust solutions?   Is that framework even applicable to some product categories?    Do your eyes roll when you hear "zero trust solution"?   What do most people think it is, and what’s the reality?   Thanks to our podcast sponsor, SquareX  SquareX helps organizations detect, mitigate and threat-hunt web attacks happening against their users in real-time, including but not limited to malicious sites, files, scripts, and networks.  Find out more at sqrx.com.

Understanding the Zero-Trust Landscape

All links and images for this episode can be found on CISO Series. Check out  this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Geoff Belknap (@geoffbelknap), CISO, LinkedIn. Joining us is our sponsored guest, Sandy Bird, co-founder and CTO, Sonrai Security. In this episode:   Why does scaling least privilege in the cloud remain challenging?   Is throwing more people at the problem feasible?    How are you managing it?   What aspects haven’t been considered?   Thanks to our podcast sponsor, Sonrai Security  A one-click solution that removes excessive permissions and unused services, quarantines unused identities, and restricts specific regions within the cloud. Later, maintain this level of security by automatically enforcing policies as new accounts, roles, permissions, and services are added to your environment.  Start a free trial today! sonrai.co/ciso

Scaling Least Privilege for the Cloud

All links and images for this episode can be found on CISO Series. Check out  this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Geoff Belknap (@geoffbelknap), CISO, LinkedIn. Joining me is our guest, Emily Heath, general partner, Cyberstarts. In this episode:   How do CISOs feel about sales pitches?   Do they have legitimate complaints?   When do these legitimate complaints cross the line to sounding entitled?   Do CISOs need to show a little more empathy to sales?   Thanks to our podcast sponsor, SquareX  SquareX helps organizations detect, mitigate and threat-hunt web attacks happening against their users in real-time, including but not limited to malicious sites, files, scripts, and networks.  Find out more at sqrx.com.

Should CISOs Be More Empathetic Towards Salespeople?

All links and images for this episode can be found on CISO Series. Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Geoff Belknap (@geoffbelknap), CISO, LinkedIn. Joining me is our sponsored guest, Mackenzie Jackson, developer advocate, GitGuardian. In this episode:   How to manage data leaks outside your perimeter?   When data leaks increasingly come from third-parties, what can you do to protect your organization?   How do we even begin to address this problem?    Is there a one size fits all fix?   Thanks to our podcast sponsor, GitGuardian  GitGuardian is a Code Security Platform that caters to the needs of the DevOps generation. It provides a wide range of code security solutions, including Secrets Detection, Infra as Code Security, and Honeytoken, all in one place. A leader in the market of secrets detection and remediation, its solutions are already used by hundreds of thousands of developers in all industries. Try now gitguardian.com

Let's Write Better Cybersecurity Job Descriptions

Download our free app to listen on your phone