Sign up to save your podcasts
Or
Share Cloud growth, AI, and beyond: A conversation with eSentire CISO Greg Crowley
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Cloud growth, AI, and beyond: A conversation with eSentire CISO Greg Crowley
This episode features an interview with Greg Crowley, CISO at eSentire. eSentire is the authority in managed detection and response services. They protect critical information for over two-thousand organizations across more than 80 countries from cyberthreats. Prior to joining eSentire, Greg served as VP of Cybersecurity and Network Infrastructure at WWE, where he spent over 17 years. On this episode, host Tim Chase and Greg discuss preventing alert fatigue within your organization, addressing the talent shortage in cybersecurity, and the benefits and challenges posed in the security industry by artificial intelligence.
Key Quotes
”It's always been the cat and mouse game in security. You have a neural network that is out there creating new content, and then you have the opposing network that is looking to detect the artificially created content. And so same thing as the good guys and the bad guys, or the threat actors and the defenders, the red team and the blue team. But in this case, it's actually making the AI stronger because the more we’re able to detect what's fake, then the AI learns and the AI will generate better fakes.”
*”Fishing has been a problem for a long time. [But] I think what AI is doing is lowering the bar of entry. So, whereas maybe the threat actors used to have to have a certain amount of technical capability, it's just going to become a lot easier for them to execute upon the nefarious activity.”
*”If there's constantly a false alert, false alert, false alert, and 99 percent of them are, then it is very likely that the true positives are gonna slip through because you see so few of them. So you're just getting lost in the noise. It's the needle in the haystack that's gonna get through, and that's the one that's gonna come back and bite you.”
*”What I look for is passion. If you're curious, if you like solving puzzles, if you like pulling out threads and doing some type of investigation, those are the qualities that I would look for. If you have that curiosity and passion, then you can learn the technical bits and bites after.”
*“I have this passion for protecting the good guys, protecting the little guy. I want to teach the little guy how to protect themselves. It's part of my DNA. I’ve always seen myself as a defender, as protecting the little guy as being on the side of good.”
Time Stamps
[1:19] What does the advent of Chat GPT and generative AI mean for the cybersecurity industry?
[4:35] What are the security downfalls of AI?
[8:44] What are best practices for addressing alerts and preventing alert fatigue?
[13:46] Addressing the talent void in cybersecurity
[17:24] What advice would Greg give someone just entering the cybersecurity field?
[24:33] How did Greg first get involved in cybersecurity? And what was his path to CISO?
Links
Connect with Greg on LinkedIn
Learn more about eSentire
This podcast is brought to you by Lacework, the leading data-driven cloud-native application protection platform. Lacework is trusted by nearly 1,000 global innovators to secure the cloud from build to run. Lacework delivers true end-to-end protection, empowering customers to prioritize risks, find known and unknown threats faster, achieve continuous cloud compliance, and work smarter–not harder–all from one unified platform. Learn more at Lacework.com.
View all episodes
By Lacework
5
3939 ratings
This episode features an interview with Greg Crowley, CISO at eSentire. eSentire is the authority in managed detection and response services. They protect critical information for over two-thousand organizations across more than 80 countries from cyberthreats. Prior to joining eSentire, Greg served as VP of Cybersecurity and Network Infrastructure at WWE, where he spent over 17 years. On this episode, host Tim Chase and Greg discuss preventing alert fatigue within your organization, addressing the talent shortage in cybersecurity, and the benefits and challenges posed in the security industry by artificial intelligence.
Key Quotes
”It's always been the cat and mouse game in security. You have a neural network that is out there creating new content, and then you have the opposing network that is looking to detect the artificially created content. And so same thing as the good guys and the bad guys, or the threat actors and the defenders, the red team and the blue team. But in this case, it's actually making the AI stronger because the more we’re able to detect what's fake, then the AI learns and the AI will generate better fakes.”
*”Fishing has been a problem for a long time. [But] I think what AI is doing is lowering the bar of entry. So, whereas maybe the threat actors used to have to have a certain amount of technical capability, it's just going to become a lot easier for them to execute upon the nefarious activity.”
*”If there's constantly a false alert, false alert, false alert, and 99 percent of them are, then it is very likely that the true positives are gonna slip through because you see so few of them. So you're just getting lost in the noise. It's the needle in the haystack that's gonna get through, and that's the one that's gonna come back and bite you.”
*”What I look for is passion. If you're curious, if you like solving puzzles, if you like pulling out threads and doing some type of investigation, those are the qualities that I would look for. If you have that curiosity and passion, then you can learn the technical bits and bites after.”
*“I have this passion for protecting the good guys, protecting the little guy. I want to teach the little guy how to protect themselves. It's part of my DNA. I’ve always seen myself as a defender, as protecting the little guy as being on the side of good.”
Time Stamps
[1:19] What does the advent of Chat GPT and generative AI mean for the cybersecurity industry?
[4:35] What are the security downfalls of AI?
[8:44] What are best practices for addressing alerts and preventing alert fatigue?
[13:46] Addressing the talent void in cybersecurity
[17:24] What advice would Greg give someone just entering the cybersecurity field?
[24:33] How did Greg first get involved in cybersecurity? And what was his path to CISO?
Links
Connect with Greg on LinkedIn
Learn more about eSentire
This podcast is brought to you by Lacework, the leading data-driven cloud-native application protection platform. Lacework is trusted by nearly 1,000 global innovators to secure the cloud from build to run. Lacework delivers true end-to-end protection, empowering customers to prioritize risks, find known and unknown threats faster, achieve continuous cloud compliance, and work smarter–not harder–all from one unified platform. Learn more at Lacework.com.