In this episode of CISO Tradecraft, host G Mar welcomes Christophe Foulon, founder of CPF Coaching LLC. Christophe shares insights on enabling businesses to use technology safely through strategic planning, risk management, and tailored cybersecurity measures. He emphasizes the importance of a holistic approach to security, addressing people, processes, and technology to enhance business resilience. Christophe also discusses his efforts in developing leaders within organizations and his support for the community through his podcast and involvement with various non-profits.

This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit substack.cpf-coaching.com/subscribe

Ditch slow manual processes. Discover how security automation and SOAR reduce human error, accelerate threat containment, and free up your security analysts.

This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit substack.cpf-coaching.com/subscribe

Discover how a robust Identity and Access Management (IAM) strategy, with JIT access and adaptive controls, can transform your cloud security and virtually patch vulnerabilities.

This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit substack.cpf-coaching.com/subscribe

Discover how to mature your vulnerability management from a reactive chore to a continuous, risk-based program. This guide helps leaders protect their multi-cloud enterprise, prevent data breaches, and measurably reduce business risk.

This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit substack.cpf-coaching.com/subscribe

Mastering Third-Party Risk Management for SMBs

In today's interconnected business environment, SMBs increasingly rely on third-party vendors and partners, heightening risk factors. This episode dives into essential strategies for effective Third-Party Risk Management (TPRM). Learn to inventory and assess third-party relationships, conduct thorough due diligence, set clear contractual requirements, and continuously monitor and reassess security postures. Discover how to form incident response plans, train your team effectively, and leverage external resources to bolster your TPRM program. Enhance your cybersecurity approach to safeguard assets, reputation, and customer trust. For personalized assistance, contact [email protected]. Plus, discover how easyDMARC can ensure your emails reach their intended destination.

This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit substack.cpf-coaching.com/subscribe

Discover how to mature your vulnerability management from a reactive chore to a continuous, risk-based program. This guide helps leaders protect their multi-cloud enterprise, prevent data breaches, and measurably reduce business risk.

This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit substack.cpf-coaching.com/subscribe

The cyber environment presents ongoing challenges with increasing cyber threats, and Small to Medium Businesses (SMBs) often find themselves particularly at risk. Although high-profile breaches frequently make the news, SMBs are sometimes targeted because they are viewed as more vulnerable and have limited resources, making them what some might call "low-hanging fruit" for cybercriminals.

This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit substack.cpf-coaching.com/subscribe

The 2025 Verizon DBIR is out! Learn the critical cybersecurity shifts impacting SMBs: soaring third-party risks, rising espionage, persistent ransomware, and the continued threat of credential abuse. Get actionable insights for stronger defenses.

This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit substack.cpf-coaching.com/subscribe

Navigate CMMC 2.0 compliance for government contractors protecting CUI. Understand the 3 levels, key requirements, and how it compares to FedRAMP and DoD Impact Levels. Learn about Microsoft GCC High for CMMC readiness.

This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit substack.cpf-coaching.com/subscribe

Small and medium-sized enterprises (SMBs) increasingly rely on digital presence, facing IT and business challenges. Tech leaders launching initiatives need a robust risk management strategy that is careful yet efficient. This report provides SMBs with a comprehensive template that combines industry insights, risk management best practices, and case studies to recognize, evaluate, and mitigate risks while aligning with business goals.

This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit substack.cpf-coaching.com/subscribe