Cybersecurity Standup

By Cybersecurity StandUp

Everyone working in cybersecurity is inundated with stories of breaches, threats, and new acronyms. But beyond the next fire drill, what’s actually top of mind for infosec professionals?

Join us for ... more

· Technology

Download on the App Store

Download on the App Store

Get it on Google Play

FAQs about Cybersecurity Standup:

How many episodes does Cybersecurity Standup have?

The podcast currently has 29 episodes available.

Cybersecurity Standup episodes:

October 17, 2023 Hacker, Educator, CISO: a Conversation with Alyssa Miller
Want to Know the Real Secret to Success as a CISO? It's Not What You Think.
Most people assume the CISO's job is all about technical skills. But this episode reveals a surprising insight - what really separates the top performers is a skill more important than security know-how. Tune in as one award-winning CISO spills the secret: to excel in the role, you need to wear your "educator hat" as much as your technical hat.
Hear her unconventional rise from hacker to the C-suite. Discover why effective communication, not just expertise, unlocked new opportunities. Learn her simple tactic for overcoming resistance that left executives actually wanting to invest in security.
Walk away with concrete strategies you can start using tomorrow to resonate with any audience. The real secret is out - to maximize your impact, a CISO must focus on teaching others as much as enforcing controls. Don't miss this game-changing episode that will have you seeing the role in a whole new light.
...more
52min
October 11, 2023 Embracing Neurodiversity in Cybersecurity Communications with Becca Chambers
Want to gain a fresh perspective on the intersection of security, innovation, and neurodiversity?
Tune in as Becca Chambers shares her unconventional journey from sports PR to respected cybersecurity communications leader. You'll gain insights into her experience as a neurodivergent professional. You’ll hear how her neurodivergent mindset helped fuel creative solutions throughout her career.
Becca is also sharing her candid insights on mainstreaming discussions around neurodiversity. Her passion for advocating alternative pathways to success is inspiring and encouraging.
Becca also dives into the exciting potential of generative AI, from both opportunities and risks and how security professionals can help shape its development responsibly from the start.
Don't miss this exciting conversation that's sure to spark some new ideas.
...more
46min
October 04, 2023 Solving Cybersecurity Mysteries Like Sherlock: A CISO’s Detective Skills
With investigative skills rivaling Sherlock Holmes, this CISO cracks the case on securing the cloud!
Discover the career journey of Kevin Paige from his start in military security to becoming CISO of multiple companies.
Kevin shares lessons learned about communicating cyber risk across different teams and the importance of taking a holistic view of security that bridges cloud, assets, and people. He also offers insights on building resilience as a CISO dealing with constant crises and the importance of psychology in his job. We discuss why this role deserves a seat at the executive table and help in making strategic decisions from a security perspective.
Join us and hear how Kevin’s unconventional journey and diverse background help him tackle today's complex challenges and problems with a well-rounded perspective.
...more
1h 2min
September 26, 2023 Password Security, Memes, and MFA with Evil Mog
Is it wise for newcomers to immediately dive into cybersecurity, or should they take a different path?
Discover the intriguing origin of Dustin Heywood, aka evil_mog, and how he became an industry standout.
The episode begins with a thought-provoking debate on whether cybersecurity aspirants should enter the field directly or gain foundational experience in general IT roles. Our guest, Dustin Heywood, offers a unique perspective, emphasizing the value of a strong IT foundation before transitioning into cybersecurity.
We also delve into the captivating backstory of Dustin's online persona, evil_mog, from its gaming origins to its prominence in the cybersecurity community through humor and dad jokes.
Join us for this insightful discussion that challenges conventional career paths and provides guidance for those aspiring to enter the world of cybersecurity.
...more
15min
August 23, 2023 Cloud Detection and Response (CDR) Explained
CDR? Another acronym?
We know - it’s pretty soupy out here. But CDR–Cloud Detection and Response–is one CISOs and their teams should know, and be familiar with… even if there are a lot of differences in opinion about what CDR actually encompasses.
This week on Cybersecurity Standup, we’re answering your burning 🔥 questions about CDR:
↔️ Does CDR include XDR, or vice versa?
🌩️Is CDR just XDR, with a cloud twist?
🛠️What can CDR tools accommodate that other tools can’t?
And… how can CDR capabilities address the unique challenges and risks associated with cloud environments and ensure a robust security posture for organizations leveraging cloud services?
#CISO #DevSecOps #CDR #XDR #ShiftUp
...more
27min
August 17, 2023 Gartner's 2023 CNAPP Market Guide
Gartner released the first Market Guide for Cloud Native Application Protection Platforms (CNAPP). This means that CNAPP is here to stay, and its rapid evolution over the past few years will likely continue, especially as tools are unified and siloes are eliminated.
In case you’re just joining the conversation, the establishment of a CNAPP market guide is a milestone for cloud security, signaling an end to niche cloud security tools meant to solve specific problems (CWPP, CSPM, CIEM, etc). As the market matures, these functions are being unified into a single platform: CNAPP.
...more
33min
August 16, 2023 Women In Cyber Security: Challenges, Successes, & Plans for the Future
Why aren't there more women working in cybersecurity?
March is Women’s History Month so we’re taking this opportunity to chat about the challenges that women face in the #cybersecurity industry, and celebrate the journeys some of us have taken to get here.
Any time an industry is dominated by a particular group, it can make entrance and success into the field more difficult for others. With Black History month just in the rear view mirror, it’s crucial to address these issues from an intersectional perspective. When it comes to cybersecurity–an industry desperate for experts and for talent–it’s even more important to empower those facing challenges. Fostering diversity in the cybersecurity industry allows us to encounter new ideas, reach new markets, and make better decisions.
So let’s talk about it!
This episode, we’ll be asking several cybersecurity professionals about their challenges and successes along the way. We’ll also talk about ‘what you wish you’d known,’ and source some advice for other women looking to enter, and grow, within the field.
...more
35min
August 15, 2023 What's Up White House? Top Takeaways for Cybersecurity Pros
The White House released a cybersecurity strategy document for the National Cybersecurity Initiative, and it’s making the rounds within the industry.
Some are welcoming it as a ‘good starting point’ but others point out that few aspects of the document are actionable.
So, let’s talk about it! 💅
Who is the target audience for this document? Should CISO’s be taking note? What impact will this have, if any, on software providers? And how, exactly, might the government go about ‘rebalancing the responsibility to defend cyberspace’?
When we talk about “taking the burden off end users and shifting the responsibility to the “owners and operators of the systems that hold our data and make our society function”... who are we talking about?
...more
25min
August 15, 2023 Let's Talk About Last Pass - 5 Takeaways For Cybersecurity Pros
You’ve seen the news. The ramifications from the #LastPass breach are manifold–and rumors abound in the news and in #cybersecurity social media forums. But what should we be focusing on, and what should we be learning from this event? 🤔
And #ICYMI, here’s what’s going on:
👉 LastPass recently published a series of breach disclosures illuminating an extended exfiltration, enumeration, and reconnaissance campaign within their environment.
👉 The attack campaign lasted for about 75 days (~2.5 months) and resulted in the exposure of an undisclosed number of customer passwords and sensitive data.
👉 The attacker leveraged valid credentials stolen from one of four senior #DevOps engineers to access a shared cloud-storage environment, which initially made it difficult for investigators to differentiate between threat actor activity and ongoing legitimate activity.
👉 Cloud service provider logging and alerting tools did not surface the attack within an actionable time frame—demonstrating how native tools are not sufficient security tooling. You need comprehensive anomaly detection and endpoint protection from a third party security software vendor to fill the gaps created by rapid innovation in the DevOps world.
🔥 Our hot take? Security practitioners have to take a holistic and proactive approach to security, and not rest on their laurels. They should deeply understand the shared security responsibility model between them and their cloud providers.
So let’s dig in. Bring your questions and your latest updates.
...more
24min

FAQs about Cybersecurity Standup:

How many episodes does Cybersecurity Standup have?

The podcast currently has 29 episodes available.