This is the audio-only version of our cyber security talk show, teissTalk.  Join us twice a week for free by visiting www.teiss.co.uk/talk

On this episode, we focus on the following news story;

EU to propose GDPR-like fines for AI abuses

https://www.itpro.co.uk/technology/artificial-intelligence-ai/359205/eu-to-propose-gdpr-like-fines-for-ai-abuses

The panel discussion is titled “AI-led threat analysis – where do your humans fit in?”

https://www.teiss.co.uk/teisstalk/striking-the-balance-between-ai-and-human-involvement-in-threat-analysis/

This episode is hosted by Jenny Radcliffe 

https://www.linkedin.com/in/jenny-radcliffe-the-people-hacker-%F0%9F%8E%A4%F0%9F%8E%A7%F0%9F%A7%A0-85ba1611/  

Our Guests are

Mishu Rahman, Director of Cyber Strategy, BNP Paribas

https://www.linkedin.com/in/mishurahman/

Reena Shah, Director, Cyber Security Strategy, Culture & Process Optimization, London Stock Exchange Group

https://www.linkedin.com/in/cybereenashah/

Ardie Kleijn, Chief Information Security Officer, Transavia

https://www.linkedin.com/in/ardie-kleijn-a4b3872/

Reinhard Hochrieser, VP, Global Product Management, Jumio

https://www.linkedin.com/in/reinhard-hochrieser-30b07288/ 

On this episode of the teissPodcast, we talk to Rich Turner, SVP of EMEA at CyberArk.

We talk about how security teams should be using all the new remote working mediums to better communicate security awareness messages with their remote colleagues, espeically as the "bad guys" tend to use these environments to mount more frequent attacks.

We also discuss how cyber security strategies need to keep pace with the changing style of the business, in our new world of work.

Presenter: Russell Lawson
Music: Late Night (Loop), Joseph McDade

On this episode of the teissPodcast, we talk to Martin Littmann, CTO & CISO of the Kelsey-Seybold Clinic in Houston, Texas, about his organisation's response to the COVID-19 pandemic, and how his security team is coping with the increase in remote working.

Martin talks about his efforts to replicate the "office experience" for his security team, as well as how they have adapted their phishing tests in response to the pandemic to match what they were seeing in the wild.

Presenter: Russell Lawson
Music: Late Night (Loop), Joseph McDade

On this episode of the teissPodcast, we talk to Richard Cassidy, Senior Director Security Strategy EMEA at Exabeam about threats and threat hunting in a post-COVID-19 world.

Attackers know that there are going to be configuration weaknesses which leave your users open to social engineering attacks.  The tools may be the same, but the techniques have developed.

Richard also gives advice to Infosec Leaders on where exactly to start with your threat hunting.  With cyber criminals needing credentials, it's no surprise where he says you should start hunting...

Presenter: Russell Lawson
Music: Late Night (Loop), Joseph McDade

On this episode of the teissPodcast, we talk to Mick Jenkins, CISO of Brunel University, about Advanced Persistent Threat actors, espionage and the targeting of Intellectual Property.

Mick talks about the University's 5 year strategy to improve their cyber security, and how this has been affected by the COVID-19 pandemic.  

Mick shares how he communicates cyber security messages to the wider university community, who might not realise that their data is the target of nefarious actors.

Presenter: Russell Lawson

Music: Late Night (Loop), Joseph McDade

On this week's teissPodcast, we discuss how Information Security leaders should be looking to adapt their security awareness training for new starters during the COVID-19 crisis.  

We talk to Zari Haji Rasoul, Senior Privacy Adviser at the Ministry of Foreign Affairs in the Netherlands, about the challenges of communicating confidential data remotely - even when using "approved" internal platforms - as well as highlighting the potential risks posed by new employees at this time. 

Presenter: Anna Delaney

Music: Late Night (Loop), Joseph McDade

On this week’s teissPodcast we discuss “contact tracing apps” - the smartphone software which - according to the health secretary, Matt Hancock - is to be available in weeks in the UK. The idea is the app alerts users when someone they were recently near becomes infected with Covid-19 - a good way of slowing down the spread of the virus - but at what cost to our privacy?

Charity Wright, former NSA Chinese Offensive Operative and Cyber Threat Analyst at global threat intelligence firm, IntSights, joins us this week where she outlines her concerns about this type of data-tracking, what she would like the UK government to be clear on with the use of this tech, and how this might impact the relationship between the state and the citizen.

What’s at the root of most security breaches? Is there a common theme? 

This week on the teisspodcast, Greg Van Der Gaast, Head of Information, University of Salford, discusses the basic common issues that go unnoticed by security departments which - more often than not - are the cause of major breaches. 

Greg explains how organisations can improve their security without spending huge sums of money, as well as why he refuses to use metrics with the board and why he feels CISOs need to embrace more “altruism” in their role as security leaders. 

When it comes to cyber security, the supply chain is never too far down on the agenda of potential security threats...and even more so during the COVID-19 pandemic. 

So, on this week’s teissPodcast, Steve Durbin, Managing Director of the Information Security Forum (ISF), outlines the information and privacy risks to watch out for in the supply chain during our current global crisis. 

With on-site assessments not possible, and existing security evaluations no longer accurate, we discuss the challenges that might arise now.

Without a doubt, the Covid-19 pandemic is affecting businesses - both small and large. So in these unsettling times, what should board members be focusing on and how should leadership respond to the crisis as it unfolds? 

On this week’s teissPodcast, Steve Durbin, Managing Director of the Information Security Forum (ISF), offers advice on how leadership should engage with shareholders, customers and their employees, as well as why he thinks there’s no better time than the present to reassess how we operate - both as businesses and as individuals.

In Steve’s view, the pandemic will have long-term implications on the way we operate as businesses, so this is an excellent opportunity for us all to learn.