Sign up to save your podcasts
Or
Share The Never-ending Chain with Josh Stabiner
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
The Never-ending Chain with Josh Stabiner
“Now you have to look at fourth-party risk. So, are they doing the same due diligence on their third parties that I'm doing on them? Because this is almost like a never-ending chain where everyone's relying on somebody else. And if there's one weak link in the chain that can have cascading effects all the way up to my organization.”
In this episode, host Ian L. Paterson chats with Josh Stabiner about third-party risk, the importance of mentorship, understanding the business, and sticking to a framework.
Topics covered
- The shifting of the cybersecurity discipline from
technology-focused to business-focused - Understanding process flow and the business mission to
create a tailored and informed plan - Importance of third-party and fourth-party risk management
- Learning to find ways to enable business needs while mitigating risks
- Picking a framework to identify security gaps
- The importance of mentorship and team diversity
Guest Bio
Josh Stabiner is Chief Information Security Officer at General Atlantic and leads the firm's cybersecurity efforts as a part of its information technology team. Before joining General Atlantic in 2018 Josh was managing director and CISO at Pine River Capital management.
Prior to that, Josh spent 10 years at Ernst & Young where he led cyber-threat management advisory services for financial services clients, focusing on threat intelligence, vulnerability identification and mediation, security monitoring, analytics incident response, and security engineering.
Transcript and Accessibility
Full text transcript is available on the Plurilock blog.
Follow Along
Newsletter: https://www.plurilock.com/newsletter-signup/
Plurilock Social Facebook | Twitter | LinkedIn
View all episodes
By Ian L. Paterson“Now you have to look at fourth-party risk. So, are they doing the same due diligence on their third parties that I'm doing on them? Because this is almost like a never-ending chain where everyone's relying on somebody else. And if there's one weak link in the chain that can have cascading effects all the way up to my organization.”
In this episode, host Ian L. Paterson chats with Josh Stabiner about third-party risk, the importance of mentorship, understanding the business, and sticking to a framework.
Topics covered
- The shifting of the cybersecurity discipline from
technology-focused to business-focused - Understanding process flow and the business mission to
create a tailored and informed plan - Importance of third-party and fourth-party risk management
- Learning to find ways to enable business needs while mitigating risks
- Picking a framework to identify security gaps
- The importance of mentorship and team diversity
Guest Bio
Josh Stabiner is Chief Information Security Officer at General Atlantic and leads the firm's cybersecurity efforts as a part of its information technology team. Before joining General Atlantic in 2018 Josh was managing director and CISO at Pine River Capital management.
Prior to that, Josh spent 10 years at Ernst & Young where he led cyber-threat management advisory services for financial services clients, focusing on threat intelligence, vulnerability identification and mediation, security monitoring, analytics incident response, and security engineering.
Transcript and Accessibility
Full text transcript is available on the Plurilock blog.
Follow Along
Newsletter: https://www.plurilock.com/newsletter-signup/
Plurilock Social Facebook | Twitter | LinkedIn