The Well Aware Security Show

When do we get a seat at the big kids table and how do we know what to say when we get there? Our guest this week, The Security Catalyst, Michael Santarcangelo joins us to talk about how we can better prepare our teams for success and then prepare them to stay successful.

Artificial Intelligence is perhaps the second biggest buzzword in cybersecurity, behind Zero Trust...so how do you know whether a product is the next Skynet or just a thousand outsourced hourly employees in another country? My guest this week helps break down fiction from reality when it comes to AI/ML in Cybersecurity tools. DJ Sampath is the Co-founder & CEO of Armorblox. Prior to Armorblox, DJ helped found StackRox, a sequoia-backed container security startup, where he was the Chief Architect and VP Engineering. 

How do you hack a car and not get sued for it?  Application security is probably at the forefront of people's minds for 2022 and rightly so! My guest this week, Ted Harrington, has answers. Ted was a part of one of the first groups that hacked a car and is currently the Executive Partner at Independent Security Evaluators (ISE), the company of ethical hackers famous for hacking cars, medical devices, and password managers. 

Threat Modeling isn't the newest fashion craze hitting the Paris catwalks. It's the process you go through to understand what you're protecting yourself from before you decide what controls need to be in place. And our guest this week, Adam Shostack, literally wrote the book on Threat Modeling.

Get the whitepaper here, no registration required: https://shostack.org/files/papers/Fast-Cheap-and-Good.pdf

To hear more from Adam, reach out to: shostack.org/contact

There's a lot of marketing hype out there about how to create a culture of cybersecurity, but we wondered...can you change your culture with security awareness training? To find out, we asked Kate Brett Goldman, CEO of The Cybermaniacs what works and what doesn't when it comes to working with your humans.

Ok, it is a podcast about deception. And we think Deception is something that doesn't just belong to the history books or the battlefield, it belongs on your network. Rob Black is the deputy director of the UK National Cyber Deception Laboratory and is passionate about making deception something that everyone can do in their networks.

There are a huge number of job openings in cybersecurity right now...but there are also a huge number of veterans out there looking to get their start in the civilian world. Jeff Schilling, Global CISO for Teleperformance joins us this week to talk about his own journey from being in the Army to being a CISO, and has some tips for hiring managers for bringing more veterans into a career in cyber!

What does Zero Trust mean? Who better to answer the question than the guy who created it...John Kindervag, currently the SVP for Cybersecurity Strategy at On2IT who offers the worlds first Zero Trust as a Service (ZTaaS) offering.

What does Zero Trust mean? Who better to answer the question than the guy who created it...John Kindervag, currently the SVP for Cybersecurity Strategy at On2IT who offers the worlds first Zero Trust as a Service (ZTaaS) offering.

How do we break the Cybersecurity Poverty Line? We asked Scott Schindler, vCISO Director for Tracepoint, who specializes in supporting security for small to medium enterprises to find out whether it's really just about lack of funding...or if there's something more fundamental that's needed to protect smaller organizations.