After nearly a few decades in the InfoSec industry, Sean Martin has a deep look back at RSA Conference in San Francisco to see how things have changed, what was top-of-mind this year, and how the community aspect of the conference this year made for one of the best events yet for Sean, the ITSPmagazine team, and the publication overall.
In today’s episode, Sean Martin chats with Anand Raghavan, Co-founder & Chief Product Officer at Armorblox, and Chuck Drobny, President & CEO at GlobaLogix, about two hot topics that are a regular thorn in our InfoSec sides: phishing and business email compromise. They explore how the industry is leading us to overcome this challenge, beginning with user awareness training and IT security training, before taking a turn to the technology stack, user workflows, business automation and security management orchestration.
Taylor Lehmann stopped by the ITSPmagazine kiosk during RSA Conference 2019 in San Francisco to have a chat with Sean Martin. Some of the top topics that Taylor saw and heard within and surrounding the conference included Machine Learning and AI (what's real and what's not), third-party risk (what are some of the details for how to make it work) and identity and identity analytics (how does it impact health systems with employees, patients, and devices?).
During this At The Edge themed Unusual Gatherings Talk Show, Sean Martin asks his guests — Sian John from Microsoft, Candy Alexander from ISSA International, and Allan Alford from Mitel — how risk management and risk ownership change — if the CISO will be responsible for manipulating a risk acceptance slider with a business driver slider — and what the future of the InfoSec team looks like for the CISO (does the CISO role even exist)?
In today’s chat, Marco Ciappelli and Sean Martin speak with John Chambers, Founder and Chief Executive Officer, JC2 Ventures, Former Chairman and Chief Executive Officer, Cisco, Mike Fong, Founder and CEO at Privoro, and Vijay Balasubramaniyan, CEO at Pindrop. Together, the group discusses their role during RSA Conference, how corporations can balance security innovation with security operations, and the opportunity and impact new ventures can have on society.
Well, let’s start with something we should all know by now: Cybersecurity is a global issue. How could it be otherwise considering that technology has connected all of us? Literally connected. It is not just a matter of communication between people far away or making distances much shorter; we are talking about connecting all of us in a way that we would not have thought possible a few decades ago.
The decisions we are making today about technology interacting with humans are going to affect our society in 2025 and way beyond that time.
By Sean Martin
In today’s chat, I speak with Paula Januszkiewicz, CEO of CQURE, and Rod Simmons, VP of product strategy at STEALTHbits, to discuss the role of identity, privileged access, and how organizations are — or aren’t — adequately looking at the risk they face from an attacker’s point of view. With this context in mind, Paul gives us a view into the keynote she is giving at RSA Conference, the session she also has there, and the work she is doing with Rod to peel back the onion, if you will, on how attacks look and work.
By Sean Martin
In today’s chat, Sean Martin connects with Jason Fruge, CISO at Fossil, who reviews some of the trends he and his fellow CISOs are discussing, along with some of the things they may not be thinking about. These points lead us to the activities and events in which Jason is participating during RSA Conference, including a panel he is on, session themes he will be investigating, and other topics he will be exploring with his peers also in attendance during the week.
In today’s chat, Sean and Selena connect with Sylvia Acevedo, CEO of Girl Scouts of the USA, to give us a sneak peek into her RSA Conference talk, called (Girl) Scouting for Talent: The Solution in the Next Generation. A former Girl Scout herself, Sylvia shares how her career as a rocket scientist at NASA’s Jet Propulsion Laboratory started with the Girl Scouts. We also chat about some of the Girl Scouts’ latest initiatives, like their STEM pledge to add 2.5 million girls to the STEM pipeline by 2025, diversity and inclusion, and the technology talent pipeline.
In this podcast we spoke with two experts deeply entrenched in the world of industrial control systems and critical infrastructure. Galina Antova and Emily Miller join Sean Martin and Marco Ciappelli to give us a view of the state of security for this slice of society while connecting the dots to their RSA Conference panel, Why Industrial IoT Security Is Really about Saving Lives.
By Sean Martin
In today's chat, Sean Martin is joined by Jim Reavis, founder of the Cloud Security Alliance and host of the CSA Summit held during RSA Conference. Jim and Sean are also joined by two of the Summit’s speakers: Kevin Kiley from OneTrust, and Jason Garbis from Cyxtera. Jim, Kevin and Jason dig into the details of the summit conversations they intend to drive as part of the day-long event taking place on Monday, March 4th, including: innovation, shared responsibility, vendor risk management, cloud audits, vendor guarantees, operationalizing security in the cloud, and privacy with the GDPR/CCPA.
In today’s chat, Sean and Selena connect with Kyla Guru, 16-year-old founder and CEO of Bits N’ Bytes Cybersecurity Education, a non-profit organization dedicated to educating and equipping citizens — young and old — with the cybersecurity skills needed to help prevent future cyber-attacks. Get ready to be inspired by Kyla and follow her lead to take action, beginning with the future generation of InfoSec professionals!
The primary goal with this webcast discussion is to highlight the value of a SOAR (security orchestration automation and response) platform/model in order to help companies figure out how best to operationalize it as part of their security management programs. The key point here is “operationalize” … who should be involved, what do they need in place in order to succeed (tech/process/people, both within and outside of the platform), and what can they expect from an operational benefit perspective.
In today's episode, Jay Leek and Patrick Heim of ClearSky Ventures shine the light on a ton of stuff related to the state of the InfoSec market and how cybersecurity investments play a role in the ecosystem of protection, detection, and response. Listen in to get their individual and combined views on investment strategies, investment buzzwords, and the categorization of the 4 types of security companies and how the categories impact investment decisions. Jay and Patrick even share some advice for the organizations making attempts to consume some of these innovative products.
In today’s chat, I connect with all 4 of the SANS panelists for their RSA Conference keynote panel entitled The Five Most Dangerous New Attack Techniques and How to Counter Them. This RSA Conference session is again led by Research Director and Founder of the SANS Institute, Alan Paller, who is joined on stage by Ed Skoudis, Heather Mahalik and Johannes Ullrich. In this podcast they’ll give us a sneak peek into what they will be talking about this year with regards to the latest threats, attacks and the methods used to carry them out.
In this episode, Sean Martin connects with Aaron Guzman and Daniel Miessler, and we take a look at the new edition of the OWASP Top 10 for the Internet of Things. The project, which began in 2014, contains a lot of work related to identifying the risks, vulnerabilities, and controls necessary to safely deploy and use Internet-connected devices at work, at home, and in society. Aaron and Daniel walk us through the top 10 list, giving us some insight into each item and how it can have an impact on the how things are built, implemented, and broken.
In this episode, we look at the Verizon Data Breach Digest cases and how they can help organizations operationalize their risk and security management programs. John Grim from Verizon paints some visual pictures for us to chew on, breaking down how the attacks originate, how the target is reached, how the internal victims and stakeholders are impacted, how companies can respond, and how non-victim organizations can prepare and protect their business from a similar attack.
In today’s chat, Marco Ciappelli and Sean Martin connect with Patrick Heim, Operating Partner and Chief Information Security Officer for ClearSky ventures and Richard Seiersen, author, startup advisor, and former LendingClub CISO, to learn more about this year’s Innovation Sandbox during RSA Conference 2019.
ITSPmagazine’s Sean Martin and Selena Templeton chat with Elizabeth Lopez, a graduate of NPower’s Symantec Cyber Career Connection (SC3) program and a Security Operations Associate at KPMG, about her story that starts with a knack for computers and a job at the local library — which led her to NPower, a nonprofit that trains military veterans and young adults from underserved communities.