Discover the unique, inspiring, and often amusing stories behind what it takes to lead cybersecurity efforts in an organization. The Security Stories podcast features interviews with a diverse range of guests, each sharing their experiences for the benefit of others in the industry.
Our special guest this episode is Mick Jenkins MBE, CISO for Brunel University London. Mick is a former counterterrorist officer and published novelist, and has led some incredibly innovative changes at his organization to turn their cybersecurity approach around.
Wendy Nather, Head of Advisory CISOs at Cisco Duo, joins us for the latest episode of Security Stories. Wendy discusses how we can involve users in our security practices, rather than blaming them when they fall foul of the rules. And she comes up with a unique idea for shaking up the industry.
In episode 3 we meet Theresa Payton, the first female CIO of The White House and one of Security Magazine's top 25 Most Influential People in Security. Theresa is a respected authority on security and intelligence operations and the author of books on data privacy and election hijacking.
In this podcast, we meet CISO Mark Weatherford. We learn how he created the U.S. Navy's first-ever Red Team, and how he worked to get laws passed to establish a security program for the first time in several U.S. states. But how does Batman fits into all of this? Listen to find out.
In episode 5 we meet Masha Sedova, co-founder of Elevate Security, which uses data and behavioral analytics to help organizations build a strong security culture. We chat about how to build effective employee awareness programs and what it's like to set up a new business in the security industry.
In Episode 6 we meet Brian Honan, an internationally recognized expert on cybersecurity and data protection. Brian founded his own security consultancy company, BH Consulting, in 2008. He is also the founder and CEO of IRISS, Ireland's first Computer Emergency Response Team.
In episode 7 we meet Marene Allison, vice president and chief information security officer at Johnson & Johnson. We hear about her life in the military, her career as a special FBI agent, and how she has built a diverse cybersecurity team at Johnson & Johnson.
In episode 8 we are joined by Andy Greenberg, senior investigative journalist for Wired, as well as members of the Cisco Talos threat intelligence team and senior Cisco cyber engineer Noureen Njoroge. Together we look back at the world's most catastrophic cyber attack: Not Petya. We discuss the nuances of the attack, its scale and significance, and the impact that is still felt three years later.
In Episode 9 we meet seasoned CISO Andy Ellis, who talks about giving women and minorities more opportunities in cybersecurity. He also tells the fascinating story about how he eliminated use of the password at his organization, and explains why he employs librarians and journalists on his security team.
In Episode 10 we chat with Quentyn Taylor, CISO for Canon Europe. He talks about his multitalented and customer-centric cybersecurity team, how to overcome the "virtual hurdle" of working remotely, why firing the CISO after a cyber attack is rarely the first resort, and how to make the perfect cybersecurity cocktail.
In Episode 11 the focus is on election security, and we are joined by Matt Olney, Director of Threat Intelligence and Interdiction at Cisco Talos, and Steve Caimi, U.S public sector cybersecurity expert. We discuss what Talos has learned about election security after four years of research and hands-on experience, and we share thoughts on where election security in the United States stands heading into November's general election.
From eye-opening discussions on diversity issues in cybersecurity, to stories of how CISOs got their initial starts, our chief interviewer Hazel has edited together some of her favorite moments so far from the Security Stories podcast series
In Episode 13 our guest is Tanya Forsheit, one of the world's leading data privacy and security advisers and litigators. We consider what the future might hold for data privacy in the next year, within the context of COVID-19 and tracing apps. We also discuss data privacy as a fundamental human right.
In Episode 14 our guest is Chris Leach, Senior CISO Advisor for Cisco. After 30 years of running security and risk operations for a wide variety of organizations, Chris sits down with Hazel to talk about his journey and offer some insights into the life of a CISO, including how to combat the fear of failure and how to successfully challenge the status quo.
In Episode 15 we meet Curtis Simpson, Chief Information Security Officer at Armis. As well as discussing his journey as a security leader, Curtis talks about changing the perception that cybersecurity is a cost center and ways in which cybersecurity can contribute to business outcomes. This episode also features a discussion with some special guests about their unconventional career paths into the cybersecurity industry.
Episode 16 features two meaningful discussions. Hazel and Noureen talk first with Leticia Gammill, Cisco's Channel leader for Canada and Latin America, and Matt Watchinski, Vice President of Cisco Talos, about the significance of diverse representation in cybersecurity. Our second conversation, with Mike Hanley, Cisco's new Chief Information Officer, gives insights into the importance of hiring diverse talent and building a culture of appreciation, openness, and internal mentoring.
Episode 17 sees the return of Theresa Payton to the Security Stories podcast. She joins Hazel, Noureen, and special guest Nick Biasini, a threat researcher at Cisco Talos, to discuss online disinformation campaigns and how they are used in political elections. With only weeks to go until the United States general election, Theresa and Nick outline what the public needs to be aware of and how we can spot and report online disinformation.
In Episode 18 we meet Gabriel Gumbs, Chief Innovation Officer at Spirion. He shares stories, ranging from hacking portable devices at school to helping lead the evolution of data privacy. We are also joined by Wolf Goerlich and Nigel Houghton, who provide insights into the future of security operations.
In Episode 19 Hazel chats to Javvad Malik, a security awareness advocate at KnowBe4. Javvad is one of the security industry's most prolific video bloggers and is known for his signature light-hearted perspective on security. He shares his advice on how to create engaging presentations, and puts his security spin on the infamous "Zombieland" rules.
In Episode 20 of Security Stories we are joined by Chloé Messdaghi, an infosec advocate and activist who is working to create a safe space for underrepresented groups within the industry. Our second guest, Talos's Warren Mercer, drops in to talk about the PoetRAT malware and the enormous issue of attribution in threat research.
In our last episode of the year, Fareedah Shaheed, CEO and founder of Sekuva, shares stories about growing up in Saudi Arabia, how she built her businesses, and being named one of Forbes' Top 30 Under 30. We are also joined by Senior Director of Product Marketing Ben Munroe and count down our top 3 security moments in 2020.
In Episode 22 we hear from the front lines of healthcare security. CISO Esmond Kane, of Steward Health Care, offers insights from an industry that has long been a target of cyber crime. And Edmund Brumaghin, threat researcher at Cisco Talos, joins us live to discuss the evolution of ransomware and "big-game hunting" attacks.
In Episode 23, Cisco Advisory CISO Wolfgang Goerlich discusses the results from Cisco's 2021 Security Outcomes Study with Wade Baker, co-founder of research firm Cyentia. They offer advice on what organizations can do to decrease waste and optimize the effectiveness of their security strategy.
In Episode 24 we're joined by Dr. Christine Izuakor, the first African American woman (and youngest student) to gain a Ph.D. in Security Engineering. In 2020 Christine created Cyber Pop-up, an on-demand cybersecurity service platform. She is active in the diversity and inclusion community, and her story is one of passion, resilience, and grit.
In Episode 25 our guest is Tazin Khan, a data privacy advocate and founder of the Cyber Collective, an organization that helps people understand their data privacy rights. We discuss her journey as a Bengali immigrant and Queens native, as well as how she found her cybersecurity "sweet spot" and dealing with cybersecurity burnout.
In Episode 26, Talos guests Nick Biasini and Edmund Brumaghin discuss their latest research on the rising cases of collaboration app abuse. Ben shares the origin stories behind some cyber threats—and their unusual names. Plus, Sana chats about the evolution of threats over the past year and how the industry is fighting back.
In Episode 27, guests Matt Watchinski, Matt Olney, and Mitch Neff from Cisco Talos discuss stress and burnout within the threat intelligence industry and the mental toll of threat hunting. This conversation is relevant for security practitioners, as well as leaders who want advice on how to spot and manage burnout within their security teams.