CISO-Security Vendor Relationship Podcast

By David Spark, Founder, Spark Media Solutions and Mike Johnson, CISO, Lyft

Listen to a podcast, please open Podcast Republic app. Available on Google Play Store.

Description

Discussions, tips, and debates from security practitioners and vendors on how to work better together to improve security for themselves and everyone else.

Episode Date
Your "Go To Source" for Unnecessary Cyber Terror Alerts
29:03

On this week's episode of the CISO/Security Vendor Relationship podcast we ask, "What good is a security alert if there's no actionable item?"

In addition you'll learn:

  • Flex your incident response muscles
  • Does your cybersecurity policy change around high profile events?
  • What's the definition of cybersecurity and why do so many people care?
  • How a security vendor helped me a long time ago, but Mike thought about them this week.
  • A couple of vendors submit their pitches for a critique. One is confusing and one is almost perfect.
  • And a couple of "Ask a CISO" questions.

As always, the show is hosted by me, David Spark (@dspark), founder, Spark Media Solutions  and Mike Johnson, CISO, Lyft. Our guest this week is Wendy Nather (@wendynather), director, advisory CISOs, Duo Security.

We Want Your Input and Critiques

For every episode we want input from listeners!

Please contact me here or on LinkedIn and send me the following:

  • “Ask a CISO” question.
  • A vendor pitch you want us to critique.
  • A hot security discussion (please provide a link).
  • A quick security tip.
  • A big industry story and what it means to security professionals.

In all cases, we can or can’t mention you and your company name or keep you anonymous. Just let me know what you want.

Listen and Subscribe to the CISO/Security Vendor Relationship Podcast

So many ways to connect and listen to the podcast.

Sponsor the Podcast

This week’s sponsor is “Hope,” the zero-cost yet not so valuable way to protect you and your customer’s data. We’ll be saying goodbye to “Hope” this week so if your company would like to sponsor this podcast, please contact David Spark at Spark Media Solutions.

Jun 19, 2018
CISOs Don't Care About Your Funny Sales Pitch
31:02

Don't bother trying to craft a potentially clever, funny, and adorable email that you hope will tickle a security practitioner, it's simply not going to work. When it comes to security pitches, practitioners just want the facts. While humor is appreciated, a cold email pitch is not the time to showcase your creative writing skills.

On this week's CISO/Security Vendor Relationship podcast, You'll discover that InfoSec truism and:

  • 10-second security tip (do you have these security controls in place?)
  • The correct pronunciation of CISO (and whether anyone cares)
  • Consumers and activists issuing lawsuits in the name of GDPR and why that's a good thing for the future of GDPR
  • The increasing cost of breaches
  • A new method to get a security practitioner's time (Is the idea so crazy it will work? Or do we just need more crazy ideas?)
  • How a security vendor helped me this week

As always, the show is hosted by me, David Spark (@dspark), founder, Spark Media Solutions  and Mike Johnson, CISO, Lyft. Our guest this week is Jeremiah Grossman (@jeremiahg), CEO, Bit Discovery.

We Want Your Input and Critiques

For every episode we want input from listeners!

Please contact me here or on LinkedIn and send me the following:

  • “Ask a CISO” question.
  • A vendor pitch you want us to critique.
  • A hot security discussion (please provide a link).
  • A quick security tip.
  • A big industry story and what it means to security professionals.

In all cases we can or can’t mention you and your company name or keep you anonymous. Just let me know what you want.

Listen and Subscribe to the CISO/Security Vendor Relationship Podcast

So many ways to connect and listen to the podcast.

Sponsor the Podcast

This week’s sponsor is “Hope,” the zero-cost yet not so valuable way to protect you and your customer’s data. We’ll be saying goodbye to “Hope” this week so if your company would like to sponsor this podcast, please contact me at Spark Media Solutions.

Jun 13, 2018
Security Vendors Buy Their First Pack of Condoms
27:59

After tackling some dodgy audio issues, we have released the second episode of the CISO/Security Vendor Relationship podcast with our guest Kip Boyle (@KipBoyle), CEO of Cyber Risk Opportunities. Subscribe to Kip’s podcast. As always, the show is hosted by myself, David Spark (@dspark), Founder, Spark Media Solutions and Mike Johnson, CISO, Lyft.

In this episode:

  • 10-second security tip.
  • Amazon Alexa hacked or just a failure of the technology?
  • Does rebooting your router help or is it just security theater?
  • Will automation replace entry-level SOC jobs and if so, how do we bring in new security talent?
  • How security vendors helped me this week.
  • Security vendors padding their pitches.
  • Mitigating new risks or getting back to security basics?

We Want Your Input and Critiques

For every episode we want input from listeners!

Please contact me here or on LinkedIn and send me the following:

  • “Ask a CISO” question
  • A vendor pitch you want us to critique
  • A hot security discussion (please provide a link)
  • A quick security tip
  • A big industry story and what it means to security professionals

In all cases we can or can’t mention you and your company name or keep you anonymous. Just let me know what you want.

Listen and Subscribe to the CISO/Security Vendor Relationship Podcast

So many ways to connect and listen to the podcast.

Sponsor the Podcast

This week’s sponsor is “Hope,” the zero-cost yet not so valuable way to protect you and your customer's data. We'll be saying goodbye to "Hope" this week so if your company would like to sponsor this podcast, please contact me at info@sparkmediasolutions.com.

Jun 04, 2018
A Privacy Policy Written in English-w/ Dwayne Melançon
30:14

Our guest is Dwayne Melançon, CTO, Innovyze (@ThatDwayne)

In this episode we have:

10-second security tips.

Tidal claims "breach" when they're accused of faking streaming numbers

Google Chrome switches its "secured" website alert to one of "not secured"

Juro introduces a privacy policy that anyone can read.

How security vendors helped me this week

How to improve your pitch

And ASK a CISO!

Plus, with our first episode we're looking for sponsors. If you're interested in sponsoring the podcast that aims to deliver more signal than noise in the cybersecurity community, email David directly at info@sparkmediasolutions.com.

May 29, 2018