Cyber Risk Management Podcast
By Kip Boyle
Listen to a podcast, please open Podcast Republic app. Available on Google Play Store and Apple App Store.
Image by Kip Boyle
Category: Management
Open in Apple Podcasts
Open RSS feed
Open Website
Rate for this podcast
Subscribers: 60
Reviews: 0
Episodes: 211
Description
Cyber risk made clear for busy leaders. Cyber threats move fast. Your business must move faster. In every episode, Kip Boyle—author of "Fire Doesn’t Innovate" and CISO at Cyber Risk Opportunities—joins cybersecurity attorney and CISSP Jake Bernstein to break down the latest cyber risk. You’ll hear plain-English explanations of what's going on and what you need to do about it. No jargon. No doom. Just clear steps you can use today to save money, win buy-in, and stay out of the headlines.
| Episode | Date |
|---|---|
|
EP 211: What Sea-Tac’s Ransomware Revealed
|
Jun 02, 2026 |
|
EP 210: How Boards of Directors Are Thinking About Generative AI
|
May 19, 2026 |
|
EP 209: Mythos: When AI Finds More Than We Can Fix
|
May 05, 2026 |
|
EP 208: Flan Recipes and Prompt Injection
|
Apr 21, 2026 |
|
EP 207: Defend the Business from Cybersecurity
|
Apr 07, 2026 |
|
EP 206: Fire Doesn't Innovate. AI Does. Are You Ready?
|
Mar 24, 2026 |
|
EP 205: Making Privacy Compliance Sustainable
|
Mar 10, 2026 |
|
EP 204: Carpets and Diamonds
|
Feb 24, 2026 |
|
EP 203: Cyber Risk Quantification
|
Feb 10, 2026 |
|
EP 202: Why Fortune 500s Still Run on Windows 2003
|
Jan 27, 2026 |
|
EP 201: AI Powered Espionage
|
Jan 13, 2026 |
|
EP200: Future of Cyber Defense
|
Dec 30, 2025 |
|
EP 199: AI Phishing at SecureWorld Seattle
|
Dec 16, 2025 |
|
EP 198: Breaches within Breaches (Contract Obligations post security incident)
|
Dec 02, 2025 |
|
EP 197: Operational Cyber Resilience
|
Nov 18, 2025 |
|
EP 196: Rogue AI Agents: What's Identity Got To Do With It?
|
Nov 04, 2025 |
|
EP 195: Board Cyber Reporting: The Right Questions, The Right Data
|
Oct 21, 2025 |
|
EP 194: Why Are We Sitting Ducks for Phishing Attacks?
|
Oct 07, 2025 |
|
EP 193: Secure AI Transformation
|
Sep 23, 2025 |
|
EP 192: How I Use AI (And You Can Too)
|
Sep 09, 2025 |
|
EP 191: How to Make FBI Your Best Ally
|
Aug 26, 2025 |
|
EP 190: Augmented with AI (REPLAY)
|
Aug 12, 2025 |
|
EP 189: Agentic AI and Ransomware
|
Jul 29, 2025 |
|
EP 188: Verizon DBIR 2025 Part 2
|
Jul 15, 2025 |
|
EP 187: Verizon DBIR 2025 Part 1
|
Jul 01, 2025 |
|
EP 186: "Fire Doesn't Innovate" second edition
|
Jun 17, 2025 |
|
EP 185: Courts and Non-deterministic Computing
|
Jun 03, 2025 |
|
EP 184: Spies, Honeypots, and Lawsuits
|
May 20, 2025 |
|
EP 183: NIST CSF: The Missing Manual
|
May 06, 2025 |
|
EP 182: When Webcams Turn Evil
|
Apr 22, 2025 |
|
EP 181: Deploying AI Securely and Privately
|
Apr 08, 2025 |
|
EP 180: The “Compliance Hammer” Alternative
|
Mar 25, 2025 |
|
EP 179: Cybersecurity With No Money
|
Mar 11, 2025 |
|
EP 178: New HIPAA Security Rule
|
Feb 25, 2025 |
|
EP 177: Workplace Injuries from Ransomware
|
Feb 11, 2025 |
|
EP 176: LIVE! Top 10 NIST SP 800-Series
|
Jan 28, 2025 |
|
EP 175: What's a "Hacker"?
|
Jan 14, 2025 |
|
EP 174: The CrowdStrike Episode
|
Dec 31, 2024 |
|
EP 173: Data Privacy in Cars
|
Dec 17, 2024 |
|
EP 172: Basic Legal Literacy for the CISO
|
Dec 03, 2024 |
|
EP 171: Getting Buy-In for Cybersecurity
|
Nov 19, 2024 |
|
EP 170: Augmented with AI
|
Nov 05, 2024 |
|
EP 169: Cybersecurity Hiring Manager Insights
|
Oct 22, 2024 |
|
EP 168: Staying Ahead of Cyber Risk Management Trends
|
Oct 08, 2024 |
|
EP 167: Security Champions Program
|
Sep 24, 2024 |
|
EP 166: The 2024 Verizon Data Breach Investigations Report (DBIR) Part 2
|
Sep 10, 2024 |
|
EP 165: The 2024 Verizon Data Breach Investigations Report (DBIR) Part 1
|
Aug 27, 2024 |
|
EP 164: Why are we so bad at vulnerability management?
|
Aug 12, 2024 |
|
EP 163: Self-Care
|
Jul 30, 2024 |
|
EP 162: Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA), part 2
|
Jul 16, 2024 |
|
EP 161: Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA)
|
Jul 02, 2024 |
|
EP 160: How to Find Your Top 5 Cyber Risks
|
Jun 18, 2024 |
|
EP 159: FTC 2023 Privacy and Data Security Update
|
Jun 04, 2024 |
|
EP 158: Business Continuity as a Revenue Generator?
|
May 21, 2024 |
|
EP 157: How To Assess Cyber Risk (REPLAY)
|
May 07, 2024 |
|
EP 156: Change Healthcare
|
Apr 23, 2024 |
|
EP 155: Cybersecurity and data privacy in M&A transactions
|
Apr 09, 2024 |
|
EP 154: NIST AI Risk Management Framework, part 2
|
Mar 26, 2024 |
|
EP 153: NIST AI Risk Management Framework, part 1
|
Mar 12, 2024 |
|
EP 152: Boards of Directors and Cybersecurity
|
Feb 27, 2024 |
|
EP 151: Does Ransomware Kill Sick People?
|
Feb 13, 2024 |
|
EP 150: Privacy Laws Driving Demand for Cybersecurity
|
Jan 30, 2024 |
|
EP 149: The Tools and Rules of Digital Trust
|
Jan 16, 2024 |
|
EP 148: SEC Disclosure Rules on Cybersecurity
|
Jan 02, 2024 |
|
EP 147: SEC Complaint against SolarWinds Corporation
|
Dec 19, 2023 |
|
EP 146: Security Metrics
|
Dec 05, 2023 |
|
EP 145: Why Do Employees Keep Ignoring Workplace Cybersecurity Rules?
|
Nov 21, 2023 |
|
EP 144: SecureWorld
|
Nov 07, 2023 |
|
EP 143: The 2023 Verizon Data Breach Investigations Report (DBIR) Part 2
|
Oct 24, 2023 |
|
EP 142: The 2023 Verizon Data Breach Investigations Report (DBIR) Part 1
|
Oct 10, 2023 |
|
EP 141: What's New in NIST CSF v2
|
Sep 26, 2023 |
|
EP 140: Entry Level IT & Cybersecurity Certifications Are Broken
|
Sep 12, 2023 |
|
EP 139: How to Use Cyber Insurance as a Cyber and Privacy Risk Management Tool
|
Aug 29, 2023 |
|
EP 138: What's With NIST Special Publication 800-171, Revision 3 and CMMC
|
Aug 15, 2023 |
|
EP 137: How to Make Tabletop Exercises (TTX) Fun!
|
Aug 01, 2023 |
|
EP 136: Why Cyber Resilience is a Business Advantage
|
Jul 18, 2023 |
|
EP 135: Measuring Cyber Risk
|
Jul 04, 2023 |
|
EP 134: The Business Value of Business Continuity
|
Jun 20, 2023 |
|
EP 133: ChatGPT and Cyber Risk Management
|
Jun 06, 2023 |
|
EP 132: Helping Activists Operating Under a Repressive Regime
|
May 23, 2023 |
|
EP 131: How Identity Really Works on the Internet Today
|
May 09, 2023 |
|
EP 130: How To Assess Cyber Risk
|
Apr 25, 2023 |
|
EP 129: Some Other Things I've Made for You
|
Apr 11, 2023 |
|
EP 128: Secrets of Cyber Risk Management at Non-Profits
|
Mar 28, 2023 |
|
EP 127: Proactively Protect Your Reputation (#1 digital asset)
|
Mar 14, 2023 |
|
EP 126: Due diligence as a Risk Management Approach
|
Feb 28, 2023 |
|
EP 125: Applied Security Design Principles
|
Feb 14, 2023 |
|
EP 124: Case Study for Cyber as a Material Business Risk
|
Jan 31, 2023 |
|
EP 123: How to Really Reduce the Risk of People Falling for Phishing
|
Jan 17, 2023 |
|
EP 122: Best Episode of 2022
|
Jan 03, 2023 |
|
EP 121: The Myth Busters Episode
|
Dec 20, 2022 |
|
EP 120: The 2022 Verizon Data Breach Investigations Report (DBIR) Part 2
|
Dec 06, 2022 |
|
EP 119: The 2022 Verizon Data Breach Investigations Report (DBIR) Part 1
|
Nov 22, 2022 |
|
EP 118: Chief Operating Officer is also CISO
|
Nov 08, 2022 |
|
EP 117: Cyber Risk Management During Company Acquisition
|
Oct 25, 2022 |
|
EP 116: Update of State Data Security Laws
|
Oct 11, 2022 |
|
EP 115: Insurance Companies as Cybersecurity Leaders
|
Sep 27, 2022 |
|
EP 114: Cyber Insurance Drives Security Beyond Your Cyber Policy
|
Sep 13, 2022 |
|
EP 113: Self-Insuring for Cyber Risks
|
Aug 30, 2022 |
|
EP112: How to Work With CFOs on Cyber Risk Management
|
Aug 16, 2022 |
|
EP 111: Ethical Phisheries
|
Aug 02, 2022 |
|
EP 110: Thriving in this Crazy Cyber Insurance Market
|
Jul 19, 2022 |
|
EP 109: FTC’s Strange Action Against Cafe Press
|
Jul 05, 2022 |
|
EP 108: Some Workgroups Deserve More Protection Against Malware
|
Jun 21, 2022 |
|
EP 107: Response Side of Vendor Due Diligence
|
Jun 07, 2022 |
|
EP 106: Anatomy of a Hack: Pandora Papers
|
May 24, 2022 |
|
EP 105: Your IT Person is Not Your Cybersecurity Person
|
May 10, 2022 |
|
EP 104: Easy Target due to Corporate Identity Crisis
|
Apr 26, 2022 |
|
EP 103: SEC's Proposed Rules for Cyber Risk Management
|
Apr 12, 2022 |
|
EP 102: Cybersecurity Hiring Manager Handbook
|
Mar 29, 2022 |
|
EP 101: FTC's Major Updates to GLBA Safeguards Rule
|
Mar 15, 2022 |
|
EP 100: Celebrating our One Hundredth Episode!
|
Mar 03, 2022 |
|
EP 99: Metamorphic Malware Called Tardigrade
|
Feb 20, 2022 |
|
EP 98: Minimum Viable Risk Assessment and Data Backups
|
Feb 01, 2022 |
|
EP 97: Killware
|
Jan 18, 2022 |
|
EP 96: Normalizing Greater Accountability For Cybersecurity Fraud
|
Jan 04, 2022 |
|
EP 95: What To Do about the Massive Insider Threat?
|
Dec 21, 2021 |
|
EP 94: Inside the Poly Network Hack
|
Dec 07, 2021 |
|
EP 93: Executive Order on Ransomware and Cybersecurity
|
Nov 23, 2021 |
|
EP 92: Going Behind the Darknet Diaries…
|
Nov 09, 2021 |
|
EP 91: Can you trust the Verizon Data Breach Investigations Report (DBIR) to help you run your Cyber Risk Program?
|
Oct 26, 2021 |
|
EP 90: How to Buy Cyber Insurance in this Turbulent Market
|
Oct 12, 2021 |
|
EP 89: How to Really Make Sure that Cybersecurity is Everyone’s Job (Part 2)
|
Oct 01, 2021 |
|
EP 88: How to Really Make Sure that Cybersecurity is Everyone’s Job (Part 1)
|
Sep 14, 2021 |
|
EP 87: Cybersecurity for Small Companies
|
Aug 31, 2021 |
|
EP 86: The 2021 edition of the Verizon Data Breach Investigations Report (DBIR) Part 2
|
Aug 17, 2021 |
|
EP 85: The 2021 edition of the Verizon Data Breach Investigations Report (DBIR) Part 1
|
Aug 03, 2021 |
|
EP 84: Minimum Viable Planning for a Cyber Business Disruption
|
Jul 20, 2021 |
|
EP 83: FBI on the Cyber Offensive
|
Jul 06, 2021 |
|
EP 82: Recommendations from the Ransomware Task Force
|
Jun 22, 2021 |
|
EP 81: Something for everyone in latest NYDFS Consent Order
|
Jun 08, 2021 |
|
EP 80: Cybersecurity Insurance makes progress in the right direction
|
May 25, 2021 |
|
EP 79: What should the US government do about rampant cyber crime?
|
May 11, 2021 |
|
EP 78: Importance of Internal Audit Teams
|
Apr 27, 2021 |
|
EP 77: Busted: The Truth about Cloud Security
|
Apr 13, 2021 |
|
EP 76: Implications of denial of class certification in data breach cases
|
Mar 30, 2021 |
|
EP 75: How to Pass your CISSP Exam
|
Mar 16, 2021 |
|
EP 74: Lessons Learned from Ransomware Attack
|
Mar 02, 2021 |
|
EP 73: Negotiating the Data Security Addendum
|
Feb 16, 2021 |
|
EP 72: The Failure of the Cybersecurity Market
|
Feb 02, 2021 |
|
EP 70: A Trial Attorney Tells You How to Get the Most from your Cyber Insurance
|
Jan 05, 2021 |
|
EP 69: More Reasons to Not Pay Ransomware Demands
|
Dec 18, 2020 |
|
EP 68: Role of General Counsel in Cyber Risk Management
|
Dec 08, 2020 |
|
EP 67: New Rules for Attorney-Client Privilege over Data Breach Reports
|
Nov 24, 2020 |
|
EP 66: Challenges for Cybersecurity Pros of Sudden “Work From Home” requirements due to COVID-19
|
Nov 10, 2020 |
|
EP 65: Cyber Exploitation Through Supply Chains
|
Oct 27, 2020 |
|
EP 64: Current trends in Internet Freedom
|
Oct 13, 2020 |
|
EP 63: Quick look at the “Essential Eight” mitigations
|
Sep 29, 2020 |
|
EP 62: Going deeper into the 2020 edition of the DBIR
|
Sep 15, 2020 |
|
EP 61: The 2020 edition of the Verizon Data Breach Investigations Report (DBIR)
|
Sep 01, 2020 |
|
EP 60: LabCorp shareholder sues senior decision makers over cybersecurity failures
|
Aug 18, 2020 |
|
EP 59: Can DoCRA (Duty of Care Risk Analysis) tell you if your cybersecurity controls are reasonable?
|
Aug 04, 2020 |
|
EP 58: Why some companies are so intense about managing supply chain cyber risk
|
Jul 21, 2020 |
|
EP 57: The new “At a Minimum” FTC standard
|
Jul 07, 2020 |
|
EP 56: How to quickly and profitably close deals with your cybersecurity intensive customers
|
Jun 22, 2020 |
|
EP 55: How to graduate skilled cybersecurity analysts in only six months
|
Jun 09, 2020 |
|
EP 54: The legal and economic aftermath of cybersecurity breaches
|
May 26, 2020 |
|
EP 53: Post data breach requirements for law firms
|
May 12, 2020 |
|
EP 52: SysAdmins and the multi-million dollar privacy violations they will cause
|
Apr 28, 2020 |
|
EP 51: Cyber Extortion of Patients
|
Apr 14, 2020 |
|
EP 50: Results of annual listener survey
|
Mar 31, 2020 |
|
EP 49: Utility computing for cybersecurity is “reasonable”
|
Mar 17, 2020 |
|
EP 48: The effects of cyberattacks on corporate reputation and consumer confidence
|
Mar 03, 2020 |
|
EP 47: California’s IoT Security Law: Why It Matters
|
Feb 18, 2020 |
|
EP 46: Experiences with Law Enforcement on Cyber Crime Cases
|
Feb 04, 2020 |
|
EP 45: CCPA regulations and the New York SHIELD Act
|
Jan 21, 2020 |
|
EP 44: Cybersecurity for entrepreneurs (and their employees)
|
Jan 07, 2020 |
|
EP 43: Why does the FTC settle on cybersecurity cases?
|
Dec 24, 2019 |
|
EP 42: Exploiting IT Service Providers and their Customers
|
Dec 10, 2019 |
|
EP 41: Security Outsourcing: Vendor Selection and Management
|
Nov 26, 2019 |
|
EP 40: Ransomware Defenses for cities
|
Nov 12, 2019 |
|
EP 39: The Major Cyber Risk of Private Equity Firms
|
Oct 29, 2019 |
|
EP 38: The new data breach notification law in Washington
|
Oct 15, 2019 |
|
EP 37: Cyber risk and public relations
|
Oct 01, 2019 |
|
EP 36: The emerging “Reasonableness Test” for cybersecurity
|
Sep 17, 2019 |
|
EP 35: Wholesaler perspective in cyber insurance
|
Sep 03, 2019 |
|
EP 34: Why The ASUS Supply Chain Cyberattack Is a Big Deal
|
Aug 20, 2019 |
|
EP 33: How the blame game that follows big data breaches affects defenders
|
Aug 06, 2019 |
|
EP 32: Independent broker’s perspective on cyber insurance
|
Jul 23, 2019 |
|
EP 31: Protecting your accounts payable function from cyberattack
|
Jul 09, 2019 |
|
EP 30: Company Sues Employee For Being Phished
|
Jun 25, 2019 |
|
EP 29: What the Private Sector Can Learn about Incident Response from the Military
|
Jun 11, 2019 |
|
EP 28: The Rise of WebApps and Their Impact on Cybersecurity
|
May 28, 2019 |
|
EP 27: What’s at the intersection of AI and cybersecurity?
|
May 14, 2019 |
|
EP 26: Computer Fraud and Abuse Act (Revisited)
|
Apr 30, 2019 |
|
EP 24: How fake advertising fuels other cybercrimes
|
Apr 16, 2019 |
|
EP 23: What the last 30 years of cyber risks tells us about what’s ahead
|
Apr 02, 2019 |
|
EP 22: Cyber risks of autonomous vehicles
|
Mar 19, 2019 |
|
EP 19: Business Judgment Rule
|
Mar 05, 2019 |
|
EP 18: Six “must read” non-technical books for cyber risk managers
|
Feb 20, 2019 |
|
EP 17: The golden age for cyber-criminals
|
Feb 05, 2019 |
|
EP 16: Threat Intelligence
|
Jan 23, 2019 |
|
EP 71: Learning from Latest in Cyber Insurance Claims
|
Jan 18, 2019 |
|
EP 25: BONUS: New book: “Fire Doesn’t Innovate” on sale now
|
Jan 14, 2019 |
|
EP 14: Contractual Firewalls
|
Jan 08, 2019 |
|
EP 13: Small Companies Struggle with Big Company Cybersecurity Questionnaires
|
Dec 26, 2018 |
|
EP 12: Compliance Versus Practicing Cybersecurity
|
Dec 11, 2018 |
|
EP 21: What germs can teach us about dealing with cyber-attacks
|
Nov 27, 2018 |
|
EP 11: Cyber Risk and Law Firms
|
Nov 13, 2018 |
|
EP 20: New book: “Fire Doesn’t Innovate”
|
Oct 30, 2018 |
|
EP 10: Methods and Legality of “Active Defense”
|
Oct 16, 2018 |
|
EP 9: Non-Technical Ways to Manage Cyber Risk
|
Oct 02, 2018 |
|
EP 8: How to deal with Ransomware
|
Sep 18, 2018 |
|
EP 6: Cyber Risk Management and Attorney Client Privilege
|
Sep 04, 2018 |
|
EP 15: California Consumer Privacy Act (CCPA)
|
Aug 21, 2018 |
|
EP 7: What is GDPR?
|
Aug 08, 2018 |
|
EP 5: How the FTC Defines “Reasonable Cybersecurity”
|
Jul 24, 2018 |
|
EP 4: The “Reasonable Cybersecurity” Standard
|
Jul 10, 2018 |
|
EP 3: Why Your Company Needs Cyber Risk Management
|
Jun 15, 2018 |
|
EP 2: Your Newest Competitor Creates Most of Your Cyber Risk
|
Jun 15, 2018 |
|
EP 1: Introducing Cyber Risk Management Podcast
|
Jun 07, 2018 |