bsw196

Business Security Weekly Episode #196 – November 16, 2020

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. The C-Suite’s Risk Mitigation Strategy – 03:00 PM-03:30 PM

Sponsored By

sponsor
Visit https://securityweekly.com/greathorn for more information!

Announcements

  • Join Amit Bareket, Co-founder & CEO of Perimeter 81 & Paul Asadoorian for a technical deep-dive into the problems inherent in legacy VPN technology. Together they will explore solutions for the modern workforce & how momentum toward perimeter-less architecture is helping redefine the future of cybersecurity. Register Now by visiting https://securityweekly.com/perimeter81

  • Do you always end up missing our live streams? Need somewhere to flag Security Weekly podcasts that you want to listen to? Subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server to stay in the loop on all things Security Weekly! Visit: https://securityweekly.com/subscribe

Description

Email security is transitioning into being one of the top security pillars within the C-Suite’s risk mitigation strategy. Given that it’s the largest attack vector – not only based on the quantity of people who could be responsible for compromise, but also that it results in the greatest quantity of data breaches for organizations.

Kevin O’Brien, CEO and Co-Founder at GreatHorn joins Business Security Weekly for a discussion around what risk mitigation looks like in email, including:

– No longer known bad/known good. And, it’s not “magical” AI or behind a black box
– It’s about being able to identify all the factors that contribute to risk within email – individual users, departments, and the organization itself. How much of a risk tolerance do you have as you look at each and being able to balance controls accordingly.
– Risk mitigation comes down to data. And in email security, it’s 2 data points – Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR)

This segment is sponsored by GreatHorn.

Visit https://securityweekly.com/greathorn to learn more about them!

Guest(s)

Kevin O'Brien

Kevin O’Brien –

CEO and Co-Founder at GreatHorn

Currently CEO and co-founder of email security company GreatHorn, Kevin O’Brien is a frequent speaker, commentator, and author that advises customers and the public on data security and privacy issues. With 20 years of deep cybersecurity expertise, most notably with CloudLock (Cisco), Conjur (CyberArk), and?@stake?(Symantec), Kevin also serves as co-chair for the Mass Technology Leadership Council’s cybersecurity group. Beyond security, he holds a black belt in the Japanese martial art of Aikido and is also an amateur woodworker.

Hosts

MattAlderman

Matt Alderman –

Executive Director at CyberRisk Alliance

PaulAssadorian

Paul Assadorian –

Founder/CIO at Security Weekly/CyberRisk Alliance

2. The CISO’s Dilemma, 7 Cybersecurity Predictions, & 5 Cloud Considerations – 03:30 PM-04:00 PM

Announcements

  • Tomorrow is the big day! The virtual doors open for the first-ever Security Weekly Unlocked virtual event at 10:30am and the last round table should end around 9:30pm! We have an outstanding line-up of presenters, who will be answering questions LIVE in our Discord server during their presentations! Make sure you register for this FREE event before it’s too late! Visit https://securityweekly.com/unlocked to view the line-up and register!

  • We have officially wrapped up all of the recordings for our 2020 webcasts & technical trainings! Stay tuned as we build out our schedule for next year! Visit https://securityweekly.com/ondemand to view all of our 2020 webcasts & trainings!

Description

In the Leadership and Communications section, The CISO’s Dilemma: Balancing Security, Productivity With a Housebound Workforce, Seven cybersecurity predictions for 2021, Avoiding cloud sprawl: 5 considerations for managing a multicloud environment, and more!

Hosts

MattAlderman

Matt Alderman –

  1. The CISO’s Dilemma: Balancing Security, Productivity With a Housebound Workforce – Security Boulevard – Out of the CISOs surveyed, 87% believe that remote work is a permanent workflow. Just 13% believe they will go back to full-time office-based work. CISOs are split on how to approach this dilemma. Here are some of the key issues to resolve:

    1. Web Browsing: To Surf or Not to Surf
    2. Third-Party Apps: To Install or Not to Install
    3. Managing BYOD Policies
    4. Choices, Choices: Accessing Corporate Assets From Home

  2. Seven cybersecurity predictions for 2021 – With 2021 a few months away, what will the landscape of cybersecurity look like for enterprises? What will be the main focuses, risks and considerations for the coming year for cybersecurity leaders and professionals? Here’s a list of seven predictions that will affect enterprises and cybersecurity leaders:

    1. Remote workers will be the focus of cybercriminals through 2021.
    2. Legacy security architecture like VPNs will be the weak link for many organizations.
    3. To cope with reduced budgets, CSOs and CISOs will seek convergence across security solutions.
    4. The impact of breaches in the healthcare sector may be deadly.
    5. Financial organizations beware, more attacks are coming.
    6. COVID-19 forced organizations to accelerate digital transformation efforts.
    7. The adoption of new technologies and increase in internet users means most of the world’s population is at great risk of data exposure.

  3. The pandemic created a more trainable workforce – Remote work capabilities let organizations develop employees’ skills sets at scale. This applies to soft skills, too. Flexibility/adaptability, leadership and strong work ethics are among the top soft skills hiring managers want their workers to improve on, according to a survey from IT trade group CompTIA.
  4. Gartner: IT spending to focus on fast time to value – IT budgets are being spent on supporting remote workers, but CIOs have new metrics. CIOs will try to target IT investments in those areas that have the fastest cash return, which is a measure of how quickly the investment delivers value to the business. The budget calculations are not based on a return on investment. Instead, CIOs are having to second guess how quickly such expenditure can deliver business value.
  5. Gartner: Composability will make business more resilient and agile – CIOs have stepped up to the challenge of supporting their organisations during the global coronavirus crisis. Now they are set to do more – with less…

    Businesses need to become far more agile, to cope with unforeseen events and new opportunities. To achieve this, Gartner urged CIOs to expand their IT strategy beyond digitisation, to focus on technology and IT-enabled processes that are composable and can be reconfigured quickly. Composability enables IT leaders to deliver the resilience and agility that businesses require to remain operational during the coronavirus crisis.

  6. Avoiding cloud sprawl: 5 considerations for managing a multicloud environment – Organizations need to closely manage multicloud environments so they operate toward a shared mission. Here are five ways to make a multicloud environment more effective:

    1. Establish governance
    2. Create an extensible infrastructure
    3. Make infrastructure as code (IaC) and templating a standard practice
    4. Define and implement a robust DataOps process
    5. Identify workforce and culture needs

PaulAssadorian

Paul Assadorian –