bsw259

Business Security Weekly Episode #259 – April 18, 2022

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. Navigating the Complexities of Policy and Compliance in Hybrid Clouds – 03:00 PM-03:30 PM

Sponsored By

sponsor
Visit https://securityweekly.com/firemon for more information!

Announcements

  • Security Weekly listeners, save $100 on your RSA Conference 2022 Full Conference Pass! RSA Conference will be live in San Francisco June 6th-9th, 2022. Security Weekly will be there in full force, delivering real-time, live coverage and interviewing some of the event’s top speakers and sponsors. To register using our discount code, please visit https://securityweekly.com/rsac2022 and use the code 52UCYBER. We hope to see you there!

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Description

With an ever expanding perimeter, how do organizations address the challenges of hybrid cloud? New threats, increased complexity, and continued fragmentation of security responsibilities makes it harder than ever.

Tim Woods, VP Technology Alliances at Firemon, joins BSW to discuss how centralized policy management can provide the visibility, enforcement, and compliance of policies across hybrid cloud environments. This segment is sponsored by FireMon. Visit https://securityweekly.com/firemon to learn more about them!

Guest(s)

Tim Woods

Tim Woods – Vice President of Technology Alliances at FireMon

Tim Woods brings more than 20 years of security experience to his role as VP of
Technology Alliances at FireMon. His global engagements have given him great insights across virtually every market sector and enterprises of all sizes. Tim
believes his most important task is education and raising awareness to build strong organizational security postures. According to Tim, “fighting complacency
in security should be everyone’s top priority if we are to win the war on cybercrime and it’s very gratifying to work somewhere you know is making an impact.”
Tim’s passion for security grew quickly during his eight years serving the Naval Intelligence Community and continued to advance as he assumed strategic roles
at several successful security startups and through his 14 year tenure at FireMon.

Hosts

BenCarr

Ben Carr

CISO at Cradlepoint

MattAlderman

Matt Alderman

@maldermania

Executive Director at CyberRisk Alliance

TylerRobinson

Tyler Robinson

@tyler_robinson

Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

2. 10 Signs, 4 Horsemen, and 3 Ways to Control Your Career – 03:30 PM-04:00 PM

Announcements

  • Don’t miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!

  • Join Paul Asadoorian and Rich Mogull on May 4th to learn how to choose the right architecture for your application. Live attendees at this webcast will have the chance to win a $100 Hacker Warehouse gift card! Register at securityweekly.com/webcasts. Don’t forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

Description

In the leadership and communications section, 10 Signs of a Good Security Leader, Toxic Leadership: The Four Horsemen of the Apocalypse, Know Them, 3 Ways to Take Control of Your Cyber Security Career in 2022, and more!

Hosts

BenCarr

Ben Carr

CISO at Cradlepoint

MattAlderman

Matt Alderman

@maldermania

Executive Director at CyberRisk Alliance

  1. Cybersecurity: We Need to Talk – Quick… what’s a dirty little secret that most people would not want aired publicly? No… this is a business-related blog, try again. If you answered, “We were hacked, and it took our systems down long enough to impact our operations and those of our customers,” you’d be in good company.
  2. 10 Signs of a Good Security Leader – So how can organizations know and appreciate when they have a strong security leader in place? Here are the top 10 signs.

    1. Strategic thinking and planning
    2. Slow and steady wins the race
    3. Everything is well-documented
    4. Actions speak louder than words
    5. Excellent communication skills
    6. Nurtures and promotes talent
    7. Selflessness
    8. Makes decisions in a timely manner
    9. Answers any questions directly
    10. Gives credit

  3. Is your security organization ripe for a reorg? – CISOs should revisit organizational structure as part of their overall strategic plans and after big shifts in enterprise needs. But experts warn that reorganizing alone isn’t a recipe for success.
  4. Toxic Leadership: The Four Horsemen of the Apocalypse, Know Them – Below are some traits in toxic leaders.

    – Dishonesty: Lying is usually a major sign that you can’t trust your leader.
    – Arrogance: Nothing says toxic leadership like arrogance.
    – Manipulation: Manipulation is a crucial trait of a toxic leader.
    – Incompetence: When leaders exhibit incompetence, they fail to meet their responsibilities to the company and to their people.

  5. Persuading Your Team to Embrace Change – How do leaders persuade people to do things they would rather not do? The author outlines two very different persuasive techniques based on social science: the “foot-in-the-door” technique and the “door-in-the-face” technique. Each of these techniques can work in the right situation, although neither of them translates perfectly from the ivory-tower world of social-science research into the messy realities of organizational life. But both techniques can help leaders reflect the hard work of making big change, and what is required to get beyond what management theorists like to call “active inertia” — the tendency for people and organizations to seek comfort in the old ways of doing things, even (or especially) when the world around them is changing dramatically.
  6. 3 Ways to Take Control of Your Cyber Security Career in 2022 – Here are some key things to keep in mind as you evaluate avenues to take control of your cyber security career in 2022:

    – Practical experience outweighs formal training
    – Apprenticeships aren’t the only avenue for career growth
    – Choose fellowships and boot camps that align with your learning goals

TylerRobinson

Tyler Robinson

@tyler_robinson

Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element