CISO Talk

Every CISO knows it’s not a matter of 'if' a cybersecurity incident will occur, but 'when.' Fortunately, there's one name at the top of every CISO's incident response list: Stephen Reynolds, partner in Baker McKenzie’s Intellectual Property & Technology Practice. Reynolds built a well-deserved reputation as a bulwark between organizations and the cybercriminals who attack them, and he is rightly seen as the man who can make the difference between an organization living on to fight another day and total devastation. In this episode of CISO Talk, Stephen shares his experience responding to cybersecurity threats with hosts Mitch Ashley and JJ and talks about how decisions made early on can have a significant impact later in a security incident, when to call your cyberinsurance provider, when to involve law enforcement, what to communicate and what to keep to yourself and how to successfully negotiate with cybercriminals in ransomware situations.

Whether on-premises, cloud-based or cloud-native, the basics of securing digital systems are similar. In this episode of CISO Talk, Chuck Kesler, CISO at Pendo.io, shares his journey from a sysadmin, IT leader and CISO at Duke University Health System and his CISO role today with Pendo.io. Chuck works with software leaders and developers to secure software pipelines, remote development, infrastructure-as-software, adopt new development technologies and practices and more. Chuck discusses what he’s learned from bringing traditional security skills such as identity, device security and zero-trust (just to name a few) into a business which natively began in the cloud and never had a private data center.

RSA Conference 2023 is fast approaching, and the conference organizers are hard at work putting together an amazing lineup of keynotes, speakers, sessions and events. If you just can't wait to find out what's in store, join CISO Talk hosts Mitch Ashley and JJ Minella along with Britta Glade, VP, Content & Curation at RSA Conference and Kacy Zurkus (Senior Content Manager, RSA Conference, for a sneak preview of RSA Conference 2023. They will announce some exciting keynote speakers and give you an inside look at some great content that's coming for this year's event.

Dan Glass, vice president and CISO with NTT DATA (previously CISO at American Airlines), joins CISO talk co-hosts Jennifer (JJ) Minella and Mitch Ashley to talk about what really grinds his gears lately. Glass discusses the latest LastPass breach disclosure, what security vendors need to do to keep pace with IT, pursuing zero-trust in small-to-medium-sized businesses and hiring strategies for entry-level security talent.

They might be leaders in the cybersecurity industry and top of the ladder within their organization, but CISOs still need advice! And when they do, they often turn to trusted advisors to help them with strategy, product, network and vulnerability decisions. So, who are these CISO advisors? How did they achieve their 'CISO whisperer' status, and what role do they play? New co-host, cybersecurity expert, speaker and CISO advisor Jennifer “JJ” Minella joins Mitch Ashley on CISO Talk. JJ and Mitch explore the role advisors play in helping guide cybersecurity leaders and their organizations across diverse subjects, including network technologies, governance and compliance, AppSec and securing cloud-native infrastructure and applications. Mitch and JJ also discuss plans for future episodes including discussions with security practitioners about the cybersecurity challenges organizations face and best practices for addressing those challenges.

As hackers become more sophisticated, we need to be able to keep up with new threats and reconsider our cybersecurity readiness. An effective strategy involves constant evolution and continuous learning. By practicing and failing repeatedly, we are able to test our security plans, learn more about potential vulnerabilities and be more prepared to effectively handle attacks. In this episode, our hosts Mitch Ashley and Mat Newfield are joined by Mike Rothman (Techstrong Research) and Miranda Ritchie (Orbia) to discuss how to test your cybersecurity readiness and what are the most effective methods of communication for organizations to collectively improve their security posture.

Join Mitch Ashley, Jennifer Minell (Viszan Security), Anthony Johnson (Delve Risk) and Allison Miller (Reddit) at RSAC 2022. The role of the CISO has not only changed, it is evolving by the day and will be completely different moving forward. We will discuss this shift as well as how we keep the lights on while getting rid of our corporate networks and using managed solutions instead of internally-operated software or hardware. We'll also explore how to not just survive, but thrive as our evolving security strategy is informed by the business and business is informed by IT and security strategy.

In this episode, Mitch Ashley and Mat Newfield are joined by Anthony Johnson (Delve Risk) and Joel Fulton (Lucidem) discuss the key elements of an active response strategy, how to test the readiness of an organization if a breach occurs and the best way to identify gaps in your process.

In this discussion, Mitch Ashley and Mat Newfield are joined by Beth-Anne Bygum (Acxiom) and Mike Rothman (DisruptOps) to discuss the importance of adopting frameworks and having a foundation that establishes a common understanding for managing risk across the organization in an efficient and effective manner.

Join Mitch Ashley, Jennifer Minell (Viszan Security), Anthony Johnson (Delve Risk) and Allison Miller (Reddit) at RSAC 2022. The role of the CISO has not only changed, it is evolving by the day and will be completely different moving forward. We will discuss this shift as well as how we keep the lights on while getting rid of our corporate networks and using managed solutions instead of internally-operated software or hardware. We’ll also explore how to not just survive, but thrive as our evolving security strategy is informed by the business and business is informed by IT and security strategy.