CvCISO Podcast Episode : 59 CvCISO Red Flags

https://is1-ssl.mzstatic.com/image/thumb/Podcasts221/v4/c0/eb/92/c0eb92ec-a85e-bb5a-a66a-9cd832947336/mza_11038474664625092434.jpg/600x600bb.jpg

CvCISO Podcast

SecurityStudio

70 episodes

1 week ago

Welcome to "The CvCISO Podcast" - an extension of SecurityStudio's vCISO training program. Designed to keep the conversation alive beyond the confines of traditional training, this podcast is your ongoing resource for all things related to Virtual Chief Information Security Officers (vCISOs).

This podcast is a space where vCISOs can continue to explore, discuss, and evolve their understanding of the cybersecurity landscape. Join us as we delve into the experiences, perspectives, and challenges that vCISOs face. From sharing success stories to dissecting tough lessons learned, we cover it all.

The goal of the podcast is to build a community where vCISOs can come together to learn from one another. Through engaging discussions and thought-provoking questions from the vCISO community, we keep the conversation dynamic and relevant. This isn't just a podcast - it's a dynamic platform where your voice matters. So, whether you're a seasoned vCISO or just starting, join us on the "CvCISO Podcast" as we continue the journey of learning and growth together.

Hosts:
Jordon Darling (Vice President, Top Dog PC Services)
https://www.linkedin.com/in/jordon-darling/
Evan Francen (Founder and CEO, SecurityStudio)
https://www.linkedin.com/in/evanfrancen/
Meg Perron (CvCISO Training Academy Director, SecurityStudio)
https://www.linkedin.com/in/meg-perron-mba/

To find out more information about SecurityStudio's CvCISO Training Program visit: www.cvciso.com

Follow SecurityStudio on LinkedIn: https://www.linkedin.com/company/11486715

Email cvcisopodcast@securitystudio.com with questions or topics you'd like our hosts to tackle!

Technology

RSS

All content for CvCISO Podcast is the property of SecurityStudio and is served directly from their servers with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.

Technology

https://d3wo5wojvuv7l.cloudfront.net/t_rss_itunes_square_1400/images.spreaker.com/original/9064cce198c307ed4a88eb07c24bbc7e.jpg

CvCISO Podcast Episode : 59 CvCISO Red Flags

CvCISO Podcast

49 minutes

2 months ago

CvCISO Podcast Episode : 59 CvCISO Red Flags

Summary
In this episode of the CvcISO So Podcast, hosts Evan Francen, Dave, and Jordon explore the humorous side of cybersecurity by identifying various red flags in VC engagements. The conversation is filled with laughter as they share funny anecdotes and insights about what to look out for in cybersecurity practices, emphasizing the importance of awareness and vigilance in the field. The hosts also touch on legal and ethical concerns, making the discussion both entertaining and informative. In this engaging conversation, the speakers explore the intersection of humor and seriousness in cybersecurity, discussing various red flags that can indicate poor practices in both personal relationships and professional environments. They emphasize the importance of communication, planning, and integrity in navigating these challenges, while also sharing lighthearted anecdotes and insights into the cybersecurity landscape.

Takeaways
Red flags in cybersecurity can often be humorous yet insightful.
Understanding the implications of cybersecurity practices is crucial.
The importance of prioritizing cybersecurity in budget discussions.
Humor can be an effective tool in discussing serious topics.
Misconceptions about cybersecurity can lead to significant risks.
Legal and ethical considerations are vital in cybersecurity engagements.
Awareness of red flags can help prevent potential issues.
Engaging discussions can lead to better understanding of cybersecurity.
The role of humor in making cybersecurity relatable.
Cybersecurity practices should be taken seriously, even when discussed lightheartedly. If their love language is sending you a 47 page NIST compliant PDF.
You may be in the presence of a red flag if the security team has more turnover than the help desk.
If their idea of incident response is emailing the entire C-suite, whoops, we're hacked with the shrug emoji.
If their business continuity plan is to post, we're looking into it on Twitter, that might be a red flag.
If the last time your anti-virus was updated, Blockbuster was still open, that's a concern.
If their quarterly risk assessment is a whiteboard with hackers equals bad in red marker, that's a red flag.
If your sock gets alerts but calls them suggestions, that's a problem.
If your Amazon S3 bucket is more open than a 24 hour diner, that's a security issue.
If your CISO's penetration test is asking the intern to guess the CEO's password, that's a major red flag.
Apathy in leadership can lead to significant risks in cybersecurity.