Big tech is transforming every aspect of our world. But how, and at what cost? This season of Land of the Giants – The Disney Dilemma – focuses on Disney’s ability to weather the ups and downs of the business cycle and changing tastes and explores what has kept it successful for over 100 years. The entertainment giant has leveraged nostalgia and its intellectual property to build a beloved brand, but after an acquisition spree that included Marvel, Lucasfilm, and 20th Century Fox, can it sus ...
…
continue reading
Steve Moore에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Steve Moore 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
The New CISO와 비슷한 콘텐츠
Tim Reid (AKA Timbo) interviews the most innovative founders in the world of small business. In this award winning podcast business owners share where their original business idea came from, how they got it to market and the strategies they used that led to their business’s unprecedented growth. Tim Reid's curiosity for what makes business owners tick and his passion for small business success means that every episode is chock full of marketing gold that will help you build that beautiful bu ...
…
continue reading
It didn’t all change in March 2020. Not really. The UK high street has been in the throes of a gradual revolution for decades. From the rise of ecommerce, to the birth of mobile, social commerce, and a growing emphasis on experience, change has been underway for a while. In fact for many, the pandemic has acted as a wake-up call. Digital transformation was no longer a ‘nice to have’ but a matter of survival. Necessity sparked innovation and customers are enjoying more flexibility and conveni ...
…
continue reading
Best Business Podcast (Gold), British Podcast Awards 2023 How do you build a fully electric motorcycle with no compromises on performance? How can we truly experience what the virtual world feels like? What does it take to design the first commercially available flying car? And how do you build a lightsaber? These are some of the questions this podcast answers as we share the moments where digital transforms physical, and meet the brilliant minds behind some of the most innovative products a ...
…
continue reading
The Knowledge at Wharton Network Acast feed serves as a curated showcase highlighting the best content from our podcast collection. Each week, we feature one standout episode from each show in the Wharton Podcast Network, giving listeners a comprehensive sample of our diverse business and academic content. This rotating selection allows audiences to discover new shows within our network while experiencing the depth and variety of Wharton's thought leadership across different topics and forma ...
…
continue reading
Bitcoin pioneer Charlie Shrem peels back the layers on the lives and backgrounds of the world's most impactful innovators. Centering around intimate narratives, Shrem uncovers a detailed, previously unspoken story of the genesis and evolution of bitcoin, cryptocurrency, artificial intelligence, and the web3 movements. Join Shrem as he journeys through the uncharted territories of tech revolutions, revealing the human side of the stories that shaped the digital world we live in today.
…
continue reading
The Unshakeables podcast from Chase for Business and iHeartMedia's Ruby Studio dives into the unbelievable “What are we gonna do now?” moments that changed everything for small business owners. From mom-and-pop coffee shops to auto-detailing garages, every small business owner knows that the journey is full of the unexpected. A single make-or-break experience can change the course of your business forever. Those who stand firm in their resolve have a special name. We call them The Unshakeabl ...
…
continue reading
The official podcast of Rampver Financials. Delivering the best talks, advice, and recommendations about personal finance, investing, entrepreneurship, and success. Subscribe and never miss an episode!
…
continue reading
Decoder is a show from The Verge about big ideas — and other problems. Verge editor-in-chief Nilay Patel talks to a diverse cast of innovators and policymakers at the frontiers of business and technology to reveal how they’re navigating an ever-changing landscape, what keeps them up at night, and what it all means for our shared future.
…
continue reading
The award-winning WIRED UK Podcast with James Temperton and the rest of the team. Listen every week for the an informed and entertaining rundown of latest technology, science, business and culture news. New episodes every Friday.
…
continue reading
Player FM -팟 캐스트 앱
Player FM 앱으로 오프라인으로 전환하세요!
Player FM 앱으로 오프라인으로 전환하세요!
))
What About Third-Party Risk? A CISO’s Questions for the SEC
Manage episode 378893762 series 2643387
Steve Moore에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Steve Moore 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
In this episode of The New CISO, Steve is joined by guest Dan Creed, CISO at Allegiant.
Dan first discovered his love for computers as a teenager. He has since then channeled his skills into a career in security leadership, where he balances his technical expertise with business acumen and storytelling. Today, he shares his thoughts on supply chain risk and the SEC’s new changes to cyber security guidelines. Listen to the episode to learn more about the importance of coding, coping with stress, and his critiques of the SEC.
Listen to Steve and Dan discuss how reporting protects shareholders and the new stakes for CISOs :
Meet Dan (1:30)
Today’s guest, Dan Creed, is the CISO for Allegiant, a travel company.
Dan discovered how to take over his school’s television channel in high school, which stemmed from his friend getting dumped. Dan and his friend used the cable TV channel to post some unflattering messages about his friend’s ex.
Although Dan was rightfully punished at the time, he was allowed to take over the school’s computer lab, and his career journey began.
Maintaining Excitement (7:02)
Dan maintains his excitement for technology by keeping up with all the changes in the industry, like changes in coding. If you love learning and learn fast, you will have a rewarding and lasting career in cyber security.
An Important Role (13:23)
Steve presses Dan on the importance of Absec. Dan reveals that Absec is related to code and that the most essential security aspect is code.
If you are in a customer-facing role, you need to be able to install software on other people’s machines and make sure their vulnerabilities are shielded.
Coping Mechanisms (16:45)
Dan copes with workplace and personal stress by understanding that humans are imperfect and make mistakes. There’s risk in everything we do, so keeping a balanced perspective is critical when mitigating potential cybersecurity issues.
Ultimately, the stress in the security industry is building as the stakes grow, so finding ways to cope is necessary.
SOAR Review (19:27)
Steve asks Dan about his opinion on the automation software SOAR. He thinks it has its place, but finding people who can automate themselves is better. People need to use the right tool for the job.
Building a Response Playbook (21:58)
Dan shares the first thing to automate when building a response playbook for the first time. First things first, make sure you can monitor strange behavior. Starting there allows you to work on the more complex procedures.
His Driving Force (26:16)
Dan reflects on his reasons for finishing his degree later in life. He wanted to learn how to “speak business,” in addition to his computer skills, which drove him to complete his undergraduate degree and MBA.
Choosing One (31:02)
Steve presses Dan on which one to choose if you could only pick one: storytelling or culture. Dan says it depends on the person and what they are good at.
If you look at what’s more important, it would be building work culture first and seeing how your team reacts to phishing and annual security training.
What is Material? (33:23)
Dan and Steve discuss how reports influence the stakeholders and what they invest in. Dan is critical of how the SEC changed the cyber security guidelines, partly because they are poorly organized and confusing.
There are good things, but more context is needed to determine materiality. These guidelines also do not factor in how to deal with third-party risk and supply-chain issues.
Reporting Issues (41:23)
The SEC has intended to help shareholders with these guidelines so that they can protect the share price. Although Steve applauds their efforts, Steve questions if this reporting should be used for something else.
Dan believes these guidelines will not be as helpful to business leaders as believed.
The New CISO (49:24)
To Dan, being a new CISO means keeping up with the times and evolving. It’s essential to speak to the business side in addition to knowing your skills.
Quote: “I don't have an issue with it being reported, but like you said, then what are they doing with that data? What is it really accomplishing? It's not really protecting the share price. It's not really protecting the shareholder and telling, oh, well, I don't know if I should invest in this company because they got breached or not. As any company can be breached, we've been shown that time and time again, and the government can be breached. They should know this. They have been breached.”
Links mentioned:
136 에피소드
공유
Manage episode 378893762 series 2643387
Steve Moore에서 제공하는 콘텐츠입니다. 에피소드, 그래픽, 팟캐스트 설명을 포함한 모든 팟캐스트 콘텐츠는 Steve Moore 또는 해당 팟캐스트 플랫폼 파트너가 직접 업로드하고 제공합니다. 누군가가 귀하의 허락 없이 귀하의 저작물을 사용하고 있다고 생각되는 경우 여기에 설명된 절차를 따르실 수 있습니다 https://ko.player.fm/legal.
In this episode of The New CISO, Steve is joined by guest Dan Creed, CISO at Allegiant.
Dan first discovered his love for computers as a teenager. He has since then channeled his skills into a career in security leadership, where he balances his technical expertise with business acumen and storytelling. Today, he shares his thoughts on supply chain risk and the SEC’s new changes to cyber security guidelines. Listen to the episode to learn more about the importance of coding, coping with stress, and his critiques of the SEC.
Listen to Steve and Dan discuss how reporting protects shareholders and the new stakes for CISOs :
Meet Dan (1:30)
Today’s guest, Dan Creed, is the CISO for Allegiant, a travel company.
Dan discovered how to take over his school’s television channel in high school, which stemmed from his friend getting dumped. Dan and his friend used the cable TV channel to post some unflattering messages about his friend’s ex.
Although Dan was rightfully punished at the time, he was allowed to take over the school’s computer lab, and his career journey began.
Maintaining Excitement (7:02)
Dan maintains his excitement for technology by keeping up with all the changes in the industry, like changes in coding. If you love learning and learn fast, you will have a rewarding and lasting career in cyber security.
An Important Role (13:23)
Steve presses Dan on the importance of Absec. Dan reveals that Absec is related to code and that the most essential security aspect is code.
If you are in a customer-facing role, you need to be able to install software on other people’s machines and make sure their vulnerabilities are shielded.
Coping Mechanisms (16:45)
Dan copes with workplace and personal stress by understanding that humans are imperfect and make mistakes. There’s risk in everything we do, so keeping a balanced perspective is critical when mitigating potential cybersecurity issues.
Ultimately, the stress in the security industry is building as the stakes grow, so finding ways to cope is necessary.
SOAR Review (19:27)
Steve asks Dan about his opinion on the automation software SOAR. He thinks it has its place, but finding people who can automate themselves is better. People need to use the right tool for the job.
Building a Response Playbook (21:58)
Dan shares the first thing to automate when building a response playbook for the first time. First things first, make sure you can monitor strange behavior. Starting there allows you to work on the more complex procedures.
His Driving Force (26:16)
Dan reflects on his reasons for finishing his degree later in life. He wanted to learn how to “speak business,” in addition to his computer skills, which drove him to complete his undergraduate degree and MBA.
Choosing One (31:02)
Steve presses Dan on which one to choose if you could only pick one: storytelling or culture. Dan says it depends on the person and what they are good at.
If you look at what’s more important, it would be building work culture first and seeing how your team reacts to phishing and annual security training.
What is Material? (33:23)
Dan and Steve discuss how reports influence the stakeholders and what they invest in. Dan is critical of how the SEC changed the cyber security guidelines, partly because they are poorly organized and confusing.
There are good things, but more context is needed to determine materiality. These guidelines also do not factor in how to deal with third-party risk and supply-chain issues.
Reporting Issues (41:23)
The SEC has intended to help shareholders with these guidelines so that they can protect the share price. Although Steve applauds their efforts, Steve questions if this reporting should be used for something else.
Dan believes these guidelines will not be as helpful to business leaders as believed.
The New CISO (49:24)
To Dan, being a new CISO means keeping up with the times and evolving. It’s essential to speak to the business side in addition to knowing your skills.
Quote: “I don't have an issue with it being reported, but like you said, then what are they doing with that data? What is it really accomplishing? It's not really protecting the share price. It's not really protecting the shareholder and telling, oh, well, I don't know if I should invest in this company because they got breached or not. As any company can be breached, we've been shown that time and time again, and the government can be breached. They should know this. They have been breached.”
Links mentioned:
136 에피소드
모든 에피소드
×
플레이어 FM에 오신것을 환영합니다!
플레이어 FM은 웹에서 고품질 팟캐스트를 검색하여 지금 바로 즐길 수 있도록 합니다. 최고의 팟캐스트 앱이며 Android, iPhone 및 웹에서도 작동합니다. 장치 간 구독 동기화를 위해 가입하세요.
The New CISO와 비슷한 콘텐츠
Big tech is transforming every aspect of our world. But how, and at what cost? This season of Land of the Giants – The Disney Dilemma – focuses on Disney’s ability to weather the ups and downs of the business cycle and changing tastes and explores what has kept it successful for over 100 years. The entertainment giant has leveraged nostalgia and its intellectual property to build a beloved brand, but after an acquisition spree that included Marvel, Lucasfilm, and 20th Century Fox, can it sus ...
…
continue reading
Tim Reid (AKA Timbo) interviews the most innovative founders in the world of small business. In this award winning podcast business owners share where their original business idea came from, how they got it to market and the strategies they used that led to their business’s unprecedented growth. Tim Reid's curiosity for what makes business owners tick and his passion for small business success means that every episode is chock full of marketing gold that will help you build that beautiful bu ...
…
continue reading
It didn’t all change in March 2020. Not really. The UK high street has been in the throes of a gradual revolution for decades. From the rise of ecommerce, to the birth of mobile, social commerce, and a growing emphasis on experience, change has been underway for a while. In fact for many, the pandemic has acted as a wake-up call. Digital transformation was no longer a ‘nice to have’ but a matter of survival. Necessity sparked innovation and customers are enjoying more flexibility and conveni ...
…
continue reading
Best Business Podcast (Gold), British Podcast Awards 2023 How do you build a fully electric motorcycle with no compromises on performance? How can we truly experience what the virtual world feels like? What does it take to design the first commercially available flying car? And how do you build a lightsaber? These are some of the questions this podcast answers as we share the moments where digital transforms physical, and meet the brilliant minds behind some of the most innovative products a ...
…
continue reading
The Knowledge at Wharton Network Acast feed serves as a curated showcase highlighting the best content from our podcast collection. Each week, we feature one standout episode from each show in the Wharton Podcast Network, giving listeners a comprehensive sample of our diverse business and academic content. This rotating selection allows audiences to discover new shows within our network while experiencing the depth and variety of Wharton's thought leadership across different topics and forma ...
…
continue reading
Bitcoin pioneer Charlie Shrem peels back the layers on the lives and backgrounds of the world's most impactful innovators. Centering around intimate narratives, Shrem uncovers a detailed, previously unspoken story of the genesis and evolution of bitcoin, cryptocurrency, artificial intelligence, and the web3 movements. Join Shrem as he journeys through the uncharted territories of tech revolutions, revealing the human side of the stories that shaped the digital world we live in today.
…
continue reading
The Unshakeables podcast from Chase for Business and iHeartMedia's Ruby Studio dives into the unbelievable “What are we gonna do now?” moments that changed everything for small business owners. From mom-and-pop coffee shops to auto-detailing garages, every small business owner knows that the journey is full of the unexpected. A single make-or-break experience can change the course of your business forever. Those who stand firm in their resolve have a special name. We call them The Unshakeabl ...
…
continue reading
The official podcast of Rampver Financials. Delivering the best talks, advice, and recommendations about personal finance, investing, entrepreneurship, and success. Subscribe and never miss an episode!
…
continue reading
Decoder is a show from The Verge about big ideas — and other problems. Verge editor-in-chief Nilay Patel talks to a diverse cast of innovators and policymakers at the frontiers of business and technology to reveal how they’re navigating an ever-changing landscape, what keeps them up at night, and what it all means for our shared future.
…
continue reading
The award-winning WIRED UK Podcast with James Temperton and the rest of the team. Listen every week for the an informed and entertaining rundown of latest technology, science, business and culture news. New episodes every Friday.
…
continue reading
Player FM -팟 캐스트 앱
Player FM 앱으로 오프라인으로 전환하세요!
Player FM 앱으로 오프라인으로 전환하세요!
