Shows
Drafting ComplianceCCPA live from HyperConnect 2025Join Kayne and Tom live from San Diego, CA, home of the CCPA, as they sit down with Rob Carson, Founder and CEO of Semper Sec, to unpack what the California Consumer Privacy Act (CCPA) really means for businesses, even outside the Golden State. From Article 9's evolving cybersecurity audit requirements to the tension between ISO standards and California’s growing preference for NIST CSF 2.0, this episode dives deep into what compliance professionals need to know now, and how to prepare before deadlines hit in 2028. Plus, we're cracking open some beers and talking shop: privacy audits, regulatory agility, framework co...2025-07-2947 minDrafting ComplianceAuditing: AI and the FutureKayne and Tom talk about an article on the future of auditing with consideration for AI and it’s uses. Along the way, they uncover where organizations should be considering strategic shifts around AI and where they need to exercise caution. Of course we all get to enjoy another face of disgust from an otherwise truly enjoyable beer.Reference documents: https://hyperproof.io/resource/the-future-of-auditing-2025/Beer: Cadence (Belgian-Style Ale) by Reformation Brewery▬ Contents of this episode ▬▬▬▬▬▬▬▬▬▬ 0:00 - Intro 0:16 - Beer background 4:05 - We’re facing new regulato...2025-04-1643 min
Security You Should KnowManaging Compliance and Risk with HyperproofThe tendency to focus on merely checking boxes to achieve compliance can lead to superficial solutions that may not effectively reduce operational risk. A strategic pivot towards ensuring compliance through holistic security measures is key; long-term, it demands less effort and provides more substantial protection. In this episode, Craig Unger, founder and CEO of HyperProof, discusses the company‘s efforts to help companies achieve compliance and manage third-party risks. Craig is joined by our panelists, Trina Ford, CISO of iHeartMedia, and former CISO TC Niedzialkowski Huge thanks to our sponsor, Hyperproof Take con...2025-04-0915 minDrafting ComplianceHow to handle Data Privacy for AI with Dustin WilcoxKayne and Tom talk about AI and regulatory consequences with a Special guest, and Tom’s brother, Dustin Wilcox, a Fortune 20 CISO with a Global Healthcare company. They knock back a delicious Porter beer and uncover the secrets of AI and regulatory management. A blockbuster of a good time.▬ Contents of this episode ▬▬▬▬▬▬▬▬▬▬ 0:00 - Intro 0:28 - Beer background 4:40 - The balance between AI usage and privacy laws9:10 - Deepseek and data breaches15:30 - How do the “right to be forgotten” provisions under GDPR and CCPA impact the development and deployme...2025-03-0749 minDrafting ComplianceRisk Assessment with Adam BrennickKayne and Tom talk with Adam Brennick, Director of Security, Risk, and Compliance at Cockroach Labs. Adam dives into the risk assessment process and some of the best practices for building and maturing the risk management lifecycle. Kayne has a surprising score for the beer today and it is marked for future celebrations. Beer: No-Li Squatch Pirate Juicy Haze IPAReference Documents:https://hyperproof.io/resource/iso-27001-statement-of-applicability/https://hyperproof.io/iso-27001/https://youtu.be/PdYu6_m42Ek▬ Contents of this episode ▬▬▬▬▬▬▬▬▬▬ 0:00 - Intro 0:23 - Beer background 4:40 - Intro Questions9:40 - Risk Assessment Supporting Compliance Audits17:00 - Engaging...2025-01-2346 minDrafting ComplianceAll About DORAKayne and Tom talk about DORA and its applicability. Learn where DORA applies, how you may need to be concerned about DORA even if you think you don’t and why DORA is causing confusion in US companies. Kayne and Tom try an unusual option to drink and we come close on the scoring.Reference Documents:https://eur-lex.europa.eu/legal-content/EN/TXT/HTML/?uri=CELEX:32022R2554 https://hyperproof.io/resource/comprehensive-guide-dora/Beer: Excelsior Imperial Apple by Schilling Cider House▬ Contents of this episode ▬▬▬▬▬▬▬▬▬▬ 0:00 - Intro 0:17 - Beer background 3:39 - What is DORA?4:10 - Does DORA affect US-base...2024-12-0943 minDrafting ComplianceControls, Questionnaires, and Risks with Eric HammersleyOn this episode, we're expanding the show to talk about more than FedRAMP. But before we get to that, I want to mention: we're sitting in the same room in San Diego, in front of a live audience at HyperConnect 2024 , with our special guest Eric Hammersley of Nutanix, and we have some beers.
▬ Contents of this episode ▬▬▬▬▬▬▬▬▬▬
0:00 - Intro
0:35 - Beer background
3:57 - Frameworks / controls
14:25 - Contractual obligations
23:25 - Security questionnaires
31:45 - Risks
33:00 - Beer reviews
The Drafting Compliance series:
To lighten the dark corners of compliance, hosts Kayne and Tom as share with...2024-11-1940 min
InfoSec ProsVarun Prasad on Building trust in AI with ISO 42001How can an organization use ISO 42001 to build trust with AI? During this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Varun Prasad, Managing Director - Third Party Attestation at BDO, and our host, Kayne McGladrey, Field CISO at Hyperproof.
In the episode, Varun and Kayne will discuss topics around ISO 42001, its key components, and how it can be used to guide companies on the ethical complexities of AI. Plus, they'll discuss some of the latest regulation updates su...2024-11-0857 min
Kayne's News in ReviewAI-generated content, CMMC, SEC and more! | October 2024Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top cybersecurity news stories to know for October 2024.2024-11-0106 minInfoSec ProsBob Maley on AI Unplugged for Compliance and SecurityHow is AI progressing and what does it mean for cybersecurity? During this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Bob Maley, Chief Security Officer at Black Kite, and our host, Kayne McGladrey, Field CISO at Hyperproof.
In the episode, Bob and Kayne will discuss topics around AI security such as asking vendors about AI use, personhood credentials, chatGPTzero.me, and why you should always say "please" and "thank you" to your AI chatbot (kidding, but only slightly). Audience interaction is encouraged an...2024-10-2457 minDrafting ComplianceFrameworks and Auditors with Lisa HallKayne and Tom talk with Lisa Hall, CISO at Safebase. Recorded from Austin, Texas, they try a flight of local beer! They also take time to discuss Lisa's FedRAMP journey, talking with auditors, and the implications of the CrowdStrike disaster.
▬ Contents of this episode ▬▬▬▬▬▬▬▬▬▬
0:00 - Intro
0:55 - Beer background
7:00 - Implementing FedRAMP at a Company with an Agency Sponsor
13:07 - Comparing FedRAMP with Other Cybersecurity Frameworks
18:50 - How Frameworks Should Demonstrate Existing Practices
23:51 - Being Comfortable with Controls When Talking to Auditors
29:11 - July 2024 CrowdStrike IT Disaster and Its Implications
33:00 - Beer reviews
The Drafting Compliance series:
To lighten the dark corners of co...2024-10-2338 min
The Security Podcast of Silicon ValleyKayne McGladrey, Field CISO at Hyperproof, SEC 10-K and Cybersecurity LeadersJoin us in this episode of the Security Podcast in Silicon Valley, where host Jon McLachlan sits down with Kayne McGladrey, Field CISO at Hyperproof. Kayne shares his unique journey from theater to cybersecurity, offering insights into risk management, regulatory compliance, and the evolving landscape of cyber threats. Discover how his background in improv and theater has shaped his approach to cybersecurity, the importance of SEC 10-K disclosures, and practical advice for startups and security professionals. Don't miss this engaging and informative conversation!
2024-10-1548 minKayne's News in ReviewSecurity Budgets, AI, HIPAA, DORA and more! | September 2024Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top cybersecurity news stories to know for September, 2024.2024-10-0804 minInfoSec ProsMike Geehan on Third-party risk and AIDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Mike Geehan, Head of Security at Cockroach Labs, and our host, Kayne McGladrey, Field CISO at Hyperproof.
In this episode, we will be covering topics like third-party risk management and how it interacts with AI, security questionnaires, insurance policies and renewals, and more. Audience interaction is encouraged and questions will be answered live from the comments.
Register now for your chance to learn from one of today’s top InfoSec pros!2024-08-2359 minDrafting ComplianceFedRAMP Moderate with Alexander NeffKayne and Tom talk with Alexander Neff, Lecturer at ASU and Senior Director of InfoSec at Faro Health. Great conversation was had on both Alexander’s FedRAMP experience and his beer choice. Come see Kayne’s highest rated beer!
Beer: Lindemans Framboise
Reference documents:
https://www.fedramp.gov/documents-templates/
The Drafting Compliance series:
To lighten the dark corners of compliance, hosts Kayne and Tom as share with you Hyperproof's journey to becoming FedRAMP moderate, an overall roadmap to achieve FedRAMP compliance in a year, and the tips and tricks they learn along the way. As i...2024-08-1937 minKayne's News in ReviewTop Cybersecurity News for August, 2024Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for August, 2024 in under five minutes.
Story #1 Crowdstrike's Security Update Failure
https://www.crowdstrike.com/terms-conditions/ https://www.fastcompany.com/91160759/crowdstrike-data-gdpr
Story #2 Will the Cyber Safety Review Board Investigate Crowdstrike?
https://www.politico.com/newsletters/weekly-cybersecurity/2024/07/29/should-the-csrb-take-on-crowdstrike-00171578
Story #3 California Privacy Protection Agency Board discusses New Regulations
https://cppa.ca.gov/meetings/materials/20240716_item8_draft_omnibus_isor.pdf
https://cppa.ca.gov/meetings/materials/20240716_item8_economic_assessment_preliminary_estimates.pdf
Story #4 Financial industry's response to Cyber Incident...2024-08-0604 minDrafting ComplianceVictoria Southall on FedRAMP Compliance and ATOKayne and Tom talk with Victoria Southall, the Director of Cybersecurity, Governance, Risk, and Compliance (GRC) at Everfox. Kayne learns the art of double fisting… or should I say triple fisting, as we try 3 beers in this episode. Results vary, but as always, the tasting brings out the best in Kayne’s facial expressions.
Beer: Shock Top Brewing Co. Shock Top, Samuel Adams Summer Ale, Blue Moon Brewing, Blue Moon Belgian White
Reference documents:
https://www.fedramp.gov/documents-templates/
The Drafting Compliance series:
To lighten the dark corners of comp...2024-08-0137 minInfoSec ProsBryan Fisher on the modern GRCDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Bryan Fisher, Staff Risk Manager at Ironclad, and our host, Kayne McGladrey, Field CISO at Hyperproof. Guided by Kayne, Bryan will share insights into his current work and past experiences in the field.
In this episode, we will be covering topics from certifications, GRC benchmarking, AI governance, and third-party risk management. We will also be taking questions live from the audience.
Register now for your chance to learn from one of today’s top...2024-07-2659 minKayne's News in ReviewTop News in Cybersecurity for July, 2024Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for July, 2024 in under five minutes.
Story #1 SEC Settlement with RRD
https://www.sec.gov/news/statement/peirce-uyeda-statement-rr-donnelley-061824
Story #2 FTC and MGM Update
https://dockets.justia.com/docket/nevada/nvdce/2:2024cv01112/169145
Story #3 Fitch Ratings Report
https://www.fitchratings.com/research/us-public-finance/fitch-rated-us-water-sewer-utilities-resilient-to-cyber-risks-18-06-2024
Story #4 Supreme Court Case Involving Facebook and Amalgamated Bank
https://www.scotusblog.com/case-files/cases/facebook-inc-v-amalgamated-bank/
Story #5 11th Circuit Court of Appeals Judge
https://www.ailawandpolicy.com/wp-content/uploads/sites/65/2024/05/202212581.pdf2024-07-0205 minDrafting ComplianceFedRAMP with Eric HoltzclawKayne and Tom talk with Eric Holtzclaw, Field CISO, with Blackcat Security. Eric shepherded the first company through FedRAMP Tailored Li-SaaS. We learn how the very first effort went, and what Eric learned along the way. Dare we say, Eric was a Guinea Pig for the FedRAMP. Of course, we subject Kayne to new beer, and fun was had!
Reference documents:
https://www.fedramp.gov/documents-templates/
Beer: Stella Artois, Liberte
The Drafting Compliance series:
To lighten the dark corners of compliance, hosts Ka...2024-06-2132 minInfoSec ProsCarmen Marsh and Confidence Staveley on Women in Cybersecurity and API securityDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Carmen Marsh, President and CEO at United Cybersecurity Alliance, Confidence Staveley, Founder & Executive Director at CyberSafe Foundation, and our host, Kayne McGladrey, Field CISO at Hyperproof. Guided by Kayne and audience questions, Carmen and Confidence will share insights into their current work and past experiences in the field, including Carmen's nonprofit organization helping women in cybersecurity, and Confidence's book on API security. Register now for your chance to learn from two of today’s to...2024-06-1454 minDrafting Compliance3PAOs and FedRAMP with James LeachKayne and Tom talk with James Leach, A Principal with Fortreum, a 3PAO. James pulls the covers back on the role 3PAOs plays in the FedRAMP journey. From advice, then assessment and working with the larger FedRAMP ecosystem, James helps us understand where 3PAOs provide value. We try New Belgium, Fat Tire and stand back and watch Kayne react. Good Times!2024-06-1140 minInfoSec ProsBrenda Bernal talks AI Governance | InfoSec Pros On the RoadDuring the Hyperproof InfoSec Pros on the Road series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. Filmed at RSA conference in San Francisco, Brenda Bernal, VP, Product Security and Compliance at Digicert, talks about AI governance and the effect it's having on organizations. Play now for your chance to learn from one of today’s top InfoSec pros!
Subscribe to Hyperproof to keep up with the latest in IT security, compliance, and risk.2024-06-0815 minKayne's News in ReviewTop News in Cybersecurity for June, 2024Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for June, 2024 in under five minutes.2024-06-0404 minInfoSec ProsJim Rutt on AI in Cybersecurity and PoliciesDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Jim Rutt, CIO/CISO of The Dana Foundation, and our host, Kayne McGladrey, Field CISO at Hyperproof. Guided by Kayne and audience questions, Jim will share insights into his current work and past experiences in the field, including how AI is impacting Cybersecurity. Register now for your chance to learn from one of today’s top InfoSec pros.2024-05-2235 minKayne's News in ReviewTop News in Cybersecurity for May, 2024Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for May, 2024 in under five minutes.2024-05-0305 minInfoSec ProsJeff Costlow on CISA Reporting Requirements and Microsoft's CSRBDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Jeff Costlow, Security Architect at Pryon, Inc., and our host, Kayne McGladrey, Field CISO at Hyperproof. Guided by Kayne and audience questions, Jeff will share insights into his current work and past experiences in the field. Register now for your chance to learn from one of today’s top InfoSec pros.2024-04-1952 min
The Other Side Of The FirewallThe Evolving Role of CISO, Amazing GRC Tools, & The Proper Use of AI In Compliance | Ask A CISSPIn this conversation, Ryan Williams and Kayne McGladrey discuss the evolving role of the CISO, the importance of governance, risk, and compliance (GRC), and the impact of AI in cybersecurity. They highlight the need for CISOs to have the full backing of their boards and the challenges they face in managing civil liability for processes they don't control. They also emphasize the importance of democratizing GRC knowledge and providing companies with tools like Hyperproof to assess and improve their cybersecurity maturity. The conversation touches on the increasing regulatory requirements and the need for companies to demonstrate compliance and accountability...2024-04-181h 04Drafting ComplianceFedRAMP with Matthew FeldmanSpecial Guest Matthew Feldman joins Kayne and Tom to pull the curtain back on his FedRAMP experiences. Matthew has a wealth of experience and understands the nuances of FedRAMP. Mathew helps understand the importance of best practice when looking through the lens of compliance. Of course, as always, we have beer to review and Kayne has a reaction. Come see the fun!2024-04-1247 minKayne's News in ReviewTop News in Cybersecurity for April, 2024Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for April, 2024 in under five minutes.2024-04-0404 minInfoSec ProsDustin Lehr on Security Culture ChangeDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Dustin Lehr, Sr Dir Platform Security, Deputy CISO at Fivetran, and our host, Kayne McGladrey, Field CISO at Hyperproof. Guided by Kayne and audience questions, Dustin will share insights into his current work and past experiences in the field, including his thoughts on changing the culture of security at an organization. Register now for your chance to learn from one of today’s top InfoSec pros.2024-03-2851 minDrafting ComplianceFedRAMP Project UpdateTom provides an update on the status of the Hyperproof FedRAMP project. Along the way, Kayne uncovers some of the challenges associated with the project and suggests solutions for others going through the same process. And straight out of left field, Kayne actually likes a beer more than Tom. Come find out what caused this seismic disturbance in the force.2024-03-1325 minKayne's News in ReviewTop News in Cybersecurity for March, 2024: Benchmark Report EditionJoin Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for March, 2024 in under five minutes. This month we are talking specifically about Hyperproof's 5th annual 2024 IT Risk and Compliance Benchmark Report.2024-03-0704 minInfoSec ProsSue Bergamo talks new 10k SEC requirements and SolarWindsDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Sue Bergamo, CIO and CISO at BTE Partners, and our host, Kayne McGladrey, Field CISO at Hyperproof. Guided by Kayne and audience questions, Sue will share insights into her current work and past experiences in the field, including her thoughts on the new 10K SEC requirements, SolarWinds and Tim Brown, and risk prioritization. Register now for your chance to learn from one of today’s top infosec pros.2024-02-2351 minDrafting CompliancePlanningTom and Kayne uncover the intricacies of the Planning family of requirements in FedRAMP Moderate. Learn about the SSP, Rules of Behavior and Architecture in the planning process. Also, of course, learn about Cigar City Brewing’s Jai Alai IPA, one of Tom’s favorites and Kayne’s… well Kayne is Kayne.2024-02-2320 minDrafting ComplianceAudit and AccountabilityCome and see how Boulevard Brewing rebounds after a poor showing and shines with its Tank 7 American Saison beer. Kayne and Tom talk about the Audit and Accountability family of controls in FedRAMP Moderate. Learn the challenges and technologies leveraged to cope with the many requirements. Maybe you will also learn a little about Saison beer!2024-02-1128 min
Kayne's News in ReviewTop News in Cybersecurity for February, 2024Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for February, 2024 in under five minutes.2024-02-0104 minInfoSec ProsJeff Warren on Measuring Cybersecurity Program EffectivenessDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Jeff Warren, Owner & Principal Consultant at South Lake Cyber Risk, and our host, Kayne McGladrey, Field CISO at Hyperproof. Guided by Kayne and audience questions, Jeff will share insights into his current work and past experiences in the field including the changes in the role of CISOs and how to measure cybersecurity program effectiveness. Watch now for your chance to learn from one of today’s top infosec pros.2024-01-2543 minDrafting ComplianceRisk AssessmentKayne and Tom choke down the very sweet and sticky Boulevard Brewing Co.’s Cinnamon Bun Ale. Along the way they discuss the intricacies of the Risk Assessment family of FedRAMP controls and what challenges it might present. The episode ends with a surprising agreement on the beer and equally surprising desire to cleanse the palate.2024-01-2531 min
Kayne's News in ReviewTop News in Cybersecurity for January, 2024Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for January, 2024 in under five minutes.2024-01-1205 minDrafting ComplianceSystem and Services AcquisitionKayne and Tom uncover the nuance of the System and Services Acquisition family of FedRAMP controls. Tune in to hear how FedRAMP has matured how organizations should think about supply chain providers. Tom has a definitive belief on how this family of controls will evolve over time. Of course, a tasty beer is enjoyed by Tom, but you will need to watch to the end to see Kayne’s take on Fresh Squeezed IPA.2024-01-1226 minDrafting ComplianceSystem and Information IntegrityKayne and Tom dive into the System and Information Integrity family of FedRAMP Moderate controls. Find out what challenges Hyperproof has faced with this family of controls and learn some tips to help you in your own FedRAMP journey. A clear outlier shows up in this show’s beer reviews, tune in and hear for yourself.2023-12-2830 minDrafting ComplianceATO Process with Michael ChaouiKayne and Tom are joined by special guest Michael Chaoui, the Founder of Atlas One Security. Michael pulls the covers back on some of the challenges of companies going through the ATO process. We also discuss recent legislation and draft memos intended to modernize the FedRAMP process, all while enjoying one of Michael’s favorite stout beers.2023-12-1437 minInfoSec ProsRyan Niemes on Incident Response StrategyDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Ryan Niemes, Head of Security at Helix, and our host, Kayne McGladrey, Field CISO at Hyperproof. Guided by Kayne and audience questions, Ryan will share insights into his current work and past experiences in the field. Register now for your chance to learn from one of today’s top infosec pros.2023-12-0739 minKayne's News in ReviewTop News in Cybersecurity for December, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for December, 2023 in under five minutes.2023-12-0404 minDrafting ComplianceSystem and Communications ProtectionKayne and Tom talk about the System and Communications Protection family of FedRAMP Rev5 controls. Learn about the “catch all” approach to this control family and some challenges faced to implementation. Tom and Kayne try a stout for the first time on the show, and Kayne seems to group it with all the other beers. As always, the faces he makes are impressive.2023-11-3025 minDrafting ComplianceSpecial Guest Steve GentryKayne and Tom talk with Steve Gentry about his FedRAMP experience and the lessons learned. Costs to consider, how to build controls thoughtfully and where you should consider FedRAMP control initiatives in the context of a business discussion. Of course we threw another drink in Kayne’s hands for review. This time it's a fermented drink, not a brewed drink. Welcome to the world of ciders Kayne, a short leap from wine.2023-11-1635 minInfoSec ProsAli Khan on Internal Threat Intelligence AnalysisDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Ali Khan, Field CISO at ReversingLabs, and our host, Kayne McGladrey, Field CISO at Hyperproof. Guided by Kayne and audience questions, Ali will share insights into his current work and past experiences in the field. Register now for your chance to learn from one of today’s top infosec pros.2023-11-0954 minKayne's News in ReviewTop News in Cybersecurity for November, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for November, 2023 in under five minutes.2023-11-0605 minDrafting ComplianceLive from HyperConnect 2023Live from Austin, Texas, Kayne and Tom discuss supply chain risk under FedRAMP. They also try a local beer, live on stage, from HyperConnect 2023.2023-11-0218 minDrafting ComplianceSpecial Guest Matt Fryer of InfobloxKayne and Tom talk with Matt Fryer about the cost structures and strategies associated with a Cloud Service Provider (CSP) FedRAMP project. Matt brings a well established perspective and helps understand the challenges of the increased controls focus apparent with FedRAMP. Plus, they try Modelo Especial, a Mexican lager.2023-10-1936 min
Cyber Security HeadlinesMicrosoft thwarts Akira, Sullivan appeals conviction, ToddyCat targets telcosMicrosoft thwarts large-scale ransomware attack Former Uber CISO files appeal ToddyCat group targets telcos Thanks to today's episode sponsor, Hyperproof Is your company scaling? Do you need to quickly add more compliance frameworks but don’t know where to start? Hyperproof has you covered. Hyperproof is a risk and compliance management platform that can help you manage compliance at scale. With Hyperproof, you can quickly add new frameworks, crosswalk controls between frameworks, view your risk posture, and manage your risks, all in one place. Visit hyperproof.io to get st...2023-10-1307 minInfoSec ProsNigel Sampson on How to Work with the Operations TeamDuring this Hyperproof live stream series, leaders in information security shed light on crucial topics that shape the modern cybersecurity landscape. This month’s episode features Nigel Sampson, Global Director of Cybersecurity at IDG, and our host, Kayne McGladrey, Field CISO at Hyperproof. Guided by Kayne and audience questions, Nigel will share insights into his current work and past experiences in the field. Register now for your chance to learn from one of today’s top infosec pros.2023-10-1248 min
Cyber Security HeadlinesHijacked 404 pages, Chinese attackers target Confluence, Adobe's "icon of transparency"404 pages hijacked Atlassian Confluence attacked by state-backed actors Adobe’s “icon of transparency” Thanks to today's episode sponsor, Hyperproof It’s more critical than ever to focus on strategically addressing risk, but how can you do it when working with limited resources? That’s where Hyperproof comes in: Hyperproof is a risk and compliance operations platform that helps you automate evidence collection, task management, and collaboration within your organization so you can focus on what matters most: keeping your company secure by prioritizing strategy, not manual processes. Get a demo at Hy...2023-10-1207 min
Cyber Security HeadlinesZero-day fuels largest-ever DDoS attack, 23andMe resets user passwords after data leak, Exchange gets ‘better’ patch for critical bugInternet-wide zero-day bug fuels largest-ever DDoS attack 23andMe resets user passwords after genetic data posted online Microsoft Exchange gets ‘better’ patch to mitigate critical bug Thanks to today's episode sponsor, Hyperproof We get it. You’re a risk manager or compliance professional, and you’re overworked. You’re trying to do the right thing by keeping your company safe and secure, but your technology is holding you back. Why not upgrade to Hyperproof? Hyperproof is a platform that not only eliminates the manual tasks you dread, but helps you scale secu...2023-10-1108 min
The Cyber Go-To-Market podcast for cybersecurity sales and marketing teams. Save Cybr Donut!Don't let the security questionnaire stall your deals with Kayne McGladrey, Field CISO at HyperproofAre you a founder, CEO, leader, or salesperson in the cybersecurity industry? Are you looking to grow your sales and revenue faster? In this episode of the Cybersecurity Startup Revenue Podcast, we dive into one way to avoid having your deals stalled out.👉 What risks can derail your software development and revenue growth?👉 How can you optimize the role of a field CISO in your organization?👉 Why is building trust and managing risk essential for successful sales cycles?Our guest, Kayne McGladrey, a Field CISO at Hyperproof.io, brings his expertise and unique perspecti...2023-10-1048 min
Cyber Security HeadlinesMGM ransomware costs, Blackbaud breach settlement, 23andMe breach claimsMGM Resorts quotes ransomware tab at $110 million Blackbaud in $49.5 million settlement for May 2020 ransomware attack 23andMe investigates breach claims Thanks to today's episode sponsor, Hyperproof Tired of managing risk and compliance in spreadsheets? Sick of tracking down stakeholders to find evidence? Worried about whether that evidence is up to date for your next audit? Hyperproof has you covered. With Hyperproof, you can efficiently manage multiple compliance frameworks and risks in a single place so you can focus on what matters most: keeping your company secure and growing. Visit hyperproof.i...2023-10-0907 minDrafting ComplianceMoving to FedRAMP Rev5Kayne and Tom talk about the FedRAMP Rev4 to Rev5 transition. Learn about key control changes, the shell game that is Rev5 and obviously, the unique flavor profile of a new beer.2023-10-0517 minKayne's News in ReviewTop News in Cybersecurity for October, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for October, 2023 in under five minutes.2023-10-0305 min
Cyber Security HeadlinesWeek in Review: UK and US cyberlaws, Microsoft’s bad week, Cisco buys SplunkLink to blog post This week’s Cyber Security Headlines – Week in Review, is hosted by Rich Stroffolino with guest Shawn Bowen, CISO, World Kinect Corporation Thanks to our show sponsor, Hyperproof Is your company scaling? Do you need to quickly add more compliance frameworks but don’t know where to start? Hyperproof has you covered. Hyperproof is a risk and compliance management platform that can help you manage compliance at scale. With Hyperproof, you can quickly add new frameworks, crosswalk controls between frameworks, view your risk posture, and manage your risks, all in...2023-09-2326 min
Cyber Security HeadlinesUK’s new cyberlaws, Cisco buys Splunk, Transunion denies breachUK launches comprehensive new online safety laws Cisco buys Splunk TransUnion denies breach Huge thanks to our sponsor, Hyperproof Is your company scaling? Do you need to quickly add more compliance frameworks but don’t know where to start? Hyperproof has you covered. Hyperproof is a risk and compliance management platform that can help you manage compliance at scale. With Hyperproof, you can quickly add new frameworks, crosswalk controls between frameworks, view your risk posture, and manage your risks, all in one place. Visit hyperproof.io to get started tod...2023-09-2207 minDrafting Compliance3PAO Accreditation Loss with CISO Joe EvangelistoKayne and Tom talk with Joe Evangelisto from Tango Analytics about an interesting and stressful scenario where his 3PAO lost its accreditation. Of course, Kayne tackles yet another beer that elicited a memorable response.2023-09-2127 min
Cyber Security HeadlinesCanadian airport DDoS, Huawei ships chips, Signal goes post-quantumCyber attack disrupted Canadian airports Huawei ships chips for surveillance cameras Signal adds quantum-resistant encryption Huge thanks to our sponsor, Hyperproof It’s more critical than ever to focus on strategically addressing risk, but how can you do it when working with limited resources? That’s where Hyperproof comes in: Hyperproof is a risk and compliance operations platform that helps you automate evidence collection, task management, and collaboration within your organization so you can focus on what matters most: keeping your company secure by prioritizing strategy, not manual processes. Get...2023-09-2106 min
Cyber Security HeadlinesDHS to simplify cyber incident reporting rules, UK passes Online Safety Bill, PIILOPUOTI marketplace takedownDHS council seeks to simplify cyber incident reporting rules UK passes the Online Safety Bill Finland and Europol take down PIILOPUOTI marketplace Huge thanks to our sponsor, Hyperproof We get it. You’re a risk manager or compliance professional, and you’re overworked. You’re trying to do the right thing by keeping your company safe and secure, but your technology is holding you back. Why not upgrade to Hyperproof? Hyperproof is a platform that not only eliminates the manual tasks you dread, but helps you scale security. Get a demo...2023-09-2007 min
The Other Side Of The FirewallAsk A CISSP | Kayne McGladreyThis week on Ask A CISSP, we have an interview with Kayne McGladrey, Field CISO at Hyperproof. In this very entertaining episode, we'll learn Kayne's amazing cybersecurity "origin story" and discuss the need for more diversity of culture and thought within cybersecurity. We'll also go into upcoming Federal and State policy and how he and his team have developed the tools necessary to keep up with the future of Governance, Risk, and Compliance. Don't miss out! Please LISTEN 🎧 LIKE 👍🏿 and SHARE ❤️ Thanks!ABOUT KAYNE MCGLADREYThe modern...2023-09-1458 minInfoSec ProsJoe Evangelisto on being a CISOIn Hyperproof’s newest live streaming series, leaders in information security will shed light on crucial topics that shape the modern cybersecurity landscape.
We’ll kick things off with Joseph Evangelisto, CISO at Tango Analytics, and our host, Kayne McGladrey, Field CISO at Hyperproof. Kayne will interview and chat with Joe as he shares insight from his personal experiences such as:
- The comparison of the days of an SMB CISO and the days of CISOs in larger businesses
- Retaining your InfoSec workforce and vendors
- How you can maintain a proper work-life balance
- Limiting your personal liab...2023-09-0731 minDrafting ComplianceHow to do Personnel Security for FedRAMPKayne and Tom talk about personnel security, background checks, what FedRAMP requires for onboarding and terminating employees as well as a host of tips and tricks for meeting this control family. Of course, they also try a new beer and maybe, just maybe, agree on the score.2023-09-0720 minKayne's News in ReviewTop News in Cybersecurity for September, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for September, 2023 in under five minutes.2023-09-0604 min
TechCrunch Startup NewsHyperproof, a compliance and risk management startup, raises $40MHyperproof, a software-as-a-service risk and compliance management company, today announced that it raised $40 million in a funding round led by Riverwood Capital with participation from Toba Capital, an early-stage VC firm. Learn more about your ad choices. Visit podcastchoices.com/adchoices2023-09-0107 minDrafting ComplianceHow to do Media Protection for FedRAMPKayne and Tom talk about Media Protection while sipping a new pale ale. Learn the challenges of removable media, both digital and non-digital, along with a few tips and tricks for getting started with your Media Protection journey.2023-08-2617 minCyber Security HeadlinesWeek in Review: Health hackers evolve, generative AI cyberattacks, NK spooks drillsLink to blog post This week’s Cyber Security Headlines – Week in Review, is hosted by Rich Stroffolino with guest Gerald Auger Ph.D., Chief Content Creator, Simply Cyber Thanks to our show sponsor, HyperProof Is your company scaling? Do you need to quickly add more compliance frameworks but don’t know where to start? Hyperproof has you covered. Hyperproof is a risk and compliance management platform that can help you manage compliance at scale. With Hyperproof, you can quickly add new frameworks, crosswalk controls between frameworks, view your risk posture, and manage...2023-08-2531 minDrafting ComplianceFedRAMP Costs with Guest Jacob BerryKayne, Tom, and special guest Jacob Berry (Field CISO at Clumio) talk about the challenges in pursuing FedRAMP. Costs, hidden challenges and go-to market are rounded out with two drinkable, but not memorable, non-alchoholic beers. Listen for the knowledge, stay for the beer ratings.2023-08-1736 min
Category VisionariesCraig Unger, CEO and Founder of Hyperproof: Over $22 Million Raised to Pioneer the Compliance Operations categoryIn today's episode of Category Visionaries, we speak with Craig Unger, CEO and Founder of Hyperproof, a security assurance and compliance operations platform that's raised over $22 Million in funding, about the central role of security in developing critical cloud services, and how a trust deficit can derail even the most promising plans for the future. Hyperproof is fully committed to helping companies keep the promises they make to their clients, creating an entirely new business application that makes it easy to gather and re-use evidence, set reminders to complete compliance tasks, and automate tedious manual tasks, all with a...2023-08-0821 minCategory VisionariesCraig Unger, CEO and Founder of Hyperproof: Over $22 Million Raised to Pioneer the Compliance Operations categoryIn today's episode of Category Visionaries, we speak with Craig Unger, CEO and Founder of Hyperproof, a security assurance and compliance operations platform that's raised over $22 Million in funding, about the central role of security in developing critical cloud services, and how a trust deficit can derail even the most promising plans for the future. Hyperproof is fully committed to helping companies keep the promises they make to their clients, creating an entirely new business application that makes it easy to gather and re-use evidence, set reminders to complete compliance tasks, and automate tedious manual tasks, all with a...2023-08-0821 minKayne's News in ReviewTop News in Cybersecurity for August, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for August, 2023 in under five minutes.2023-08-0304 minDrafting ComplianceFedRAMP Authorization with CISO Mark HouptKayne, Tom, and special guest CISO Mark Houpt talk about a GSA rules change that affected Mark’s prior FedRAMP certification, the consequences, and his ultimate solutions and lessons learned from the experience.2023-07-2723 minDrafting ComplianceIdentification and Authentication for FedRAMPKayne and Tom talk about the domain under FedRAMP moderate, providing both an overview of the domain as well as specific examples of controls, and real-world scenarios for the use of those controls.
They also come close to agreeing about “Color Cloud Pink”, a Berliner Weisse with “Pink Guava, Dragon Fruit, and Passion Fruit” by Equilibrium Brewery of Middletown, New York.2023-07-1324 minKayne's News in ReviewTop News in Cybersecurity for July, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for July, 2023 in under five minutes.2023-07-0404 minDrafting ComplianceHow to do Contingency Planning for FedRAMPKayne and Tom talk about the Contingency Planning domain under FedRAMP moderate, comparing it against the best practice of Business Continuity Planning, and providing specific guidance for key elements of a successful contingency plan. They also find what amounts to near common ground on this episodes beer tasting, Laughing Lab Scottish Ale.2023-06-2920 minDrafting ComplianceWhat about the Maintenance Domain Under FedRAMP?Kayne and Tom talk about the Maintenance domain under FedRAMP moderate, including how it is related to the Configuration Management domain. They also nearly agree on Rogue’s Hazelnut Brown Nectar, although Kayne still likens it to old hotel coffee while Tom will drink a free one.2023-06-1516 minKayne's News in ReviewTop News in Cybersecurity for June, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for June, 2023 in under five minutes.2023-06-0204 minDrafting ComplianceHow to do a FedRAMP Security Assessment and AuthorizationKayne and Tom talk about the requirements of continuous compliance under the Security Assessment and Authorization family of controls, including key considerations for continuous monitoring and reauthorization. During the episode, they explore yet another fruit-forward beer, Deschutes’ Farmstand Fresh Mango IPA.2023-06-0119 minDrafting ComplianceFedRAMP Supply Chain ChallengesKayne and Tom talk about recent challenges caused by two vendors in our software supply chain not achieving FedRAMP Moderate in 2023. While discussing their path forward, they sample the New Belgium Voodoo Ranger Juice Force IPA.2023-05-1814 minDrafting ComplianceHow to do Configuration Management in FedRAMPKayne and Tom talk about the major pillars of Configuration Management. While digging into inventory management, baseline configurations, configuration drift, and risk, they tackle Bell’s Two Hearted American IPA.2023-05-0515 minKayne's News in ReviewTop News in Cybersecurity for May, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for May, 2023 in under five minutes.2023-05-0404 minDrafting CompliancePhysical and Environmental Protection under FedRAMPKayne and Tom uncover the different approach to the Physical and Environmental controls, with a discussion of all-cloud, on prem and hybrid scenarios. Of course, they tackle a new beer as well, maybe Kayne will like this one, and maybe Tom will not… I think you already know!2023-04-2013 minDrafting ComplianceSecurity Awareness Training Deserves a Good Beer!Kayne and Tom talk about the joys of security awareness training, managing training, and the different types of security and privacy training you should consider, and as always, beer. This episode’s beer is Sierra Nevada Hazy Little Thing IPA.2023-04-0620 minKayne's News in ReviewTop News in Cybersecurity for April, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he talks about the top five cybersecurity news stories to know for April, 2023 in under five minutes.2023-04-0504 minDrafting ComplianceFedRAMP and Beer: April First SpecialKayne and Tom tackle the interesting nuances of both beer and FedRAMP. Does a beer consumed by CISOs need to also be FedRAMP compliant? Come find out.2023-04-0105 minDrafting ComplianceWhat Is the FedRAMP Incident Response Control Family?In this episode, Kayne and Tom talk about the nuances of the Incident Response family of FedRAMP controls, some of the required documentation, testing, and beer. This episode’s beer is Woods Boss Brewing Company’s Pulaski Pecan Brown Ale.2023-03-2317 minDrafting ComplianceThe FedRAMP Access Control FamilyKayne and Tom discuss FedRAMP's access control family, language that must be in the access control policy, wireless access control for SaaS companies, and how to prevent creating a paper tiger. Includes beer tasting notes for Epic Brewery's Hopulent.2023-03-0921 minKayne's News in ReviewTop News in Cybersecurity for March, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he recaps last month's top five cybersecurity news stories in under five minutes for March, 2023.2023-03-0204 minDrafting ComplianceHow to do a FedRAMP Gap AnalysisKayne and Tom dive into where to begin in your FedRAMP gap analysis. They discuss the efficiencies that Hyperproof found in order to save time, and suggest other approaches. Includes beer tasting notes for Oliphant's Super Squishy.2023-02-2318 min
Tech TransformedHyperproof: The Truth Behind Automating Compliance ControlsAutomating compliance controls refers to the use of technology to manage and monitor compliance with regulations and laws. The purpose of automating compliance controls is to ensure that organizations meet their obligations in a consistent and efficient manner, while reducing the risk of non-compliance.Automating these controls can provide significant benefits to organizations. It can help to reduce the risk of non-compliance, increase efficiency and consistency, and save time and resources. However, it’s essential that automation should not be seen as a replacement for human oversight.In this episode of the...2023-02-1620 min
ISACA Podcast2023: The Year of Risk A review of the events of 2022 shows that 2023 will not be the year of dire new cyber attacks waged by hoodie-wearing cyber criminals or office-bound nation-state APTs. Instead, 2023 will be when multiple regulatory bodies express their mounting frustration with public and private companies' collective inability to reduce the volume and impact of prior cyber attacks.
Tune into this ISACA Episode as Hyperproof’s Field CISO, Kayne McGladrey, speaks with ISACA’s Jeff Champion on how 2023 will be the year of risk.
Learn more about Hyperproof at:
https://twitter.com/Hyperproof
https://www.linkedi...2023-02-1442 minDrafting ComplianceHow to Define the FedRAMP Authorization BoundaryHosts Kayne and Tom talk about how to create the Authorization Boundary, a cornerstone of the System Security Plan (SSP) as part of FedRAMP certification. Includes beer tasting notes for Black Butte Porter.2023-02-0918 minKayne's News in ReviewTop News in Cybersecurity for February, 2023Join Hyperproof's Field CISO, Kayne McGladrey, as he recaps last month's top five cybersecurity news stories in under five minutes for February, 2023.2023-02-0404 minDrafting ComplianceWhat IS FedRAMP?Join Hyperproof hosts Kayne McGladrey, CISSP, Field CISO, and Thomas Wilcox, CISSP, Sr. Director of Security and Compliance, as they discuss the intent and overall roadmap to achieve FedRAMP compliance in a year. Includes beer tasting notes for Anchor Steam.2023-01-2617 min
The Revenue Growth Architects124 - A Discussion on Mental Health in B2B Marketing with Courtney Chatteron, Content Marketing Specialist at HyperproofOur mental health plays a huge role in how we show up for work. Work is a big part of our lives, so with the wrong environment, heightened expectations, or lack of boundaries we set for ourselves, we can find ourselves dealing with mental health problems or triggering a mental health issue we already have. Add on the heightened expectations, fear, and anxiety that comes from the outside world today - it is no wonder that many folks are struggling.But how do we know if ourselves or others we work with need help? What are the...2022-08-2249 min
Built in Seattle with Adam SchoenfeldCraig Unger (Hyperproof CEO) on how to bring rigor to startup founding, market selection, and hiringOn this episode of The Built in Seattle Podcast, I talked with Craig Unger, Founder and CEO at Hyperproof (hyperproof.io).For extras from this interview, subscribe to my weekly emailEpisode Highlights:Hyperproof raised $5.8M early on and pilled up customer logos almost overnight. They made it look fast + easy from the outside.It turns out it was hard…Craig had the idea marinating for 15 years.He did 50+ customer interviews before writing a line of codeAnd 100+ interviews before hiring a head of sales.And that was after 20 years at Mi...2020-08-1341 min