Jeffrey Wheatman - Podcast Details

Shows

Risk and Reels: A Cybersecurity PodcastSystemic Cyber Risk: A CISO’s Impossible TaskIn this episode, Jeffrey Wheatman sits down with Paul Guckian, former BISO at Lloyd’s of London and author of Systemic Cyber Resilience: Why CISOs Can’t Fix Cybersecurity. They unpack why the traditional security model is broken, how systemic risk is the real enemy, and why putting the weight of an entire ecosystem on a single CISO sets everyone up for failure. From resilient thinking to lessons from fire safety and finance, Paul brings an academic lens—and a pragmatic mindset—to a critical conversation.Link to Paul’s book.2025-06-0443 min

Risk and Reels: A Cybersecurity PodcastPhishing for Truth: Fixing the Flaws in Security AwarenessJeffrey Wheatman sits down with Cary Johnson, founder of Phishbusters Audit and Consulting, to expose the failures of traditional phishing simulations. They discuss why standard metrics fall short, how self-assessment distorts results, and what it really takes to track — and influence — behavioral change in security awareness programs.2025-05-2831 min

Risk and Reels: A Cybersecurity PodcastThe Accidental CISOIn this episode of Risk & Reels, Jeffrey Wheatman sits down with RJ Friedman, CEO of Dayone Cyber, to talk frameworks, risk, and leadership. RJ shares how his start in sales shaped his approach as a CISO, why CIS 18 remains his go-to, and how mapping frameworks to business goals makes all the difference. It's a sharp, honest look at what makes cybersecurity leadership actually work.2025-05-2135 min

Risk and Reels: A Cybersecurity PodcastA Story of Limited ResourcesIn this episode of Risk & Reels, Jeffrey Wheatman sits down with Craig Taylor, CEO of CyberHoot, to talk about how small businesses are navigating the evolving world of cybersecurity compliance—especially the demanding standards of CMMC. From Apollo 13-style ingenuity to the unintended consequences of regulation, Craig shares a 30-year perspective rooted in psychology, education, and operational realism. Tune in for a conversation that covers limited resources, positive reinforcement, and why now is the time to prepare.2025-05-0732 min

Risk and Reels: A Cybersecurity PodcastFrom Homicide to Hackers: Fixing Cybersecurity’s Broken ModelIn this episode, Jeffrey Wheatman sits down with Carter Schoenberg, Chief Security Officer at Soundway Consulting and author of Why Cybersecurity Fails in America. From his unexpected transition from homicide detective to cybersecurity leader, Carter shares hard-earned insights into the failures of our current cyber risk models—and how to fix them. They dive into cybercriminal collaboration, the stagnation of HR and hiring practices, and why security leaders need to learn to “speak CFO.”2025-04-2334 min

Risk and Reels: A Cybersecurity PodcastThis Isn't the Wolf of Wall Street: Recruitment, RewiredRichie Lampani—self-proclaimed Chief Recruiter Dude—joins Jeffrey Wheatman to talk about the real state of hiring today. From music industry war stories to navigating post-pandemic expectations, Richie drops insights on transparency, mentorship, and why the “perfect candidate” is a myth. Candid, sharp, and unexpectedly hilarious.2025-04-1636 min

Risk and Reels: A Cybersecurity PodcastI Robbed a Bank with a Solar EclipseJayson Street, Chief Adversarial Officer at Secure Yeti, returns to Risk and Reels for a no-holds-barred conversation on hacking human nature, creating teachable moments, and why kindness matters in cybersecurity. From robbing banks during celestial events to sneaky USB exploits involving hearing aids, Jayson shares stories that are as outrageous as they are enlightening. Plus: the power of the pause, avoiding blame culture, and how code words like “rutabaga” can save your family from scams.2025-04-0941 min

Risk and Reels: A Cybersecurity PodcastA Confluence of Errors and a Little Help From FriendsIn this episode of Risk & Reels, host Jeffrey Wheatman sits down with Ed Gaudet, CEO and founder of Censinet, for an insightful conversation about entrepreneurship, product innovation, and the evolution of cybersecurity in healthcare. Ed shares the winding path that led him to founding Censinet, why listening to customers is a game-changer, and how authentic leadership and human connection have shaped his journey. The two also geek out over company origin stories in film—think Tucker, BlackBerry, and of course, Jobs. With lessons on vision, leverage, and not losing sight of the people you serve, this episode is a mu...2025-04-0232 min

Risk and Reels: A Cybersecurity PodcastCyber Truths, Intelligence Myths, and Life after the NSAIn this episode of Risk and Reels, host Jeffrey Wheatman welcomes security veteran and former NSA executive Don Boian for a wide-ranging conversation on intelligence, cybersecurity, and life on both sides of the public-private divide. Don reflects on his 30-year NSA career, shares myths about intelligence agencies, and explains how AI is shifting the balance for defenders. He also dives into his work as an expert witness, his boardroom insights, and how introverts can thrive in public speaking and leadership roles. It’s a blend of wisdom, war stories, and actionable advice for anyone in or entering the cybersecurity wo...2025-03-2633 min

Risk and Reels: A Cybersecurity PodcastEvery Day is a Risk DecisionIn this episode of Risk and Reels, host Jeffrey Wheatman sits down with seasoned cybersecurity leader Kimberly Trapani to discuss the evolving role of the CISO. With over 30 years in security, Kimberly shares insights from her career, emphasizing the importance of bridging the gap between business and technology. Drawing inspiration from Apollo 13, likening a CISO’s role to mission control, she highlights navigating unexpected challenges with agility and confidence and shifting from a compliance-driven security program to a more integrated, business-resilient approach.2025-03-1929 min

Risk and Reels: A Cybersecurity PodcastSilent Risk - How Do We Figure Out What We Don't Know?In this episode of Risk and Reels, Jeffrey Wheatman (interviewing himself!) dives into the concept of the 'silent breach'—cybersecurity exposures that organizations don’t realize exist until it’s too late. He explores real-world examples of major supply chain vulnerabilities and the challenges of visibility in today’s digital ecosystem. Wheatman also discusses how organizations can improve risk assessment and response strategies to mitigate the cascading effects of hidden threats.2025-03-1213 min

Nerds That Talk GoodBlockbusters, Breaches, & Bad Decisions with Jeffrey WheatmanEpisode Summary: Jeffrey Wheatman, a cyber risk leader, strategist, storyteller, and former VP at Gartner, joins me to talk about bridging the gap between security, risk, and business leadership. Jeffrey shares his non-traditional path into cybersecurity—from retail management to pen testing—and how he discovered that his true strength wasn’t just in doing security, but in […]2025-03-0335 min

Risk and Reels: A Cybersecurity PodcastTelling YOUR Story Within Your OrganizationIn this episode (throwback to Black Hat 2024), Jeffrey talks to Munish Walther-Puri, Adjunct Fellow at NYU Center for Global Affairs. Jeffrey and Munish discuss exploring real-life challenges through fantasy and science fiction movies, allowing us to think through the more "uncomfortable" topics in a comfortable space. Have you heard of a "pirate unicorn?" Doubtful. Listen to episode 80 to find out. 2025-02-2627 min

Risk and Reels: A Cybersecurity PodcastThe Concerning Impact of Cybersecurity on National SecurityIn this episode, Jeffrey talks to Dr. David Bray, PhD, who shares his extensive background in cybersecurity, national security and technology in the public sector. The conversation explores the accurate portrayal of cybersecurity in movies, the challenges of supply chain security, and the importance of deep hardware interrogation to ensure the integrity of technology. Dr. Bray emphasizes the need for proactive measures in cybersecurity and the significance of understanding the perception of reality in the context of social engineering and national security. They also dig into the evolving landscape of cybersecurity, focusing on the c...2025-02-1936 min

Risk and Reels: A Cybersecurity PodcastMeet an Attorney Who Keeps CISOs Out of Legal Hot WaterIn this episode, Jeffrey talks to Steven Teppler, a partner at Mandelbaum Barrett and the lead of the firm's Privacy and Cybersecurity practice group. Steve is an ISACA-certified Certified Data Privacy Solutions Engineer (CDPSE) and the firm's chief cybersecurity legal officer. They discuss sci-fi movies and the intersection of cybersecurity and law — focusing on the evolving role of Chief Information Security Officers (CISOs) and the legal implications they face. They also explore the increasing legal exposure for CISOs, the complexities of downstream liability and the importance of defensibility in cybersecurity practices.2025-02-1231 min

Risk and Reels: A Cybersecurity PodcastAddressing Cybersecurity’s Education and Engagement ChallengesIn this episode, Jeffrey talks to Lisa Plaggemier, Executive Director of the National Cybersecurity Alliance. They discuss their favorite movie-based educators, the importance of cybersecurity awareness, the challenges in measuring its effectiveness and the need for engaging educational content. 2025-02-0526 min

Risk and Reels: A Cybersecurity PodcastFresh Perspectives from a Future Cybersecurity LeaderCybersecurity veterans see the industry through the lens of experience. But how do those visions align with the outlooks of up-and-coming cybersecurity pros? In this episode, Jeffrey talks to Nick Crabb, a senior at Florida Gulf Coast University majoring in computer information systems, focusing on cybersecurity. They discuss their favorite college movies, Nick's educational journey, the challenges of entering the field and AI's impact on future job prospects. 2025-01-2925 min

Risk and Reels: A Cybersecurity PodcastWhat the Trump Administration Could Mean for CybersecurityIn this episode, Jeffrey talks to Merritt Baer, CISO and advisory board member for Reco. Merritt also advises private businesses like Expanso, Andesite, Enkrypt AI and Level 6 Cybersecurity. She has a background in cybersecurity within the U.S. government and spent five years at AWS. Jeffrey and Merritt discuss their favorite fictitious world leaders, how the Trump administration may impact cybersecurity and the importance of public/private partnerships.2025-01-2237 min

Risk and Reels: A Cybersecurity PodcastEverything is an Endpoint — and Other Zero Trust InsightIn this episode, Jeffrey talks to Jessica Dapelo, a zero trust expert and founder of Jessica Dapelo Enterprises, a consulting firm specializing in cybersecurity guidance for public sector organizations and agencies. They discuss movies about the convergence of two worlds, the importance of understanding zero trust as a proactive cybersecurity methodology, the implications of ethical AI on data privacy and the need for organizations to be aware of their data storage and access permissions. 2025-01-1526 min

Risk and Reels: A Cybersecurity PodcastWe Really Need to Shake S*** Up in Cybersecurity Research and InsightIn this episode, Jeffrey speaks with cybersecurity marketing extraordinaire Dani Woolf, co-founder of CyberSynapse and CEO/host of the Audience 1st podcast. They discuss movies where the main character rocks the status quo, the unique challenges of marketing in the cybersecurity space, the shortcomings of traditional analyst models and the importance of direct customer engagement. The conversation also touches on the necessity of collaboration within the cybersecurity community and the common pitfalls smaller vendors face when trying to penetrate the enterprise market.2025-01-0831 min

Risk and Reels: A Cybersecurity PodcastYes, CISOs Should Be Ethical — But Maybe We Stop Lying To ThemIn this episode, Jeffrey talks to Robert “RSnake” Hansen, Managing Director at Grossman Ventures. He’s also a computer hacker, executive and entrepreneur. He’s most well-known for his security research and disclosures such as Slowloris, Clickjacking, Fierce DNS enumeration tool and others. RSnake produces a wide range of security content including The RSnake Report newsletter, a podcast called The RSnake Show and a book entitled AI’s Best Friend. Jeffrey and Robert discuss movies where a main character struggles with an ethical dilemma, the temptations for CISOs to act unethically and how companies should support CISOs to minimiz...2024-12-1846 min

Risk and Reels: A Cybersecurity PodcastTurtles All the Way Down — Looking for Third-Party Risk in DORAIn this episode, Jeffrey Wheatman talks to Sandra Saliba, TPP Governance Manager at APS Bank. Jeffrey and Sandra dig into the Digital Operational Resilience Act (DORA), the implications of DORA for financial institutions, and the importance of managing third-party risk in the face of increasing cyber threats. 2024-12-1132 min

Risk and Reels: A Cybersecurity PodcastEnough With the Cybersecurity Gatekeeping — Be a Genuine MentorIn this episode, Jeffrey talks with Dave Ruiz — aka “CyberDAve” — cybersecurity leader for the Public Works Commission in Fayetteville, North Carolina. Dave is an Army veteran with over 20 years of experience in information assurance and security, governance risk and compliance and IT/OT Security. And he plays a mean guitar. Jeffrey and Dave discuss movies in which a mentor/mentee relationship is critical to the plot, how gatekeeping is detrimental to the future of cybersecurity and why genuine mentorship is so important to move the industry forward. 2024-12-0432 min

Story SamuraiJeffrey Wheatman | Nov 27, 2024Jeffrey Wheatman shares his journey into cybersecurity, discussing the evolution of third-party risk management and the importance of continuous monitoring. He emphasizes the human factors in security, the challenges of point-in-time assessments, and the need for effective communication and collaboration in managing vendor risks. Wheatman also highlights the significance of governance and accountability in cybersecurity, offering valuable advice for CISOs and security leaders. ★ Support this podcast on Patreon ★ 2024-11-2837 min

Risk and Reels: A Cybersecurity PodcastHey, Cybersecurity Pros: Complexity is the Enemy of ExecutionIn this episode, Jeffrey talks to Edgar Jones, co-founder of Luminated in Thought — aka L.I.T. — an organization specializing in individual and group coaching for professionals. Edgar uses his background and lessons learned as a former NFL player to help professionals take on overwhelming situations and determine a clear path to breaking through complexity. He and Jeffrey discuss movies where a character exhibits leadership traits, navigating conflict via communication skills and how the best leaders are those who make connections — and how it all relates to cybersecurity.2024-11-2731 min

Risk and Reels: A Cybersecurity PodcastNavigating Bias — Cybersecurity’s Crooked MirrorIn this episode, Jeffrey talks to Dr. Dustin Sachs, Chief Technologist and Sr. Director of Programs at the CyberRisk Collaborative. They discuss movies in which a main character’s misunderstanding of a situation creates chaos, then dive into Dustin’s extensive scholarly research on bias and explore its impact on making sound cybersecurity decisions. 2024-11-2033 min

Risk and Reels: A Cybersecurity PodcastHelping CISOs Communicate Their Way To Positive OutcomesIn this episode, Jeffrey talks to Rock Lambros, founder and CEO of RockCyber. Along with coaching CISOs and serving as a vCISO, Rock is also a published thought leader, co-authoring the book, “The CISO Evolution: Business Knowledge for Cybersecurity Executives.” Rock and Jeffrey talk about “little fish in a big pond” movies, the evolving landscape of cybersecurity for SMBs, transitioning from management to leadership in cybersecurity and the need for effective communication and collaboration between cybersecurity and operational teams.2024-11-1330 min

Risk and Reels: A Cybersecurity PodcastThe Art of Throwing the (Calculated) Cybersecurity Hail MaryIn this episode, Jeffrey talks to Mel Reyes, CEO of Elite Technical Concierge. Mel’s background is deep, with expertise in helping organizations build successful security programs with limited resources. He also heads a nonprofit organization, Fellowship of Digital Guardians that seeks to elevate awareness of IT, cybersecurity and compliance domains among individuals and organizations. Jeffrey and Mel discuss movies with unlikely heroes, the need for speed and agility in defense strategies and why innovative — and sometimes risky — ideas are critical to cybersecurity success.2024-11-0633 min

Risk and Reels: A Cybersecurity PodcastWhat the Military’s “Elegant and Brutal” Model Can Teach Us About CybersecurityIn this episode, Jeffrey talks to Cindy Seipert, an InfoSec GRC analyst at Health Catalyst. They discuss movies that challenge our identity, Cindy’s unique career path from the military to the tech industry and her experiences as a woman in cybersecurity.2024-10-3030 min

Risk and Reels: A Cybersecurity PodcastYou’ve Got To Be Audacious To SucceedIn this episode, Jeffrey talks with Keren de Via, Go-to-Market Director at Cyturus Technologies. Keren has a deep cybersecurity background and was the first female Combat Communications and Cyber Defense Officer in the Israel Defense Forces. They discuss movies where a character experiences a perspective-shifting transformation, Keren’s transition from military to civilian life and the importance of overcoming imposter syndrome.2024-10-2330 min

Risk and Reels: A Cybersecurity PodcastWhat Better Time Than Now? (And Other Considerations for Aspiring Security Professionals)In this episode, Jeffrey talks to Tanara Burke-Lloyd, SOC Analyst at Littler, the largest global employment and labor law practice. They discuss “fish out of water” movies, her inspiring journey into cybersecurity and the importance of mentorship, documentation and understanding the actual problems in cybersecurity. 2024-10-1628 min

Risk and Reels: A Cybersecurity PodcastWhy “Always Be Collaborating” Should Overshadow “Always Be Closing” in Security SalesIn this episode, Jeffrey talks to entrepreneur and four-time CISO Demetrios Lazarikos — aka Laz. Laz is the founder and IT security consultant of Blue Lava Consulting. They discuss why security salespeople should look for ways to solve problems instead of focusing solely on closing and how CISOs can better communicate to a wider audience. 2024-10-0927 min

Risk and Reels: A Cybersecurity PodcastHow CISOs Manage Risk AcceptanceIn this episode, Jeffrey talks to Evelin Biro, a CISO advisor and cybersecurity expert. They discuss movies where a character goes through a significant life change, the role risk acceptance plays for CISOs and the difficult disconnect between regulatory requirements and business expectations. 2024-10-0229 min

Risk and Reels: A Cybersecurity PodcastAppSec Ain’t Easy — But it Doesn’t Have to be ImpossibleIn this episode, Jeffrey talks to Pete Chestna, Checkmarx's CISO of the Americas. They discuss movies in which a character feels threatened by the introduction of a new character, why successful AppSec requires better security/developer symbiosis and how CISOs take on the myriad challenges they face.2024-09-2530 min

Risk and Reels: A Cybersecurity PodcastBuilding Business Resilience in the Face of RiskIn this episode, Jeffrey talks to Sara Ricci, an accomplished consultant and executive with a proven track record in global leadership roles, specializing in building new capabilities and enhancing organizational resilience. Jeffrey and Sara discuss movies with characters who exhibit great strength in the face of risk, the difference between resilience and business continuity and the need for collaboration and communication across different teams and levels of an organization.2024-09-1829 min

Risk and Reels: A Cybersecurity PodcastCalculating the Cost of Cyber RiskIn this episode, Jeffrey talks to veteran CISO and cybersecurity practitioner Jason Taule. Jason has worked with Booz Allen, General Dynamics, HITRUST and others. Today, he serves as a virtual CISO for various clients. Jeffrey and Jason discuss movies that highlight character transitions, approaches to risk conversations and the cost calculations of cyber risk.2024-09-0432 min

Risk and Reels: A Cybersecurity PodcastHow Security Advisors Support Sales — Without Actually SellingIn this episode, Jeffrey talks to Helen Patton, cybersecurity advisor at Cisco. They discuss movies where the main character undergoes a career change, the challenges of being a cybersecurity advisor and maintaining your reputation as an independent thinker when working for a large company. 2024-08-2829 min

Future of Threat IntelligenceBlack Kite’s Jeffrey Wheatman on How Cybersecurity Is Not A Technical Problem But A Business Problem (Black Hat Edition)In our latest special episode of the Future of Threat Intelligence podcast, recorded at the Black Hat conference, we caught up with Jeffrey Wheatman, SVP, Cyber Risk Strategist at Black Kite. Jeffrey highlights the importance of aligning cybersecurity strategies with business objectives and understanding risk appetite. He emphasizes the need for scenario planning to help decision-makers visualize potential risks and their impacts. Jeffrey also discusses the evolving landscape of cyber risk quantification, highlighting how improved communication of technology value can facilitate better business decisions. Topics discussed: Understanding risk appetite is cruc...2024-08-2810 min

Risk and Reels: A Cybersecurity PodcastAn Uncommon Cybersecurity Question: What Makes Your Soul Sing?In this episode, Jeffrey talks with Dom Vogel, founder of Vogel Leadership & Coaching, where he helps cybersecurity executives to be the best leaders possible. Jeffrey and Dom discuss their favorite tear-jerkers, the power of empathetic leadership and “epic friend-building.” 2024-08-2128 min

Risk and Reels: A Cybersecurity PodcastWanna Tackle Third-Party Risk? Collaborate, Collaborate, Collaborate!In this episode, Jeffrey talks to Richard Stiennon, Chief Research Analyst at IT-Harvest. They discuss their favorite buddy movies, the art of collaboration with vendors and third parties and how CISOs and their teams can work with partners across the supply chain.2024-07-3131 min

Risk and Reels: A Cybersecurity PodcastYou Can't Ease off the Security Gas Pedal — Especially in HealthcareIn this episode, Jeffrey talks to Adam Moore, Head of Global Cloud Solutions for Elekta. They discuss movies that look forward and backward, security threats — including AI — to healthcare data and why you can never say “we’re good” with your security posture.2024-07-2428 min

Risk and Reels: A Cybersecurity PodcastCISOs Need to Tell Good Stories and the Right Allies to Help Tell ThemIn this episode, Jeffrey is joined by Matthew Webster, founder, CEO and CISO for Cyvergence. Jeffrey and Matthew discuss movies where miscommunication impacts a character, the importance of CISOs communicating the business impact of cybersecurity and finding allies to help them do it. 2024-07-1730 min

Risk and Reels: A Cybersecurity PodcastThird Party Risk Management Doesn’t Stop When the Contract is ExecutedIn this episode, Jeffrey talks to Melissa Mellen, Head of Third Party Risk Management for the Federal Reserve Bank of New York. They discuss movies that have unforeseen plot twists and the myriad challenges related to addressing third party risk management in cybersecurity. 2024-07-1031 min

Risk and Reels: A Cybersecurity PodcastAn Honest Look at Diversity and Inclusion in the Security IndustryIn this episode, Jeffrey talks to Octavia Howell, CISO at Equifax. Jeffrey and Octavia discuss movies that have done a good job at implementing diversity in storylines and characters, the isolation that women and people of color can feel at security events and what can be done to make the industry more inclusive.2024-07-0325 min

Risk and Reels: A Cybersecurity PodcastIf You’re Not Leading With Empathy, Are You Really Leading?In this episode, Jeffrey talks with Tammy Klotz, CISO of Trinseo. Recorded at the recent Gartner Security & Risk Management Summit, they discuss their favorite low-budget movies, lessons from Tammy’s book, “Leading with Empathy and Grace” and how the manufacturing industry has embraced cybersecurity in recent years. 2024-06-1223 min

Risk and Reels: A Cybersecurity PodcastThe Trials and Tribulations of a Virtual CISO and Startup AdvisorIn this episode, Jeffrey talks to Tony Gonzalez, a former CTO, CIO and CISO in sectors such as biotech, pharma, specialty chemicals, finance and insurance. Today, Tony offers startup advisory and virtual CISO services. Jeffrey and Tony talk about movies where the main character unsuccessfully retires, the interesting nature of being a virtual CISO and how Tony assists startups.2024-06-0530 min

Risk and Reels: A Cybersecurity PodcastGetting the Cybersecurity Budget you Need Doesn't Just HappenIn this episode, Jeffrey talks with Ira Winkler, CISO for CYE. They discuss their favorite low-budget movies and strategies for convincing decision-makers to approve the cybersecurity budgets necessary to comprehensively address risk. 2024-05-2931 min

Risk and Reels: A Cybersecurity PodcastThe Risk & Reels Mix Tape — Some of our Favorite GuestsFrom time to time, it’s fun to look back and share snippets from some of our best conversations on the podcast. In this episode, you’ll hear cool insight from Ang Brown, Team Leader at TCS Security, Dave Mahdi, CIO of Transmit Security and Anna Belak, Director of the Office of Cybersecurity Strategy of Sysdig. There’s lots of movie talk and exciting insight into career journeys, the importance of standards and being able to communicate with diverse audiences.2024-05-2233 min

Risk and Reels: A Cybersecurity PodcastFrom Outsider to Cybersecurity Insider — Leaning into the Power of TransitionsIn this episode, Jeffrey talks to Mariana Padilla, co-founder and CEO of HACKERVERSE. Jeffrey and Mariana discuss movies (and TV shows) where the main character goes through a significant transition, Mariana’s journey from marketing to the security industry and the integration of AI and security solutions.2024-05-1530 min

Risk and Reels: A Cybersecurity PodcastAre You Really You? The Fascinating World of Identity Access ManagementIn this episode, Jeffrey talks to Rick Patterson, CISO at CLEAR. They discuss movies about mistaken identities, the challenges and future of identity access management and a bizarre identity swap case from Rick’s time in the Secret Service.2024-05-0829 min

Risk and Reels: A Cybersecurity PodcastWant to be a Successful CISO? Know Your AudienceIn this episode, Jeffrey talks to Marcos Marrero, CISO at H.I.G. Capital. Jeffrey and Marcos discuss their favorite music-themed movies, how CISOs must move at the same speed as the business and the importance of being a master communicator.2024-05-0131 min

Risk and Reels: A Cybersecurity PodcastThere’s No Excuse to Ignore Supply Chain Cyber RiskIn this episode, Jeffrey talks to JC Dodson, former CSO for BAE Systems and the founder of global risk, resilience, and response advisory firm JCarl Group. Jeffrey and JC discuss movies where characters are confronted with new and challenging situations, the evolution of supply chain security and the critical nature of presenting cyber risks as a business concern.2024-04-2431 min

Risk and Reels: A Cybersecurity PodcastThe Intersection of OT and ICS SecurityIn this episode, Jeffrey talks to Mike Holcomb, Fellow of Cybersecurity and the ICS/OT Cybersecurity Global Lead for Fluor — one of the world's largest construction and engineering firms. Jeffrey and Mike discuss movies highlighting the clash of two worlds and the convergence of operational technology (OT) security and industrial control systems (ICS) security.2024-04-1038 min

Risk and Reels: A Cybersecurity PodcastThe Art of Managing — and Communicating — Third-party Security RisksIn this episode, Jeffrey talks to Phillip Addison, manager of third-party cyber risk management for The Hershey Company. Jeffrey and Phillip discuss buddy movies, key players in maintaining a secure ecosystem and tips for communicating third-party cyber risk to the C-Suite.2024-04-0331 min

Risk and Reels: A Cybersecurity PodcastWhat Makes a Great Modern CISO?In this episode, Jeffrey talks to Joe Head, a CISO coach and mentor with Intaso. They discuss “fish out of water” movies, the challenges related to being a CISO and advice for aspiring CISOs.2024-03-1336 min

Risk and Reels: A Cybersecurity PodcastPearls of Wisdom from a ‘Been There, Done That’ CISOIn this episode, Jeffrey talks to six-time CISO — and respected security thought leader — Jim Routh. They cover movies where miscommunication plays a major role in the plot, the scrutiny CISOs are under and the importance of crisis communication training. 2024-03-0640 min

Risk and Reels: A Cybersecurity PodcastThe Ins and Outs of Fractional CISOsIn this episode, Jeffrey speaks to Carlota Sage, founder and CEO of Pocket CISO, to discuss obscure movies with Elvis characters, the emergence of Fractional CISOs and the unique security challenges she’s solving for SMB clients. 2024-02-2836 min

Risk and Reels: A Cybersecurity PodcastThe Funniest — or “Least Boring” — Man in CybersecurityIn this episode, Jeffrey talks to Keyaan Williams, Founder and CEO of Cyber Leadership and Strategy Solutions on his affinity for “The Long Kiss Goodnight,” his inspiration for becoming a cybersecurity professional and why he coins himself “The Funniest Man in Cybersecurity.”2024-02-2138 min

Risk and Reels: A Cybersecurity PodcastHave Your CISO's BackIn this episode Jeffrey speaks with David Anderson, vice president of cyber at Woodruff Sawyer to discuss why he dislikes heist movies, his love for romantic comedies, and how the cyber insurance business works. 2024-02-1440 min

Risk and Reels: A Cybersecurity PodcastThe Unpredictable Career Trajectory of a Cyber ProfessionalSteve Magowan, CISO and CISSP and Jeffrey Wheatman talk about their favorite movies with a small world and how to build a career in cyber security. 2024-02-0734 min

Risk and Reels: A Cybersecurity PodcastHow to Make Businesses Care about SecurityDr. Anna Belak, director, office of cybersecurity at Sydig and Black Kite's Jeffrey Wheatman discuss how to make security a business priority. 2024-01-3136 min

Risk and Reels: A Cybersecurity PodcastFinding your PathAng Brown from TCM Security and Jeffrey Wheatman talk career paths and finding security. 2024-01-2442 min

Fireside Chat with Cyber, Tech & Privacy Leaders across industriesFireside Chat w/Jeffrey Wheatman, SVP & Cyber Risk Evangelist @ Black KiteThis month the Fireside Chat community is thrilled to welcome Jeffrey Wheatman as our guest! Join us live on Wednesday, January 17th at 8:00 EST as we delve into Jeffrey’s remarkable journey in the industry. Don’t miss out on this opportunity to hear his incredible origin story. See you there! #thoughtleadership #firesidechat #cyberrisk #originstory #cybersecurity #defcon Moderators: Katie Hanahan, Tomás Maldonado, Lisa Beth Lentini Walker, Russell Eubanks, David Cass, Vijay Bala, Hussein Syed, Larry Whiteside Jr., Octavia N. Howell, CISSP, GSLC, Stephen GarciaThe post Fireside Chat w/Jeffrey Wheatman, SVP & Cyber...2024-01-181h 23

Risk and Reels: A Cybersecurity PodcastPositivity, Privacy, and PressureDebbie Reynolds the Data Diva and Founder for Debbie Reynolds Consulting, and Jeffrey Wheatman talk about privacy in our modern world. 2024-01-1737 min

Risk and Reels: A Cybersecurity PodcastThe Unlikely HeroJason Ozin, CISO for PIB Group joins Jeffrey Wheatman, SVP Security Evangelist for Black Kite to discuss unlikely heroes and the role of the CISO.2024-01-1041 min

Scale to Zero - No Security Questions Left UnansweredThird-Party Risk Across Business Realms with Jeffrey Wheatman | Ep21 S2 | ScaletoZero PodcastThis episode of the Scale to Zero Podcast is an absolute game-changer! We have the brilliant Jeffrey Wheatman, who is dropping some serious knowledge bombs on third-party risk management. Protecting your organization has never been more crucial, but it doesn't have to be complicated. Jeffrey will guide you through the ins and outs, providing valuable insights on mitigating risks and maximizing value. 💼 Get ready to explore the world of risk and discover how it can impact your business. 01:08 Introduction 08:30 What is a third-party risk? 12:09 Do fintech startups need to pay attention to third-party risk management. 14:00 A security questionnaire is not...2023-12-1350 min

Breaking Into CybersecurityBreaking into Cybersecurity Leadership - Jeffrey WheatmanBreaking into Cybersecurity Leadership - Jeffrey WheatmanJeffrey Wheatman on LinkedIn - https://www.linkedin.com/in/jnwheatman/Sponsored by CPF Coaching LLC - http://cpf-coaching.comThe Breaking into Cybersecurity: It’s a conversation about what they did before, why did they pivot into cyber, what the process was they went through Breaking Into Cybersecurity, how they keep up, and advice/tips/tricks along the way.The Breaking into Cybersecurity Leadership Series is an additional series focused on cybersecurity leadership and he...2023-11-2827 min

Risk and Reels: A Cybersecurity PodcastHeists, Fraud and Cons; Oh My!During this Podcast Jonathan Care, Advisor at Lionfish and former Gartner Analysts, talks scams, cons and frauds and why they still work. 2023-11-1537 min

CyberWire DailyJeffrey Wheatman: Sometimes you just need to open the raincoat. [Career Notes]Jeffrey Wheatman, Cyber Risk Evangelist, from Black Kite joins to share his amazing story. As a strategic thought leader with extensive expertise in cybersecurity, Jeffrey Wheatman is regarded foremost as an expert in guiding public sector clients and Fortune 500 companies in connection with their cyber risk management programs. In his current role as Cyber Risk Evangelist at Black Kite, Jeffrey works to get the message out about the business impact of third-party risk and solutions to treat those risks. Jeffrey shared his career, along with is passion for cyber by explaining some of the roles he did moving up...2023-11-0510 min

Career NotesJeffrey Wheatman: Sometimes you just need to open the raincoat.Jeffrey Wheatman, Cyber Risk Evangelist, from Black Kite joins to share his amazing story. As a strategic thought leader with extensive expertise in cybersecurity, Jeffrey Wheatman is regarded foremost as an expert in guiding public sector clients and Fortune 500 companies in connection with their cyber risk management programs. In his current role as Cyber Risk Evangelist at Black Kite, Jeffrey works to get the message out about the business impact of third-party risk and solutions to treat those risks. Jeffrey shared his career, along with is passion for cyber by explaining some of the roles he did moving up...2023-11-0510 min

Risk and Reels: A Cybersecurity PodcastCan You See the Real Threats? | S2 Ep. 9 with Patrick GarrityPatrick Garrity talks about the real threats, prioritizing vulnerabilities and movies where someone thinks they know what is going on and is wrong. 2023-11-0134 min

Risk and Reels: A Cybersecurity PodcastTackling Risk | S2 Ep. 8 with Tomás MaldonadoJoin us as Tomas Maldonado, CISO for the NFL and Jeffrey Wheatman, Black Kite Cyber Risk Evangelist discuss the best sports movies, the challenges of securing a league of disparate teams and collaboration for better security. 2023-10-2533 min

Risk and Reels: A Cybersecurity PodcastBuilding a Successful Security Program from Scratch | S2 Ep. 7 with George Al-KouraDuring this episode George Al-Koura, CISO at Ruby and co-host of the Bare Knuckles & Brass Tacks podcasts shares his insights on building security programs from scratch. 2023-10-1839 min

Risk and Reels: A Cybersecurity PodcastThe Overlap of Physical Security into Digital | S2 Ep. 6 with Angela DoganMeet Dr. Angela Dogan, the Associate Director for IT Cloud Computing at Kyndryl. Join us to talk about the Halloween movies, twists and turns, physical security, the evolution of physical security, cyber risk/posture, and the move to the cloud. 2023-10-1035 min

Risk and Reels: A Cybersecurity PodcastSecurity Operations: Learning what works | S2 Ep. 5 with Anton ChuvakinMeet today's guest: Dr. Anton Chuvakin, an advisor at the Office of the CISO of Google Cloud. Join us to chat about sci-fi movies, technology predictions, security operations, solving security problems, three lines of defense, AI and using the cloud. 2023-10-0237 min

Risk and Reels: A Cybersecurity PodcastSecurity Architecture and what the structure entails | S2 Ep. 4 with Evgeniy KharamJeffrey Wheatman is joined in this episode by Evgeniy Kharam, a fellow Cyber Evangelist! Today we are discussing learning from your mistakes, Avatar, CGI, New Zealand, firewalls, and security architecture. 2023-09-2543 min

Risk and Reels: A Cybersecurity PodcastWhy open standards matter for streamlined cybersecurity | S2 Ep. 3 with David MahdiThis week we have Jeffrey's old friend and colleague: Dave Mahdi, the current CIO (Chief Identity Officer) for Transmit Security. Join us to chat about movies (Natalie Portman's first film!), Ted Lasso, good guys vs. bad guys, and why standards (and open standards) matter in the world of cybersecurity when prioritizing risk resilience. 2023-09-1842 min

Risk and Reels: A Cybersecurity PodcastPrioritizing cybersecurity in the world of CISO burnout | S2 Ep. 2 with Rob BlackIn this episode, join Jeffrey and Rob Black, CISSP, the founder and CEO of Fractional CISO. Buckle up to talk about Stephen King, Barbenheimer, and the main topic of CISO burnout/stress and how to combat it in our new cyber environment while still prioritizing security leadership. 2023-09-1143 min

Risk and Reels: A Cybersecurity PodcastCybersecurity in the realm of Higher Education around the world | S2 Ep. 1 with Luqman KondethWelcome to SEASON TWO of Risk and Reels! Get ready to talk about Indian film festivals, Abu Dhabi, cyber security within higher education (with an emphasis on third party cyber risk), and plenty of side stories. In episode one, Jeffrey Wheatman brings his good friend and colleague Luqman Kondeth to the show. He is the Director of Campus Technology Security Services for NYU Abu Dhabi. 2023-09-0537 min

Risk and Reels: A Cybersecurity PodcastThe Bright Future of Public/Private Partnership in Cybersecurity | SEASON 1 FINALE Ep. 17 with Bailey BickleyTrue crime, storytelling, Big Fish, the partnership between private sector and public sector, the new White House cybersecurity policy, power of strong minds in one room, resilience and redundancy, threat actors worldwide, and supply chain risk and security. We are thrilled to share this episode with special guest, Bailey Bickley, the Chief DIB Defense at the NSA. 2023-05-3035 min

Risk and Reels: A Cybersecurity PodcastFrom the Military to IT and Cybersecurity | Ep. 16 with Lewis HeuermannCharlie and the chocolate factory, Tom Hanks, the Military, culture shifts, precision, training, accountability, the why for the what. Join Jeffrey Wheatman and Lewis Heuermann (current Cyber Risk Management leader at Booz Allen Hamilton) as they discuss what it looks like to move from a life in the service to a post-military role in cybersecurity, as well as stories and moments along the way. 2023-05-2242 min

Risk and Reels: A Cybersecurity PodcastCybersecurity in Higher Education – over the years and today | Ep. 14 with Gretchen Ruck80s movies, Animal House, cyber in higher education, university CISOs, managing student data, healthcare within universities, compliance requirements, HECVAT, Educause, Today's episode features Gretchen Ruck, Senior Managing Director of Cybersecurity & Privacy at Ankura. 2023-05-0836 min

Risk and Reels: A Cybersecurity PodcastThe People of Cyber: Diversity, Education and Empowerment | Ep. 13 with Juliana VidaThe Admiral, A Christmas Story, new policies, the New White House Cybersecurity Policy, information security importance, DEI, diversity in cyber, government training, empowering the people, poker, hiring, and zero trust. Welcome Juliana Vida to today's episode - she currently runs strategy for Public Sector at Splunk. 2023-05-0147 min

Risk and Reels: A Cybersecurity PodcastHow to use cybersecurity tools properly to meet regulations | Ep. 12 with Larry WhitesideCrafty hackers, super-smart villains, speaking the business language, GRC tools, risk and regulatory correlations, reg ops, being compliant, meeting regulations, and why vendors can't solve all your problems. This episode, features Larry Whiteside, the current CISO at RegScale and long-time friend of Jeffrey Wheatman. 2023-04-2441 min

Risk and Reels: A Cybersecurity PodcastBuilding a third-party risk program from the ground up | Ep. 11 with Tom GarrubbaSPECIAL double-time episode. Hear from Tom Garrubba, the Director of Third-Party Risk Management Services at Echelon Risk + Cyber and he talks through the journey of building a third party risk management program at CVS Caremark (plus everything after and in-between.) Plus, as always, movies (JAWS), Saturday night theater showings, Franco, and Schwarzenegger. 2023-04-171h 11

Leveraging Thought LeadershipSimplifying Complex Ideas Using Thought Leadership | Jeffrey Wheatman | 483Cyber risk and cyber security are very important, and the field is filled with experts. So how can thought leadership elevate your work in a way that connects with a larger audience? Today our guest is Jeffrey Wheatman, Cyber Risk Evangelist for Black Kite, a company that is disrupting traditional third party risk management practices worldwide by providing cyber security experts with greater visibility. While the topics that Jeffrey talks about are of the utmost importance, many people just don’t have the technical knowledge to understand the details - and risks. Jeffrey explains that through thou...2023-04-1319 min

Risk and Reels: A Cybersecurity PodcastThreat Modeling in STRIDE, the basis for cybersecurity. | Ep. 10 with Matt StamperForrest Gump, threat modeling, animal farm, application weaknesses, business impact analyses, resilience, accountability, and stride. Tune into the latest episode to hear from Matt Stamper, the CEO of Executive Advisors Group.2023-04-1038 min

Risk and Reels: A Cybersecurity PodcastProductive risk processes = *truly* reducing risk. How has TPRM shifted? | Ep. 9 with Bob MaleyStar Wars, Star Trek, third party risk management, fallen heroes, best practices, triaging risk, cyber posture, the cloud, vendor access, productive risk process, and truly managing risk. How has third party risk management changed in the last 20 years? How should it be changing to promote better processes? Join Jeffrey Wheatman and Bob Maley, CSO of Black Kite, for this exciting discussion. 2023-04-0333 min

Risk and Reels: A Cybersecurity PodcastTalking with the former Director of Cybersecurity Coordination for the U.S. Dept. of Homeland Security | Ep. 8 with Mike BrownJeffrey speaks with the former Director of Cybersecurity Coordination for the U.S. Dept. of Homeland Security, Mike Brown, about strategic, tactical, and operational cybersecurity. 2023-03-2741 min

Risk and Reels: A Cybersecurity PodcastWith a plethora of emerging AI, where does the cybersecurity industry stand? | Ep. 7 with Eric CowperthwaiteMusicals, emerging AI, and understanding the risk within your third-party ecosystem. Our guest this week is Eric Cowperthwaite, COO at Threathunter.ai by Milton Security. 2023-03-2046 min

Risk and Reels: A Cybersecurity PodcastManaging the risk you quantify is half the battle | Ep. 6 with David ElferingBlack and white films, photography, risk quantification, FAIR, (ROI), the business case for risk, risk scenarios, sea monsters, and PII. Our guest this week is David Elfering, Sr. VP and Sr. Cybersecurity Specialist at Marsh.2023-03-1330 min

Risk and Reels: A Cybersecurity PodcastIt’s the dog that caught the car - how can security programs properly mature? | Ep. 5 with Dave LewisJohn wick, curiosity, organizational changes over time, security debt, risk appetite, chatGPT, dogs running around, and taking security seriously. Join Jeffrey Wheatman and Dave Lewis, (Global Advisory CISO at Cisco), as they discuss what it means for security teams to mature and address accepted risks that need to be revisited. As security is taken more seriously overall, leaders must adjust programs to complement that. 2023-03-0639 min

Risk and Reels: A Cybersecurity PodcastPeople can't find jobs. Jobs can't find people. Hey cyber, what gives? | Ep. 5 with Debra WheatmanCyber job market, movie soundtracks, Jack White, lack of talent, ghosting, journaling achievements and staying honest. “What we've got here is failure to communicate.” Look at the disconnect between hiring managers and their applicants in the tech world and beyond with Jeffrey Wheatman and Debra Wheatman. Listen to Episode 5 now. 2023-02-2736 min

Risk and Reels: A Cybersecurity PodcastThe anatomy of the 2023 Black Kite Third Party Breach Report | Ep. 4 with Ferhat DikbiyikThird party attacks, common ways hackers target companies, Turkish movies, outsmarting the bad guys, and the trajectory of 2023 data breaches. Listen to episode four as Jeffrey Wheatman and the Head of Research at Black Kite, Ferhat Dikbiyik discuss the latest Third Party Data Breach report (and its astonishing findings).2023-02-2035 min

Risk and Reels: A Cybersecurity Podcast“We’ve always done it that way.” Why we *shouldn’t.* | Ep. 3 with Patti Titus 2023-02-1336 min

Risk and Reels: A Cybersecurity PodcastSecurity starts with people. Process requires purpose. | Ep. 2 with Brian ReedPeople, process, tools, tech, Ocean’s Eleven, movie remakes, and a recession. Security is people-centric, and tools cannot exist independently. Learn why we must humanize our problems first. Tune into episode 2 with Jeffrey Wheatman and guest Brian Reed (Senior Director of Cybersecurity Strategy at Proofpoint).2023-02-1335 min