Shows
Kopi-O with CISOS04E01: Why Should Boards and CEOs Care about Ransomware Resilience?In this new season 4, I am running a series, "Boards and CEOs Ransomware Resilience"—where I talk about ransomware resilience at leadership levels, but not from the technical angle. This series is for board members, CEOs, and senior leaders who know that cybersecurity is no longer just an IT issue—it’s a business survival issue.---My weekly newsletter: https://sivanathan.substack.com---My new book (available on Amazon): Leadership in the Age of AI: A Handbook of Daily Cybersecurity Leadership Nuggets2025-05-0606 minKopi-O with CISOS03E03: Inside BNM's 2024 Risk Management in Technology (RMiT) Exposure DraftGrab a cup of kopi-o!
In this episode of Kopi-O with CISO, I am diving deep into Bank Negara Malaysia’s recently released Exposure Draft on Risk Management in Technology (RMiT ED). This draft sets the tone for how financial institutions, from banks to e-money operators, should approach technology risks in an era of escalating cyber threats, fraud, and innovation.
Join me as I break down the key objectives of the ED—resilience, customer protection, and responsible innovation—and what they mean for technology risk management, cybersecurity, and the future of finance in Malaysia.
I’ll...2024-11-2729 minKopi-O with CISOS0302: Cyber Security in Malaysia's Healthcare Sector with Ramana Ramakrishna (KPJ Healthcare)Grab a cup of kopi-o!Join Ramana Ramakrishna and me as we explore the critical cyber security landscape in Malaysia's healthcare sector. Ramana, the GM of IT Operations with KPJ Healthcare Bhd, one of the leading private hospital chains, shares frontline insights on tackling cyber threats, enhancing resilience, and navigating policy challenges to safeguard patient data in an increasingly digital healthcare environment. Tune in to gain essential perspectives on cyber hygiene, AI use in healthcare, AI-powered cyber security and future-proofing healthcare cyber security strategies.#KopiOwithCISO #CISO #cybersecurity #infosec #healthcare2024-08-0553 minKopi-O with CISOS0301: Beyond the Perimeter - Extended Cyber Risk Management with Terence CheongGrab a cup of kopi-o!
In this brand new season of 'Kopi-O with CISO' Podcast, join me and my special guest Terence Cheong from BitSight as we delve into the world of third-party cyber risk management and cyber supply chain risk management.
We'll explore the latest strategies for securing extended digital ecosystems, how to effectively manage and mitigate risks associated with external attack surfaces and discuss the importance of Software Bill of Materials (SBOM).
Tune in to gain interesting insights from Terence on strengthening...2024-05-2646 minKopi-O with CISOS02E10: Scanning Public Websites: Ethical & Legal Dilemmas (with Tevanraj & Firdaus)Grab a cup of kopi-o!
In this episode of Kopi-O with CISO, I am joined by Tevanraj Elengoe and Firdaus Juhari to delve into the complex world of cybersecurity in Malaysia, particularly focusing on the ethical and legal considerations of scanning public web platforms for security vulnerabilities.
Together, we unpack the intricacies of detecting security flaws in an effort to "voluntarily and ethically" enhance digital safety of public websites. Through candid conversations, we explore the fine balance between proactive security measures and respecting legal boundaries, all while navigating the unique challenges and regulations faced within...2024-03-1246 minKopi-O with CISOS0209: Unlocking the True Value of Cybersecurity with Prateek Bhajanka, Field CISO of SentinelOneGrab a cup of kopi-o!
Join me in the latest episode of "Kopi-O with CISO" to dive into the depths of cybersecurity strategy with Prateek, the field CISO from SentinelOne.
With a history that includes stints at Gartner, Qualys, and Deloitte, Prateek brings a treasure trove of experience to the table. We'll cut through the noise to uncover the truths behind cybersecurity investments, explore the critical importance of regular health checks for your security systems, and challenge the common myths that might be holding your security posture back.
From aligning security objectives with...2024-01-3046 minKopi-O with CISOS02E08: Unpacking Malaysia's New Cyber Security Bill with Murugason R. ThangaratnamGrab a cup of kopi-o!
In this final episode of 'Kopi-O with CISO' for this year, Murugason and I delve into the intricacies of Malaysia's long-awaited Cyber Security Bill. Join us as we explore the pivotal components of this crucial legislation and understand what makes it stand out. We discuss the reasons behind its delay and compare Malaysia's progress with that of its neighboring countries in the realm of cyber security.
Our conversation begins on a positive note as we highlight the strengths of the Bill, shedding light on how it could significantly enhance Malaysia's...2023-12-1843 minKopi-O with CISOS02E07: AI-Powered Cyber Security - Real Deal or Marketing Fluff with Han TherGrab a cup of Kopi-O!
Join Han Ther L., the APAC CTO of Ridge Security and me on 'Kopi-O with CISO' Podcast as we explore the dynamic world of AI in cybersecurity. This episode delves into the evolution of AI in the field, the benefits and challenges it brings, and the future trends in AI-powered cybersecurity.
Key highlights of the episode:
AI's Evolution and Impact in Cybersecurity:
Uncover how AI has transformed cybersecurity practices, enhancing technologies and services, particularly in predictive analytics.
Challenges and Real-World Applications: Address the limitations of AI...2023-12-0434 minKopi-O with CISOS02E06: Running a Local Cyber Security Community Chapter with Zhon TeckIn this episode of Kopi-O with CISO, I sit down with Zhon Teck, the President of the ISC2 Malaysia Chapter, to dive deep into the evolution of cyber security communities in Malaysia. With a rich background in cyber security, Zhon shares his personal journey in the field, discussing how he ventured into this domain and his current role in shaping the future of ISC2 local chapter.
Zhon, in his leadership role, sheds light on what it means to lead a community like the ISC2 Malaysia chapter and how this platform is helping cyber security...2023-11-2140 minKopi-O with CISOS02E05: Adapting to Change - How SOCs Stay Relevant in a Rapidly Evolving World with Hon Fun PingWelcome to another episode of 'Kopi-O with CISO,' where I spill the beans on all things cyber security!
In this episode, Hon Fun Ping and I explore the transformative
journey of Security Operations Centers (SOCs) as they adapt to a rapidly evolving threat landscape and technological advancements. With a growing focus on AI, integrated systems, and agile methodologies, SOCs are taking on new dimensions in risk management and security operations. Join us in a comprehensive discussion with a leading expert in the field to delve into how modern SOCs are leveraging technology and...2023-11-0138 minKopi-O with CISOCyber Security Awareness: From Weak Links to Strong Allies with Raj KumarWelcome to a very special episode of Kopi-O with CISO Podcast. This episode is not just another addition to my series; it's a tribute to Cyber Security Awareness Month, celebrated every October.
My esteemed guest is Raj Kumar, a pioneer in the field of cyber security awareness in Malaysia. With a career spanning nearly two decades, Raj has been instrumental in shaping the
landscape of cyber awareness, dating back to his days with CyberSAFE at CyberSecurity Malaysia. Currently, as the CEO of Cyber Intelligence Sdn Bhd, he continues to lead the charge in making...2023-10-0336 minKopi-O with CISOS02E03: Is Cyber Security a Safe Harbor in Tech’s Stormy Seas with Firdaus JuhariIn this riveting episode of "Kopi-O with CISO," I welcome Firdaus Juhari, the Head of Digital Security at Edotco Group, to delve into the current state of the tech industry and explore why cyber security remains a beacon of stability amidst the turmoil.
Episode Highlights:
Meet Firdaus Juhari: Get to know Firdaus as he shares his journey into the world of cybersecurity and outlines his current role at Edotco Group.
The Layoff Landscape:
Firdaus discusses the recent spate of layoffs in big tech companies and its ripple effects across the IT industry.
...2023-09-2045 minKopi-O with CISOS02E02 (National Day Special): Risikan Siber bersama Fadzril Azhar (Cyber Threat Intelligence with Fadzril Azhar)Welcome to a very special episode of the Kopi-O with CISO podcast. In celebration of Independence Day and Malaysia Day, this episode is exclusively recorded in the Malay language.
------------
Dalam episod istimewa ini, sempena sambutan Hari Kebangsaan dan Hari Malaysia, "Kopi-O with CISO" mempersembahkan perbincangan mendalam bersama Fadzril Azhar dalam bahasa kebangsaan. Fadzril adalah seorang tokoh keselamatan siber dengan pengalaman hampir 20 tahun.
Kami akan menjelajah topik riskan siber, memahami keunikan servis risikan siber, serta mendengar wawasan dan pandangan Fadzril mengenai cabaran dan peluang dalam bidang keselamatan siber di Malaysia. Sertailah kami dalam...2023-09-0635 minKopi-O with CISOS02E01: Vulnerability Management with Dr. Ismamuradi (CISO of Bank Muamalat)Grab a cup of kopi-o!
In this episode of Kopi-O with CISO, I am joined by Dr. Ismamuradi Abdul Kadir a distinguished figure in the Malaysian cyber security domain. Our conversation unravels Dr. Isma's captivating journey into the realm of cyber security, from his early beginnings to his present commitments.
Dr. Isma and I delve into why vulnerability management holds such a personal resonance for him and why software and hardware misconfigurations have found a pivotal place in his vulnerability management strategy. As we traverse the conversation further, he sheds light on the tangible benefits...2023-08-2443 minKopi-O with CISOBecoming a CISO with Raja Azrina (CISO of Telekom Malaysia)Grab a cup of kopi-o!
In this episode of Kopi-O with CISO Podcast, Raja Azrina and I dive into the fascinating world of cyber security leadership and explore her unique journey to becoming a Chief Information Security Officer (CISO).
Raja Azrina shares her personal experiences, key decisions, challenges, and milestones that have paved the way to her current role as a CISO and we discuss the integration of the CISO position into existing organizational structures.
We also delve into the transition from a technical hands-on role to a business-oriented CISO position and uncover...2023-08-0845 minKopi-O with CISOThe Future of MSSPs: A Deep Dive into Industry Trends and the Need for Consolidation with Datuk Alan SeeIn this episode of Kopi-O with CISO, Datuk Alan See and I are taking a deep dive into the future of Managed Security Services Providers (MSSPs), the industry trends shaping this landscape, and the growing call for consolidation. Datuk Alan, the Co-founder and CEO of FIRMUS, a leading MSSP, who joins us to shed light on the critical role of these providers in today's complex cyber security environment.
We begin by exploring the fundamentals of MSSPs, their key functions, and the significant challenges they face in delivering effective security services. We then shift focus to the current...2023-07-2757 minKopi-O with CISOMaking Informed Decision with CTI with Abid Adam (Live from CYDES 2023)Grab a cup of kopi-o!
Welcome to a very special episode of the Kopi-O with CISO Podcast. This time, I’m bringing you an insightful conversation recorded live on stage at the CYDES 2023 event, organized by the National Cyber Security Agency (NACSA).
In this episode, I’m joined by the esteemed Abid Adam, the Group Chief Risk & Compliance Officer of Axiata Berhad. With his profound expertise and experience, Abid illuminates the world of Cyber Threat Intelligence (CTI) and its vital role in creating a robust cyber security program.
We explore the concept of CTI...2023-07-1926 minKopi-O with CISOThe MOVEit Transfer Hack: Insights from a Cyber Security Expert with Azril RahimGrab a cup of kopi-o for this bonus episode.
Typically, I release two episodes each month. However, in light of the significant MOVEit hack, I felt compelled to create an additional special episode to thoroughly cover the topic.
In this special episode, Azril Rahim and I deep dive into the aftermath of the recent MOVEit Transfer hack—an incident that has shaken the cyber security landscape. Azril, an experienced Management Consultant with a distinguished background in the cyber security industry, joins us to provide invaluable insights and expertise on the subject.
We begin by...2023-06-2951 minKopi-O with CISOGuarding Malaysia’s Digital Frontier with Kheirulnaim (NACSA)Grab a cup of kopi-o!
In this episode. Khairelnaim and I delve into the intricate world of cyber security. Naim, a seasoned professional from the National Cyber Security Agency (NACSA) in Malaysia, narrates his path to becoming the Head of Incident Response & Cyber Threat Intelligence at National Cyber Coordination & Command Centre (NC4) and provides insight into his daily responsibilities.
We unpack the pivotal role NACSA plays in Malaysia's cyber security landscape, its collaborations with other agencies, and the private sector. Our guest also sheds light on the workings and significance of the NC4 in Malaysia's...2023-06-2148 minKopi-O with CISOThe SOC Debate: Necessity or Irrelevance in Modern Cyber Security with Dr Suresh RamasamyGrab a cup of kopi-o!
In this enlightening episode of 'Kopi-O with CISO', we delve into the fascinating world of Security Operations Centers (SOCs) with our esteemed guest, a seasoned cyber security expert. Our conversation begins with a personal journey into the cyber security field and an introduction to his current role and company.
We then explore the intricacies of SOCs, discussing their primary functions and potential shortcomings in today's dynamic cyber landscape. The episode poses thought-provoking questions about the relevance of traditional SOCs, given the emergence of distributed incident response tools, and discusses
how...2023-06-0533 minKopi-O with CISODecoding ISO 27001: Evolution, Adoption and Future with BenyazwarIn this episode, Benyazwar, the Chief of Security Risk Consulting of Nexagate takes us on a deep dive into the world of ISO 27001. Beny and I explore the differences between ISO 27001 and ISO 27002, and the rationale behind the ISO 27001:2022 update after nearly a decade.
We discuss the transition from the 2013 to the 2022 version of the standard, weigh the differences in both versions for organizations seeking certification, and delve into the role of ISO 27001 in the era of cloud-native businesses, data breaches and cyber-attacks
Our conversation navigates the increasing importance of certifications like ISO 27001 in demonstrating...2023-05-2332 minKopi-O with CISONavigating the Cyber Security Career Landscape with Rodney LeeIn this episode, Rodney and I explore the challenges and opportunities in the rapidly evolving cyber security career landscape. Rodney, an industry expert, shares his insights on the current talent shortage, hiring strategies, and the importance of aligning expectations in the field.
We delve into how to enter the cyber security domain, discussing the role of education, professional courses, certifications, and transferable skills. The conversation also touches on the CISO role, career progression, common hiring mistakes, and resources for networking and mentorship.
Finally, Rodney shares his thoughts on potential improvements in the cyber security career...2023-04-2846 minKopi-O with CISOIntegrating Security into DevOps with TevanrajIn this episode of Kopi-O with CISO Podcast my guest Tevanraj and I dive deep into the world of DevOps and the growing importance of security integration in the software development life cycle. Tevanraj, a DevOps expert, shares his journey into the field and discusses the significance of DevSecOps in modern software development. We explore the "shift left" notion, the impact of dynamic code scans, and the need for developer security training.
Our conversation also addresses the challenge of balancing security with the speed of business, and the importance of risk tolerance levels in application
vulnerability management. 2023-04-0630 min
Kopi-O with CISOManaging National Cyber Risk with Prof JazzIn this episode of Kopi-O with CISO Podcast I sit down with Prof Jazz (also known as Dato’ Husin Jazri), a seasoned cyber security expert with decades of experience in the field and also the founder of CyberSecurity Malaysia. Throughout the episode, Prof Jazz shares his insights on a range of topics related to cyber security, including his journey into the field, his role in championing cyber security at the national level, and his perspectives on the current cyber
security landscape in Malaysia.
In the episode, Prof Jazz also discusses the effectiveness of laws and legislative frameworks in...2023-03-1936 minKopi-O with CISOTrailerHi everyone! I am Sivanathan, a cyber security enthusiast who has served as the CISO for several firms, including the major credit rating agency in Malaysia and in a cyber risk supervisory capacity for the Malaysian Central Bank. Kopi-O with CISO Podcast is where I hope to create a platform for Malaysian cyber security professionals and entrepreneurs to share their insights and experiences with the rest of the world.
This podcast is intended for anyone who is interested in cyber security and how security functions on various platforms.2023-03-0601 min