Look for any podcast host, guest or anyone
Showing episodes and shows of

Steve Winterfeld

Shows

CyberSecurity Summary
CyberSecurity SummaryCybersecurity First Principles: A Reboot of Strategy and TacticsExamines cybersecurity through the lens of first principles, suggesting that organizations should focus on reducing the probability of material impact from cyber events. Authored by Steve Winterfeld and Rick Howard, the text defines core cybersecurity concepts like zero trust, intrusion kill chain prevention, resilience, risk forecasting, and automation, advocating for their strategic implementation. It explores the historical evolution of cybersecurity practices, critiques traditional approaches like perimeter defense, and emphasizes the importance of intelligence sharing and adaptable systems. Ultimately, the book aims to guide security professionals in building robust and effective infosec programs by prioritizing fundamental, impactful strategies over superficial...
2026-02-0930 minSecure & Simple — Podcast for Consultants and vCISOs on Cybersecurity Governance and Compliance
Secure & Simple — Podcast for Consultants and vCISOs on Cybersecurity Governance and ComplianceExploring Cyber Warfare: Risks, Strategies, and Solutions | Interview with Steve WinterfeldIn this episode of the Secure and Simple Podcast, host Dejan Kosutic, CEO of Advisera, welcomes Steve Winterfeld, a seasoned security consultant, fractional CISO, and author of the book 'Cyber Warfare Techniques, Tactics, and Tools for Security Practitioners.' The discussion revolves around the relevance of cyber warfare for companies, the different types of cyber threats, and strategic ways to address them. Steve shares insights on cyber warfare's impact on various sectors, from espionage and sabotage to operational tactics. He emphasizes the importance of risk assessment, the utility of frameworks like the MITRE ATT&CK framework, and approaches to...
2025-11-1853 minAnd Security For All
And Security For AllSOTI Fraud & Abuse Report: Charting a Course Through AI’s Murky WatersIn this episode of And Security For All, guest host Steve Winterfeld, Advisory CISO at Akamai Technologies, teams up with Tricia Howard, Security Evangelist and “Scrybe of Cybersecurity Magicks,” to unpack Akamai’s State of the Internet: Fraud & Abuse Report 2025. They explore how AI-driven bots are reshaping the landscape of digital fraud—surging over 300% in the past year—and what that means for businesses, defenders, and everyday users. From ad fraud and data scraping to compliance challenges and the ethics of AI, this conversation dives deep into the tension between innovation and exploitation in cybersecurity. ...
2025-11-1245 minTalking Innovation with an emphasis on cybersecurity
Talking Innovation with an emphasis on cybersecurity74-Talking Cloud Podcast-with Steve Winterfeld, Advisory & Fractional CISO, Cyber Vigilance Advice (CVA) LLCEpisode #74 features a great discussion with Steve Winterfeld, Advisor, and Fractional CISO with Cyber Vigilance Advice (CVA) LLC. Steve is passionate about cybersecurity. He served as CISO for Nordstrom Bank, Director of Cybersecurity for Nordstrom, and Director of Incident Response and Threat Intelligence at Charles Schwab. Steve also published a book on Cyber Warfare and holds CISSP, ITIL, and PMP certifications. We discussed a variety of topics, and during our conversation, Steve offered these resources: On finding job: Lessons Learned on Finding a Cybersecurity Job After a Layoff - Security Boulevard On starting / managing a career...
2025-04-1446 minAnd Security For All
And Security For AllENCORE: Old Threats, New Tactics: Understanding Today’s Cyberattack LandscapeOn this episode of And Security For All, Steve Winterfeld and Sean Flynn will share research from Akamai’s Defenders' Guide 2025. We are seeing a vast increase in cyberattacks with old threats resurfacing alongside new sophisticated tactics. Tune in to understand the ever-changing threatscape and get insights on practical solutions based on real-life examples we are seeing in the wild.     Steve Winterfeld I have served as CISO for Nordstrom Bank, Director of Cybersecurity for Nordstrom and Director of Incident Response and Threat Intelligence at Charles Schwab. Also have published a book on Cyb...
2025-04-041h 00And Security For All
And Security For AllOld Threats, New Tactics: Understanding Today’s Cyberattack LandscapeOn this episode of And Security For All, Steve Winterfeld and Sean Flynn will share research from Akamai’s Defenders' Guide 2025. We are seeing a vast increase in cyberattacks with old threats resurfacing alongside new sophisticated tactics. Tune in to understand the ever-changing threatscape and get insights on practical solutions based on real-life examples we are seeing in the wild.     Steve Winterfeld I have served as CISO for Nordstrom Bank, Director of Cybersecurity for Nordstrom and Director of Incident Response and Threat Intelligence at Charles Schwab. Also have published a book on C...
2025-03-281h 00And Security For All
And Security For AllENCORE: 2025 Cyber Trends: Expert Forecasts and Action StepsAs we close out 2024, the cybersecurity landscape looms larger than ever. What cyber storms are brewing for 2025? Three cyber leaders from Akamai Technologies give us their predictions and what might happen—and counsel on what we can do about it. We’ll focus on the resurgence of DNS-based attacks, the evolution of DDoS tactics, emerging threats in the quantum and AI domains—and more. Today's Special Guests:                                                                                                  Tricia Howard                                                  Steve Winterfeld                       Mitch Mayne                                                Roger Barranco
2025-03-2156 minPhishing For Answers
Phishing For AnswersSecuring AI and Minds: Steve Winterfeld on Cyber Threats, Behavioral Science, and Building Robust Security CulturesSend us a textOur conversation with Steve Winterfeld unveils critical insights for anyone looking to forge a successful career in cybersecurity. We discuss the importance of strategic planning, building a security culture, and adapting to the rapid evolution of threats, especially phishing and social engineering attacks.• Exploring three career paths in cybersecurity • The importance of strategic career objectives • Carrot versus stick: fostering an inclusive security culture • Evolving threats: phishing beyond email • The role of AI in enhancing and challenging security • Understanding cognitive biases in decision-making • Effective metrics for measuring security a...
2025-02-0550 minAnd Security For All
And Security For All2025 Cyber Trends: Expert Forecasts and Action StepsAs we close out 2024, the cybersecurity landscape looms larger than ever. What cyber storms are brewing for 2025? Three cyber leaders from Akamai Technologies give us their predictions and what might happen—and counsel on what we can do about it. We’ll focus on the resurgence of DNS-based attacks, the evolution of DDoS tactics, emerging threats in the quantum and AI domains—and more. Today's Special Guests:                                                                                                Tricia Howard                                                  Steve Winterfeld                     Mitch Mayne                                                Roger Barranco
2025-01-1756 minAnd Security For All
And Security For AllNow is the Time to Understand Gen AI SecurityJoin Akamai's Steve Winterfeld (Advisory CISO) and Sean Flynn (Director of Security Strategy) as they explore the security risks associated with Gen AI/LLM. They will review the OWASP LLM Top 10 security issues and provide real world case studies of cyber incidents. As reliance on AI systems grows, understanding the potential impact of cybercriminals and hacktivists is essential.
2024-11-1556 minAnd Security For All
And Security For AllDigital Fortresses Under Siege: Application Architecture ThreatsOn this episode of And Security For All, guest host Steve Winterfeld, Advisory CISO at Akamai Technologies has on colleague Mitch Mayne, Director, Threat Intelligence and Cybersecurity Research, to discuss 'Digital Fortresses Under Siege: Threats to Modern Application Architectures'. They will share Akamai's latest threat research and provide an understanding of the potential impacts as companies' drive to digital modernization which is unintentionally expanding their attack surface - making them vulnerable to sophisticated threats such as API abuse and DDoS attacks. This session will also provide actionable insights into the potential impacts of these findings and offer practical recommendations for...
2024-10-1157 minAnd Security For All
And Security For AllTop Discussions at Industry Conferences: RSA and BeyondOn this episode of And Security For All, guests Steve Winterfeld and Sean Flynn will be chatting about the latest hot topics discussed at conferences, including insights from RSA, industry, and regional events. They will be exploring everything from fraud and criminal gang trends to compliance issues and advancements in AI.
2024-06-1456 minCyberWire Daily
CyberWire DailySolarWinds and the SEC.Rick Howard, N2K’s CSO and The CyberWire’s Chief Analyst and Senior Fellow, presents the argument for why the SEC was misguided when it charged the SolarWinds CISO, Tim Brown, with fraud the after the Russian SVR compromised the SolarWinds flagship product, Orion. Our guests are, Steve Winterfeld, Akamai’s Advisory CISO, and Ted Wagner, SAP National Security Services CISO.References:Andrew Goldstein, Josef Ansorge, Matt Nguyen, Robert Deniston, 2024. Fatal Flaws in SEC’s Amended Complaint Against SolarWinds [Analysis]. Crime & Corruption. Anna-Louise Jackson, 2023. Earnings Reports: What Do Quarterly Earnings Tell You? [Explaine...
2024-06-0321 minAnd Security For All
And Security For AllNavigating the SEC's Cyber Materiality Reporting GuidelinesOn this episode of And Security For All, Akamai Technologies Steve Winterfeld and Jason Aguiar have a discussion surrounding the Security and Exchanges new guidance on cyber materiality reporting.
2024-04-0556 minAnd Security For All
And Security For AllExploring the Evolving Compliance Landscape and Potential ImpactsOn this episode of And Security For All, Akamai Technologies Steve Winterfeld and Sean Flynn dive into the dynamic world of compliance and analyzing current trends potential impacts. In 2024, significant shifts are occurring in key frameworks including NIST adding governance to their Incident Response program, credit card rule changes, resiliency and AI laws coming out of the EU and disclosure timelines. Find out how this will change Cybersecurity programs.
2024-01-1957 minCyberWire Daily
CyberWire DailyEncore: Examining the current state of security orchestration. [CyberWire-X]In this encore episode of CyberWire-X, N2K’s CSO, Chief Analyst, and Senior Fellow, Rick Howard, is joined by guest Rohit Dhamankar, Fortra's Vice President of Product Strategy, and Hash Table member Steve Winterfeld, Akamai's Advisory CISO to discuss CISO initiatives such as vendor consolidation, automation, and attack surface management as a way to determine if it’s possible to achieve both increased security maturity and decreased operational load. This session covers common mistakes when adopting security technologies, including the pros and cons of AI, and how to better collaborate together.
2024-01-1532 minSecurity Clearance Careers Podcast
Security Clearance Careers PodcastHow Segmentation Can Protect Your Organization's Network SecurityToday we’re joined by Steve Winterfeld who is the advisory CISO at Akamai Technologies, a cloud computing company. Steve helps Akamai CISO’s solve their most pressing issues and provide insights on security capability roadmaps. In addition to providing thought leadership as the cybersecurity industry transitions to DevOps and combats online attacks, Akamai produced a report: The State of Segmentation 2023.Overcoming deployment obstacles proves to be transformational, and the white paper examines how different companies of varying sizes approach segmentation as part of their overall security strategy.Today we discuss the takeaways.
2023-12-1822 minCyberWire Daily
CyberWire DailyThreat actors with mixed motives: from the political to the financial.OpenAI's continuing turmoil. Crypto firm sustains API attack. Konni campaign phishes with a Russian document as bait. LockBit's third-party compromise of Canadian government personnel data. Ukraine removes senior security officials under suspicion of graft. Dave Bittner sits down with Steve Winterfeld from Akamai to discuss emerging threats in the financial services sector. And Idaho National Laboratory sustains data breach.For links to all of today's stories check out our CyberWire daily news briefing:https://thecyberwire.com/newsletters/daily-briefing/12/222Selected reading.Company that created ChatGPT is...
2023-11-2122 minAnd Security For All
And Security For AllThe High Stakes of InnovationOn this episode of And Security For All, Steve Winterfeld and Sean Flynn discuss Akamai's latest report on The High Stakes of Innovation, Attack Trends in Financial Services. During their conversation they cover attack trends in financial services, the crossroads of innovation and risk, regional shifts in DDoS, and fortifying your defenses with actionable insights.
2023-11-1756 minCyberWire Daily
CyberWire DailyExamining the current state of security orchestration. [CyberWire-X]In this episode of CyberWire-X, N2K’s CSO, Chief Analyst, and Senior Fellow, Rick Howard, is joined by guest Rohit Dhamankar, Fortra's Vice President of Product Strategy, and Hash Table member Steve Winterfeld, Akamai's Advisory CISO to discuss CISO initiatives such as vendor consolidation, automation, and attack surface management as a way to determine if it’s possible to achieve both increased security maturity and decreased operational load. This session covers common mistakes when adopting security technologies, including the pros and cons of AI, and how to better collaborate together. Learn more about your ad c...
2023-11-1632 minSecurity Weekly Podcast Network (Audio)
Security Weekly Podcast Network (Audio)2023 AT&T Cybersecurity Insights Report: Edge Ecosystem - Theresa Lanowitz, Steve Winterfeld - BSW #320Organizations still struggle with DDoS, ransomware, and personal information exfiltration. In order the prevent these attacks, we first need to understand the ‘types’ of DDoS and emerging threat techniques used by the adversary. In this interview, we explore these attacks in the context of edge computing. As edge computing use cases evolve, organizations need to understand the intersection of edge computing, networking, and cybersecurity. We discuss the risks associated with edge computing, the controls that can mitigate these risks, and how to plan for implementation, including security budgeting. Segment Resources: https://www.akamai.com/blog/security/defeating-triple-extortion-ransomware
2023-09-1858 minBusiness Security Weekly (Audio)
Business Security Weekly (Audio)2023 AT&T Cybersecurity Insights Report: Edge Ecosystem - Theresa Lanowitz, Steve Winterfeld - BSW #320Organizations still struggle with DDoS, ransomware, and personal information exfiltration. In order the prevent these attacks, we first need to understand the 'types' of DDoS and emerging threat techniques used by the adversary. In this interview, we explore these attacks in the context of edge computing. As edge computing use cases evolve, organizations need to understand the intersection of edge computing, networking, and cybersecurity. We discuss the risks associated with edge computing, the controls that can mitigate these risks, and how to plan for implementation, including security budgeting. Segment Resources: https://www.akamai.com/blog/security/defeating-triple-extortion-ransomware
2023-09-1858 minBusiness Security Weekly (Video)
Business Security Weekly (Video)2023 AT&T Cybersecurity Insights Report: Edge Ecosystem - Theresa Lanowitz, Steve Winterfeld - BSW #320Organizations still struggle with DDoS, ransomware, and personal information exfiltration. In order the prevent these attacks, we first need to understand the 'types' of DDoS and emerging threat techniques used by the adversary. In this interview, we explore these attacks in the context of edge computing. As edge computing use cases evolve, organizations need to understand the intersection of edge computing, networking, and cybersecurity. We discuss the risks associated with edge computing, the controls that can mitigate these risks, and how to plan for implementation, including security budgeting. Segment Resources: https://www.akamai.com/blog/security/defeating-triple-extortion-ransomware
2023-09-1832 minAnd Security For All
And Security For AllRansomware on the MoveOn this episode of And Security For All, Akamai Technologies' Steve Winterfeld, Advisory CISO, and Sean Flynn, Director, Security Technology and Strategy, discuss a recent report titled 'Ransomware on the Move'. This includes the evolving exploitation techniques and the pursuit of zero days. It will be a great breakdown of how and why ransomware is where it is in 2023.
2023-08-2556 minAnd Security For All
And Security For AllFinding a Job and Managing your CareerOn this episode of And Security For All, host Kim Hakim has Steve Winterfeld, Advisory CISO at Akamai Technologies, on the show. He will be discussing two of his recent publications, 'Creating a Roadmap for Your Dream Cybersecurity Career' and 'Lessons Learned on Finding a Cybersecurity Job After a Layoff'. This is a great episode for those looking to enter the cyber field, those wanting to switch positions, and those who are looking for a job following a lay-off.
2023-08-1156 minAnd Security For All
And Security For AllApps and API SecurityOn this episode of And Security For All, guest host Steve Winterfeld has Sean Flynn on the show to discuss Apps and API Security. They will reference a recent State of the Internet report posted by Akamai regarding Slipping Through the Security Gaps.
2023-07-0757 minAnd Security For All
And Security For AllRecent Reports on DDoS & Large AttacksOn this episode of And Security For All guest host Jonathan Kimmitt, CISO at Alias Cybersecurity, is joined by Steve Winterfeld, Advisory CISO at Alkamai, to discuss the recent reports on #DDoS and other large attacks and threat actors. This is a great talk diving into trends, how we can prevent attacks, and why you should care.
2023-03-2458 minThis Week in Enterprise Tech (Audio)
This Week in Enterprise Tech (Audio)How Akamai Are You About DDoS? - Hospitals violate HIPAA because of Meta Ad-tracking, the evolution of DDoS Health info for 1 million patients stolen using critical GoAnywhere vulnerability ESXi Ransomware Update Outfoxes CISA Recovery Script Comcast gave false map data to FCC—and didn't admit it until Ars got involved Atlassian and Envoy briefly blame each other for the data breach Hospitals Sued for Using Meta's Ad-Tracking Code, Violating HIPAA Steve Winterfeld, Advisory CISO of Akamai talks about the continued evolution of DDoS. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Steve Winterfeld Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TW...
2023-02-181h 07This Week in Enterprise Tech (Video)
This Week in Enterprise Tech (Video)How Akamai Are You About DDoS? - Hospitals violate HIPAA because of Meta Ad-tracking, the evolution of DDoS Health info for 1 million patients stolen using critical GoAnywhere vulnerability ESXi Ransomware Update Outfoxes CISA Recovery Script Comcast gave false map data to FCC—and didn't admit it until Ars got involved Atlassian and Envoy briefly blame each other for the data breach Hospitals Sued for Using Meta's Ad-Tracking Code, Violating HIPAA Steve Winterfeld, Advisory CISO of Akamai talks about the continued evolution of DDoS. Hosts: Louis Maresca, Brian Chee, and Curtis Franklin Guest: Steve Winterfeld Download or subscribe to this show at https://twit.tv/shows/this-week-in-enterprise-tech. Get episodes ad-free with Club TW...
2023-02-181h 07infoseclive
infosecliveThe CISO Experience - Steve Winterfeld🚀 Looking to further your career in cyber security? Confused by all the options....?  This “The CISO Experience” SPECIAL sponsored by Bramfitt Technology Labs is a MUST NOT MISS!   🚀 Simon L hosts Steve Winterfeld in the studio for a session called:   Lessons from my cyber journey  Steve Winterfeld is Akamai Technologies’s Advisory CISO.  Before joining the team, he served as CISO for Nordstrom Bank, Managing Director of IR and TI at Charles Schwab and Senior Technical Director Cybersecurity & Group CTO at Northrop Grumman.    Steve focuses on collaborating with Akamai’s customers to make s...
2022-11-1555 minAnd Security For All
And Security For AllZero Days Should Not be a Fire DrillOn this episode of And Security For All, guest host Steve Winterfeld has Sean Flynn, Director of Security Technology & Strategy at Akamai Technologies, on the show to chat about Zero Days not being a fire drill. On the way to work when you hear there is a new Log4j, solarwinds or wannacry attack / vulnerability sweeping the internet it should not be a crisis. They will talk about lessons learned and effective mitigation strategies until you can patch or reconfigure your network. Listen in as they share best practices and methodologies leveraged to make this a process so the event...
2022-11-0456 minAnd Security For All
And Security For AllDiscussing the Role of a CISOOn this episode of And Security For All, host Kim Hakim has guest Steve Winterfeld on the show to discuss the diverse role of a CISO. This includes what the first 90 days of the position looks like when entering a new role, how to build a SOC team and effectively manage them, and adding structured framework to your evolving career to make the most of it. Steve is an Advisory CISO for Akamai Technologies.
2022-10-2854 minAdam Learns Random Stuff
Adam Learns Random StuffEpisode 11: How to Fail Faster With Steve WinterfeldSteve Winterfeld is a Cybersecurity Expert, both in operations and in building compliance programs. Today we are discussing the growth mindset and how to fail faster. 
2021-11-1530 minYour Cyber Path: How to Get Your Dream Cybersecurity Job
Your Cyber Path: How to Get Your Dream Cybersecurity JobEP 37: Security Operations OverviewSome of the best "entry level" cybersecurity jobs are found in the Security Operations department. In this episode, Kip and Wes will give you a tour with the help of our guest, Steve Winterfeld.  NEW: You can see us (and the slides) on YouTube:  https://www.youtube.com/YourCyberPath  Can playing capture the flag also give you cybersecurity job hunting success on LinkedIn? Yes! Check out our step-by-step guide: https://www.YourCyberPath.com/pdf --- Send in a voice message: https://anchor.fm/yourcyberpath/message
2021-02-051h 16Seamless Podcast with Darin Andersen
Seamless Podcast with Darin AndersenSteve Winterfeld, Advisory CISO at Akamai Technologies | Seamless Podcast: FutureCON CyberSecurity SeriesDarin and Kim are joined by Steve Winterfeld, Advisory CISO for Akamai Technologies. He is currently focused on being the voice of the customer for Akamai's security vision and helping CISOs solve their most pressing issues. Before joining Akamai, he spent over 10 years building security programs as Director of Incident Response and Threat Intelligence at Charles Schwab, Director of Cybersecurity for Nordstrom, and supporting national defense efforts at Northrop Grumman/TASC. Find out more about Akamai by visiting https://www.akamai.com/. 
2020-07-2436 minColorado = Security Podcast
Colorado = Security Podcast169 - 6/22 - James Carder, Steve Winterfeld & Alex Wood roundtableWe’ve got a roundtable discussion with James Carder (CSO at LogRhythm), Steve Winterfeld (Advisory CISO at Akamai) and Alex Wood as our feature interview this week. News from: Boulder AI, Techtonic, Uncharted, PAIRIN, Guild Education, Automox, VirtualArmour, Ping Identity, LogRhythm, Swimlane, Red Canary, and a lot more! Support us on Patreon! Fun swag available - all proceeds will directly support the Colorado = Security infrastructure. Come join us on the new Colorado = Security Slack channel to meet old and new friends. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. If...
2020-06-211h 15Colorado = Security Podcast
Colorado = Security Podcast163 - 5/4 - Erik Huffman, Entrepreneur, Researcher & CyberpsychologistErik Huffman, Entrepreneur, Researcher & Cyberpsychologist is our feature guest this week. News from: Strava, VF Corp, Arrow Electronics, DaVita, Zayo, Anschutz Corp, Liberty Global, Ball Corp, Vail Resorts, Boston Market, National Cybersecurity Center, Manetu, ThreatX, DarkOwl, Swimlane and a lot more! Support us on Patreon! Fun swag available - all proceeds will directly support the Colorado = Security infrastructure. Come join us on the new Colorado = Security Slack channel to meet old and new friends. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. If you have any questions or comments, o...
2020-05-031h 06Colorado = Security Podcast
Colorado = Security Podcast130 - 8/26 - Steve Winterfeld, Security Strategy at AkamaiSteve Winterfeld, Senior Director of Security Strategy at Akamai is our feature interview this week. News from John Hickenlooper, Amazon, Google, Personal Capital, SecureSet, Ping Identity, Coalfire, Webroot, Red Canary and a lot more! Hick throws his hat in the Senate race Hick is in the Senate race. Space Command will be in Colorado. The Colorado housing market is cooling. Google bringing non-profit money to Colorado. Personal Capital is expanding in Denver. Flatiron School acquires SecureSet. Ping Identity named a leader in the latest Gartner Magic Quadrant. Blogs from Coalfire, Webroot and Red Canary. Support us on Patreon! Fun swag a...
2019-08-2551 min