Shows
GRC & Cyber Security PodcastBuilding Organizational Resilience | James GreenIn this episode of the Cyber and Risk Leaders podcast, we're joined by James Green, who does a deep dive into his resiliency Think Tank, how to run better tabletop exercises and all things how to build resiliency in organizations.Follow us on Linkedin:• Matthew Davies - https://www.linkedin.com/in/matthew-daviespm• James Green - https://www.linkedin.com/in/thejamesgreen• SureCloud - https://www.linkedin.com/company/surecloud/#cybersecurity #resilience #grc2024-05-0734 minGRC & Cyber Security PodcastThe Role of Intelligence in CyberSecurity | AJ NashIn this episode of the Cyber and Risk Leaders podcast, SureCloud's Matthew Davies welcomes special guest AJ Nash of ZeroFox about the role of intelligence in cybersecurity. We delve into the challenges of misinformation in the digital age, including the spread of disinformation and erosion of trust in institutions.Join us as we explore the impact of dis/mis/malinformation, the manipulation of social media and what to consider when it comes to news sources.Follow us on Linkedin:· Matthew Davies - https://www.linkedin.com/in/matthew-daviespm· AJ Nash - https://ww...2024-04-1925 min
GRC & Cyber Security PodcastThe Future of Risk Assessments | Tom CorneliusIn this episode, Matt Davies sits down with Tom Cornelius from the SCF and Compliance Forge to dive into the world of risk assessments. Together, they explore the latest developments in risk assessment practices, how recent SEC changes have influenced risk management strategies, and introduce an innovative approach to transform the way you work.In this episode, hear more about the following:Why risk assessment methods are often broken, with teams asking irrelevant questions and lacking executive management involvement.How the SEC has introduced changes that require publicly traded companies to have board oversight of...2024-03-2830 minGRC & Cyber Security PodcastHow CCM Can Level Up Your Compliance | Jodie LashIn the latest SureCloud Cyber & Risk Leaders Podcast, Jodie Lash, a cybersecurity professional, discusses her career journey, the importance of continuous control monitoring (CCM), and the challenges and priorities in the industry. She emphasizes the need for effective security programs, automation in controls assurance, and the role of cybersecurity awareness. Jodie also shares insights on implementing CCM technology, the skills required for information security professionals, and her wish for more time to focus on solving security problems.#governance #risk #compliance #grc #cybersecurity #podcastContact Matthew Davies👉 Matthew's LinkedIn: https://www.linkedin.com/in/matthew-davies/...2024-02-2732 minGRC & Cyber Security Podcast4 Key Steps to Reduce Your Organizational Risk & Budget | Brent DeterdingIn this podcast episode, Brent Deterding, the CISO at Afni, joins Matthew Davies, the VP of Product at SureCloud. They discuss Brent's approach to organizational risk. Brent outlines his four steps for significantly reducing risks within businesses in a manner that is simple, easy, and inexpensive.Contact Brent Deterding👉 Brent's LinkedIn: / brent-deterding 👉 Afni' website: https://afni.com/Contact Matthew Davies👉 Matthew's LinkedIn: / matthew-daviesgrc 👉 SureCloud's Website: https://www.surecloud.com/2024-01-2536 minGRC & Cyber Security PodcastAutomation in Compliance with Michelle Garcia | GRC & Cyber LeadersAs technology rapidly evolves, so does the landscape of compliance. In the latest SureCloud podcast episode, Michelle Garcia, Director of Information Security and Compliance at Carnival Cruise Line, and Matthew Davies of SureCloud discuss on the transformative journey of compliance and the emerging tools reshaping its future. In today's fast-paced tech landscape, why is automation not just an advantage but a must for compliance? And how can businesses best use its power? 2024-01-1033 minGRC & Cyber Security PodcastIdentity & Access Management Best Practices, with Stuart Powell | GRC & Cyber LeadersIn this podcast episode, Stuart Powell, Chief Information Security Officer (CISO) at the Government of Jersey, joins Matthew Davies, VP of Product at SureCloud, to discuss Identity and Access Management (IAM) and how you can improve this in your organization. They also talk about the topic of the moment, Artificial Intelligence (AI), and how it can impact your organization's risk and compliance management.Contact Stuart Powell👉 Stuart's LinkedIn: https://www.linkedin.com/in/stuart-powell-82968812b/👉 Government of Jersey's website: https://www.gov.je/Pages/default.aspxContact Matthew Davies👉 Matthew's LinkedIn: https://www.linke...2023-09-1328 minGRC & Cyber Security Podcast4 Simple, Easy & Budget-Friendly Steps to Reduce Your Organizational Risk, with Brent Deterding | GRC & Cyber LeadersIn this podcast episode, Brent Deterding, the CISO at Afni, joins Matthew Davies, the VP of Product at SureCloud. They discuss Brent's approach to organizational risk. Brent outlines his four steps for significantly reducing risks within businesses in a manner that is simple, easy, and inexpensive.Contact Brent Deterding👉 Brent's LinkedIn: www.linkedin.com/in/brent-deterding/👉 Afni's website:afni.com/Contact Matthew Davies👉 Matthew's LinkedIn: www.linkedin.com/in/matthew-daviesgrc/👉 SureCloud's Website: www.surecloud.com/2023-09-0734 minGRC & Cyber Security PodcastHow Secure is a WordPress Website (2023 Update)? | Cyber Threat BriefingEvery month, our experts Nick, Hugh, and Arron will highlight the current and emerging cyber threats you need to know about right now, giving you great insights to help protect your organization. July's Cyber Threat Briefing covers: 💡 WordPress security. Is it STILL a problem in 2023? 💡 U.S. Cyber Trust Mark - Can mandatory standards really drive security improvement? 🎬 Related Video: Cybersecurity and Wearable Devices | Cyber Threat Briefing ➟ https://youtu.be/HGkw6PuaO14💻 Register for our next episode here: https://www.surecloud.com/resources/webinars/surecloud-live-cyber-threat-briefing👉 Learn more: https://www.surecloud.com/cyb...2023-08-1537 minGRC & Cyber Security PodcastStrategies for Business Continuity & Disaster Recovery, with Alexander Zhitenev, CISO's IFCO | GRC & Cyber LeadersIn this podcast episode, Alexander Zhitenev, CISO at IFCO Systems, joins Matthew Davies, VP of Product at SureCloud, to discuss business continuity and disaster recovery. Alexander emphasizes the significance of implementing suitable safeguards within a business to guarantee its ability to sustain operations in the face of any potential disruptions or disasters.Contact Alexander Zhitenev👉 Alexander's LinkedIn: www.linkedin.com/in/alexanderzhitenev/👉 IFCO SYSTEMS' website: www.ifco.com/Contact Matthew Davies👉 Matthew's LinkedIn: www.linkedin.com/in/matthew-daviesgrc/👉 SureCloud's Website: www.surecloud.com2023-07-2037 minGRC & Cyber Security PodcastMOVEit Breach & CISA Warning for Iphone: Patch Required for Vulnerabilities | Cyber Threat BriefingEvery month, our experts Nick, Hugh and Arron will highlight the current and emerging cyber threats you need to know about right now, giving you great insights to help protect your organization. June's Cyber Threat Briefing covers: 💡 The Worldwide Impact of the MOVEit Breach and the Latest Tactics for Future Prevention💡 CISA Sounds Alarm: iPhone Zero Day & Triangulation Trojans - Urgent Patch Required for Stealthy iMessage Exploit💻 Register for our next episode here: www.surecloud.com/resources/webinars/surecloud-live-cyber-threat-briefing👉 Learn more: www.surecloud.com/cyber-security-services/cybersecurity-as-a-service 👂 Questions? Email: 𝗯𝗿𝗶𝗲𝗳𝗶𝗻𝗴@𝘀𝘂𝗿𝗲𝗰𝗹𝗼𝘂𝗱.𝗰𝗼𝗺👉 Nick Hayes' LinkedIn: www.linkedin.com/in/nickjhayes/👉 Hugh Rayn...2023-07-0631 minGRC & Cyber Security PodcastCybersecurity Leadership: A New Era, with Karla Reffold, COO at Orpheus Cyber | GRC & Cyber LeadersIn this podcast edition, Karla Reffold, award-winning cyber security professional and Chief Operating Officer (COO) at Orpheus Cyber, joins Matthew Davies, VP of Product at SureCloud, to explore the surge of board advisory roles for CISOs in today's cyber landscape. They also discuss her transition from Human Resources (HR) to a COO role, her current activities as a Board Advisor of two cyber-related organizations and a Non-executive Director at Trident Search, as well as her 'Advisory Boards Guide Book'.Contact Karla Reffold👉 Karla Reffold's LinkedIn: https://www.linkedin.com/in/karlareffold/👉 Karla Reffold's website: https://karlare...2023-06-0620 minGRC & Cyber Security PodcastAI in Cybersecurity: Opportunities, Risks, and Changes to Job Roles? | Cyber Threat BriefingEvery month, our experts Nick, Hugh and Arron will highlight the current and emerging cyber threats you need to know about right now, giving you great insights to help protect your organization. May's Cyber Threat Briefing covers:💡 What is meant by 'Artificial Intelligence' (AI)?💡 Where does AI's potential lie in cybersecurity?💡 What cybersecurity risks does AI present?💡 How is AI transforming cybersecurity jobs?2023-05-2331 minGRC & Cyber Security PodcastWhy AI is a Threat to Your Business, with Sam Bisbee, F5's Senior Director & Distinguished Engineer | GRC & Cyber LeadersArtificial Intelligence (AI) has been transforming various industries, and organizations are increasingly incorporating this technology into their operations. In this podcast edition, Sam Bisbee, Senior Director and Distinguished Engineer at F5, joins Matthew Davies, VP of Product at SureCloud, to discuss the dangers of ChatGPT and AI within organizations and how to mitigate those risks. 2023-05-1829 minGRC & Cyber Security PodcastConsumer Protection: US Government vs Tech Firms Disclaimers, with Jim Dempsey, Lecturer & Senior Policy Advisor | GRC & Cyber LeadersIn this podcast edition, James (Jim) Dempsey, Lecturer at UC Berkeley Law School and Senior Policy Advisor at Stanford Cyber Policy Center, joins Matthew Davies, VP of Product at SureCloud, to talk about cybersecurity law, in particular about the new approach announced by the US government, which aims to prevent technology providers from using disclaimers to protect themselves from liability. 2023-04-2748 minGRC & Cyber Security PodcastChatGPT & AI, Malware Traffic and C3X Supply Chain Attack | Cyber Threat BriefingEvery month, our experts Nick, Hugh and Arron will highlight the current and emerging cyber threats you need to know about right now, giving you great insights to help protect your organization. April's Cyber Threat Briefing covers:💡 C3X app compromised by North Korean hackers in a supply chain attack💡 Over 1/10 businesses have malware traffic on their network💡 Does ChatGPT pose a risk to your company?2023-04-2528 minGRC & Cyber Security PodcastTPRM for Securing Healthcare, with Robert Wood, Chief Information Security Officer at CMS | GRC & Cyber LeadersIn this podcast edition, Robert Wood, Chief Information Security Officer (CISO) at Centers for Medicare & Medicaid Services (CMS) and Founder of the Soft Side of Cyber, joins Matthew Davies, VP of Product at SureCloud, to have an in-depth discussion on Third Party Risk Management (TPRM) for healthcare. Additionally, Robert tells about his TPRM-related challenges and how he approaches them.Warning: This podcast episode has background noise in a few spots. 2023-03-3133 minGRC & Cyber Security PodcastMicrosoft OneNote Malware, TPM 2.0 Flaws, The Good & Bad in Cybersecurity | Cyber Threat BriefingEvery month, our experts Nick, Hugh and Arron will highlight the current and emerging cyber threats you need to know about right now, giving you great insights to help protect your organization. March's Cyber Threat Briefing covers:💡 Microsoft OneNote used to spread malware across networks💡 TPM 2.0 flaws leave cryptographic keys vulnerable💡 The line between good and bad in cybersecurity2023-03-2830 minGRC & Cyber Security PodcastEurope under Russian Cyberattack, Reddit Security Incident & GoDaddy Hacked | Cyber Threat BriefingEvery month, our experts Nick, Hugh and Arron will highlight the current and emerging cyber threats you need to know about right now, giving you great insights to help protect your organization. February's Cyber Threat Briefing covers:💡 European infrastructure under cyberattack from Russian hackers💡 Reddit's security "incident". What happened?💡 GoDaddy subject to a multi-year cyberattack campaign2023-03-0643 minGRC & Cyber Security PodcastImplementing Factor Analysis of Information Risk, with Tyler Britton, Cyber Risk Manager at Dropbox | GRC & Cyber LeadersIn this podcast edition, Tyler Britton, Cyber Risk Manager at Dropbox, joins Matthew Davies, VP of Product at SureCloud, to discuss Factor Analysis of Information Risk methodology and how he has embedded it in his organization, Dropbox. He explains his role as a Quantitative Cyber Risk Manager and goes through the challenges and benefits of implementing Factor Analysis of Information Risk (FAIR) methodology in organizations.2023-03-0140 minGRC & Cyber Security PodcastVulnerability Management: What Value Does your Organization Get Running a Solid Program? | CISO's How-ToIn this CISO How To podcast episode, SureCloud's Senior Consultant, Tom Hulme, and Senior Director of Cybersecurity, Nick Hayes, discuss Vulnerability Management (VM). Watch this video to learn more about VM and what value your organization can get running a solid vulnerability management program.2023-02-1717 minGRC & Cyber Security PodcastRed Teaming: What Values Can your Organization Get From It? | CISO's How-ToIn this CISO How To podcast episode, SureCloud's Principal Cybersecurity Consultant Mark Wardlow, Senior Cybersecurity Consultant Steve Velcev and Senior Director of Cybersecurity Nick Hayes discuss Red Teaming. Watch this video to learn more about Red Teaming, the differences between penetration testing and red teaming services, and the stages involved when leveraging red teaming services for your organization.2023-02-0831 minGRC & Cyber Security PodcastLastPass Incident, Slack's GitHub Breach & Biden's Classified Documents | Cyber Threat BriefingEvery month, our experts Hugh and Nick will highlight the current and emerging cyber threats you need to know about right now, giving you great insights to help protect your organization. The first Cyber Threat Briefing of 2023 covers:💡 The LastPass incident update - how secure are password managers?💡 Slack's GitHub breach - what is the value of knowing your attack surface when using cloud-based services?💡 Biden's classified documents - what are the risks, and how can you protect your organization?2023-02-0326 minGRC & Cyber Security PodcastWhat is Zero Trust Strategy and Why Security Awareness Matters, with George Finney, CISO & Author | GRC & Cyber LeadersIn this podcast edition, George Finney CISO, author, speaker, professor, and consultant, joins Matthew Davies, VP of Product at SureCloud, to discuss security awareness and the concept of zero trust, the subject of his bestseller 'Project Zero Trust: A Story about a Strategy for Aligning Security and the Business'. Besides being the author of a bestseller, George wrote several other cybersecurity books, including: 'Well Aware: Mastering the Nine Cybersecurity Habits to Protect Your Future', 'No More Magic Wands: Transformative Cybersecurity Change for Everyone' and more.2023-01-3142 minGRC & Cyber Security PodcastMore Women in Male-dominated Industries, with Jane Frankland, Entrepreneur | GRC & Cyber LeadersIn this podcast edition, Jane Frankland, Entrepreneur, Author, Speaker, and Influencer, joins Matthew Davies, VP of Product at SureCloud, to discuss her role within the tech industry and how this impacts businesses, society, and women's lives.2023-01-1941 minGRC & Cyber Security PodcastAppSec: How Can your Organization Implement Its Own Successful Program? | CISO's How-ToIn this CISO's How-To episode, SureCloud's Principal Security Consultant, Simone Q., and Senior Director of Cybersecurity, Nick Hayes, discuss AppSec (Application Security). Listen to this podcast to learn more about AppSec, DevSecOps (Development, Security, and Operations), shift left testing, what are the differences between them, and how your organization can implement its own AppSec program. 2022-12-0916 minGRC & Cyber Security PodcastWhy do CMMC and SCRM Matter with Katie Arrington - Former CISO at US DOD & Owner of LD Innovations | GRC & Cyber LeadersIn this CISO Interview, Katie Arrington, former CISO at the US Department of Defense (DOD) and Owner of LD Innovations, LLC Cybersecurity, joins Matthew Davies, VP of Product at SureCloud, to discuss the scope of the Cybersecurity Maturity Model Certification (CMMC) program, her creation within the US DOD. Additionally, Katie spoke about Supply Chain Risk Management (SCRM) and how companies should be looking at that. Katie shares great insights on cybersecurity best practices and explains how she handles the many challenges this busy and demanding role involves. 2022-12-011h 04GRC & Cyber Security PodcastNCSC, UK's £6m Cyber Defense Program & Iran Exploits Log4j | Cyber Threat BriefingEvery month, our experts Hugh and Nick will highlight the current and emerging cyber threats you need to know about right now, giving you great insights to help protect your organization.
November's Cyber Threat Briefing covers:
- NCSC launches scanning capability to identify UK vulnerabilities.
- UK defends Ukraine with £6m cyber defense program.
- Iran exploits Log4j and gains access to US government networks. 2022-11-3030 minGRC & Cyber Security PodcastInnovative Approaches to Data Protection: Insights from a Former Gartner, with Claude Mandy | GRC & Cyber LeadersIn this podcast episode, Claude Mandy, Chief Evangelist, Data Security at Symmetry Systems, joins Matthew Davies, VP of Product at SureCloud, to discuss his approach to security, privacy, and risk management. Claude also shares some great insights on data security innovation and his experiences, having previously worked as a Senior Director Analyst at Gartner and CISO.
Contact Claude Mandy
👉 Claude's LinkedIn: https://www.linkedin.com/in/claudemandy/
👉 Symmetry Systems' website: https://www.symmetry-systems.com/
Contact Matthew Davies
👉 Matthew's LinkedIn: https://www.linkedin.com/in/matthew-daviesgrc/
👉 SureCloud's Website: https://www.surecloud.com/
Warning: This podcast has audio issues in a few spots that h...2022-11-1727 minGRC & Cyber Security PodcastMicrosoft Data Leak, Australian Cyberattacks & Age Impact on Security | Cyber Threat BriefingEvery month, our experts Hugh and Nick will highlight the current and emerging cyber threats you need to know about right now, giving you great insights to help protect your organization.
October's Cyber Threat Briefing covers:
- Australian cyberattacks – is the region an easy target?
- Does age impact our attitude towards security?
- BlueBleed: Microsoft customer data leak - 150k companies affected2022-11-0923 minGRC & Cyber Security PodcastInclusion: The Cyber Advantage, with Holly Foxcroft | GRC & Cyber LeadersIn this edition of the podcast, Holly Foxcroft, Head of Neurodiversity in Cyber Research and Consulting at Stott and May Consulting, joins Matthew Davies, VP of Product at SureCloud. They discuss the inclusion of neurodiversity individuals in cybersecurity. Holly shares her point of view as a woman and a neurodiverse person in this market.
Contact Holly Foxcroft
👉 Holly's LinkedIn profile: https://www.linkedin.com/in/hollyfoxcroft/
👉 Stott and May's website: https://consulting.stottandmay.com/
Contact Matthew Davies
👉 Matthew's LinkedIn: https://www.linkedin.com/in/matthew-daviesgrc/
👉 SureCloud's Website: https://www.surecloud.com/2022-11-0337 minGRC & Cyber Security PodcastMarket Challenges and Best Practice with Jake Bernardes, VP of Security, and Compliance at Whistic | GRC & Cyber LeadersIn this CISO Interview, Jake Bernards, VP of Security and Compliance at Whistic, joins Matthew Davies, VP of Product at SureCloud, to discuss his approach to cybersecurity and Compliance running an information security team. He explains how he handles the many challenges that his busy and demanding role involves.
Warning: This podcast has audio issues in a few spots that have internet glitches. 2022-10-1840 minGRC & Cyber Security PodcastUber, Rockstar Games, and Revolut Hacked | Cyber Threat BriefingJoin SureCloud's Nick Hayes, Arron Dowdeswell, and Hugh Raynor in this Cyber Threat Briefing episode. Among other cybersecurity hot topics, Nick, Arron, and Hugh will be discussing the latest many cyberattacks happening in only one week:
September's Cyber Threat Briefing covers:
- The Uber breach - cloud systems hijacked.
- Rockstar Games - source code was stolen.
- Revolut hack - 50,000 users affected. 2022-10-1429 minGRC & Cyber Security PodcastCisco, Twilio, Cloudflare: Cyber Attacks / NCSC & ICO: Ransomware Payments | Cyber Treat BriefingJoin SureCloud's Nick Hayes and Hugh Raynor in this Cyber Threat Briefing episode. Among other cybersecurity hot topics, Nick and Hugh discuss the recent Cisco hack, the phishing attacks Twilio and Cloudflare suffered, and the NCSC and ICO's positions on ransomware payments.2022-10-1126 minGRC & Cyber Security PodcastInformation Security Management Best Practice with Benjamin Corll, CISO at Coats | GRC & Cyber LeadersIn this edition of the podcast, Benjamin Corll, Chief Information Security Officer at Coats joins Matthew Davies, VP of Product at SureCloud to discuss his approach to cybersecurity and to running an information security team. He explains his approach to handling the many challenges that his busy and demanding role involves.2022-08-1530 minGRC & Cyber Security PodcastManaging Spectris cybersecurity and compliance burdens with Ian Brown, CISO at Spectris | GRC & Cyber LeadersIn this CISO Interview, Ian Brown, Chief Information Security Officer at Spectris, joins Matthew Davies, VP of Product at SureCloud. Ian and Mathew discuss the challenges associated with being responsible for cybersecurity management at an FTSE 250 company.2022-08-0135 minGRC & Cyber Security PodcastManaging Okta’s password-stealing risk and Linux-based malware strains | Cyber Treat BriefingJoin SureCloud’s Nick Hayes and Hugh Raynor in this Cyber Threat Briefing episode. Among other cyber security hot topics, they discuss a recently released report from Authomize which reveals the potential for passwords to be stolen from the Okta solution.2022-07-2921 minGRC & Cyber Security PodcastChallenges of Managing Cybersecurity and Compliance Threats for a Government-focused Services Provider with Mike Privette, VP of Cyber Security at Passport | GRC & Cyber LeadersIn this podcast edition, Mike Privette, VP of Cyber Security at Passport, joins Matthew Davies, VP of Product at SureCloud, to discuss his approach to cybersecurity and how he manages, maintains, and develops the security strategy, programs, and operational security requirements of the company he works for. He explains his main challenges and shares some of the strategies he uses to manage risk.2022-07-1837 minGRC & Cyber Security PodcastExamining the Follina and Confluence Vulnerabilities | Cyber Threat BriefingJoin SureCloud’s Craig Moores and Hugh Raynor for our latest Cyber Threat Briefing. Craig and Hugh will be discussing the recently recent zero-day Follina and Confluence vulnerabilities, in addition to talking about cybersecurity and vulnerability management best practice and the rise of SMSing in the corporate world.2022-06-2321 minGRC & Cyber Security PodcastGRC Past, Present and Future | CapabilitiesJoin Nick Rafferty, Matthew Davies and Yang Zheng from SureCloud, who will be discussing the development of GRC solutions from their origins over two decades ago. They also consider market trends, common challenges and shortfalls, and how the technology will evolve in years to come.2022-06-2043 minGRC & Cyber Security PodcastCybersecurity and the SCF, with Tom Cornelius, Co-Founder of the Secure Controls Framework | GRC & Cyber LeadersJoin Matthew Davies of SureCloud, and Tom Cornelius, Co-Founder of the Secure Controls Framework, who discuss what the SCF is doing to assist organizations in their journey towards compliance and enhanced cybersecurity.2022-06-0648 minGRC & Cyber Security PodcastUK SOX: What is the purpose of this emerging legislation and how will it impact your business? | CapabilitiesJoin Matthew Davies and Yang Zheng from SureCloud, who will be discussing the forthcoming UK SOX laws and identifying the key areas that organizations should be focusing on to get ready and to ensure they remain compliant.2022-05-3026 minGRC & Cyber Security PodcastExamining the CISA Report for Exploited Vulnerabilities | Cyber Threat BriefingJoin SureCloud’s Craig Moores and Hugh Raynor in this Cyber Threat Briefing episode. They discuss the recently released CISA report, which highlights the top vulnerabilities that threat actors were able to exploit over the past year.2022-05-2024 minGRC & Cyber Security PodcastPractical Steps to Improve your Third-Party Risk Management Program | CapabilitiesJoin Nick Rafferty, Matt Davies and Yang Zheng of SureCloud, who discuss ways in which organizations can enhance their third-party risk management operations and practices.2022-05-1925 minGRC & Cyber Security PodcastCommon Third-Party Risk Management Challenges for Organizations | CapabilitiesJoin Nick Rafferty, Matt Davies and Yang Zheng of SureCloud, for a discussion of the most common third-party risk management challenges that they see on consulting engagements.2022-05-1230 minGRC & Cyber Security PodcastCybersecurity Essentials for Cloud Environments | CISO's How-ToIn this CISO's How-To episode, join SureCloud's Nick Hayes and Hugh Raynor. They discuss and provide practical solutions to cloud-based security challenges.2022-05-0924 minGRC & Cyber Security PodcastInterpreting the 2022 Cyber Security Breaches Survey from the DCMS I Cyber Threat BriefingJoin Craig Moores and Hugh Raynor of SureCloud, in this Cyber Threat Briefing episode. They discuss a recently released report from The UK’s Department for Digital, Culture, Media and Support (DCMS), which examines the prevalence of cyber breaches over the past year.2022-04-2829 minGRC & Cyber Security PodcastMaking Cybersecurity a Quality Function, with Greg van der Gaast, CISO at ScoutBee | GRC & Cyber LeadersIn this CISO Interview episode, Greg van der Gaast, Chief Information Security Officer at ScoutBee, joins Matthew Davies, SureCloud's VP of Product. Greg and Mathew discuss both the challenges and opportunities that come with being instated as a growing company’s first Chief Information Security Officer, in addition to delving into Greg’s visionary approach to strategic security management.2022-04-2542 minGRC & Cyber Security PodcastData Privacy Compliance and Cybersecurity Challenges with Phil Lea, Chief Privacy Officer at Tenth Revolution Group | GRC & Cyber LeadersIn this CISO interview episode, Phil Lea, Chief Privacy Officer at Tenth Revolution Group, joins Matthew Davies, SureCloud's VP of Product. Phil and Mathew discuss Phil’s role as Chief Privacy Officer - the main challenges he faces and the key initiatives he is undertaking. 2022-04-0631 minGRC & Cyber Security PodcastUkrainian Fundraiser Phishing ScamsThe NCSC has issued a report that states that an extremely high level of phishing scams are currently being circulated that claim to be fundraising to support the Ukrainian cause. So why are fraudsters choosing this particular topic? In many ways, it’s the perfect subject as it contains many of the key ingredients of a successful and compelling phishing scam. The Ukrainian situation is: a matter of urgency; highly compelling – something that is close to most people’s hearts; something that many people may be motivated to share, providing a viral element to the scam.2022-04-0601 minGRC & Cyber Security PodcastThe Strengthening American Cybersecurity Act, with Chad Brustin, Lead Security Engineer at ClydeChad Brustin, Lead Security Engineer at Clyde joins Nick Hayes and James Pierce, both Directors at SureCloud, to talk about the Strengthening American Cybersecurity act, which has recently been passed by the US Senate. Our expert panel will discuss the varied implications of the key features within this emerging legislation.2022-04-0451 minGRC & Cyber Security PodcastAssessing the Russian Cyber Threat Landscape I Cyber Threat BriefingJoin SureCloud’s Risk Advisory Senior Director, Craig Moores, and Senior Cybersecurity Consultant Hugh Raynor, in this Cyber Threat Briefing episode. This Cyber Threat Briefing will focus on the most common and prevalent threats that exist within the current threat landscape and what organizations can do to mitigate threats and enhance their security posture. Craig and Hugh will be discussing cybercriminal activity linked to the Russia-Ukraine conflict.2022-03-2323 minGRC & Cyber Security PodcastCybersecurity and Risk Best Practice with Robin Smith, Chief Security Officer at Aston Martin | GRC & Cyber LeadersRobin Smith, Chief Security Officer at Aston Martin, joins SureCloud’s Matthew Davies for the latest instalment of our Leaders in Cybersecurity and Risk series. Robin explains what he is doing to take Aston Martin on a cybersecurity journey to enhance their information security posture and enable the company to become more productive and profitable. Robin also recounts aspects of his career journey that led to him becoming the CISO of Aston Martin and highlights the most important things he’s learned along the way.2022-03-2138 minGRC & Cyber Security PodcastCyber Warfare: How will It Impact your Organization and What Can you do to Stay Safe?We are living in times of political uncertainty. The increasingly hostile occurrences of recent weeks have far wider implications than many people realize. Cyber warfare is now a recognized tactic employed by aggressive nation-states, and these cyber-attacks can represent a significant proportion of the weaponry used by warring factions. And even civilian businesses and other organizations that seem unconnected to these disputes can become caught in the crossfire. SureCloud's cybersecurity experts, Nick Hayes and Nick Rafferty discuss the implications of cyber warfare for all businesses, regardless of where they are located and what industry they are a part of. Watch...2022-03-1014 minGRC & Cyber Security PodcastEnterprise Architecture And Its Role Against Security Threats | Cyber Threat BriefingJoin SureCloud’s Craig Moores and Hugh Raynor in this Cyber Threat Briefing briefing. Craig and Hugh will be discussing the role of Enterprise Architecture in optimizing an organization’s security posture. This Cyber Threat Briefing will focus on the ‘defensive depth’ that many businesses are trying to achieve - robust security measures which are distributed throughout your architecture, which form a series of unique obstacles which prevent attackers from gaining access.2022-03-0228 minGRC & Cyber Security PodcastCMMC 2.0 - What's New with Tom Cornelius, Founder & Contributor at SCFTom Cornelius, Partner at ComplianceForge and Founder of Secure Controls Framework (SCF), joins SureCloud’s Craig Moores to discuss the advent of Cybersecurity Maturity Model Certification (CMMC) 2.0. Craig and Tom will provide an overview of what the second version of CMMC will constitute and will then discuss the practical changes which are associated with the forthcoming release of CMMC 2.0.2022-02-2824 minGRC & Cyber Security PodcastCMMC (Cybersecurity Maturity Model Certification) - What, When, Who and Why?Join SureCloud’s Craig Moores and Tim Hodgkins as they examine the recently introduced Cybersecurity Maturity Model Certification (CMMC) standard and will discuss exactly what challenges companies of all sizes who aim to supply products and services to the US Department of Defense (DoD) will face. In this short recording you will learn what is involved in the CMMC, and what changes your organization can expect to undertake in order to comply with this standard.2022-02-2412 minGRC & Cyber Security PodcastAn Organization's Susceptibility to Supply Chain Attacks | Cyber Threat BriefingJoin SureCloud’s Craig Moores and Hugh Raynor in this Cyber Threat Briefing episode. They will be discussing the increasing propensity of criminals to target supply chains. Our experts will analyze the main threats to supply chains and how businesses are impacted when breaches occur, as well as discuss various strategies and tactics to mitigate risk.2022-02-2126 minGRC & Cyber Security PodcastTooling Considerations To Support Your GRC / IRM Programs | CapabilitiesIf your organization has decided to implement a GRC solution for the first time or has concluded that it’s time to upgrade what you have, then this video is a must-watch! Three industry veterans discuss what they have learned from overseeing countless GRC and Integrated Risk Management implementations across a wide range of enterprises. Avoid common mistakes by learning what it takes to develop genuine GRC capabilities. Watch this full and frank discussion between SureCloud’s VP of Product, Matthew Davies; Senior Director of Customer Success, Yang Zheng and Co-founder, Nick Rafferty.2022-02-1632 minGRC & Cyber Security PodcastVendor Risk Best Practice with Ryan Walker, Third-Party Risk Manager at AutoZone | GRC & Cyber LeadersJoin Ryan Walker, Third-Party Risk Manager at AutoZone, and Matthew Davies, SureCloud's VP of Product, for a 'how-to' discussion. AutoZone is a leading automotive parts supplier; Ryan and Matthew discuss how to optimize cyber security strategies, structure the security team, influence, manage and persuade stakeholders, and talk through lessons learned from previous breaches and other incidents.2022-02-1533 minGRC & Cyber Security PodcastThrough The Eyes of an APT | Cyber Threat BriefingJoin SureCloud’s Craig Moores and Hugh Raynor in this Cyber Threat Briefing episode. They will introduce the concept of Advanced Persistent Threats (APTs), discuss current trends, and discuss what organizations can do to protect themselves. Topics for discussion include: what motivates APTs and how they typically operate; Log4J vulnerability and how you could be impacted; incident response best practice; and how organizations can protect against zero-day vulnerabilities in general.2022-02-1122 minGRC & Cyber Security PodcastWelcome to the Capability-Centric GRC & Cyber Security PodcastA short introduction to the Capability-centric GRC & Cyber Security Podcast.
2022-02-1001 min
Enterprise Security Weekly (Audio)Pyramid of Pain - ESW #186This week, we talk Enterprise News, to talk about how SureCloud Launches Cyber Resilience Assessment Solution, Blackpoint Cyber launches 365 Defense - a Microsoft 365 security add-on for its MDR service, Endace and Palo Alto Networks Cortex XSOAR enable accelerated forensics of cyberthreats, Zscaler acquires Edgewise Networks, WatchGuard Technologies Completes Acquisition of Panda Security, and more! In our second segment, we welcome Alyssa Miller, Application Security Advocate at Snyk, to talk about Unraveling Your Software Bill of Materials! In our final segment, we welcome Aaron Rinehart, CTO and Co-Founder of Verica, and Casey Rosenthal, CEO and Co-Founder of Verica, to talk...2020-06-041h 42
Enterprise Security Weekly (Video)Dragos, AttackIQ, Cortex XSOAR, & SureCloud - ESW #186SureCloud Launches Cyber Resilience Assessment Solution, Blackpoint Cyber launches 365 Defense - a Microsoft 365 security add-on for its MDR service, Endace and Palo Alto Networks Cortex XSOAR enable accelerated forensics of cyberthreats, Zscaler acquires Edgewise Networks, WatchGuard Technologies Completes Acquisition of Panda Security, and more! Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://wiki.securityweekly.com/ESWEpisode1862020-06-0330 min
Enterprise Security Weekly (Video)Security Mergers, Acquisitions, and Partnerships - Enterprise Security Weekly #122In this segment, they discuss some mergers, acquisitions, and partnerships, such as TokenEx partnering with SureCloud, Check Point acquires ForceNock, Zix agrees to acquire AppRiver for $275 million, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode122 Visit http://securityweekly.com/esw for all the latest episodes!2019-01-1821 min
Paul's Security WeeklyToo Many Logins - Enterprise Security Weekly #122This week, Paul is joined by Matt Alderman to discuss some mergers, acquisitions, and partnerships, such as TokenEx partnering with SureCloud, Check Point acquires ForceNock, Zix agrees to acquire AppRiver for $275 million, and more! In this second segment, they discuss some security product launches and announcements from Trustwave, NopSec, ConnectGuard, Pulse Secure, Synopsys, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode122 Visit https://www.securityweekly.com/esw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly2019-01-1740 min
Enterprise Security Weekly (Audio)Too Many Logins - Enterprise Security Weekly #122This week, Paul is joined by Matt Alderman to discuss some mergers, acquisitions, and partnerships, such as TokenEx partnering with SureCloud, Check Point acquires ForceNock, Zix agrees to acquire AppRiver for $275 million, and more! In this second segment, they discuss some security product launches and announcements from Trustwave, NopSec, ConnectGuard, Pulse Secure, Synopsys, and more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode122 Visit https://www.securityweekly.com/esw for all the latest episodes! Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Fa...2019-01-1740 min
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)ISC StormCast for Friday, September 7th 2018Malware Uses Powershell to Comple C# Code on the Fly
https://isc.sans.edu/forums/diary/Malicious+PowerShell+Compiling+C+Code+on+the+Fly/24072/
Stealing WiFi Credentials in Google Chrome
https://www.surecloud.com/sc-blog/wifi-hijacking
DNS Spoofing and Certificate Authority Domain Validation
https://www.theregister.co.uk/2018/09/06/boffins_break_cas_domain_validation/
Cisco Vulnerabilities
https://tools.cisco.com/security/center/publicationListing.x?product=Cisco&sort=-day_sir&limit=30#~Vulnerabilities2018-09-0604 min