Shows
Shift & Thrive: CEO Insights on Driving ChangeMastering Organizational Change - Christian Hyatt - Shift & Thrive - Episode # 012In this episode of Shift and Thrive, host Natalie Nathanson sits down with Christian Hyatt, CEO & Co-Founder of risk3sixty! Together, they discuss his journey in cybersecurity, the challenges of driving organizational change, and valuable leadership insights. Christian also highlights the current trends impacting cybersecurity and how risk3sixty helps clients navigate complex compliance landscapes. The episode addresses the significance of founder-led marketing and personal growth through mentorship and sustained discipline.Takeaways:Christian emphasizes a structured approach to problem-solving, offering a three-step framework that leaders can apply to effectively manage change within their...2024-09-1156 min
CISO Tradecraft®#150 - Measuring ResultsOn this episode we discuss the measuring results cheat sheet from Justin Mecham. Key focuses include:
Defining SMART Goals (Specific, Measurable, Achievable, Relevant, & Time-Bound)
Identifying KPIs (Key Performance Indicators)
Using the WOOP Model (Wish, Outcome, Obstacle, and Plan)
Using a Gap Analysis
Using the 5 Why Method
Using Plan, Do, Check, & Act.
Link to the Measuring Results Cheat Sheet
https://www.linkedin.com/posts/justinmecham_harvard-says-leaders-are-10x-more-likely-activity-7112050615576391681-Ro60/
Big thanks to our sponsor:
Risk3Sixty - https://risk3sixty.com/whitepaper/
Transcripts https://docs.google.com/document/d/1Ok9cFBdubI6M4ub...2023-10-0917 minCISO Tradecraft®#149 - Board PerspectivesOn this episode we discuss the four key roles Boards play in cybersecurity.
Setting the company's vision and risk strategy
Reviewing assessment results
Evaluating management cyber risk stance
Approving risk management plans
Big thanks to our sponsor:
Risk3Sixty - https://risk3sixty.com/whitepaper/
Transcripts - https://docs.google.com/document/d/1jarCcQYioT59jtIrppH4xZqyAy4Vn_tB/
Chapters
00:00 Introduction
01:36 What is a Board of Directors and what do they do?
09:33 FFIEC requirements for Boards
16:51 Establishing an Information Security Culture
19:08 Vision and Risk Appetite
22:00 Reviewing Cyber Assessments
25:09 Are we secure?
32:44 C...2023-10-0243 minCISO Tradecraft®#148 - Threat Modeling (with Adam Shostack)On this episode we bring on the leading expert of threat modeling (Adam Shostack) to discuss the four questions that every team should ask:
What are we working on?
What can go wrong?
What are we going to do about it?
Did we do a good enough job?
Big thanks to our sponsor:
Risk3Sixty - https://risk3sixty.com/whitepaper/
Adam Shostack's LinkedIn Profile - https://www.linkedin.com/in/shostack/
Learn more about threat modeling by checking out Adam's books on threat modeling Threats: What Every Engineer Should Learn...2023-09-2537 minCISO Tradecraft®#147 - Betting on MFAThere's a lot of new cyber attacks occurring and today we are going to talk about them in more detail. Many bad actors are using SMS spoofing and Social Engineering to get in. Listen in an learn about how those attacks played out against the casino industry. You don't want to miss when we share what you can do to stop them. Pro-tip: Good MFA is your friend. Use it everywhere you can including on your employees and customers during phone calls.
Big Thanks to our Sponsor
Risk3Sixty - https://risk3sixty.com/whitepaper/
Mandian...2023-09-1842 minCISO Tradecraft®#146 - Living in a Materiality WorldHave you ever thought about what does it mean to say there has been a material incident? How is materiality determined? What is the history of how that term has been defined by U.S. Regulators. Listen to today's show and increase your CISO Tradecraft
Big Thanks to our Sponsors
Risk3Sixty - https://risk3sixty.com/whitepaper/
CPRIME - For those valuing leadership, policy, and governance in tech risk and security, Cprime is here to help. Enhance your skills with our training and workshops, ensuring effective policy design and strategy alignment. As a tech coaching...2023-09-1142 minCISO Tradecraft®#145 - The Cost of Cyber DefenseOn this episode we overview the CIS Document titled, "The Cost of Cyber Defense". https://www.cisecurity.org/insights/white-papers/the-cost-of-cyber-defense-cis-controls-ig1
Big Thanks to our Sponsors
Risk3Sixty - https://risk3sixty.com/whitepaper/
CPRIME - For those valuing leadership, policy, and governance in tech risk and security, Cprime is here to help. Enhance your skills with our training and workshops, ensuring effective policy design and strategy alignment. As a tech coaching firm, Cprime offers classes for teams
and executives on security analytics and risk management. Led by a Cprime expert, align expectations, prioritize, and...2023-09-0435 minCISO Tradecraft®#144 - Handling Regulatory ChangeIn this episode of CISO Tradecraft, we delve into the evolving landscape of cybersecurity regulations. From data incident notifications to required contract language, we uncover common trends and compliance challenges. Learn how to prepare, adapt, and network within your industry to stay ahead. Tune in for insights and tips!
Thanks again to our Sponsors for supporting this episode:
Risk3Sixty: Check out Risk3Sixty's weekly thought leadership webinars and downloadable resources at https://risk3sixty.com/?utm_source=cisotradecraft&utm_medium=podcast&utm_campaign=2023-ct&utm_term=1week&utm_content=sponser
CPrime: Today's "CISO Tradecraft" is...2023-08-2824 minCISO Tradecraft®#143 - Authentication, Rainbow Tables, and Password ManagersHere's a nice overview of cybersecurity on passwords, authentication, rainbow tables, and password managers. Enjoy the show and check out our other podcasts.
Special Thanks to our Sponsors:
Risk3Sixty: Being able to clearly articulate your vision for your security program to the board and other executives within your firm is critical to obtaining the buy in you need for your program's success. Risk3Sixty has created a presentation template that helps you structure your thoughts while telling a compelling story about where you want your security program to go. Download it today for free at...2023-08-2145 minCISO Tradecraft®#139 - Insider Threat Operations (with Jim Lawler)On this episode we bring on CIA Veteran James "Jim" Lawler to discuss how spies are recruited, how individuals are turned, and what makes them vulnerable to being turned. Learn what managers and executives can and should know about their people to help them better understand who's at risk and the types of programs that executives can put into place to stop insider threats.
Special Thanks to our Two Sponsors:
1) Prelude: https://www.preludesecurity.com/
2) Risk3Sixty is cyber security technology and consulting firm that works with high-growth technology firms to help leaders...2023-07-2451 minCISO Tradecraft®#138 - Updating the Mindmap (with Rafeeq Rehman)This week Rafeeq Rehman returns to discuss the 2023 updates to the CISO Mindmap. Note you can find his work here: https://rafeeqrehman.com/2023/03/25/ciso-mindmap-2023-what-do-infosec-professionals-really-do/
Thanks to our two sponsors for this episode.
1) Prelude: https://www.preludesecurity.com/
2) Risk3Sixty - Get a free copy of The Five CISO Archetypes eBook from risk3sixty. By reading this eBook, you will discover your strengths, weaknesses, areas where you need support from your team, and the types of organizations you best fit. The eBook also provides the tools to analyze organizations to understand their security...2023-07-1742 minCISO Tradecraft®#137 - 1% Better Leadership (with Andy Ellis)Imagine if you could get 1% better every day at something and do this for an entire year. Well, that's 365 days. And you go, okay, fine. 1%. 1%. That's going to be like 3.65%, right? No, because it compounds. And if you go ahead and open up your calculator and you take 1.01 and you raise it to the 365th power you're going to get 37.78. On today's show we have Andy Ellis discuss ways to get 1% better as a leader.
Thanks to our two sponsors for this episode.
1) Prelude: https://www.preludesecurity.com/
2) Risk3Sixty - Risk3Sixty...2023-07-1049 minCISO Tradecraft®#136 - From Hacking to Hardcover (with Bill Pollock)Are you a Chief Information Security Officer (CISO) looking to share your knowledge and insights with the world? In this episode, we explore how CISOs can embark on their journey of writing their first book. Join us as we delve into valuable tips and advice, including learning from renowned author Bill Pollock, who has paved the way for aspiring CISO authors.
Risk3Sixty is cyber security technology and consulting firm that works with high-growth technology firms to help leaders build, manage and certify security, privacy, and compliance programs. They publish weekly thought leadership, webinars, and do...2023-07-0345 minCISO Tradecraft®#135 - Board Decks (with Demetrios Lazarikos)One of the most important activities a CISO must perform is presenting high quality presentations to the Board of Directors. Listen and learn from Demetrios Lazarikos (Laz) and G Mark Hardy as they discuss what CISOs are putting in their decks and how best to answer the board's questions.
Special thanks to our sponsor Risk3Sixty for supporting this episode. Risk3sixty has created a presentation template that helps you structure your thoughts while telling a compelling story about where you want your security program to go. Download it today for free at: https://risk3sixty.com/whi...2023-06-2643 minCISO Tradecraft®#134 - Ransomware Response (with Ricoh Danielson)A lot of times we focus on preventing ransomware, but we forget what we should do when we actually encounter it. That's why we are bringing on Ricoh Danielson to talk about it. Learn from him as he discusses tactics and techniques for businesses to follow then stuff hits the fan.
Special thanks to our sponsor Risk3Sixty for supporting this episode. https://risk3sixty.com/whitepaper/security-program-maturity-presentation-template-for-cisos/?utm_source=cisotradecraft&utm_medium=podcast&utm_campaign=2023-ct&utm_term=1week&utm_content=ebook
Ricoh Danielson - https://www.linkedin.com/in/ricoh-danielson-736a0715/
Tr...2023-06-1943 minCISO Tradecraft®#133 - The Seesaw of Cyber Recruiting (with Lee Kushner)This episode features Lee Kushner discussing various topics, including negotiating skills, the importance of degrees in the cybersecurity field, the need for diversity in the industry, challenges faced by cybersecurity professionals, starting a career in cybersecurity, and the value of technical skills. The conversation emphasizes the need for individuals to acquire technical skills, such as coding and networking, as they are in high demand and can differentiate them in the job market. It also mentions the importance of understanding the industry and its composition when seeking employment in cybersecurity.
Special thanks to our sponsor Risk3Sixty for...2023-06-1243 minCISO Tradecraft®#132 - Founding to Funding (with Cyndi and Ron Gula)On this episode we bring in Cyndi and Ron Gula from Gula Tech (https://www.gula.tech/) to talk about their cyber security experiences. Listen and enjoy as they tell their stories about leaving the NSA, creating the first commercial network Intrusion Detection System (IDS), Founding Tenable Network Security, and investing in multiple cybersecurity startups.
Special thanks to our sponsor Risk3Sixty for supporting this episode. Be sure to check their weekly thought leadership, webinars, and downloadable resources like budget and assessment templates at: https://risk3sixty.com/?utm_source=cisotradecraft&utm_medium=podcast&utm_campaign=2023-ct...2023-06-0544 minCISO Tradecraft®#131 - Framing Executive DiscussionsHow do we frame an executive discussion so we can structure and present information in a way that effectively engages and aligns with the needs and interests of the executive audience? On this episode we answer that question by discussing the 8 important elements of framing a discussion with executives:
Clearly define the objective
Start with the big picture
Identify key issues
Highlight impacts and benefits
Use visually compelling data and metrics
Be able to anticipate questions and concerns
Provide actionable recommendations
Seek alignment with existing perspectives of the organization
Special thanks to our sponsor Risk3Sixty for s...2023-05-2921 minCISO Tradecraft®#130 - Financial Planning (with Logan Jackson)Learn how to unlock financial success with key strategies by Logan Jackson from Ray Capital Advisors. Logan highlights how to set clear goals, choose the right asset class, diversify your portfolio for stability and growth, build a well-diversified investment portfolio to create wealth and mitigate risk, take control of your financial future through retirement planning and goal setting, & leverage tax loss harvesting. He also discusses how to prioritize tax planning, understand the impact of behavioral finance, seek professional money management, navigate conflicts of interest in financial planning, and discover hidden wealth advisors for personalized guidance.
Special thanks t...2023-05-2250 minCISO Tradecraft®#129 - Protecting Your FamilyAre you looking for ways to protect your most valuable asset? In this episode, G Mark Hardy argues that our most valuable asset is our family, not the crown jewels or critical assets of a corporation. He emphasizes the importance of managing money, having an emergency fund, obtaining life insurance, building retirement savings, protecting against credit card fraud, and creating a plan for your children's digital life.
Special thanks to our sponsor Risk3Sixty for supporting this episode. You can learn more about them from the Risk3Sixty Website: https://tinyurl.com/yc4xv7bj
Fu...2023-05-1545 min
The Master Marketer ShowEp. 30 Corey Brown - More Than Memes: Content Strategy Attuned to Targeted Business GoalsNot everything we do as marketers sticks the landing on the first go. In fact, it often fails, which is what makes this work so compelling and diverse. In this week’s episode, we welcome guest Corey Brown, current Head of Marketing at risk3sixty, for an eye-opening chat on the “power of the pivot”, and the opportunities that reveal themselves when we can accurately read the story behind the data and change up our strategy to meet our unique business goals. According to Corey, the key to success at every step is to operationalize your marketing objectives so that t...2022-09-2751 min
Hacker Valley StudioSecurity Team Operating Systems with Christian HyattChristian Hyatt, CEO & Co-Founder of risk3sixty, knows the secret to building a strong cybersecurity team, and he calls it: Security Team Operating Systems. Walking through his entrepreneurial journey from inspiration as a young child to discovering his interest in the new phenomenon of cyber to co-founding risk3sixty, Christian covers every aspect of intelligent leading and team building. Ready to take your team to the next level? Christian knows 5 key elements you won’t want to miss.
Timecoded Guide:
[00:00] Tackling cybersecurity as a business owner in an emerging industry
[07:04] Building bett...2022-08-0927 min
Tuesday Morning Grind: A Cybersecurity Podcast#69 Former Homeland Security Cybersecurity Deputy Talks Cyber Risk and Leadership (w/ Mark Weatherford)Mark Weatherford, Homeland Security Cybersecurity Deputy Under President Obama talks about Cyber Risk and LeadershipMark Weatherford has a long career in public service including serving in Homeland Security and CISO for the state of California and Colorado. In this episode of Tuesday Morning Grind, Mark and Christian discuss cyber risks, cybersecurity legislation, and leadership in the public sector.About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering services related to SOC 2, ISO 27001, PCI DSS, HITRUST...2022-05-0344 minTuesday Morning Grind: A Cybersecurity Podcast#68 - Passion and Community for Cyber, Resiliency in Cyber, and Gamification Education (w/ Gerald Auger)Gerald Auger is the host of Simply Cyber, an information security YouTube channel designed to help individuals go further, faster in the information security field. He’s also the Director of Cybersecurity Education at ThreatGEN™. Christian and Gerald discuss his passion for the information security field which led to the creation of Simply Cyber, handling breaches, how to talk to executives about security, and what’s missing from the field for it to work better. They also talk about Gerald’s new adventure into ThreatGEN™ and the gamification of cybersecurity education.About risk3sixty: risk3sixty is a security...2022-04-1243 minTuesday Morning Grind: A Cybersecurity Podcast#67: Making A Business Case, Attracting Talent and Being a Story Teller in Cyber (w/ Rock Lambros)How to make a business case as a CISO, attract talent and tell a story in cyber.Rock Lambros is the CEO & Founder of RockCyber. In this episode of Tuesday Morning Grind, Rock and Christian discuss how to make a business case to C-suite executives, how to attract top-tier talent in a virtually zero unemployment industry and how to tell a story so employees can understand cyber issues and risks.About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and...2022-04-0552 minTuesday Morning Grind: A Cybersecurity Podcast#66 - Breaking into Buildings, Getting Arrested, and Red Teaming (w/ Gary DeMercurio)Gary DeMercurio was arrested for breaking into a courthouse in Iowa. Gary DeMercurio is a master at physical security. He breaks into buildings and tells the owners how he did it so they can improve their security posture. In 2019, he was arrested in Iowa after breaking into a courthouse. In this episode of Tuesday Morning Grind, Gary and Christian discuss how it all went down and lessons learned from the event. They also discuss some of the tactics used in physical penetration test engagement. About risk3sixty: risk3sixty is a security, privacy, and compliance consu...2022-03-2938 minTuesday Morning Grind: A Cybersecurity Podcast#64: Hyper Growth Start-ups, Women in Cyber, and Courage (w/ Dinah Davis)What it takes to grow a hyper growth start-up, lead people, and the courage to take your shots.Dinah Davis is the VP of R&D Operations at Arctic Wolf. She has helped the organization scale from 35 to nearly 1500 employees. In this episode of Tuesday Morning Grind, Dinah and Christian discuss practical lessons on leadership, Dinah’s journey as a women in technology leadership, cybersecurity trends, and the incredible value in finding the courage to take your shot.About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth te...2022-03-1553 minTuesday Morning Grind: A Cybersecurity Podcast#63: Privacy: Healthcare Regulations, Social Media, and Listening Devices (w/ Kate Godfrey)Privacy considerations in the world of healthcare, emerging tech, and regulation.From regulations like HIPAA, GDPR, and CPRA to home listening devices -- Kate and Christian discuss the future of privacy and the potential implications for businesses and individuals.About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering services related to SOC 2, ISO 27001, PCI DSS, HITRUST, Virtual CISO, Privacy Programs (GDPR, CCPA, etc.), Penetration Testing, and a GRC Platform built for cloud technology companies, Phalanx. You...2022-03-0843 min
The Audit PodcastEp 87: Practical ways to create more security w/ Christian Hyatt (risk3sixty)This week, Christian Hyatt, CEO & Co-founder of risk3sixty, joins the show. On this episode, we discuss practical ways to create more security, cryptographic key management, and how to audit third-party risk management with limited resources. Be extra sure to connect with Christian on LinkedIn as he provides great resources about security. And be sure to follow us on our new social media accounts on LinkedIn, Instagram, and TikTok. Also, be sure to follow us on our new social media accounts on LinkedIn, Instagram, and TikTok. Also be sure to sign up for...2022-03-0123 minTuesday Morning Grind: A Cybersecurity Podcast#62: Four of the World’s Top Hackers Talk Cyber War, Hacking, Metaverse, Privacy, and LifeFour of the World’s Top Hackers Talk Cyber War, Spying, Hacking, Privacy, and Life The impacts of technology on our society are further reaching that we yet understand. As our society increases screen time, connects our home, our cars, and ourselves to the digital universe both practical and philosophical questions must be answered. Questions of cyber conflict, privacy, digital interaction, and what it means to be human all emerge. In this episode of Tuesday Morning Grind, four of the world’s top hackers discuss some of these questions at length. Connect with the hackers in thi...2022-03-0157 minTuesday Morning Grind: A Cybersecurity Podcast#61: Crypto: Get Rich, Vulnerabilities, Bugs, Criminals, and the Potential to Change the World (w/ Lance Whatley aka Moontography)Crypto - What are the threats and opportunities? There are big threats and even bigger opportunities in the world of crypto right now. New technologies, huge upside investment, software vulnerabilities, bugs, world changing payment solutions, and criminal organizations – all exist and thrive in the same environment. In this episode of Tuesday Morning Grind, Lance, Sawyer, and Christian discuss blockchain technology and crypto. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering services related to SOC 2, ISO 27001, PCI...2022-02-2254 minTuesday Morning Grind: A Cybersecurity Podcast#60: Cyber War, Breaches, and Human Emotion (w/ Raj Samani)We are seeing the highest volume of cyber attacks we have ever seen. Raj has briefed heads of state, CEOs, and politicians on cybersecurity. During his time a chief scientist at McAfee he was responsible for understanding the thread landscape, researching emerging threats, and perhaps most importantly – mastering the human side of cybersecurity – emotion, self-interests, fear, and geo-politics. In this episode of Tuesday Morning Grind, Raj and Christian discuss the current state of cybersecurity, emerging trends, and the human side of cybersecurity. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that h...2022-02-1543 minTuesday Morning Grind: A Cybersecurity Podcast#59: How to Do Better Security Assessments (w/ Amanda “Jo” Erven)Learn how to take your security assessments to the next level by implementing a few best practices. Jo is an author, teacher, and life long internal auditor. She has spent her career thinking about risks and helping communicate those risks to executives. In this episode of Tuesday Morning Grind, Jo and Christian discuss how principles of “total quality auditing” can be used to execute better security assessments. They talk about selecting risk based projects, communication issues, report writing, and driving organizational change. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that h...2022-02-0843 minTuesday Morning Grind: A Cybersecurity Podcast#58: How to Navigate CMMC Compliance (w/ Jax Scott)Jax Scott breaks down the latest trends with security and compliance in the federal space. Jax is an security and compliance expert in the federal space, co-author of the book “Cybersecurity Career Masterplan”, podcaster, and entrepreneur. In this episode of Tuesday Morning Grind, Jax and Christian break down the latest news with CMMC compliance. They also talk about how to get a job in cybersecurity and talk about trends related to diversity. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess securi...2022-02-0139 minTuesday Morning Grind: A Cybersecurity Podcast#57: How Security Leaders Can Upgrade to Business Leaders (w/ Matthew Sharp)Security leaders must have strong business acumen if they want to be successful. Otherwise, they are destined to the child’s table within the leadership ranks at their organization.Security programs must align the organization’s most important business objectives. This is a fact that all successful security leaders must understand. In this episode of Tuesday Morning Grind, Matthew and Christian discuss business topics that every security leader needs to know to successfully serve their organization – and how business is directly linked into cybersecurity. Book Recommendation: CISO Evolution by Matthew Sharp (https://www.cisoevolution.com/) Abo...2022-01-2546 minTuesday Morning Grind: A Cybersecurity Podcast#56: How to Get PCI Certified in 2022 (w/ PCI Expert Chris Donaldson)This is everything you need to know to get PCI DSS certified in 2022. Chris Donaldson is a PCI Expert and the PCI Practice Leader at risk3sixty. Chris has helped organizations from start-ups to Fortune 10 achieve PCI certification. In this episode of Tuesday Morning Grind, Chris and Christian talk through everything a company needs to know to begin their PCI certification journey. Featured How to Guide: How to Get PCI Certified Featured Book or Resource: risk3sixty’s PCI DSS e-book About risk3sixty: risk3sixty is a security, privacy, and compli...2022-01-1849 minTuesday Morning Grind: A Cybersecurity Podcast#55: A System for Running Your Business and the Best Meeting Format (w/ CJ DuBe')CJ DuBe' has helped over 110 companies implement habits to run a better business. She also shares her #1 tip for success – the Level 10 Meeting™. CJ DuBe' is an expert in helping companies implement the Entrepreneurial Operating System® (EOS®) made famous by the book Traction by Gino Wickman. CJ says at the heart of EOS is the ability to help manage and focus human energy. Through setting vision, establishing meet rhythms, getting the right people on the team doing the right jobs and a host of other activities – CJ helps companies thrive. In this episode of Tuesday Morning Grind, CJ and Ch...2022-01-1140 minTuesday Morning Grind: A Cybersecurity Podcast#54: How Cybersecurity Researchers Think and Break Things (w/ Chris Roberts)Chris Roberts shared his journey from hacker to security researcher in a quest to change the digital landscape for the better. Chris Roberts is a hacker, security researcher, and thought leader. Chris worked for both the private sector as well as the government and intelligence agencies on cybersecurity projects and research initiatives. In this episode of Tuesday Morning Grind, Chris and Christian explore the world of cybersecurity research, discuss issues of individual rights and privacy, and consider the future. Book Recommendation from this Episode: Verbal Judo How to guide from this Episode: How sec...2022-01-0438 minTuesday Morning Grind: A Cybersecurity Podcast#53: How to Build Security Awareness (w/ George Finney)George Finney, CISO at SMU and Author of Well Aware, discusses the 9 habits of building cybersecurity awareness. George Finney is the CISO at Southern Methodist University and the author of the book Well Aware. In this episode of Tuesday Morning Grind, George and Christian discuss the challenges of building cybersecurity programs for Higher Education, cybersecurity threats, careers in cybersecurity, and why we are excited about the future. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering se...2021-12-1442 minTuesday Morning Grind: A Cybersecurity Podcast#52: How to Catch a Hacker (w/ Brian Levine)Brian Levine tells the story of a 10 year journey to catch the Bayrob group hackers. Brian Levine is a former Department of Justice coordinator that participated in the 10-year journey to catch the Romanian hacker group that would come to be known as the Bayrob group. In this episode of Tuesday Morning Grind, Brian and Christian discuss the details of the case. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering services related to SOC 2, ISO 27001, PC...2021-12-0741 minTuesday Morning Grind: A Cybersecurity Podcast#51: How to Use Compliance to Manage Security Risks (w/ John Bordwine)John Bordwine, AVP Product & Cloud Compliance at Hyland, shares his insight on leveraging security compliance to manage risk. John Bordwine is the AVP Product & Cloud Compliance at Hyland. Prior to Hyland, John held leadership positions at Citrix and Symantec. In this episode of Tuesday Morning Grind, John and Christian discuss how building a security compliance program isn’t about “check the box” activities – it’s about helping the organization manage risk. John shares his insight on building teams, navigating compliance programs, and practical techniques to use compliance requirements to reduce cyber risk. About risk3sixty: risk3sixty i...2021-11-3050 minTuesday Morning Grind: A Cybersecurity Podcast#50: Special Thanksgiving EpisodeThis is a special episode of Tuesday Morning Grind. We are coming up on 50 episodes as well as the Thanksgiving holiday.Today, I’d like to look back on our 50 episodes to date, and surface a few of the most memorable insights I’ve learned from the incredible array of guests we’ve had on the show. We’ll cover lessons learned about entrepreneurship, cybersecurity, and more.Time Stamps: [0:47] Kennet Westby from Coalfire - Identify Where There's Opportunity [1:49] Justin Nassiri from Captivate.ai - You Have to Put in Work to Get Added Value [2:36] Mike Mey...2021-11-2318 minTuesday Morning Grind: A Cybersecurity Podcast#48: Being an Entrepreneur, Building a Company, and Cybersecurity (w/ Ryan Denehy)Ryan Denehy, Founder and CEO of electric.ai, shares lessons learned from being an entrepreneur, successfully exiting 3 companies, and cybersecurity. Ryan Denehy is the Founder and CEO of electric.ai. Prior to Electric, Ryan has started and sold three companies, most recently to Groupon. In this episode of Tuesday Morning Grind, Ryan and Christian discuss entrepreneurship, building teams at scaling organizations, and how cybersecurity is impacting companies of all sizes. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and pr...2021-11-1640 minTuesday Morning Grind: A Cybersecurity Podcast#47: Privacy in a Digital World (w/ Stuart Lee)Stuart Lee, Chief Privacy Officer at VMWare, shares insights on building a global privacy program that is good for people and good for business. Stuart is a privacy expert with extensive experience building privacy programs for global organizations. In this episode of Tuesday Morning Grind, Stuart and Christian, discuss topics ranging from privacy regulation, privacy by design, and the societal impact of mass data collection. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering services related to...2021-11-0942 minTuesday Morning Grind: A Cybersecurity Podcast#46: Building a GRC Program (w/ Jewel Hefner)SOC 2, PCI DSS, ISO 27001, FedRAMP, GDPR – the list goes on. In this episode, Jewel and Christian discuss how to build a global security and compliance program poised to support multiple frameworks. Jewel is an expert in governance, risk, and compliance with experience building teams and navigating the complexities of global compliance initiatives. Having forged a non-traditional route to a GRC leadership position, Jewel is passionate about helping others do the same. In this episode of Tuesday Morning Grind, Jewel and Christian discuss how to get into cybersecurity, the challenges that come withleadership, and many of...2021-10-2639 minTuesday Morning Grind: A Cybersecurity Podcast#45: How to Get Funding for Your Security Startup (w/ Mel Shakir)Mel Shakir hears over 300 pitches per year for security startups. In this episode of Tuesday Morning Grind, Mel and Christian talk about cybersecurity trends, startups, and what it takes to get a potential investor excited about your company. Mel Shakir is an entrepreneur, cybersecurity expert, investor, and advisor for Dreamit Ventures. Dreamit Ventures focuses on pre-seed and seed round funding for cybersecurity organizations. In addition to capital, Mel and his team help organizations better understand their customers, productize their offering, and prep for investor pitches. About risk3sixty: risk3sixty is a security, privacy, and co...2021-10-1937 minTuesday Morning Grind: A Cybersecurity Podcast#44: How to Build a Marketing Function at a Start-Up (w/ Ryan Yackel)Every tech CEO wants to crack the secret code of marketing. How do you build a brand, get more leads, and measure the results? Ryan Yackel has successfully built marketing programs for successful start-ups for the last decade. In this episode of Tuesday Morning Grind, Ryan and Christian talk about how high growth tech companies can build marketing programs that lead to results. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering services related to SOC 2, IS...2021-10-1252 minTuesday Morning Grind: A Cybersecurity Podcast#43: Mass Surveillance, Data Harvesting, and Freedom (w/ Virginia MacSuibhne)Mass data harvesting, government surveillance, and regulations at every turn. How do people and businesses navigate the current privacy environment? Privacy is one of the most important challenges facing our society. How we communicate, our opinions, and our individual freedoms are at stake. Tack on a patchwork of compliance and regulatory requirements and it can be overwhelming. In this episode of Tuesday Morning Grind, Virginia and Christian discuss many of the problems and potential solutions as our society and businesses navigate one of the most important challenges of our time: Privacy. About risk3sixty: risk3si...2021-10-0543 minTuesday Morning Grind: A Cybersecurity Podcast#42: Acoustic’s Security Journey (w/ Steve Dotson)Steve Dotson, CISO at Acoustic, discusses tools of the trade to build security programs at high growth technology companies. What does your first 90 days as a security executive look like? How do you get a seat at the table with executives? How do you get a budget approved? How do you build a team? From start-up advisor and investor, CISO, and business executive, Steve’s journey has helped him build security teams at organizations as diverse as multi-billion-dollar organizations to start-ups. In this episode of Tuesday Morning Grind, Christian and Steve discuss what it takes to b...2021-09-2842 min
Atlanta Business RadioChristian Hyatt With risk3sixtyChristian Hyatt is a serial entrepreneur with 15 years of experience in security, privacy, and compliance. Based on his experience as an entrepreneur and from working with dozens of unicorn start-ups (start-ups with $1B+ valuation), Christian brings a unique and philosophical perspective to cybersecurity, privacy, and what it takes to build a successful business. Risk3sixty [...]2021-09-2222 minTuesday Morning Grind: A Cybersecurity Podcast#41: Ex-Anonymous Hacktivist Shares His Story of Crime, Spying, and Cyber War (w/ Mike Jones)Former member of the hacktivist group Anonymous, Mike Jones, shares his insider perspective on cybersecurity, privacy, and the future of our digital world. After a career in military intelligence Mike Jones grew weary of the mass surveillance apparatus and decided to join the hacktivist group Anonymous. Soon the FBI showed up and Mike became a confidential informant working to fight foreign adversaries. Since then, Mike has continued his journey as a world-renowned security researcher, penetration tester, public speaker, advocate for young people at risk, and founder of the cybersecurity community haunted hacker. About risk3sixty: ri...2021-09-2138 minTuesday Morning Grind: A Cybersecurity Podcast#40: Elite Sales Teams Put One Thing Above All Else (w/ John Kaplan)World renowned sales coach, John Kaplan, talks about how the key to sales is all about customer experience. John Kaplan is the president and co-founder of Force Management. For the last 20 years he has helped organizations build elite customer centric sales teams. In this episode of Tuesday Morning Grind, we break down some of the myths about sales and talk about how good salespeople only care about one thing: the customer.About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security a...2021-09-1449 minTuesday Morning Grind: A Cybersecurity Podcast#39 – There Are No Shortcuts In Entrepreneurship or Marketing (w/ Justin Nassiri)Serial entrepreneur, Justin Nassiri, talks about digital marketing and entrepreneurship.Justin Nassiri is the CEO and Founder of Captivate.ai. Since starting his career in the Navy onboard nuclear submarines, he has earned his MBA from Stanford Business School and raised over $3M in venture capital from Google’s Chairman, Eric Schmidt. His marketing technology products have been used by over 35 Fortune 500 companies and over 100M users worldwide. In this episode of Tuesday Morning Grind, we break down some of the myths about entrepreneurship and marketing and how growth requires consistent effort, skill, and luck.Ab...2021-09-0734 min
Tuesday Morning Grind: A Cybersecurity Podcast#38: SalesLoft’s Security Journey (w/ Mike Meyer)VP of Security at SalesLoft, Mike Meyer, provides insight into building a program for a unicorn start-up.SalesLoft has received nearly $250M in funding and was recently valued at over $1.1 Billion. To say their growth has been meteoric is not an exaggeration. During that growth, Mike Meyer has worked to build a security program that can scale with the organization. Under Mike’s leadership, SalesLoft has achieved ISO 27001 certification, worked to build trust with clients, and forged relationships across the organization that instill a culture of security. In this episode of Tuesday Morning Grind, Mike shares much of...2021-08-3143 minTuesday Morning Grind: A Cybersecurity Podcast#37: You Can Be Happy Doing Anything, Even Auditing (w/ Robert Berry)Robert Berry once focused his career on auditing, but has come to learn the secret to happiness. In this episode, Robert and Christian explore the world of auditing, risk management, and of course – being happy.About Robert Berry: Robert is a 20+ year veteran of auditing, with a career in consulting, financial services and higher education. Today, Robert is an entrepreneur, serving as a trainer, author, socialmedia influencer, public speaker, blogger, e-commerce merchant and podcast host. A dynamic and energetic personality, Robert brings passion not generally associated with audit. You can find Robert on his website (thatauditguy.com), hi...2021-08-2447 minTuesday Morning Grind: A Cybersecurity Podcast#36: It’s Fraud, People! (w/ Kelly Paxton)About Kelly Paxton: Kelly is a former US Special Agent, certified fraud examiner, author, private investigator, public speaker and podcast host. Today, Kelly is a solopreneur, serving as a fraud consultant and public speaker on topics covering “Pink Collar” crime, ethics, open source investigations and social media. You can find her Great Women in Fraud podcast on all the traditional podcast channels, as well as her weekly LinkedIn Live podcast, “Friday Fraudster” which she co-hosts with Robert Barry and Jo Erven.About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth t...2021-08-1739 minTuesday Morning Grind: A Cybersecurity Podcast#35: ISACA Geek Week: The Biggest Volunteer Led Security Event in Atlanta (w/ Elizabeth Mavetz)ISACA VP of Operations, Elizabeth Mavetz, talks about the purpose and mission of Geek Week – the biggest volunteer lead security event in Atlanta.ISACA Atlanta connects thousands of security, privacy, and risk professionals in the Atlanta area. If you talk to security professionals in Atlanta, almost everyone has been to a monthly or annual ISACA event. Many people have launched careers, earned certifications, and forged friendships through the events ISACA hosts. It has truly become a staple of the growing security and privacy community. In this episode, we speak to VP of Operations Elizabeth Mavetz about ISACA At...2021-08-1027 minTuesday Morning Grind: A Cybersecurity Podcast#34: Platform.sh’s Security and Privacy Journey (w/ Joey Stanford)VP of Security and Privacy at Platform.sh, Joey Stanford, provides insight into building a trust-based security and privacy program for a global tech start-up.There is nothing easy about building a security and privacy program that can scale globally at a tech-start up, but Joey Stanford is showing the world it can be done. With the support of Leadership, for the last 5 years Joey has been working tirelessly to instill a culture of security and privacy into his organization. In this episode of Tuesday Morning Grind, Joey shares much of his wisdom in how to build...2021-08-0346 minTuesday Morning Grind: A Cybersecurity Podcast#33: risk3sixty 5 Years in Review (w/ Co-founder Christian White)July 2021 marks risk3sixty’s 5-year anniversary. To celebrate, Christian Hyatt and Christian White talk about their journey and where risk3sixty is headed next. We have two goals with this episode of Tuesday Morning Grind: 1) We want to get current team members excited about being a part of risk3sixty. We want our team to have some insight into where we have been, where we are going, and why this is a unique place to build a career. 2) We want future team members that are considering risk3sixty to have a reference guide...2021-07-2754 minTuesday Morning Grind: A Cybersecurity Podcast#32: The hacker Pyr0 (w/ Luke “Pyr0” McOmie)World famous hacker Pyr0 and risk3sixty co-founder Christian Hyatt explore the depths of becoming a world-famous hacker and living to tell the tale. Covering topics from building security teams, the origins of the nickname Pyr0, and living off the grid. Pyr0 is a man that explores the careful balance between chaos and order. On the one hand Pyro is a hacker, a rule breaker, a pyrotechnics expert, and proud owner of a gold mine who lives off the grid in a remote region of Colorado. On the other hand, Pyr0 is dedicated to stopping cyber-crime, sharing h...2021-07-2037 minTuesday Morning Grind: A Cybersecurity Podcast#31: How Great Leaders Scale Organizations (w/ Colonel Rob Campbell)Rob and Christian discuss what it means to be a leader and how great leaders can scale organizations. Rob Campbell is a leadership coach, keynote speaker, and author of two books. Prior to leadership coaching, Rob was an Army Colonel and Brigade Commander for the 101 st Airborne Division where he lead a brigade of nearly 5000 individuals. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering services related to SOC 2, ISO 27001, PCI DSS, HITRUST, Virtual CISO, Privacy Pr...2021-07-1331 minTuesday Morning Grind: A Cybersecurity Podcast#30: Cybersecurity Trends and Emerging Risks (w/ Coalfire Co-Founder Kennet Westby)Kennet Westby and Christian Hyatt talk about what it’s like to build a cybersecurity firm and where the industry is headed.Kennet Westby is the co-founder of Coalfire, serial entrepreneur and investor, and cybersecurity expert. Since 2001 he has helped build and assess security programs from start-up, fortune 500 organizations, and government entities. In this episode of Tuesday Morning Grind, Kennet and Christian talk about what it’s like to build a cybersecurity firm and where the industry is headed.About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high grow...2021-07-0635 minTuesday Morning Grind: A Cybersecurity Podcast#29: How Privacy Will Shape Society and Business (w/ Daniel Solove)Christian speaks with world renounced privacy researcher Daniel Solove about the current and future implications of privacy on society and business.About Daniel Solove: Daniel is a research professor at George Washington University Law School, CEO of TeachPrivacy.com, and holds a JD from Yale Law School. Daniel is one of the most respected and frequently sited privacy professionals on earth, with over 50 research publications, and over 1M followers on social media.About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess...2021-06-2940 minTuesday Morning Grind: A Cybersecurity Podcast#28 Matters of Privacy (with Privacy Guru Robert Glaser)Robert is a longtime privacy leader, currently serving as a Vice President & Chief Privacy Officer at Entisys360. In this episode of the Tuesday Morning Grind, Robert and Christian talk about Robert’s path into the privacy field, board-level awareness of privacy concerns, ethics and privacy, education, and much more.2021-06-2248 minTuesday Morning Grind: A Cybersecurity Podcast#27: Open Source Matters (w/ LinuxQuestions.org Founder Jeremy Garcia)Jeremy Garcia is the founder of LinuxQuestions.org and an open-source expert. In this episode of Tuesday Morning Grind, Jeremy and Christian talk about managing a community of 500,000 users, the merits of open source technology, cybersecurity, privacy, and much more.About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high-growth technology organizations build, manage, and assess security and privacy programs. Offering services related to SOC 2, ISO 27001, PCI DSS, HITRUST, Virtual CISO, Privacy Programs (GDPR, CCPA, etc.), Penetration Testing, and a GRC Platform built for cloud technology companies, Phalanx. You can learn...2021-06-1532 minTuesday Morning Grind: A Cybersecurity Podcast#25: Predicting Hacks Before They Happen (w/ Ph.D. Paulo Shakarian)Paulo Shakarian is an expert in predicting cybersecurity events before they happen. In this episode, Christian and Paulo discuss the cyber underground, leveraging machine learning and threat intelligence to predict the likelihood a vulnerability will be exploited by hackers, and the nature of war in the cybersecurity domain. About Cyr3con: Paulo is the CEO of Cyr3con. Cyr3con leverages machine learning and threat intelligence to predict potential cyber exploits. Learn more at www.cyr3con.ai/. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth tec...2021-06-0849 minTuesday Morning Grind: A Cybersecurity PodcastHow to get PCI DSS Certified (w/ PCI QSA Christian White)In this episode of Tuesday Morning Grind, Christian White and Christian Hyatt discuss address many of the common questions associated with PCI DSS, the process to become certified, how to prepare a budget, and how long it takes. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering services related to SOC 2, ISO 27001, PCI DSS, HITRUST, Virtual CISO, Privacy Programs (GDPR, CCPA, etc.), Penetration Testing, and a GRC Platform built for cloud technology companies, Phalanx. You can learn more ab...2021-06-0133 minTuesday Morning Grind: A Cybersecurity Podcast#24: Virginia’s New Privacy Law (w/ Privacy Fellow Philip Brudney)Christian Hyatt and Phillip Brudney discuss Virginia’s new privacy regulation and potential impacts to consumers and businesses. We compare the privacy law to GDPR and CCPA and discuss things organizations might want to consider in building a privacy program. About risk3sixty: risk3sixty is a security, privacy, and compliance consulting firm that helps high growth technology organizations build, manage, and assess security and privacy programs. Offering services related to SOC 2, ISO 27001, PCI DSS, HITRUST, Virtual CISO, Privacy Programs (GDPR, CCPA, etc.), Penetration Testing, and a GRC Platform built for cloud technology companies, Phalanx. You can lea...2021-05-2720 minTuesday Morning Grind: A Cybersecurity Podcast#23: Cyber War (w/ Colonel Andrew Hall)In this episode of Tuesday Morning Grind, Andy and Christian discuss topics ranging from cyber warfare, the Army’s role in cybersecurity, competition between nations, cybersecurity in advanced education, and privacy. Colonel Andrew Hall is a cybersecurity expert, retired army colonel, associate professor at Marymount University where he researches cybersecurity, and cybersecurity research staff member at the Institute for Defense Analysis. Before joining Marymount, He was on the faculty at the United States Military Academy at West Point, in the Department of Mathematical Sciences. He was most recently the Director of the Army Cyber Institute, the Army’s Thin...2021-05-2554 minTuesday Morning Grind: A Cybersecurity Podcast#22: How to Get a Job in Security(w/Security Recruiter Pete Strouse)Pete Strouse has been an information security recruiter for a decade. During that time, he has had the opportunity to work with hundreds of professionals and learn what works and what doesn’t when it comes to rising through the ranks of security org structures. In this episode of Tuesday Morning Grind, Pet and Christian, talk about what it takes to be successful in the security space, how to get hired, how to rise through the ranks, potential career paths, and the attributes of aspiring security leaders. About Infosec Connect: Infosec Connect helps provide recruiting and...2021-05-2050 minTuesday Morning Grind: A Cybersecurity Podcast#21: How to Build a Happy Company (w/ Cooleaf Co-founder Prem Bhatia)Prem Bhatia is the co-founder of Cooleaf, a platform that helps make the employee experience better. In this episode of Tuesday Morning Grind, Prem and Christian discuss the challenges of entrepreneurship and building workplaces where the whole team is excited to be there. About Cooleaf: Cooleaf’s market-leading platform empowers midsize and enterprise customers to listen to employee sentiment, engage employees through recognition & rewards, performance incentives, and virtual group experiences, and make more data-driven decisions to continuously improve the employee experience. Guest: Prem Bhatia About risk3sixty: risk3sixty is a security, privacy, and compliance consul...2021-05-0447 minTuesday Morning Grind: A Cybersecurity Podcast#20: Building a Business Helping Others Achieve Financial Freedom (w/ Qoins CEO Christian Zimmerman)Christian Zimmerman is the Founder and CEO of Qoins, a mobile app designed to help people get out of debt and manage their finances. Christian is a Forbes 30 under 30 and has been featured on CNN Money, Forbes, NBC, and more. In this episode of Tuesday Morning Grind, Christian and Christian discuss the challenges of entrepreneurship, raising capital, growing teams, how to get press, and getting your first clients. About Qoins: Qoins is a mobile app designed to help users get out of debt, save money, and manage their financial life. You can download Qoins on the app st...2021-04-2740 minTuesday Morning Grind: A Cybersecurity Podcast#19: What it Takes to Start a Side Hustle (w/ Data Analytics Guru Trent Russell)Data analytics, side hustles, starting a podcast, entrepreneurship, internal auditing, and more. 2021-04-2037 minTuesday Morning Grind: A Cybersecurity Podcast#18: Gap Selling, Improv Comedy, and Happiness at Work (with Happiness Consultant Brooklyn Dicent)Brooklyn and Christian discuss entrepreneurship, leadership, happiness, and becoming a great public speaker. 2021-04-0656 minTuesday Morning Grind: A Cybersecurity Podcast#17: Building a SaaS Company, Security Awareness, Creating Cartoons (with Nick Santora)Christian Hyatt and Nick Santora discuss what it takes to build a SaaS start-up. 2021-03-3051 min
Beyond the UniformBTU #389 - Founding a high-tech security company (Christian White)About this Episode: After serving in the Army for 6.5 years, Christian founded an advisory and technology firm focused on helping High-Growth Technology Companies build, manage, and certify their Security, Privacy, and Compliance programs. He has quickly grown his company - risk3sixty - to over 20 employees and it seems like they are just getting started. In this interview we talk about character, we talk about being a steward of a company, we talk about the differences in leadership in and out of uniform, about long-term thinking, finding a co-founder and much more. About Christian: Christian White is the Managing Director a...2021-03-2253 minTuesday Morning Grind: A Cybersecurity Podcast#16: The Future of Privacy (with HITRUST Chief Privacy Officer Nikole Davenport)Nikole Davenport is the Chief Privacy Officer of HITRUST and Fellow of Information Privacy with the IAPP. In this episode of TMG, Christian and Nikole discuss the future of privacy, the evolving regulatory environment, tips on staying more private on the web, and the future of privacy certifications for businesses.2021-03-1646 minTuesday Morning Grind: A Cybersecurity Podcast#15: 10 Tips to Achieve GDPR Compliance (with IAPP privacy fellow Philip Brudney)Privacy expert Philip Brudney provides practical tips to achieve GDRP compliance and build a privacy program. 2021-03-0944 minTuesday Morning Grind: A Cybersecurity Podcast#14: Security Leadership, Hacker Culture, Biggest Security Concerns (with CISO/hacker Mike Weber)Security leadership, hacker culture, and the future of information security.2021-03-0251 minTuesday Morning Grind: A Cybersecurity Podcast#13: Ten Tips to Achieve ISO 27001 Certification (With ISO 27001 Auditor Sawyer Miller)ISO 27001 auditor, Sawyer Miller, discusses insider tips from hundreds of assessments for getting ISO 27001 certified. 2021-02-1637 minTuesday Morning Grind: A Cybersecurity Podcast#12: Decentralization, The Fight for Privacy, How to Secure Your Phone (with Hacker Ryan Basden)Hacker Ryan Basden discusses how to enhance personal privacy with a more decentralized web. 2021-02-1652 minTuesday Morning Grind: A Cybersecurity PodcastPrivacy: The Fiduciary Standard | Who is looking out for your data?IAPP Privacy Fellow, Philip Brudney, discusses the Fiduciary Standard. 2021-02-0232 minTuesday Morning Grind: A Cybersecurity PodcastTuesday Morning Grind #11: The HITRUST Certification Process in Plain EnglishOverview of the HITRUST certification process, in plain English. 2021-01-1228 minTuesday Morning Grind: A Cybersecurity PodcastTuesday Morning Grind #10: What is Dark Web MonitoringWhat is the dark web? What is dark web monitoring. Listen to find out! 2021-01-0526 minTuesday Morning Grind: A Cybersecurity PodcastTuesday Morning Grind #9: Breaking Down the SUNBURST HackA breakdown of the biggest hack of 2020: SUNBURST2020-12-2942 minTuesday Morning Grind: A Cybersecurity PodcastHow to Attract, Develop, and Keep Top Cybersecurity TalentShane and Christian discuss how to attract, develop, and deep top cybersecurity talent.2020-12-1732 minTuesday Morning Grind: A Cybersecurity PodcastTuesday Morning Grind #8: How to Audit DevOps for SecurityLearn how to audit DevOps for security best practices. 2020-12-1534 min
Service Academy Business Mastermind#141: Starting an Information Security Business with Christian White, USMA ‘09Christian White (USMA ‘09) is the managing director and co-founder of risk3sixty, an information security advisory firm that helps companies build, manage, and certify their information security, privacy, and compliance programs. Christian always knew that he wanted to start a business and, although he had no background in information security, he was able to grow risk3sixty through successful team building and his willingness to learn the business from the ground up. In this episode, we discuss: The five core values that frame every aspect of risk3sixty’s business How risk3sixty’s success came from C...2020-12-0735 minTuesday Morning Grind: A Cybersecurity PodcastTuesday Morning Grind #5: Security Team Sub-Culture (Part 2)Shane and Christian discuss why your security team needs it's own sub-culture.2020-11-1726 minTuesday Morning Grind: A Cybersecurity PodcastTuesday Morning Grind #4: Why Doesn't Your Security Team Have a Mission and Core Values?Every business book says that organizations should have a defined mission and set of core values that supports everything they do. If that's true, then why doesn't your security organization? In this episode of TMG, Shane and Christian discuss how to attract, develop, and retain security talent for the long haul.2020-11-1035 minTuesday Morning Grind: A Cybersecurity PodcastTuesday Morning Grind #3: The Tools You Choose Impact The Culture You HaveShane and Christian discuss the world of toolset selection and how the tools you choose impact the culture of your organization.2020-11-0332 minTuesday Morning Grind: A Cybersecurity PodcastTuesday Morning Grind #2: Security Program Lifecycle ManagementShane and Christian discuss our take on security program lifecycle management. #cybersecurity #security #leadership #risk3sixty2020-10-2732 minTuesday Morning Grind: A Cybersecurity PodcastTuesday Morning Grind #1: Saving Culture Remotely Takes EffortWith organizations shifting to remote work during the COVID-19 pandemic, salvaging your culture takes work. Shane and Christian discuss what has worked and what hasn't when it comes to building culture and serving clients in the cybersecurity and compliance space. #business #cybersecurity #compliance #culture2020-10-2034 minTuesday Morning Grind: A Cybersecurity PodcastHow to Design a Security Program Organizational StructureWith experience working with hundreds of organizations, in this webcast we discuss the security organization structures most effective in reducing risk, reducing cost/overhead, and consistently being able to obtain certifications like #ISO27001 and #SOC2.2020-09-1845 minTuesday Morning Grind: A Cybersecurity PodcastPrivacy Shield Was Invalidated - Now What?In this video we will discuss the recent Privacy Shield invalidation and the relevant implications for companies. #Privacy #PrivacyShield #Security2020-07-3012 minTuesday Morning Grind: A Cybersecurity PodcastThe CISO Role: How to Design a Security Leadership Role Custom Fit to for Your OrganizationIn this Episode, veteran CISO Shane Peden and Christian Hyatt discuss the common pitfalls of the CISO role as well as a framework to design a CISO role that makes sense for your organization.2020-07-2441 min
Tuesday Morning Grind: A Cybersecurity PodcastSOC 2 Basics: Everything You Need to Get a SOC 2 ReportIn this podcast we cover the basics of SOC 2 reporting, what to expect during a SOC 2 audit, and why a SOC 2 report may make sense for your organization. #SOC2 #cybersecurity #Compliance2020-06-2031 min
Tuesday Morning Grind: A Cybersecurity PodcastISO 27701: Everything you need to prepare for ISO 27701 certificationIn this webinar we discuss everything you need to prepare for an ISO 27701 certification, including the link between ISO 27701 and ISO 27001. We also discuss the implementation and certification process. #ISO27001 #ISO27701 #Privacy #Security2020-06-2039 min
Tuesday Morning Grind: A Cybersecurity PodcastISO 27001 Basics: Everything You Need to Get CertifiedIn this video we will cover the basics of ISO 27001, the implementation process, and the certification process. #ISO27001 #cybersecurity #risk3sixty2020-06-2043 min
Tuesday Morning Grind: A Cybersecurity PodcastPentest Engagement Types: A Guide to Understanding Simulated Attack TypesThis webinar will define and explain common penetration test offerings in detail, outline the key differences and benefits, and which engagement type is the best fit for your organization. #penetrationtesting #cybersecurity #security2020-06-2035 min