Rick Howard, the Cyberwire’s CSO and Chief Analyst, is joined by Hash Table members Bob Turner, University of Wisconsin at Madison CISO, and Tom Quinn, T. Rowe Price CISO, to discuss IoT as new CISO responsibilities ..read more

Rick Howard, the Cyberwire’s CSO and Chief Analyst, is joined by Hash Table members Helen Patton, Duo Security at Cisco Advisory CISO, Steve Winterfeld, Akamai Advisory CISO, and Marc Sachs, Auburn University’s McCrary Institute for Cyber and Critical Infrastructure Security's Deputy Director for Research, to discuss cybersecurity strategies and tactics in the energy sector ..read more

Rick Howard, the Cyberwire’s CSO and Chief Analyst, is joined by Hash Table members Denise Anderson, Health-ISAC President and CEO, Errol Weiss, Health-ISAC CSO, and Rick Doten, Carolina Complete Health CISO, to discuss cybersecurity strategies and tactics in healthcare ..read more

Rick Howard, the Cyberwire’s CSO and Chief Analyst, is joined by Hash Table members Gary McAlum, USAA’s former CSO, Jerry Archer, Sallie Mae’s CSO, and Steve Winterfeld, Akamai’s Advisory CISO, to discuss cybersecurity strategies in finance and antifraud ..read more

Part two discussion about third party security orchestration platforms (like Fortinet, Cisco, Checkpoint, and Palo Alto Networks) at the Cyberwire’s hash table with Rick Howard, the Cyberwire’s CSO and Chief Analyst and three guests: Ram Boreda, a Palo Alto Networks Field CTO, Joakim Lialias, a Product Marketing Director at Cisco, and Ashish Rajan, the host of the Cloud Security Podcast. For a complete reading list and even more information, check out Rick’s more detailed essay on the topic ..read more

In part one of a two part series, Rick Howard, the Cyberwire’s CSO and Chief Analyst, discusses the need for third party security platforms (like Fortinet, Cisco, Checkpoint, and Palo Alto Networks) as the main tool for security executives to orchestrate a consistent first principle security policy across all their data islands. For a complete reading list and even more information, check out Rick’s more detailed essay on the topic ..read more

Bob Turner joins Rick at the Cyberwire’s Hash Table to discuss securing the University of Wisconsin at Madison’s big data lake project using the Google Cloud Platform (GCP) and the GCP zero trust architecture: BeyondCorp. Bob is the university’s CISO. This is part two of a mini-series on GCP. In part one, Rick does a deep dive into how GCP works and is astonished by the design of the Google zero trust architecture. Part one also has a written companion essay with an extensive reading list. For a complete reading list and even more information, you can find the essay here ..read more

In part one of a two part series, Rick Howard, the Cyberwire’s CSO and Chief Analyst, discusses Google GCP first principle thinking (intrusion kill chain prevention, zero trust, resilience, and risk forecasting). Rick shows how Google learned from its competitors and created a different design that emphasizes ease of use and Google’s version of zero trust: BeyondCorp. For a complete reading list and even more information, check out Rick’s more detailed essay on the topic ..read more

Jerry Archer, Merritt Baer, and Mark Ryland join Rick around the Hash Table. They discuss Amazon AWS first principle thinking (intrusion kill chain prevention, zero trust, resilience, and risk forecasting). Jerry Archer is the Sallie Mae CSO, Merritt Baer, a Principal Security Architect at Amazon Web Services and Mark Ryland is Amazon Web Services, Office of the CISO. CSO Perspectives episodes are usually released in pairs - so make sure to listen to part 1 if you haven’t already. For a complete reading list and even more information, check out last week’s essay ..read more

Rick compares Amazon AWS and Microsoft Azure networking basics and then analyzes how well AWS can help network defenders deploy the four CSO Perspectives first principle strategies: resilience, zero trust, intrusion kill chain prevention, and risk assessment. Resources: S1E6: 11 MAY: Cybersecurity First Principles S1E7: 18 MAY: Cybersecurity first principles: zero trust S1E8: 26 MAY: Cybersecurity first principles: intrusion kill chains. S1E9: 01 JUN: Cybersecurity first principles - resilience S1E11: 15 JUN: Cybersecurity first principles - risk S2E7: 31 AUG: Identity Management: a firs ..read more