Claim OwnershipThird Party Threat Hunters
Subscribed: 2Played: 7
Subscribe
© 2024 Third Party Threat Hunters
Description
A dialogue with leaders in Cybersecurity and Third-Party Risk Management led a leader in the field: Gregory Rasner (author, "Cybersecurity & Third-Party Risk: Third-Party Threat Hunting" and "Zero Trust and Third-Party Risk: Reduce the Blast Radius")
16 Episodes
Reverse
SummaryIn this episode, Gregory interviews Jay Bobo, the creator and CEO of Breach Siren, about third-party risk management. They discuss the challenges of using crappy and expensive tools in the space, the need for accountability from regulators and ISACs, and the financial impact of third-party risk. They also explore how cybersecurity breaches can affect other risk domains and the importance of risk identification and event notification. The conversation concludes with a plan to continue d...
Guest Adam Shostack helps us understand how Large Language Model is useful (and maybe not so) in threat modeling.
On this episode we talk to Threat Modeling guru Adam Shostack (check out his website https://shostack.org/about/adam) and discuss some great topics:1. Cyber Public Health Initiative - how do we measure progress in cyber?2. Language Learning Models in Threat Modeling3. How to use Threat Modeling in Third-Party Risk
George Finney, CISO at SMU, CEO of Well Aware Security, and author of two books, the latest being "Project Zero Trust" is our guest. He and Greg talk zero trust, third-party risk, training, and about the SolarWinds SEC case.
Tune in to this episode with co-author of "Zero Trust Security: An Enterprise Guide" and the Technical Editor for my next book "Zero Trust and Third-Party Risk", Jerry Chapman. The topics range from Zero Trust (duh!), to software vulnerabilities, a good primer on "Control Plane" and its impact on SaaS, Artificial Intelligence and much more! Great episode and a lot of fun
Listen in on a lively discussion with the Chairman of the Board for Third Party Risk Association and Director of Verizon's TPRM program. We talk about zero-day software vulnerabilities and how we all struggle to deal with them, off some solutions, some more problems, and discuss upcoming TPRA Conferences and their benefits.
In this episode, we've got Rob Wood, as the CISO from Medicare/Medicaid, whose passion around third-party risk and cybersecurity is unmatched. Learn how many of us are 'doing it wrong' and get some great soft-skills discussions.
This episode is jam-packed full of great information as we meet and discuss a variety of risk topics with Clar Rosso, CEO of ISC2. From Cyber Insurance, to a Third Party Risk Task Force they are standing up, the challenges faced in the Cyber workforce, and how to improve Cyber GRC, there is a lot to learn and discover in this episode.
Watch the hosts and guest, Dustin Sachs (doctoral candidate and GRC leader at World Fuel Systems) discuss how TPRM is not a set of tools or technologies, but processes to identify, track and close risks.
Join the host, co-host and guest, Julie Gaiaschi (CEO for TPRA) in discussing breaches and third-party risk management, along with other insights:how to better manage interactions with vendorswhat should be your main goal as a cyber and third-party risk management professionaltraining and certification opportunities at TPRAfree membership to practitioners and very low cost professional membership advantages
Join the host, co-host and guest, Julie Gaiaschi (CEO for TPRA) in discussing breaches and third-party risk management, along with other insights:how to better manage interactions with vendorswhat should be your main goal as a cyber and third-party risk management professionaltraining and certification opportunities at TPRAfree membership to practitioners and very low cost professional membership advantageslisten to Greg do his first podcast and amuse yourself at his expense!The PowerPoint sl...
SummaryThe conversation covers the Third Party Risk Association's training and certification programs, upcoming events, and the development of new certificate programs. It also delves into the importance of third-party risk management, compliance, and resilience. The discussion highlights the need for specialized training and tools in the field of third-party risk management.KeywordsThird Party Risk Association, certification programs, training, compliance, resilience, third-party risk manage...
Great time talking with Dr. Chase Cunningham about a variety of topics:Dangers of Deep FakesHis new book "How NOT to Lead...Dumpster Chickens and Mushroom Farmers"Small Business CybersecurityData Security and Zero Risk adoption challengesPre-order his book on Amazon: https://www.amazon.com/How-NOT-Lead-Chase-Cunningham/dp/1394201982/ref=sr_1_1?crid=3RMSOYTCDQD1E&keywords=how+not+to+lead&qid=1701799719&sprefix=how+not+to+lead%2Caps%2C135&sr=8-1
In this episode, we learn so much I have to listen to the podcast myself to let it all sink in! Are SBOMs (Software Bill of Materials) the answer to software security?How is "Provenance" and software security related?Some awesome tips on how to tell if your software providers is producing secure and stable products. How can a Security Champions program super-charge your third-party risk program?Chris is a fountain of information on software security and best-practices.
Comments
Download from Google Play
Download from App Store
United States