Episode 113: Cyber Risk Prioritization as Ransomware Defense

Update: 2024-12-11

Description

In episode 113 of Cybersecurity Where You Are, Tony Sager is joined by Phyllis Lee, VP of SBP Content Development at the Center for Internet Security® (CIS®); Adam Bobrow, Co-Founder and President of Veribo Analytics; and Sridevi Joshi, Co-Founder and CEO of Veribo Analytics. Together, they discuss how the Business Impact Analysis tool created by CIS and Veribo Analytics empowers individuals and organizations to use cyber risk prioritization as a basis for their ransomware defense strategy.

Here are some highlights from our episode:

04:35 . Background on the impetus for the tool's development
07:57 . How our understanding of cybersecurity risk differs from other areas of risk
12:21 . Insight into Sridevi's learning process about cyber risk prioritization as a technologist
18:23 . How the development process of the Business Impact Analysis tool got underway
21:05 . What went into the process of translating the goal into tooling
31:34 . Reflections on the tool's reception and what's next

Resources

If you have some feedback or an idea for an upcoming episode of Cybersecurity Where You Are, let us know by emailing podcast@cisecurity.org.

Comments

Top Podcasts

The Best New Comedy Podcast Right Now – June 2024 The Best News Podcast Right Now – June 2024 The Best New Business Podcast Right Now – June 2024 The Best New Sports Podcast Right Now – June 2024 The Best New True Crime Podcast Right Now – June 2024 The Best New Joe Rogan Experience Podcast Right Now – June 20 The Best New Dan Bongino Show Podcast Right Now – June 20 The Best New Mark Levin Podcast – June 2024

In Channel

Episode 117: 2025 Cybersecurity Predictions from CIS Experts

2025-01-0833:43

Episode 116: AI-Enhanced Ransomware and Defending Against It

2025-01-0133:38

Episode 115: Continuous Feedback as CIS Employee Culture

2024-12-2532:03

Episode 114: 3 Board Chairs Reflect on 25 Years of Community

2024-12-1848:53

Episode 113: Cyber Risk Prioritization as Ransomware Defense

2024-12-1141:17

Episode 112: How SANS Fosters Action on Cybersecurity Trends

2024-12-0446:56

Episode 111: Distilling a First Principle of Cybersecurity

2024-11-2747:04

Episode 110: How Security Culture and Corporate Culture Mesh

2024-11-2041:38

Episode 109: The Scariest Malware of 2024

2024-11-1338:42

Episode 108: Gaming and Competition in Cybersecurity

2024-11-0640:48

Episode 107: Continuous Improvement via Secure by Design

2024-10-3037:36

Episode 106: How to Avoid Falling for a Donation Scam

2024-10-2332:05

Episode 105: Context in Cyber Risk Quantification

2024-10-1633:19

Episode 104: Inside the First Year of a Cybersecurity Career

2024-10-0932:56

Episode 103: Education vs. Experience in Cybersecurity

2024-10-0231:16

Episode 102: The Sporty Rigor of CIS Controls Accreditation

2024-09-2536:34

Episode 101: Visualizing Attack Paths in Active Directory

2024-09-1834:14

Episode 100: Celebrating 100 Episodes and Looking Ahead

2024-09-1141:59

Episode 99: How Cyber-Informed Engineering Builds Resilience

2024-09-0434:23

Episode 98: Transparency as a Tool to Combat Insider Threats

2024-08-2835:50

00:00

Episode 113: Cyber Risk Prioritization as Ransomware Defense

#box-pro-ellipsis-173650274948168{-webkit-line-clamp:2;}Episode 113: Cyber Risk Prioritization as Ransomware Defense

Episode 113: Cyber Risk Prioritization as Ransomware Defense

Episode 113: Cyber Risk Prioritization as Ransomware Defense