BSWEpisode101

From Paul's Security Weekly
Jump to: navigation, search

Business Security Weekly #101

Recorded October 1, 2018 at G-Unit Studios in Rhode Island!

Episode Audio

Hosts

  • Michael Santarcangelo
    Founder of Security Catalyst, author of Into the Breach, and creator of the Straight Talk Framework.
  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Announcements

    • Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at: securityweekly.com/ondemand.
    • DerbyCon is holding its first-ever Mental Health & Wellness Workshop - to help support their efforts, please go to DerbyCon.com/wellness
    • Join us for our Webcast with DomainTools about How To Analyze And Investigate Malicious JavaScript Attacks @3-4pm EST. Go to securityweekly.com/domaintools to register now!


    Interview: Jason Albuquerque, Carousel Industries

    As Chief Information Security Officer, with more than 20 years of experience in the technology field, Jason is responsible for Carousel’s Enterprise Security and Compliance Operations and Center of Excellence. He takes pride in leading the charge, in building a culture that is secure by design for the Carousel community and its clients. Jason brings the highest levels of leadership, industry knowledge, and agility that today’s industry requires to effectively respond to the rapidly changing threat, risk, and business landscapes. He is the recipient of several prestigious awards in technology and leadership, like Rhode Island’s 40 under Forty Award, Rhode Island’s Tech 10 Award, and is a seven time National Public Technology Institute Solutions Award winner. Jason has held roles in Global Services Engineering for Symantec, as an IT Executive in the Public Sector and Served in our United States Marine Corps helping lead Direct Air Support Center Operations. Jason currently serves on Congressman Langevin’s (Co-Chair Congressional Cyber Security Caucus) Cybersecurity Advisory Committee, Tech Collective’s Workforce Development Committee, and the Rhode Island Joint Cyber Task Force.


    Article Discussion on Leadership, Communication, and Innovation

    How to Develop Empathy for Someone Who Annoys You

    https://hbr.org/2018/04/how-to-develop-empathy-for-someone-who-annoys-you

    • Reflect on the situation - it’s not likely on purpose
    • Remember to breathe… and stay calm
    • Follow your curiosity — to both understand and feel
    • Focus on what you have in common instead of what you have in difference
    • Be kind

    Separating The Quality of the Outcome and the Quality of the Decision

    http://tomtunguz.com/outcome-quality-decision-quality/

    • Love the use of process and outcome to assess
    • Important to separate quality of outcome from quality of decision
    • Ideally, good process leads to good outcomes; but not always
    • Focus on process over outcome (in turn, this generates outcomes)
    • Success is a lagging indicator

    Sam Altman on Productivity

    http://blog.samaltman.com/productivity

    • Behold the power of compound growth - small changes adding up
    • Not just what problem? But is it the right problem, right now?
    • Do you allow time to think?
    • Are you working on what you like? What about your team?

    The 14 soft skills every IT pro needs

    https://www.cio.com/article/3269428/it-skills-training/the-14-soft-skills-every-it-pro-needs.html

    • How many of these do you have?
    • How many are you recruiting for?
    • How do you develop them?

    The Danger of Oversimplification: How to Use Occam’s Razor Without Getting Cut

    https://fs.blog/2017/05/mental-model-occams-razor/

    • “Among competing hypotheses, the one with the fewest assumptions should be selected.”
    • Good first step before more evidence and insights are available
    • The world naturally favors simplicity over complexity
    • Of course, simplicity is subjective
    • Be wary of something that sounds simple, but actually holds multiple assumptions



    Follow us on Twitter Watch Security Weekly videos Listen to Security Weekly Security Weekly fan page Connect with Paul Google+