BSWEpisode180

From Security Weekly Wiki
Jump to navigationJump to search

Business Security Weekly Episode #180 - July 13, 2020

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. Topic - Security Money - 03:00 PM-03:30 PM


Announcements

  • We are looking for high-quality guest suggestions for all of our podcasts to fill our Q3 recording schedule! Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!
  • Register for our upcoming webcasts or virtual trainings by visiting https://securityweekly.com/webcasts. Or visit securityweekly.com/ondemand to view our previously recorded webcasts!

Description

This week, it's our quarterly Security Money update of the Security Weekly 25 Index and the Nasdaq. At the close on July 10th, 2020:

- SW25 Index is 1,437.23, which is an increase of 43.72%

- NASDAQ Index is 10,617.44, which is an increase of 60.01%

Both indexes closed at an all time high on July 10th, 2020



Hosts

Matt Alderman's Content:

Topic Notes

SW 25 - 07102020.png
SW 25 vs NASDAQ - 07102020.png

Paul Asadoorian's Content:

Topic Notes

2. News - What's Next, Board Discussions, and New Cybersecurity Priorities for 2020 - 03:30 PM-04:00 PM


Announcements

  • Join the Security Weekly Mailing List for webcast/virtual training announcements and to receive your personal invite to our Discord server by visiting https://securityweekly.com/subscribe and clicking the button to join the list!
  • With all the recent changes to BlackHat and DefCon, we realized we can keep doing what we do best - host virtual podcasts! I’m proud to announce Hacker Summer Camp 2020, a Security Weekly Virtual, Live-Stream Event, August 3 - August 6, 2020. To reserve your slot now, visit: https://securityweekly.com/summercamp2020

Description

In the Leadership and Communications section, I'm a CISO, what's next?, The Upside of Virtual Board Meetings, The new cybersecurity priorities of 2020, and more!


Hosts

Matt Alderman's Content:

Articles

  • I’m a CISO, what’s next? - Gary Hayslip, CISO, Softbank Investment Advisor, reviews possible career paths for a CISO, including CIO, CTO, CRO, vCISO, and CPO the name a few...
  • Qualys appoints Ben Carr as CISO - Ben Carr, Chief Information Security Officer at Qualys, is responsible for providing cybersecurity guidance and security strategies to Qualys customers, leading the CIO/CISO Interchange, developed in partnership with the Cloud Security Alliance, and securing Qualys. To see our CISO interview with him, please visit BSW #120.
  • What CISOs Should Tell the Board About Cybersecurity - Knowing what to report to the board about security, however, is no easy thing. Here's some guidance for CISOs:
    • Ground the Board in the Basics
    • Talk About the Processes of Security
    • Reporting on Specific Incidents
    • Reporting on Specific Incidents
  • Elevating the MSSP from the Backroom to the Boardroom - While security teams are mired in vulnerability and patching metrics, the board really only wants the answers to three simple questions:
    • Where are we on the cyber-risk spectrum?
    • Where do we want to be?
    • How will we get there?
  • The Upside of Virtual Board Meetings - Here are eight practices that contribute to an excellent virtual board meeting:
    • Emphasize pre-work.
    • Shorten and energize the agenda.
    • Spread sessions over a week or two.
    • Build trust.
    • Use breakout rooms productively.
    • Build in “candor breaks.”
    • Replicate the dinner experience.
    • Bring in guest stars.
  • The new cybersecurity priorities of 2020 - Gartner expects spending on information security to grow about 2.4% in 2020, reaching nearly $124 billion. The firm initially projected and 8.7% growth before the coronavirus pandemic took its toll on the economy. Here's the new priorities:
    • Cloud Security
    • Data Security
    • Application Security
    • Identity Access Management
    • Infrastructure Protection
  • Majority of security pros fed up with alert fatigue - A vast majority of security professionals say they experience alert fatigue, and 88% are facing challenges with their current SIEM setup, according to a report.

Paul Asadoorian's Content:

Articles