<description>&lt;p&gt;All links and images for this episode can be found on &lt;a href= "https://cisoseries.com/failure-is-the-likely-option/" target= "_blank" rel="noopener"&gt;CISO Series&lt;/a&gt;.&lt;/p&gt; &lt;p&gt;When cybersecurity needs to cut budget, first move is to look where you have redundancy. That way you're not actually reducing the security effort. But after that, the CFO needs to know what are the most important areas of the business to protect. Where will they be willing to take on more risk? Because, with less security, the chances of failure increase.&lt;/p&gt; &lt;p&gt;This show was recorded in front of a live audience in New Orleans as part of the &lt;a href= "http://www.securitybsides.com/w/page/151713813/BSidesNOLA%202023"&gt;BSidesNOLA 2023&lt;/a&gt; reboot conference. The episode features me, &lt;a href= "https://www.linkedin.com/in/davidspark/"&gt;David Spark&lt;/a&gt; (&lt;a href= "http://twitter.com/dspark"&gt;@dspark&lt;/a&gt;), host and producer of CISO Series. My guest co-host is my former co-host, &lt;a href= "https://www.linkedin.com/in/allanalford/"&gt;Allan Alford&lt;/a&gt; (&lt;a href= "http://twitter.com/allanalfordintx"&gt;@allanalfordintx&lt;/a&gt;), CISO for &lt;a href="https://www.precedent.com/"&gt;Precedent&lt;/a&gt; and host of &lt;a href="https://thecyberranchpodcast.podbean.com/"&gt;The Cyber Ranch Podcast&lt;/a&gt;. Our guest is &lt;a href= "https://www.linkedin.com/in/woodsmi/"&gt;Mike Woods&lt;/a&gt;, corporate CISO for &lt;a href="http://ge.com/"&gt;GE&lt;/a&gt;.&lt;/p&gt; &lt;p&gt;&lt;strong&gt;Thanks to our podcast sponsors: Conveyor, Nightfall AI, Rapid7&lt;/strong&gt;&lt;/p&gt; &lt;p&gt;&lt;a href= "https://www.conveyor.com/one-platform-for-security-reviews?utm_medium=sponsorship&amp;utm_source=CISO-series-headlines" target="_blank" rel="noopener"&gt;&lt;img src= "https://assets.libsyn.com/secure/show/24425/conveyor-banner-ad-600x100-bsides-nola.png" alt="Conveyor" width="600" height="100" /&gt;&lt;/a&gt;&lt;/p&gt; &lt;p&gt;&lt;em&gt;Love security questionnaires? Then you’re going to hate Conveyor: the end-to-end trust platform built to eliminate questionnaires.&lt;/em&gt;&lt;br /&gt; &lt;em&gt;Infosec teams reduce the volume of questionnaires with a customer-facing trust portal and for any remaining questionnaires, our GPT-Questionnaire Eliminator response tool or white-glove questionnaire completion service will knock them off your to-do list. &lt;a href= "https://www.conveyor.com/one-platform-for-security-reviews?utm_medium=sponsorship&amp;utm_source=CISO-series-headlines"&gt; www.conveyor.com&lt;/a&gt;&lt;/em&gt;&lt;/p&gt; &lt;p&gt;&lt;a href="https://www.nightfall.ai/cisoseries" target="_blank" rel="noopener"&gt;&lt;img src= "https://assets.libsyn.com/secure/show/24425/Nightfall-banner-ad-600x100.png" alt="Nightfall" width="600" height="100" /&gt;&lt;/a&gt;&lt;/p&gt; &lt;p&gt;&lt;a href= "https://www.nightfall.ai/cisoseries"&gt;&lt;em&gt;Nightfall&lt;/em&gt;&lt;/a&gt; &lt;em&gt;is the leader in cloud data leak prevention. Integrate in minutes with cloud apps such as Slack and Jira to instantly protect data (PII, PHI, Secrets and Keys, PCI) and prevent breaches. Stay compliant with frameworks such as ISO 27001 and more — all powered by Nightfall's industry-leading ML detection.&lt;/em&gt;&lt;/p&gt; &lt;p&gt;&lt;a href= "http://rapid7.com/ciso-series?utm_medium=pod&amp;utm_source=CISO&amp;utm_content=prospecting&amp;utm_campaign=dgtl-bau-all-dr-us-na" target="_blank" rel="noopener"&gt;&lt;img src= "https://assets.libsyn.com/secure/show/24425/Rapid7-banner-ad-600-100.png" alt="Rapid7" width="600" height="100" /&gt;&lt;/a&gt;&lt;/p&gt; &lt;p&gt;&lt;em&gt;Rapid7 is the only connected, cloud to on-prem cybersecurity partner with unlimited incident response, unlimited automated workflows, unlimited vulnerability management, unlimited app security, you get the idea. Add it up – with Rapid7’s decades of practitioner-first problem solving – and there’s unlimited opportunity for you. See for yourself at &lt;a href= "http://rapid7.com/ciso-series?utm_medium=pod&amp;utm_source=CISO&amp;utm_content=prospecting&amp;utm_campaign=dgtl-bau-all-dr-us-na" target="_blank" rel= "noreferrer noopener"&gt;Rapid7.com/ciso-series&lt;/a&gt;.&lt;/em&gt;&lt;/p&gt; &lt;p&gt;In this episode: &lt;/p&gt; &lt;ul&gt; &lt;li&gt;We always say, “trust but verify,” but how do you actually verify?&lt;/li&gt; &lt;li&gt;When it comes to cut budget, make sure you’re already in the mind of the CFO.&lt;/li&gt; &lt;li&gt;What’s the difference between a good cybersecurity professional and a great one?&lt;/li&gt; &lt;/ul&gt;</description>

CISO Series Podcast

David Spark, Mike Johnson, and Andy Ellis

Failure Is The Likely Option

MAY 30, 202345 MIN
CISO Series Podcast

Failure Is The Likely Option

MAY 30, 202345 MIN

Description

All links and images for this episode can be found on CISO Series.

When cybersecurity needs to cut budget, first move is to look where you have redundancy. That way you're not actually reducing the security effort. But after that, the CFO needs to know what are the most important areas of the business to protect. Where will they be willing to take on more risk? Because, with less security, the chances of failure increase.

This show was recorded in front of a live audience in New Orleans as part of the BSidesNOLA 2023 reboot conference. The episode features me, David Spark (@dspark), host and producer of CISO Series. My guest co-host is my former co-host, Allan Alford (@allanalfordintx), CISO for Precedent and host of The Cyber Ranch Podcast. Our guest is Mike Woods, corporate CISO for GE.

Thanks to our podcast sponsors: Conveyor, Nightfall AI, Rapid7

Love security questionnaires? Then you’re going to hate Conveyor: the end-to-end trust platform built to eliminate questionnaires. Infosec teams reduce the volume of questionnaires with a customer-facing trust portal and for any remaining questionnaires, our GPT-Questionnaire Eliminator response tool or white-glove questionnaire completion service will knock them off your to-do list. www.conveyor.com

Nightfall is the leader in cloud data leak prevention. Integrate in minutes with cloud apps such as Slack and Jira to instantly protect data (PII, PHI, Secrets and Keys, PCI) and prevent breaches. Stay compliant with frameworks such as ISO 27001 and more — all powered by Nightfall's industry-leading ML detection.

Rapid7 is the only connected, cloud to on-prem cybersecurity partner with unlimited incident response, unlimited automated workflows, unlimited vulnerability management, unlimited app security, you get the idea. Add it up – with Rapid7’s decades of practitioner-first problem solving – and there’s unlimited opportunity for you. See for yourself at Rapid7.com/ciso-series.

In this episode: 

  • We always say, “trust but verify,” but how do you actually verify?
  • When it comes to cut budget, make sure you’re already in the mind of the CFO.
  • What’s the difference between a good cybersecurity professional and a great one?