”The Cyber Hero Adventures Show: Defenders of the Digital Universe”!

We have a great panel today including Jeff Shaffer, VP of Client Engagement and Business Development at Aon Cyber Solutions who will share stories of real-life insider threats during his time with both Aon and 25 years with the U.S. Secret Service and much more.
We are SO fortunate to have Lynn Mattice, Managing Director of Mattice and Associates LLC, President of the National Economic Security Alliance and a Distinguished Fellow at the Ponemon Institute who will share best practices based upon his extensive experience in the Defense and Intelligence Community.
We'll begin by hearing our guest's "origin stories" and learn about their "missions". Then, we'll cover the motivations behind insider threats and share real-life stories answering three questions:1. What happened?2. What were the consequences?3. What were the lessons learned?We'll discuss the best practices to prevent, detect and respond to insider threats and related issues.
All of that and more on today's episode...
 
 

We have two great thought leaders on today's show!
Sandy Silk is the Director of Information Security and Consulting at Harvard University. Sandy leads a team of information security specialists who consult with researchers, faculty and departments on security risks and controls for the high risk data, technology, and vendors they use within their projects. Her team also manages the annual information security self-assessment across the University, coordinates the annual review process for the Information Security Policy, and produces the security awareness campaign and related IT Academy training courses.
Our next guest is Joan Ross, the Chief Intelligence Officer at InsightCyber. Joan is a Global technologist focused on cyber security, machine learning, AI, threat analysis, secure design, global services, incident response, software defined networking, encryption key management, privacy, infrastructure reliability, and successful technical implementation of industry leading cyber security strategy.

Our first guest is Joseph Davis, the Chief Security Advisor at Microsoft for US Health & Life Sciences, where he advises payors, providers, pharmaceuticals, lab sciences, medical devices and various research organizations https://www.microsoft.com/security/blog/.
Prior to Microsoft, Joseph lead North America Security Advisory for Avanade/Accenture.
He spent over a decade at Covidien (now Medtronic) building their information and security practices including traditional IT Security (SOC, Incident Response & Forensics), Security Architecture, Identity and Access Management, Enterprise IT Risk, IT Compliance and Data Privacy. As if that was NOT enough, he also built a world-class Global Security Operations Center.
Our next guest is Nina Alli. For the past five years, Nina has served as the Executive Director of the Biohacking Village overseeing the phenomenal growth of the Device Lab, Speaker Track, and Hands On Lab. Nina hosts White Hats and Lab Coats: The Biohacking Village podcast: https://whitehatslabcoats.org.
Prior to that, Nina spent 16 years in healthcare, building/breaking/securing Electronic Medical Records, connected medical IoT devices, and working in the Citizen Science area on microfluidics.
We'll discuss why the healthcare sector is the MOST vulnerable?
How are cyber criminals leveraging Covid-19 to deploy ransomware and other cybercrimes?
What about the issues regarding legacy systems?
Are medical devices safe from hackers?
What can you do to protect your Personal Health Information (PHI).
All of that and much more on today's show.
I hope this helps...
Gary Berman
 
 
 

We have a GREAT panel today including Joseph Rosenbaum, a Partner at Rimon Law. Among many other things, Joe is a thought leader regarding Cybersecurity, Data Protection, Rights of Privacy and Publicity and he is a nationally recognized expert in digital and mobile marketing, media and entertainment law.
Steven Teppler is a Partner and Chair of the Cybersecurity and Data Privacy Practice at Mandelbaum Salzburg, P.C. Steve is the Co-chair of the Electronic Discovery and Digital Evidence Committee of the Science and Technology Section of the American Bar Association.
Steve and Joe will share real-life stories of cybercrime and the challenges of complying with GDPR and the patchwork of state regulations regarding data privacy and related matters.
We'll begin by hearing our guests origin stories and learn about their missions. Then, we'll share and discuss real-life stories answering three questions regarding data privacy and cybersecurity law:
What are the risks and consequences?
Why does it matter?
What should you do?
We'll discuss the best practices and practical tips on how to protect and respond to the myriad of legal challenges and the risks – legal, financial and operational - facing large enterprises and small to medium sized businesses.
All of that and more on today's episode...
 

We have a special SOLO guest on today's show, Tobias Whitney-VP Energy Solutions at Fortress Information Security.
At Fortress, Tobias Whitney leads sales and marketing as the Vice President of Energy Security Solutions. He is a recognized leader in control systems security solutions with over 20 years of critical infrastructure security experience, which includes founding the security practice at Burns & McDonnell and a focus on regulatory compliance, supply chain, and cloud security.
Most recently, Whitney spent two years as Technical Executive at the Electric Power Research Institute (EPRI), evaluating risks in supply chain cybersecurity for utilities, developing solutions to address security architecture for utility cloud-based solutions, as well as researching "grid edge" technologies, such as electric vehicle charging and distributed energy infrastructure. 
Whitney spent six years at NERC, where he led a team that helped deliver CIP-V5 cybersecurity standards, evaluated compliance across the power utility industry, and worked with utilities to ensure effective adoption. This experience uniquely positions him to help Fortress and its customers adapt to changing security and compliance requirements.
We'll discuss the unique challenges facing the energy sector including dealing with all of the various stakeholders in the public and private sector. Tobias will share his vast experience in regulating portions of the energy sector and in navigating the sometimes competing interests. He'll share best practices to protecting the energy ecosystem and real-life stories of attempted and successful cyber attacks. All of that and more on today's episode!
i hope this helps...Gary Berman

Today's show focuses on answering the question: How will a security architect apply his skills to architect a more competent, secure and diverse cybersecurity and information technology future?
Our special guest is Ron Eddings. Ron is the Manager and Security Architect at Palo Alto Networks.
As a Security Architect leader, he's responsible for facilitating growth for others and consistently creating a pipeline of security leaders. His team is highly effective when planning, designing, and implementing security controls for enterprise organizations.
In addition, his team of security architects are leaders in creating security policies, standards, and guidelines.
During implementation, our team assists enterprise organizations with :• Detection engineering• Case management• Creating and automating incident responses processes• Creating automation via Python and Javascript• Threat Intel Management
He assists organizations scale security controls while reducing complexities that analyst and engineers face and he works closely with analysts, engineers, and enterprise stakeholders to provide production security workflows that are measurable and can grow at scale.
Ron is committed to consistently advocating for team success and he considers himself to be a lifetime learner who is constantly finding ways to hone his craft in technology.
As if that wasn't enough, he's the co-host of Hacker Valley Studio, a GREAT podcast.
If YOU would like to be a guest on our show, please email: gary@cyberheroescomics.com
 

Today's show focuses on answering the questions: How do we collectively protect our nation's critical infrastructure? Does A rising information tide actually lift all ships?
We have an incredible guest on today's show, Scott. Algier.
Scott works at the intersection of cybersecurity policy and operations. He is the Founder, President and CEO of cybersecurity consulting firm Conrad, Inc.
Scott is the Executive Director of the Information Technology – Information Sharing and Analysis Center (IT-ISAC), and Executive Director of the Industry Consortium for Advancement of Security on the Internet (ICASI).
What you'll learn from today's show...
What is the definition of Critical Infrastructure?
What is the mission of CISA (Cybersecurity Infrastructure Security Agency).
What are the sectors of American life are affected by critical infrastructure cybersecurity?
Which sector(s) are most vulnerable?
What is the role of the IT-ISAC
What about your leadership role with the other I-SACS such as the healthcare?
All that and MORE on today's show!
To connect with Scott, send an email to: scott@conradinc.biz, visit www.conradinc.biz  or on Twitter @ConradCyber.
If you would like to be a guest on our show, please send an email to gary@cyberheroescomics.com
We hope this helps! Gary Berman
 

Today's show focuses on answering the question: Assuming that Cybersecurity IS National Security: How do we get our house in order? We have a great lineup including:
Sam Visner is the Director, National Cybersecurity Federally Funded Research and Development Center at MITRE and a Board Member at the Space ISAC. He's also a Professor at Georgetown University and he worked at the NSA as well!
Lauren Zabierek is the Executive Director of the Cyber Security Project at Harvard University's Belfer Center. She is a Recorded Future Alum. National Geospacial Intelligence Alum. United States Air Force Veteran and a Former DoD civilian intelligence analyst with multiple deployments.
Retired Brigadier General Greg Touhill was the first Federal Chief Information Security Officer of the United States government. Now President of AppGate Federal, he serves as a faculty member at Carnegie Mellon University's Heinz College and on the ISACA board of directors. General Touhill also serves on the Federal Advisory Boards of Splunk and Intel corporations.
 
We'll learn about the central role that cybersecurity plays across the social, economic and political aspects of life in a highly-connected digital universe.
What are the strengths and weaknesses of our current defense postures across the DHS Critical Infrastructure sectors.
What are the best practices to understand the motivations and techniques that hackers including criminal gangs, nation states and lone wolfs.
We'll learn first-hand about the challenges of becoming the FIRST federal government CISO?
All that and MORE on today's show!
Here is the contact information for our guests:
Sam Visner
svisner@mitre.org
https://www.mitre.org/centers/national-cybersecurity-ffrdc/who-we-are
https://www.georgetownjournalofinternationalaffairs.org/online-edition/spotlight-on-cyber-vi-the-cybersecurity-storm-front-forces-shaping-the-cybersecurity-landscape-a-framework-for-analysis
https://www.mitre.org/sites/default/files/publications/pr-19-3594-recommended-security-controls-for-voter-registration-systems.pdf
https://collaborate.nist.gov/voting/pub/Voting/VVSG20DraftRequirements/vvsg-2.0-2019-10-29-DRAFT-requirements.pdf
https://squint.mitre.org/  
Lauren Zabierek
https://www.belfercenter.org/person/lauren-zabierek
Greg Touhill
www.appgate.com
gary@cyberheroescomics.com

Today's show focuses on answering the question: What is the state of the credit and risk management cybersecurity ecosystem?
We have a GREAT panel including Ian Cohen, CEO of Apomaya.com. Apomaya gives companies control over third-party data and risks so they can protect their customers’ privacy. Prior to his current role, he was the General Manager at Experian’s Consumer Services Division and Chief Executive Officer of Credit.com from 2009-2015.
Ofer Israeli leads Illusive Networks and he is a pioneer of deception-based cybersecurity. They are known as a company at the forefront of the next evolution of cyber defense. Prior to establishing Illusive Networks, Ofer managed development teams based around the globe at Israel’s seminal cybersecurity company Check Point Software Technologies and was a research assistant in the Atom Chip Lab.
And finally, we have Andrew Robinson, who is the Chairman of Apomaya. Andrew has been at the forefront of networking for over 30 years, previously serving in executive roles at Akamai and Bluecoat.
We'll learn about the  history in the credit sector and our thought leader's opinions about the current "credit and risk management" environment?
What are the strengths and weaknesses regarding cybersecurity within the Financial Services sector?
Are they seeing an increase in the number and nature of attacks?
What about ransomware and cyber insurance?
For more information: Apomaya.com
Contact: ian@apomaya.com
 
Illusive Networks, visit www.illusivenetworks.com, contact them at info@illusivenetworks.com or follow on LinkedIn, Twitter and Facebook. 
If you would like to be a guest on our show, please send an email to gary@cyberheroescomics.com
 
 

Today's show focuses on answering the question: How do organizations Secure the Office of the Future?
Businesses demonstrated that they can quickly shift their workforces from on-premise to remote - with 73% of executives calling it a success, based on PwC’s recent remote work survey.
However, many admit that they have much more to do to prove that their remote-work arrangements are secure.
And there isn’t much time - with 62% expecting risks from use of non-enterprise devices and software in the next six months due to remote work according to PwC’s Digital Trust Insights Pulse Survey.CISOs face a unique opportunity to both secure and enable their businesses, but must make strategic investments with budgets likely to remain flat for the foreseeable future.Should the transition to the (remote) office of the future come with the price of a cyber attack?
Some companies are considering remote work as a permanent arrangement for some of their employees. What steps do CISOs/cyber professionals need to take to enable workers to switch seamlessly between home and office for both themselves and with their co-workers while keeping adequate security controls?
You will learn about the biggest threats facing companies with newly remote workforces?What are the common pitfalls in the shift to a remote work environment? How have cyber professionals/CISOs responded, and where are the opportunities for them?What should employers and employees keep in mind in terms of cyber awareness and training?With budgets unlikely to grow, what investments should cyber professionals/CISOs prioritize now to secure a remote work environment? What cyber investments should they prioritize to help companies usher in a new digitally agile environment?
We haver a fantastic panel of unsung cyber heroes who represent the countless people who toil in anonymity to keep us safe at home, work and school!.
Sean Joyce is PwC's Global and US Cybersecurity, Privacy & Forensics Leader, working with clients in various sectors providing strategic guidance, leading transformational initiatives, and advising on incident breach response and how to use cybersecurity and resiliency as business enablers.
Sean previously served as the Deputy Director with the FBI, and had daily oversight of the 36,000 men and women of the FBI and its $8 billion annual budget.
Emily Staff is PwC’s Cybersecurity, Privacy and Forensics Integrated Solutions Leader, specializing in incident & threat management, crisis management, cybersecurity strategy and product & service strategy and leadership.
Ms. Stapf serves as a strategic advisor to commercial clients for complex cybersecurity investigations, cybersecurity strategy, trust, resilience and business enablement solutions, and regulatory and litigation matters involving sensitive information.
Dr. Deniz Caglar is a leading practitioner in strategic cost transformation for Strategy&, PwC's strategy consulting business, based in Chicago. He has deep expertise in organization design, corporate function efficiency and effectiveness, shared services, and outsourcing/offshoring.
He primarily focuses on Consumer Packaged Goods and Retail industries and also has extensive experience in Automotive, Healthcare, and Financial Services industries.
Stay tuned and you will get answers to these questions and more on today's show!