True Colors of Cyber Security Podcast | California Born and Focused

Start Listening

A California-Based Podcast to Discuss the Truth in Cyber Security Everywhere

Episode 8

Listen to Mike Gentile and Kier Lane as they tackle the topic of automation in cyber security.

iTunes | Spotify | Google Music

Automation is a newer aspect of many organization’s cyber security programs. Companies are using technology and other solutions to try and make specific process areas of their security program policies more efficient, hopefully saving members of the team time and effort in certain areas.

Sounds simple, right? Find a solution that does what you want, and everyone’s life is much easier! But it’s not as easy as it sounds.

In this episode, Mike and Kier share their thoughts on automation as a whole, as well as what organizations need to know and what they should look out for if they’re looking to incorporate automation into their environments.

Enjoying True Colors of Cyber Security? Leave us a rating on iTunes!

We would love to hear your suggestions on this episode, or topics for a future episode. Reach out to us on Facebook, Twitter, or LinkedIn @CISOSHARE.

Episode 7

Mike Gentile talks about what you need to know to build your cyber security framework.

iTunes | Spotify | Google Music

Cyber security frameworks. They form the foundation of your company’s security program, but they can easily feel overwhelming. This episode with CISOSHARE’s President and CEO Mike Gentile will hopefully demystify and explain what goes into a successful framework. 

More than just cyber security best practices, the requirements included in your framework should be based on demographic information about your business. This includes where you do business, what kind of data you handle or process, and any regulatory requirements that apply to your industry. Once you gather your requirements, it’s all a matter of correlating similar requirements and putting them together as they apply to security and other areas of your business. 

Another important part of developing your framework is factoring in the review and update processes. At a minimum, your framework should be reviewed annually to reflect any changes in your businesses from year to year. 

Listen to all of the details on Mike’s tips and insights in the podcast! Don't forget to join us for a live webinar on September 24th!

Enjoying True Colors of Cyber Security? Leave us a rating on iTunes! 

We would love to hear your suggestions on this episode, or topics for a future episode. Reach out to us on Facebook, Twitter, or LinkedIn @CISOSHARE. 

Episode 6

CISOSHARE President and CEO Mike Gentile is sharing insight and tips on choosing a vCISO.

iTunes | Spotify | Google Music

In this episode of True Colors of Cyber Security, Mike Gentile walks us through what you need to know when you’re searching for a virtual CISO.

Whether this is the first time you’ve heard about virtual CISOs or they’ve been on your radar for a while, we go over some of the key points that you should know.

We talked a little bit about defining a what a virtual CISO is and how a company can integrate one effectively into their security program, depending on their needs. This can range from engaging a vCISO for an interim security position, outsourcing certain parts of your security program, or even outsourcing every role.

There’s no formulaic approach to finding a vCISO, but the best thing you can do for your organization is to educate yourself. Start by understanding your current security environment and your expectations. Don’t think that bringing a single virtual CISO will solve all your security problems. One person would be hard pressed to develop, implement, and execute an entire cyber security program by themselves.

Enjoying True Colors of Cyber Security? Leave us a rating on iTunes!

We would love to hear your suggestions on this episode, or topics for a future episode. Reach out to us on Facebook, Twitter, or LinkedIn @CISOSHARE.

Episode 5

In the latest episode, we’re sitting down with CISOSHARE’s President and CEO Mike Gentile to talk about 10 mistakes people make in cyber security.

iTunes | Spotify | Google Music

In the latest episode, we’re sitting down with CISOSHARE’s President and CEO Mike Gentile to talk about 10 mistakes people make in cyber security.

We go over 5 mistakes made by newcomers to the cyber security discipline, as well as 5 pitfalls that established veterans fall into. We cover a few of the following topics:

Lack of confidence when starting off in the field. This can be problematic, especially for a discipline as uncertain as cyber security.

Not asking the right questions during meetings, or adequately preparing beforehand.

The inability to write effectively, or writing in a way that jumbles up key ideas.

The assumption that a degree or certification automatically makes you a valuable security resource.

Focusing too much on hard skills rather than soft skills, making it harder to interface with peers and coworkers.

Continuing with legacy security practices and ideas, rather than making a difference and adapting to an organization’s needs and modern considerations.

We go over why people might fall into these mistakes and offer some insight and advice on how to address it.

Enjoying True Colors of Cyber Security? Make sure to leave us a rating on iTunes! Have future suggestions for the podcast? Reach out to us on Facebook or Twitter @CISOSHARE!

Episode 4

In this episode, we’re looking into the human element of cyber security to talk about the veteran experience.

iTunes | Spotify | Google Music

In this episode, we’re looking into the human element of cyber security to talk about the veteran experience.

Mike Gentile talks to us a little bit about why hiring veterans is an important part of CISOSHARE’s culture and business. We’ve opened up the conversation to Adam Couch, CISOSHARE’s Vice President of Professional Services and Xander Hamman, a former CISOSHARE employee that has gone on to be an acting CISO and data privacy officer at another organization.

They talk about their experience transitioning from the end of their military service and share their unique journeys into the cyber security industry.

Listen to their stories, advice, and other tips on making a successful transition into a fast-moving career while taking what you’ve learned from the armed forces or any other experience in your life forward.

Enjoying True Colors of Cyber Security? Make sure to leave us a rating on iTunes! Have future suggestions for the podcast? Reach out to us on Facebook or Twitter @CISOSHARE!

Episode 3

In this episode of True Colors of Cyber Security, we’re joined by some of the talented women in CISOSHARE.

iTunes | Spotify | Google Music

In this episode of True Colors of Cyber Security, we’re joined by some of the talented women in CISOSHARE. We’re joined by Savannah Daugherty, Miad Moussawi, Malia Mason, and Amanda Nieznanski to share their experiences in entering the cyber security space, what it’s been like working in the industry so far, and some of the tips they have to share with anyone interested in starting a cyber security career.

We give advice for people who are afraid cyber security is too technical for their skillset, think they don’t have the right background, or find themselves struggling to get their foot in the door. We also touch on what it’s like to work in a very technical and male-dominant field without fear.

Enjoying True Colors of Cyber Security? Make sure to leave us a rating on iTunes! Have future suggestions for the podcast? Reach out to us on Facebook or Twitter @CISOSHARE!

Episode 2

Thinking about ISO certification? Join us as we talk with Mike Gentile, President and CEO of CISOSHARE and Juliana Wood, Director of Certifications, CIRQ.

iTunes | Spotify | Google Music

In this episode, we’re talking about ISO — certifications, compliance, and how to determine whether your organization needs a full certification, compliance, or something in between.

Join us along with Mike Gentile and our first guest! Calling in from Baltimore, we’re excited to have Juliana Wood, Director of Certifications at CIRQ, the Certification Institute for Research Quality. They’ll be sharing their insights and experiences with ISO from the perspective of a certification body and the perspective of someone who has helped companies prepare for the certification process.

ISO, known globally as the International Organization for Standardization, has over 163 verticals for standards in different areas and industries. We discuss ISO 27001, as well as the common reasons that companies seek certification.

Mike and Juliana provide valuable insight on where certifications are going in the future of security and businesses. We’ll go over the pros and cons of pursuing certifications, and the best ways to start the process for ISO.

Episode 1

Join us as we talk with Mike Gentile, President and CEO of CISOSHARE as we talk about the coming trends for information security in 2019.

iTunes | Spotify | Google Music

In the first episode of True Colors of Cyber Security, Mike Gentile, President and CEO of CISOSHARE offers his thoughts on the coming trends in the information security space this year.

The past few years in cyber security will have an impact on the way businesses will approach cyber security moving forward. Regulations like HIPAA, CFPB, and others have lost the ability to punish organizations that aren’t in compliance, and companies are experiencing a constant state of attack. All of this has led to a change in the way companies approach their information security programs.

We discuss the shift away from compliance-based security into business-based security and how organizations are trying to invest more into their security programs.

We take a look at the way accountability for security programs is changing the dynamic of responsibility between CISOs and CIOs.

Finally, with our theme of looking at the truth in cyber security, we touch on the problem of the lack of authenticity at the board level — what causes it, and how organizations will break the cycle of building ineffective security programs.

About the Podcast

Progress Starts with the Truth

Cyber security is a topic that forces people to make decisions that often evoke emotion behind them. Whether you're new to the discipline or a veteran, it’s that feeling you get after having to make a change to a security board report. You want to play by the rules and do the right thing — but is it always possible? Does everyone else?

Born and based in California for organizations everywhere, True Colors of Cyber Security creates an honest learning and teaching forum for anyone that wants to make integrity-based decisions in cyber security. To enable this type of decision-making, our podcast explores relevant cyber security issues with blunt candor based on real-world scenarios and experience.

This is information and insight not found in security textbooks, white papers, or the common security presentation. But it's knowledge that can be used by anyone to explore the boundaries of their moral code, and most importantly, do their definition of the right thing in today's complex security landscape.