Real CyberSecurity
The Real Cybersecurity Podcast decrypts the issues and business of technology security. But instead of just scaring you, these industry veterans provide real advice and analysis for organizations trying to make security real today. Hosted by Greg Young and Bill Malik.
Episodes
78 episodes
Ep. 73 - Breach Disclosure Laws, Water Treatment, Faraday, and Walking Around
Greg and Bill discuss how breach disclosure laws could play out while discussing the recent events around SUNBURST, water treatment as targets, and the critical CISO skill of just walking around and talking to people.
•
Season 1
•
Episode 73
•
46:08
Ep. 72 - CISOs & the SEC, Cybersec Digital Fight Club, & Twitter
Bill reports that Mastodon lives on and how awful Twitter is, we talk about the SEC complaint re: the SolarWinds CISO, and Greg reports on his Digital Fight Club experience in Dallas (and how awesome it was)
•
48:23
Episode 71 - Biggest Cybersecurity Tech & Idea Fails in 2023
Bill and Greg nominate their candidates for biggest fails in cybersecurity in 2023 - we focus on the ideas or technologies that were hyped and just didn't deliver.
•
31:59
Ep. 70 - Election Security
Cybersecurity for elections is likely going to be hitting the news more often. Bill and Greg discuss the big picture issues of election security, why governments struggle with election security at all (spoiler: it isn't because technology isn't...
•
33:16
Ep. 69 - AI, Breaches, Splunk, and Bears, Oh My
An update of the state of AI cybersecurity (including the hype) and a roundup of noteworthy breaches in the news. Also our thoughts on Splunk.
•
Season 1
•
Episode 69
•
41:37
Ep. 68 - Posture Management in Cybersecurity - A Big Deal
This week Bill and Greg dig into posture management - not the chair - but the posture of assets, people, and identities and such. We discuss why infrastructure and operating system companies won't ever make best in breed security, and why infra...
•
48:52
Ep. 67 - Guest Jeff Wheatman, GRC, 3rd Party Risk, & More Risk
Discussion on risk, GRC, and 3rd party risk with former Gartner analyst who is now with Black Kite.
•
54:52
Ep.66 - New SEC Cybersecurity Reporting Rules, & Jonathan Frakes
Greg covers the new SEC rules for disclosing cybersecurity incidents, and our celebrity reporter Bill has a brush with greatness in the personage of Jonathan Frakes.
•
45:52
Ep. 65 - National Cybersecurity Strategy, Startup FundingChallenges
This week in Real Cybersecurity we celebrate the 365 day countdown to Skynet, the Guidelines for the National Cybersecurity Strategy, startup funding challenges, & recent hack news including Microsoft and Revolut.
•
Season 1
•
Episode 65
•
40:33
Ep. 64 - Interview with Dr Gene Spafford
A real treat for you today, as Bill brought in his friend Spaff for a great chat. One highlight was hearing about his newest book, Cybersecurity Myths and Misconceptions: Avoiding the Hazards and Pitfalls that Derail UsA...
•
Season 1
•
Episode 64
•
53:07
Ep. 63 - Secrets, Policy, and AI & Black Swans
We discuss Bill's ugly luggage, how new entries to the cybersecurity job market are often exploited, lapsing CISSPs, what really happened around Y2K, the limitations of AI in risk management, and why declassifying in a cavalier manner is catast...
•
49:55
Ep. 62 - Listener Questions about AI
Bill and Greg answer listener questions about AI. And we didn't use ChatGPT for our answers. I think.
•
Season 1
•
Episode 62
•
39:11
Ep.61 - Report from RSA Conference, and Maritime Cybersecurity.
Our roving reporter Bill gives his impressions of the RSA Conference 2023, his talk on maritime cybersecurity he delivered just an hour before our recording. Greg asserts that without public-private partnership cybersecurity is hob...
•
Season 1
•
Episode 61
•
38:20
Ep. 60 - Cybersecurity of AI,& the Impact of a Bay Area Bank Collapse
Bill and Greg discuss the security aspects of AI, the 'black box' of AI is vulnerable to being manipulated or polluted, or having biases that aren't evident to subjects., how a Bay Area bank collapse will impact cybersecurity, and Bill's visit ...
•
Season 1
•
Episode 60
•
36:09
Ep. 59 - Cyber Security Framework (CSF) & Ransomware Update
Bill updates us about the updates to the NIST CSF (Cyber Security Framework), and we talk about the state of ransomware.
•
41:40
Ep. 58 Securing FinTech, and a brief mention of AI, and ChatGPT
Greg and Bill dig into the unique cybersecurity needs of FinTech, and manage to keep blockchain mentions down to a few mentions. In the 2nd part some brief security impact of ChatGPT and AI. Bill has a great story about naming collisions.
•
38:04
Ep. 57 - The Crypto Queen, Airline Cybersecurity, and Downsizing vs Skills Gap
Bill and Greg try and unravel where the Crypto-Queen has skedaddled to, how all airline IT and cybersecurity are not equal, and how downsizing hasn't made a dent in the cybersec skills gap and people shortage.
•
37:43
Ep. 56 - Infragard, ChatGPT, Public-Private Partnerships, Russia
We cover a lot of recent cybersecurity news, including AI developments, Infragard and the cyberwar part of the Russian/Ukraine war, and why it is the new era of Public-Private Partnerships
•
41:15
Ep. 55 - Recession Cuts in Cybersec? Trim Here...
Greg and Bill discuss options when faced with recession cuts. Cut shelfware, or a platform could be your best bet in getting rid of inefficiencies. Cuts in cybersec aren't a common thing, but even so, getting rid of inefficacies and shelf...
•
49:27
Ep. 54 - Cybersecurity Supply Chain, Secure Code Isn't Secure Forever
This week we talk about the issues in the wide-spread use of open source components, and what an attractive target that makes for the bad guys.
•
46:53
Ep. 53 - Information Theory, Control Systems Vulnerabilities
Bill educates us on satellite and control systems vulnerabilities, and we go philosophical on information theory. Sorry about the sound on one channel.
•
35:24
Ep. 52 - Zero Trust Status,Twitter Drama, and 5.5G?
This episode we answer the question "what is the state of zero trust?", and discuss the Twitter drama, Bill's recent talk in Santa Clara on automotive cybersecurity, and what the fudge is 5.5G (spoiler - not a real thing).
•
35:32
Ep. 51 - Top 6 Cybersec Business & Tech Issues for 2023
Bill and Greg present their top 6 issues you'll likely come across in cybersecurity in 2023. 3 are business related, and 3 are techie.
•
24:38
Episode 50 - Lessons from the Uber Hack, and Machine Learning in Cybersecurity
Recent hacks of well known tech firms bring us some lessons learned. The biggest lesson is that creating a security debt often doesn't work out. Maybe a big part of our security staff shortage is we're producing the wrong kinds of securit...
•
40:51
Episode 49 - The Cybersecurity Market, and Channels, Backup, and SMB
Bill gives the OneDrive screwdriver a 1 star review as a backup hammer. We discuss how this shows that consumer and enterprise security tools are different, and being good for one does not mean naturally it is good as the other - it takes a con...
•
36:56