SecurityMetrics Podcast
The SecurityMetrics Podcast, hosted by Jen Stone (Principal Security Analyst, QSA, CISSP, CISA), will help you understand current data security and compliance trends. Each episode will feature a different security professional offering tips and security best practices.
Episodes
103 episodes
Cybersecurity for Families: A Parent-Child Guide to Online Safety | SecurityMetrics Podcast 104
Download the guide: https://www.cisecurity.org/insights/white-papers/from-both-sides-a-parental-guide-t...
•
Season 5
•
Episode 16
•
27:27
Building a Resilient Healthcare System: A Cybersecurity Blueprint | SecurityMetrics Podcast Ep 103
Links from the episode:https://405d.hhs.gov/Discover the latest trends and threats in healthcare cybersecurity. This episode explores the real-world impact of cyberattacks on patient care, the vulnerabilities of medical devices, and...
•
Season 5
•
Episode 15
•
38:29
Which SAQ type is right for my business? | SecurityMetrics Podcast Ep 102
Confused about PCI DSS compliance standards? This video breaks down each available SAQ type, including: SAQ-A, SAQ P2PE-HW, SAQ D for Service Providers, and the newly introduced SAQ SPoC for PCI DSS 4.0.Learn which one is right for your ...
•
Season 5
•
Episode 14
•
32:02
Farm to… DevOps?: How anyone can grow into a tech career | SecurityMetrics Podcast Ep 101
Join Jen Stone as she chats with DevOps engineer and Day Two DevOps podcaster Kyler Middleton about her unique journey from a rural upbringing to becoming a DevOps expert. Discover how Kyler's passion for teaching led her to a career in ...
•
Season 5
•
Episode 13
•
36:08
Getting more from Your Penetration Test: Stop Checking Boxes | SecurityMetrics Podcast Ep 99
Is your penetration testing just a compliance formality? This episode of the SecurityMetrics Podcast redefines pen testing as a strategic partnership, empowering you to get the most out of your assessments.Join Jen Stone and James Farnsw...
•
Season 5
•
Episode 11
•
44:59
Level Up Your Healthcare Services: HIPAA Compliance for MSPs | SecurityMetrics Podcast 98
This episode of the SecurityMetrics Podcast is a valuable resource for MSPs who want to learn more about HIPAA compliance and how to better serve their healthcare clients. Join Jen Stone and David Sims to learn more about how Managed Service Pr...
•
Season 5
•
Episode 10
•
37:45
The Future of Security: Leveraging Automation & AI | SecurityMetrics Podcast 97
Struggling to automate security tasks? Feeling overwhelmed by the process?This episode of the SecurityMetrics podcast dives deep into the world of automation with guest Mollie Breen, founder and CEO of Perygee. Mollie, a recognized cybersec...
•
Season 5
•
Episode 9
•
33:00
Data Risk Management: Building a Safer Data-Driven World | SecurityMetrics Podcast 96
There are four key questions to ask about your data: Where is it? What data do you have? Who has access? What risks are associated with how the data is accessed? Tune in this week as Jen Stone sits down with award-winning entrepreneur, Ani Chau...
•
Season 5
•
Episode 8
•
28:23
Hacking Your Career: How to Become a Penetration Tester | SecurityMetrics Podcast 95
Becoming a penetration tester in the world of cybersecurity can be more complex than you'd think, but don't let that spook you. Tune in this week as Jen Stone sits down with James Farnsworth (Team Lead / Senior Penetration Tester at SecurityMet...
•
Season 5
•
Episode 7
•
42:21
Bridging the Cybersecurity Skills Gap | SecurityMetrics Podcast 94
Tune into the SecurityMetrics Podcast this week as host Jen Stone interviews Tillery, Director of Training and Education at Neuvik, to learn about the cybersecurity skills gap and how to bridge it.Listen to learn:H...
•
Season 5
•
Episode 6
•
36:07
How to Communicate Cybersecurity Risk Effectively | SecurityMetrics Podcast 93
Tune in this week as Jen Stone sits down with Ryan Leirvik (founder and CEO of Neuvik) to discuss how to effectively communicate cybersecurity risk to a board of directors.Listen to learn:How to frame cybersecurity...
•
Season 5
•
Episode 5
•
37:46
HHS 405(d) Fundamentals: A Guide for Healthcare Providers and MSPs | SecurityMetrics Podcast 92
Tune in this week as Jen Stone sits down with Donna Grindle (CEO of Kardon) to learn about the Health Industry Cybersecurity Practices (HICP) framework and how the 405(d) initiative and the Health Sector Coordinating Council (HSCC) are working ...
•
Season 5
•
Episode 4
•
41:12
Demystifying the Acquirer's Role in PCI Compliance | SecurityMetrics Podcast 91
Tune in this week as Jen Stone sits down with Candice Pressinger, an award-winning payment security leader, discussing the critical role acquirers play in the PCI ecosystem. This episode is a valuable resource for merchants seeking to understan...
•
Season 5
•
Episode 3
•
19:09
HITRUST Certification: Navigating Challenges & Solutions | SecurityMetrics Podcast 90
HITRUST certification can be a significant undertaking. However, with the right guidance and support, organizations can overcome the challenges and establish a strong foundation for data security. Tune in this week as Jen Stone (MCIS, CISSP, CI...
•
Season 5
•
Episode 2
•
32:52
Securing the CDE: Navigating Multi-Factor Authentication in PCI DSS 4.0 | SecurityMetrics Podcast 89
In this episode of the SecurityMetrics Podcast, Jen Stone chats with Keith O' Looney, an expert in multi-factor authentication (MFA) and PCI DSS compliance. They discuss the new requirements for MFA in PCI DSS 4.0, the challenges organizations ...
•
Season 5
•
Episode 1
•
35:15
PCI Compliance at Scale: Challenges & Solutions with Mars Global Team | SecurityMetrics Podcast 88
In this episode of the SecurityMetrics podcast, Jen Stone chats with Heidi Babi (PCI Security Assurance & Compliance Sr. Lead at Mars Corporation) about managing PCI compliance in a massive, complex organization with hundreds of data flows....
•
Season 4
•
Episode 26
•
20:28
Inside GEAR: How QSAs are Influencing the Future of Payment Security Standards
Join Jen Stone of SecurityMetrics as she sits down with two industry veterans, Gary Glover (VP of Assessments at SecurityMetrics) and Andy Barratt (VP of Assurance Business at Coalfire), for a lively discussion about their careers, the challeng...
•
Season 4
•
Episode 25
•
25:49
Preparing for PCI DSS Version 4.0: Insights from the Community Meeting | SecurityMetrics Podcast 86
In this episode of the SecurityMetrics Podcast, Jeremy King (Regional VP for Europe, Middle East, and Africa at the PCI Security Standards Council) provides an overview of the recent community meeting in Dublin, Ireland, and why it is important...
•
Season 4
•
Episode 24
•
21:32
Updates to the Software Security Framework (SSF) from PA-DSS | SecurityMetrics Podcast 85
This episode of the Security Metrics Podcast discusses the transition from the Payment Application Data Security Standard (PA-DSS) to the Software Security Framework (SSF). The guest speaker, Jake Marcinko, is a Standards Manager at the PCI Sec...
•
Season 4
•
Episode 23
•
27:38
EMVCo and PCI: How These Security Standards Support Each Other | SecurityMetrics Podcast 84
PCI SSC takes great care in working with other key technical bodies, such as EMVCo. Arman Aygen (Master of Science (MSc) in Communication Systems from EPFL (École Polytechnique Fédérale de Lausanne), MSc in Multimedia Communication Systems from...
•
Season 4
•
Episode 22
•
21:20
Data Leakage: How PCI DSS 4.0 Requirements Help | SecurityMetrics Podcast 83
The new PCI 4.0 requirements focused on managing payment page scripts are excellent because they can be used to address data leakage risks with other cybersecurity standards and regulations, such as HIPAA. John Elliott, GRC Consultant with a fo...
•
Season 4
•
Episode 21
•
28:42
Protecting APIs | SecurityMetrics Podcast 82
Application Programming Interfaces (APIs) are critical targets for malicious actors seeking to steal credit card data and other sensitive information. Any organization that uses APIs needs to learn how to protect them.Dan Barahona, Foun...
•
Season 4
•
Episode 20
•
21:42
Emerging PCI DSS 4.0 Requirements: Solutions to 6.4.3 and 11.6.1 | SecurityMetrics Podcast 81
Payment page scripts in consumer browsers need to be secured as defined in these new PCI DSS 4.0 requirements. Organizations that are doing their research on the best way to meet these requirements will be interested in this episode.Jef...
•
Season 4
•
Episode 19
•
36:00
PCI DSS 4.0: One Organization’s Experience | SecurityMetrics Podcast 80
With the required shift from PCI DSS 3.2.1 to 4.0 upon us, many organizations are concerned about their ability to successfully meet new requirements. Martin Kenney, Senior Systems Engineer/Admin, IT at InfoSend, sits down with Host and Princip...
•
Season 4
•
Episode 18
•
18:15
Responding to Hackers: Vulnerability Disclosures and Bug Bounties | SecurityMetrics Podcast 79
Ethical hackers and cybercriminals are not the same thing, and it can be beneficial to establish a channel to communicate with hackers trying to alert you to vulnerabilities. Ilona Cohen, Chief Legal and Policy Officer at Hacker One, and Harley...
•
Season 4
•
Episode 17
•
35:14