Ahead of the Breach

In this episode of Ahead of the Breach, Casey speaks with Bindi Davé, Deputy CISO at DigiCert, who shares her extensive experience in cybersecurity, focusing on the critical importance of digital trust in today’s interconnected world. She discusses how organizations can establish trust in digital communications and the role of zero trust principles in enhancing security. 
 
Bindi also explores the dual nature of artificial intelligence in cybersecurity, highlighting both its potential to improve efficiency and the risks it poses if mismanaged. Additionally, she emphasizes the need for automation in managing crypto assets to ensure compliance and agility in an evolving threat landscape. 
 
Topics discussed:
 
The significance of digital trust in ensuring secure online interactions and transactions in an increasingly connected world. 
How zero trust principles can enhance security by continuously verifying user identities and access rights across digital platforms.
The dual-edged nature of artificial intelligence in cybersecurity, highlighting its potential benefits and inherent risks when misused.
The importance of establishing trust in AI systems and ensuring the integrity of data fed into machine learning models.
Strategies for automating the management of crypto assets to maintain compliance and prevent security breaches in organizations.
The role of vulnerability assessments and penetration testing in identifying and mitigating security risks within digital infrastructures.
Insights on building effective relationships between security teams and other departments to foster collaboration and enhance overall security posture.
The need for continuous education and training in cybersecurity to keep pace with evolving threats and technologies.
Lessons learned from past incident response experiences, emphasizing the importance of preparedness and effective communication during crises.

In this episode of Ahead of the Breach, Casey speaks with cybersecurity leader and expert, Arif Basha. Arif offers his insights on the critical importance of attack surface management in today’s cybersecurity landscape. Arif highlights how the dissolution of traditional network perimeters has shifted the focus to identity as the new perimeter, emphasizing the need for proactive security measures. 
He also shares insights on the significance of maintaining up-to-date incident response plans and fostering a culture of cybersecurity awareness within organizations. Tune in to learn how to effectively manage vulnerabilities and prepare for potential breaches in an evolving threat environment. 
 
Topics discussed:
The critical role of attack surface management in identifying vulnerabilities and mitigating risks in an increasingly complex cybersecurity landscape. 
How geopolitical tensions impact the security posture of organizations and necessitate a proactive approach to cybersecurity measures.
The shift from traditional network perimeters to identity as the new perimeter, highlighting the importance of multi-factor authentication and access controls.
The significance of maintaining a strong patch management process to ensure systems are secure and vulnerabilities are addressed promptly.
The need for comprehensive incident response plans that include documentation, procedures, and tabletop exercises to prepare for potential breaches.
The importance of fostering a culture of cybersecurity awareness among employees to minimize risks associated with phishing and social engineering attacks.
Insights into the challenges of getting the cybersecurity fundamentals right and why organizations often overlook basic security practices.
The evolving role of AI in cybersecurity, including its potential to enhance incident response and automate threat detection processes.
The necessity of effective communication strategies during a breach, ensuring that internal and external stakeholders are informed and engaged.
The growing importance of cyber insurance and understanding policy coverage to mitigate financial impacts from potential security incidents.

In this episode of Ahead of the Breach, Casey speaks with Joe Mariscal, Director of Cybersecurity and Compliance at Ryerson. Joe brings his extensive experience in the cybersecurity field to discuss topics such as the critical issue of burnout among cybersecurity professionals. He emphasizes the importance of leadership in fostering a supportive work environment. 
 
Joe also highlights strategies for preventing burnout, such as establishing clear boundaries for off time and encouraging open communication. Additionally, Joe delves into navigating compliance frameworks and the emerging threats posed by OT, IoT, and IIoT in the manufacturing sector. Tune in for valuable insights on building resilient cybersecurity teams! 
 
Topics discussed:
 
The importance of leadership in preventing burnout among cybersecurity teams and fostering a supportive work environment that prioritizes mental well-being.  
Strategies for establishing clear boundaries between work and personal time, ensuring that team members can disconnect and recharge effectively.  
The impact of constant on-call expectations on employee stress levels and overall team morale in high-pressure cybersecurity roles.  
Navigating compliance frameworks, including the differences between prescriptive and advisory guidelines, and aligning them with organizational needs and risk profiles.  
Emerging threats in the manufacturing sector, particularly related to operational technology (OT), the internet of things (IoT), and the industrial internet of things (IIoT).  
The challenges of managing legacy systems within cybersecurity and the importance of maintaining an accurate asset inventory for effective defense.  
The role of ongoing training and development in keeping cybersecurity teams sharp and prepared for evolving threats in the digital landscape.  
Utilizing risk registers to prioritize vulnerabilities and communicate effectively with executive leadership about necessary remediation efforts.  
The significance of proactive security measures in identifying and mitigating risks associated with remote support and third-party vendor access.  
Building a resilient cybersecurity culture that encourages open communication, regular check-ins, and support for personal issues affecting team performance.   

In this episode of Ahead of the Breach, Casey speaks with Konrad Fellmann, VP of IT Infrastructure and CISO at Cubic. Konrad explores critical topics in cybersecurity, including privacy implications of data collection in the automotive industry, for example car manufacturers are reportedly selling consumer data. 
 
Konrad also discusses the evolving role of the CISO, emphasizing the importance of pragmatism and understanding business goals. Additionally, he shares proactive strategies for identifying vulnerabilities, such as integrating security early in the development process and conducting regular penetration testing.
 
Topics discussed:
 
The importance of building a security culture within organizations, ensuring that all employees understand their role in protecting sensitive information.  
The evolving responsibilities of a CISO, focusing on the need for pragmatism and effective communication with various stakeholders across the business.  
Strategies for integrating security into the development process from the outset, ensuring that security requirements are established early in projects.  
The dual impact of AI on cybersecurity, enhancing defenses while also providing attackers with tools to craft more convincing phishing attempts.  
Proactive measures for identifying vulnerabilities, including routine vulnerability scans and regular penetration testing to uncover potential weaknesses before exploitation.  
The significance of understanding business goals and aligning security initiatives with organizational objectives to maintain productivity and customer satisfaction.  
The challenges of negotiating with various stakeholders, balancing security needs with operational requirements and budget constraints within the organization.  
The necessity of continuous learning and adaptability in the fast-paced cybersecurity landscape, especially in the context of cloud and DevOps environments.  
The role of encryption and data anonymization in protecting sensitive information and ensuring compliance with privacy regulations in the transportation sector.   

In this episode of Ahead of the Breach, Casey speaks with Al Imran Husain, CISO & VP of Global Infrastructure at MillerKnoll. Al Imran shares his journey into cybersecurity and discusses the unique challenges faced by manufacturing companies, particularly the convergence of IT and OT systems. 
 
He emphasizes the importance of implementing robust security measures, such as network segmentation and user access controls, to protect critical infrastructure. Al Imran also highlights the growing threat of social engineering attacks and the need for effective security awareness training.
 
Topics discussed:
 
The unique cybersecurity challenges faced by manufacturing companies, particularly the integration of operational technology (OT) with information technology (IT).
The Purdue model, which outlines different layers of operational technology and its implications for cybersecurity in manufacturing environments.
The importance of network segmentation to protect critical systems and prevent unauthorized access in manufacturing operations.
Proactive vulnerability management strategies, including scanning for weaknesses and implementing automation to streamline the process.
The necessity of strict user access controls to ensure that only authorized personnel can access sensitive operational technology environments.
The rising threat of social engineering attacks and the importance of security awareness training for employees at all levels.
The significance of understanding cybersecurity fundamentals, including networking and infrastructure, as a foundation for effective security practices.
The role of artificial intelligence in enhancing vulnerability management and improving overall cybersecurity posture in manufacturing.
Advice for CISOs to engage with leadership teams to raise awareness about cybersecurity issues and ensure organizational support for security initiatives. 

In this episode of Ahead of the Breach, Casey speaks with Jack Leidecker, CISO at Gong, who shares his extensive experience in cybersecurity, emphasizing the importance of proactive measures to enhance organizational security. He discusses the value of hiring offensive security professionals to identify vulnerabilities and strengthen defenses. 
 
Jack also highlights the need to balance rapid innovation with effective security practices, ensuring that development teams can work efficiently without compromising safety. Additionally, he provides insights on building a robust security program from scratch, stressing the significance of aligning security initiatives with business goals. 
 
Topics discussed:
 
The necessity of implementing proactive security strategies to identify and mitigate potential vulnerabilities before they can be exploited.
The importance of recruiting creative and offensive-minded security experts is discussed, as they can effectively challenge existing security measures and identify weaknesses.
The need for organizations to balance rapid technological advancements with robust security practices to protect sensitive data and systems.
How to develop a comprehensive security program, focusing on aligning security initiatives with overall business objectives.
The value of regular penetration testing and security assessments to ensure that organizations remain vigilant against evolving threats and vulnerabilities.
The importance of understanding the specific needs of the business to tailor security measures that effectively support organizational goals.
The significance of being able to quantify the impact of security initiatives to demonstrate their value to stakeholders and secure necessary resources.
The value of conducting red team exercises, as they provide a more creative and realistic approach to testing an organization’s defenses.
The necessity of cross-departmental collaboration to foster a culture of security awareness and ensure that security practices are integrated throughout the organization.
The importance of communicating security needs and strategies effectively to stakeholders is highlighted, ensuring that security is prioritized at all levels of the organization.

In this episode of Ahead of the Breach, Casey speaks with Dan Creed, CISO of Allegiant Travel Company, who shares his expertise on the evolving landscape of cybersecurity. They discuss the alarming rise of deepfake technology and its implications for corporate security, including a compelling example of its use in social engineering. 
 
Dan emphasizes the importance of building strong relationships with board members to effectively communicate cybersecurity risks and foster a culture of awareness within organizations. He also highlights the necessity for cybersecurity professionals to continuously adapt and learn in order to stay ahead of emerging threats. 
 
Topics discussed:
 
The growing threat of deepfakes in corporate environments and how they can be used for social engineering attacks against organizations.
The importance of effectively communicating cybersecurity risks to board members and how to gain their trust and support.
Strategies for fostering strong relationships with leadership to ensure cybersecurity is prioritized within the organization’s overall business strategy.
The necessity for cybersecurity professionals to engage in ongoing education and training to keep pace with evolving threats and technologies.
The need for robust verification methods in communications, particularly in light of the potential misuse of deepfake technology.
Wisdom for aspiring CISOs, including the value of obtaining an MBA to enhance business communication skills and strategic thinking.
The critical importance of rapid detection and response to security incidents, and how organizations can improve their response times.
The role of threat intelligence in shaping security strategies and how it can help organizations stay ahead of potential attacks.
The need for a culture of cybersecurity awareness within organizations is discussed, focusing on how to engage all employees in security practices.
The importance of having a mid-level competency in various technologies to understand lateral movement and improve overall security posture.

In this episode of Ahead of the Breach, Casey speaks with Mario DiNatale, CISO at Odyssey Group. Mario shares his insights on the importance of understanding your organization's attack surface and the necessity of hiring skilled professionals to address modern cyber threats. 
He emphasizes the value of staying informed about the latest trends and tactics used by threat actors to effectively mitigate risks. Mario also offers actionable strategies for enhancing cybersecurity posture and fostering a proactive defense culture. 
Topics discussed:
The need for organizations to thoroughly assess their attack surface to identify vulnerabilities and potential entry points for cyber threats.
The importance of recruiting skilled cybersecurity professionals is highlighted, as they play a crucial role in effectively managing and mitigating risks.
The necessity of adopting proactive measures to defend against cyber threats, rather than relying solely on reactive responses.
The importance of keeping abreast of the latest cybersecurity trends and tactics used by threat actors to stay one step ahead.
Leveraging the collective intelligence of cybersecurity teams to enhance overall security posture and address complex challenges effectively.
The need to translate technical cybersecurity concepts into business language for stakeholders is discussed, ensuring alignment and understanding across the organization.
The importance of measuring the effectiveness of cybersecurity initiatives to ensure they are meeting organizational goals and adapting to new threats.
Implementing risk management frameworks to systematically identify, assess, and prioritize cybersecurity risks within an organization.
Fostering a culture of security within organizations, encouraging all employees to take an active role in protecting sensitive information.
The necessity for ongoing education and training in cybersecurity practices is discussed, as the threat landscape is constantly evolving.

In this episode of Ahead of the Breach, Casey chats with Nicholas Anastasi, Director of Technical Operations; Nate Fair, Penetration Tester & Cyber Security Consultant; Juan Pablo “JP” Gomez Postigo, Penetration Tester; and Willis Vandevanter, Senior Staff Security Researcher — all of whom are members of the Sprocket team! They met up at the Black Hat conference to share their expertise in offensive security, focusing on innovative techniques for bypassing web application security measures and identifying vulnerabilities. 
Their discussion covers the importance of reconnaissance and staying updated on the latest threats and provides listeners with actionable insights that can enhance their security practices. They explore real-world examples and emphasize the value of collaboration within the cybersecurity community. The team also offers unique perspectives that empower professionals to improve their penetration testing methodologies and better protect their systems against emerging risks. 
Topics discussed:
Innovative techniques for circumventing common security measures, including login panels and access controls, to identify vulnerabilities effectively.
The critical role of reconnaissance in penetration testing and strategies for gathering intelligence on potential targets before assessments begin.
The necessity of keeping abreast of the latest vulnerabilities and threats to ensure effective security measures are in place.
Case studies from the team’s recent engagements, illustrating how they discovered vulnerabilities and implemented successful remediation strategies.
The value of knowledge sharing and collaboration within the cybersecurity community including how it leads to improved security practices.
How to incorporate findings from recent conferences, such as Black Hat and DEFCON, into their testing methodologies and tools.
How different companies implement various tech stacks, highlighting the need for tailored approaches in penetration testing.
The importance of clear communication with clients regarding findings and remediation strategies is emphasized to ensure understanding and effective implementation.
The process of creating and refining testing tools that enhance penetration testing capabilities and streamline assessments.
How having a background in application development can significantly enhance a tester's intuition and effectiveness during assessments.

In this episode of Ahead of the Breach, host Casey Cammilleri, CEO & Founder of Sprocket, chats with Mike Takahashi, Security Engineering Expert & Leader. Mike Takahashi, a seasoned security engineer with a diverse background in offensive security shares his insights into the art of Google Dorking, explaining how targeted search queries can reveal hidden vulnerabilities in web applications. 
He also emphasizes the importance of creativity in red teaming, encouraging security professionals to think outside the box. Additionally, Mike discusses the growing influence of AI in social engineering tactics, highlighting the need for vigilance in recognizing sophisticated phishing attempts. 
Topics discussed:
How targeted search queries can uncover hidden vulnerabilities in web applications, providing security professionals with valuable insights and low-hanging fruit.
The importance of creativity and experimentation in red teaming, encouraging security experts to think outside the box to stay ahead.
The growing role of AI in social engineering tactics, making it essential for professionals to recognize sophisticated phishing attempts.
The use of payload lists and fuzzing techniques to predictably test applications and understand their vulnerabilities.
Best practices for reporting vulnerabilities, stressing the importance of clear communication and respect for external researchers in the cybersecurity community.
The need to prioritize security controls based on the weakest points in an organization’s infrastructure to enhance overall security posture.
Advice for aspiring hackers to understand the legal implications of their actions, including what is in scope for testing and reporting.
The importance of building relationships within the cybersecurity community, encouraging respectful interactions with external researchers to foster collaboration.