CISO Tradecraft®
Episodes
#65 - Shall We Play A Game?
14 Feb 2022
Contributed by Lukas
Gamification is a superpower that CISOs can use to change the culture of an organization. On this episode of CISO Tradecraft we discuss how to u...
#64 - 3 Keys to Being a CISO (with Allan Alford)
07 Feb 2022
Contributed by Lukas
On this episode of CISO Tradecraft, we feature Allan Alford from The Cyber Ranch Podcast. Allan brings a wealth of knowledge as a CISO and share...
#63 - Flirting with Disaster
31 Jan 2022
Contributed by Lukas
As a cyber executive you should expect disaster and disruption. When these unfortunate events occur, you can protect the business by maintaining...
#62 - Promotion Through Politics
24 Jan 2022
Contributed by Lukas
On this episode, we talk about the four types of skills you need to demonstrate in your career to climb through the ranks: (Technical Skills,&nb...
#61 - Presentation Skills
17 Jan 2022
Contributed by Lukas
On this episode of CISO Tradecraft, we discuss how to give a great presentation. Starting with the Bottom Line Up Front (BLUF) Using pictu...
#60 - CISO Knowledge Domains Part 2
10 Jan 2022
Contributed by Lukas
One of the most common questions that we get asked on CISO Tradecraft is what do I need to learn to be a good CISO? After a lot of reflecti...
#59 - CISO Knowledge Domains Part 1
03 Jan 2022
Contributed by Lukas
One of the most common questions that we get asked on CISO Tradecraft is what do I need to learn to be a good CISO? After a lot of reflection, C...
#58 - Active Directory is Active with Attacks
27 Dec 2021
Contributed by Lukas
After bad actors gain an initial foothold into an organization, they often use active directory attacks to gain administrative privileges. On th...
#57 - Brace for Audit
20 Dec 2021
Contributed by Lukas
You just got the news that the Cyber Organization is going to be audited. Do you know what an audit is, how best to prepare for it, and how to r...
#56 - Say Firewall One More Time
13 Dec 2021
Contributed by Lukas
Have you ever heard someone say our firewalls block this type of attack? In this episode, you can increase your understanding of firewalls so it...
#55 - I have more Agents than the FBI
03 Dec 2021
Contributed by Lukas
On this episode of CISO Tradecraft you can learn all about Software Agents. Specifically we discuss: What does an Agent do, Why is an Agent...
#54 - The Great Resignation
19 Nov 2021
Contributed by Lukas
The Great Resignation is upon us, and if some of your top talent hasn't given you their notice, it may be happening soon. Or not, depending...
#53 - Fun and Games to Stop Bad Actors (with Dr. Neal Krawetz)
05 Nov 2021
Contributed by Lukas
In this episode, you can hear from Dr. Neal Krawetz, creator of Hacker Factor and FotoForensics. Neal's a long-time security practitioner who shares s...
#52 - Welcome to the C-Level (with Nate Warfield)
29 Oct 2021
Contributed by Lukas
Special Thanks to our podcast Sponsor, Prevailion. Some of the best C-level executives start in the technical ranks. This episode features ...
#51 - New Kid in Town (with Rebecca Mossman)
18 Oct 2021
Contributed by Lukas
When you first start a cybersecurity job, or hire someone into a cybersecurity job, there is a window of opportunity to see things with a new perspect...
#50 - Border Gateway Protocol (BGP)
11 Oct 2021
Contributed by Lukas
A Border Gateway Protocol (BGP) misconfiguration is what took out Facebook on 4 October. Most IT folks don't understand how BGP works. Thi...
#49 - Cyberlaw Musings (with Mark Rasch)
01 Oct 2021
Contributed by Lukas
This is a special treat. On this episode of CISO Tradecraft you can hear Mark D. Rasch, JD, discuss legal and security topics that he's encounte...
#48 - Effective Meetings
24 Sep 2021
Contributed by Lukas
We've all suffered through horrible meetings that felt like a total waste of time. As a security leader, you'll be convening your fair share of ...
#47 - More Risky Business with FAIR
17 Sep 2021
Contributed by Lukas
In our 31 July 2021 Episode 42, Risky Business, we covered the basics of risk and risk assessment. This part 2 episode gets into the practical applica...
#46 - Crisis Leadership with G Mark Hardy‘s 9/11 Experience
10 Sep 2021
Contributed by Lukas
Have you ever faced a crisis? How well did you do? You should always want to improve your skills in case another happens. On the 20t...
#45 - Protecting your Crown Jewels (with Roselle Safran)
03 Sep 2021
Contributed by Lukas
Traditional risk models focus on calculating loss frequency and magnitude, but don't go far enough in terms of modeling the most important assets in o...
#44 - Intro to Docker Containers and Kubernetes (K8s)
27 Aug 2021
Contributed by Lukas
Containers are a lightweight technology that allows applications to deploy to a number of different host Operating Systems without having to make any ...
#43 - Cyber Deception (with Kevin Fiscus)
20 Aug 2021
Contributed by Lukas
Join CISO Tradecraft for a fascinating discussion on how to build cyber traps for the bad guys that really work. By creating a deceptive environ...
#42 - Third Party Risk Management (with Scott Fairbrother)
13 Aug 2021
Contributed by Lukas
Special Thanks to our podcast Sponsor, CyberGRX On today’s episode, we bring in Scott Fairbrother to help tackle key questions with Third Party Risk...
#41 - Got any Threat Intelligence?
06 Aug 2021
Contributed by Lukas
Cyber Threat Intelligence is an important part of an effective CISO arsenal, but many security leaders don’t fully understand how to optimize it for...
#40 - Risky Business
01 Aug 2021
Contributed by Lukas
In this episode, we take a deep dive into that four-letter word RISK. Risk is measurable uncertainty. As a component of Governance, Risk, and Complian...
#39 - Stressed Out? Find your Ikigai and 6 Invaluable Factors
23 Jul 2021
Contributed by Lukas
Being a CISO has been described as the "toughest job in the world." It comes with a lot of stress, which can lead to early burnout as well as a ...
#38 - CMMC and Me
18 Jul 2021
Contributed by Lukas
This episode of CISO Tradecraft discusses CMMC. The Cybersecurity Maturity Model Certification (CMMC), is the US government response to the mass...
#37 - Cyber Security Laws & Regulations
09 Jul 2021
Contributed by Lukas
On this episode of CISO Tradecraft, you will hear about the most prominent Cyber Security Laws and Regulations: The Health Insurance Portability and A...
#36 - IPv6 Your Competitive Advantage (with Joe Klein)
03 Jul 2021
Contributed by Lukas
This episode of CISO Tradecraft is all about IPv6, featuring Joe Klein. IPv6 is becoming the dominant protocol on the Internet, and CISOs s...
#35 - Setting Up an Application Security Program
25 Jun 2021
Contributed by Lukas
On this episode of CISO Tradecraft, you can learn how to build an Application Security program. Start with Key Questions for Security IT Operati...
#34 - Metrics that Matter
18 Jun 2021
Contributed by Lukas
What is measured gets done. However before you measure you need to think about how best to measure. On this episode of CISO Tradecraft, we...
#33 - 10 Steps to Cyber Incident Response Playbooks
11 Jun 2021
Contributed by Lukas
On this episode of CISO Tradecraft, you can learn the 10 steps to Incident Response Planning: Establish a Cyber Incident Response Team Develop a 24/7 ...
#32 - Brace for Incident (with Bryan Murphy)
04 Jun 2021
Contributed by Lukas
Special Thanks to our podcast Sponsor, CyberArk. Experienced CISOs know that it's not a matter of if, but when. Incidents happen, an...
#31 - Executive Order on Improving the Nation’s Cybersecurity
28 May 2021
Contributed by Lukas
On this episode of CISO Tradecraft, you can learn about the new Executive Order on Improving the Nation's Cyber Security. The episode provides a...
#30 - Cloud Drift (with Yoni Leitersdorf)
21 May 2021
Contributed by Lukas
This episode is sponsored by Indeni. On this episode of CISO Tradecraft, G Mark Hardy discusses with Yoni Leitersdorf (CEO and CISO of Ind...
#29 - Identity and Access Management is the New Perimeter
14 May 2021
Contributed by Lukas
Identity is the New Perimeter. On this episode of CISO Tradecraft you will increase your understanding of Identity and Access Management. ...
#28 - AI and ML and How to Tell When Vendors Are Full of It
08 May 2021
Contributed by Lukas
Have you ever heard a vendor has software features such as Artificial Intelligence (AI) or Machine Learning (ML)? What does that mean?&nbs...
#27 - Roses, Buds, & Thorns
01 May 2021
Contributed by Lukas
Today, CISO Tradecraft hosts a 5 minute discussion to talk about reflection. The concept is Roses, Buds, and Thorns. It’s an exercise de...
#26 - Blockchain for CISOs
23 Apr 2021
Contributed by Lukas
On this episode CISO Tradecraft we dive into the world of blockchain. As a CISO you may be expected to explain to executives what the ...
#25 - Slay the Dragon or Save the Princess?
16 Apr 2021
Contributed by Lukas
This episode CISO Tradecraft continues the Ransomware Discussion. Do you slay the dragon (avoid the ransom) or save the princess (recover your f...
#24 - Everything you wanted to know about Ransomware
08 Apr 2021
Contributed by Lukas
Would you like to know more about Ransomware? On this episode of CISO Tradecraft, G Mark Hardy and Ross Young provide an in-depth discussion on ...
#23 - NSA’s Top 10 Cybersecurity Mitigation Strategies
02 Apr 2021
Contributed by Lukas
If there's one place that knows how Advanced Persistent Threat (APT) actors work, it's the National Security Agency (NSA). On this episode of CI...
#22 - Modern Software Development Practices
26 Mar 2021
Contributed by Lukas
Would you like to know the best practices in modern software development? On this episode G Mark Hardy and Ross Young overview the 12 Factor App...
#21 - Your First 90 Days as a CISO (with Mark Egan)
19 Mar 2021
Contributed by Lukas
This special episode features Mark Egan (Former CIO of Symantec as well as VMWare). Mark discusses what he looks for during interviews with CISO...
#20 - Zero Trust
12 Mar 2021
Contributed by Lukas
Would you actually like to learn about what Zero Trust is without a bunch of marketing jargon? On this week's episode G Mark Hardy and Ross Youn...
#19 - Team Building
05 Mar 2021
Contributed by Lukas
Every leader needs to know how to lead and manage a team. On this episode G Mark Hardy and Ross Young share tradecraft on team building. Pitfall...
#18 - Executive Presence
26 Feb 2021
Contributed by Lukas
Having the ability to inspire confidence is crucial to lead others and allows you the opportunity to gain access to executive roles. On this epi...
#17 - Global War on Email
19 Feb 2021
Contributed by Lukas
If you use email, this episode is for you. Attackers leverage email for ransomware, Business Email Compromise (BEC), account takeover, and other...
#16 - The Essential Eight
12 Feb 2021
Contributed by Lukas
The Australian Cyber Security Center (ACSC) believes that not all cyber security controls are created equal. The have assessed various strategie...
#15 - IT Governance
05 Feb 2021
Contributed by Lukas
As a CISO, one of the key functions you will be responsible for is IT Governance. On this episode we discuss what the intent is for a wide varie...
#14 - How to Compare Software
29 Jan 2021
Contributed by Lukas
At some point in time, a CISO will need to purchase new security technology. Whether it's antivirus, firewalls, or SIEMs you need to understand ...
#13 - Executive Competencies
22 Jan 2021
Contributed by Lukas
Have you ever wanted to become an executive, but didn’t know what skills to focus on? On this episode of CISO Tradecraft, G Mark Hardy and Ros...
#12 - The Three Ways of DevOps
15 Jan 2021
Contributed by Lukas
Making things cheaper, faster, and better is the key to gaining competitive advantage. If you can gain a competitive advantage in cyber, then you...
#11 - Cryptography
08 Jan 2021
Contributed by Lukas
Most organizations generate revenue by hosting online transactions. Cryptography is a key enabler to securing online transactions in untrusted s...
#10 - Securing the Cloud
01 Jan 2021
Contributed by Lukas
Understanding how to secure the cloud is a crucial piece of tradecraft that every CISO needs to understand. This episode provides an in depth di...
#9 - Introduction to the Cloud
25 Dec 2020
Contributed by Lukas
Have you ever wanted to learn the basic fundamentals of the cloud? This podcast provides a 50,000 foot view of the cloud. Specific discuss...
#8 - Crucial Conversations
18 Dec 2020
Contributed by Lukas
CISOs often encounter situations where everyone has a different opinion, it's a high stakes decision, and emotions are running high. These situa...
#7 - DevOps
11 Dec 2020
Contributed by Lukas
On this Episode we will explore DevOps as a topic and discuss why you need to care as a CISO. Key discussions include: What are the key principl...
#6 - Change Management
04 Dec 2020
Contributed by Lukas
If you want to make impact as a leader, then you need to understand how to lead change. This episode overviews Dr. John Kotter's 8-Step process ...
#5 - Cyber Frameworks
27 Nov 2020
Contributed by Lukas
Cyber Frameworks help CISOs build, measure, and execute top-notch information security programs. This podcast overviews the differences between C...
#4 - Asset Management
20 Nov 2020
Contributed by Lukas
If you want to assess your current level of security, then you should start with an asset management program. Asset management provides the basic buil...
#3 - How to Read Your Boss
13 Nov 2020
Contributed by Lukas
The ability to persuade others is a core tradecraft for every CISO. This podcast discusses the most common styles of executive decision making (...
#2 - Principles of Persuasion
06 Nov 2020
Contributed by Lukas
To become an effective CISO you need influence skills. On this episode we explore Robert Cialdini's book, "Influence" and discuss the psychology...
#1 - What is a CISO?
30 Oct 2020
Contributed by Lukas
On this pilot episode you will get to meet the hosts of the show (G Mark Hardy & Ross Young) and learn a little bit about their backgrounds. Chapters ...