Best Nist Csf Podcasts (2024)

1
#20 - Security Awareness Training (part 1) 1:15:43

4d ago1:15:43

1:15:43

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. Intro Agenda Who are you wearing? Nerd Zone CDK auto dealer software unlikely to be restored before June end, memo says | Reuters 10 billion stolen passwords shared online in record-breaking leak Prudential Data Breach Victim Count Soars to 2.5M Polyfill supply…

1
#19 - The Breach Blizzard of 2024 1:07:32

19d ago1:07:32

1:07:32

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. Intro Agenda Who are you wearing? Nerd Zone Hackers Detail How They Allegedly Stole Ticketmaster Data From Snowflake | WIRED Data breach affects over 60,000 customers of luxury retailer Neiman Marcus Cisco Talos warns of wider security implications following Sn…

1
#18 - 2024 Verizon DBIR 1:08:05

21d ago1:08:05

1:08:05

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. Intro Agenda Who are you wearing? Nerd Zone Microsoft Patch Tuesday for June Rockstar Games Veeam vulnerability Microsoft researcher alerted the business of the SolarWinds hack, but was ignored Hot topic 2024 Verizon DBIR Introduction Key Findings Top Threat Ac…

1
#17 - SaaS Sprawl 1:09:07

1M ago1:09:07

1:09:07

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. 00:00 Intro 03:02 Agenda 04:13 Who are you wearing? 09:16 Nerd Zone * Santander/Ticketmaster * Dell * AT&T 24:17 Hot topic(s) * SaaS sprawl ** What is SaaS sprawl? ** Scary stats ** How SaaS sprawl introduces risk ** Common approaches to managing SaaS sprawl **…

1
PCI Monthly Update: Latest News and Updates to Requirement 12 39:37

2M ago39:37

39:37

Join us for the latest episode of our PCI Monthly Update podcast, where we explore the latest developments in the world of payment card industry security. We begin with a news segment covering the impact of PCI v4.0 and how organizations are adjusting. In case you missed it - Andy Kerr joined PCI Practice Partner Stewart Fey for an interactive Q&A …

1
#16 - SPECIAL EDITION: United HealthGroup and the Backlash of MFA not-Everywhere 21:51

3M ago21:51

21:51

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. hot topic * SPECIAL EDITION: United HealthGroup and the Backlash of MFA not-Everywhere That’s a Wrap * Cybersecuritygrowth.com and cybersecuritygrowth.com/blog * Live on Twitch bi-weekly, Fridays at 10:30 AM EDT, 7:30 AM PDT, 3:30 PM GMT in your pod feeds a few…

1
PCI Monthly Update: Latest PCI News, Requirement 11 Overview, and QSA Insights 33:43

3M ago33:43

33:43

Join us for the latest episode of our PCI Monthly Update podcast, where we explore the latest developments in the world of payment card industry security. We begin with a news segment covering the launch of PCI v4.0 and the ins and outs of the new INFI (Items Noted For Improvement) Worksheet. Next up, we'll cover Requirement 11 - Test security of s…

1
#15 - Building a SOC, Where Do I Start? 1:06:59

3M ago1:06:59

1:06:59

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. nerd zone How can we still trust Microsoft (redux)? hot topic Building a SOC, Where Do I Start? lets be humans Music stuff Non-security tech job market Resume workshop that’s a wrap Cybersecuritygrowth.com and cybersecuritygrowth.com/blog Live on Twitch weekly,…

1
#14 - FBI 2023 Internet Crime Report 1:03:04

4M ago1:03:04

1:03:04

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. Nerd Zone Breaches are still happening every day AT&T breach How can we still trust Microsoft? Hot topic FBI Internet Crime Report 2023 War stories 2 BlackBerry’s…..one Adversary Remote access policy Lets be humans Music stuff Non-security tech Job market Resum…

1
PCI Monthly Update: Version 4.0 Countdown, Requirement 10, and QSA Insights 27:45

4M ago27:45

27:45

In this edition of the PCI Monthly Update, we’re counting down to the launch of PCI 4.0! We start this month's podcast with a reminder that v4.0 goes into full effect on March 31. Our focus then shifts to Requirement 10 covering logging and monitoring all access to system components and card holder data and what is changing with v4.0. This podcast …

1
#13 - NIST CSF 2.0, Current News, New Co-Host 56:52

4M ago56:52

56:52

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. Hot topic NIST CSF 2.0 Nerd Zone Pôle Emploi - France’s unemployment office War stories Microsoft Secure Score SaaS sprawl Lets be humans Music stuff Non-security tech Job market Resume workshop That’s a Wrap Cybersecuritygrowth.com and cybersecuritygrowth.com/…

1
EP 116 - What's next after season 2? 36:49

5M ago36:49

36:49

What's next after season 2? About this Episode In the grand wrap-up of season two of the podcast 'Your Cyber Path', hosts Kip Boyle and Jason Dion reflect on their four-year podcast journey. They also reveal that for the time being, there won't be a season three as originally planned. Several factors have influenced this decision, the primary being…

1
EP 115 - SDP 10: Separation of Privileges 15:46

6M ago15:46

15:46

SDP 10: Separation of Privileges About this Episode In this episode of the Your CyberPath podcast, Kip Boyle and Jason Dion delve into the concept of the separation of privilege as a vital component of their series on security architecture and design principles. Jason and Kip talk about how the separation of privilege illustrates its significance t…

1
PCI Monthly Update: Gearing Up for Version 4.0, Mastering Requirement 9, and QSA Insights 29:44

6M ago29:44

29:44

In this January edition of the PCI Monthly Update, we’re on the brink of exciting changes with version 4.0 just around the corner! We start with a spotlight on the ongoing Request for Comments (RFC) period for PCI DSS v4.0, inviting insights from industry experts. Plus, we discuss the Global Content Library, showcasing insights from the 2023 Commun…

1
Data compliance in 2024: Getting ahead of new requirements 39:12

6M ago39:12

39:12

As 2023 came to a close, new SEC cybersecurity regulations came into effect and the State of New York issued new cybersecurity regulations for financial services. The new regulations include pointed requirements for response plans in the event of a data incident. As data’s strategic value becomes more recognized, these types of regulations are expe…

1
EP 114 - NIST CSF Versus The Top 18 50:07

6M ago50:07

50:07

About this episode In this episode, Kip Boyle and Jason Dion discuss the importance of cybersecurity in the current digital landscape and focus on comparing two different standards: The NIST Cybersecurity Framework and the CIS Top 18. The NIST Framework was created to assist organizations in becoming cyber resilient and offers an adaptable and comp…

1
PCI Monthly Update: December News, Deep Dive into Requirement 8, and QSA Q&A 35:56

6M ago35:56

35:56

Join us for the latest episode of our PCI Monthly Update podcast, where we explore the latest developments in the world of payment card industry security. We begin with a news segment highlighting the PCI SSC's TRA Guidance. Next, we delve into Requirement 8 of the PCI DSS, dedicated to identifying users and authenticating access to system componen…

1
EP 113 - SDP 9 Least common Mechanism 13:43

7M ago13:43

13:43

In this episode, Kip and Jason cover the Security Design Principle of “Least Common Mechanism”. The Lease Common Mechanism is the ninth security design principle and focuses on how you can best protect older, legacy systems in large organizations and within the government. Security Design Principle #9 is a crucial concept in the field of cybersecur…

1
EP 112 - Listeners' Questions 1:07:16

7M ago1:07:16

1:07:16

https://www.yourcyberpath.com/112/ In this episode, Kip and Jason jump into answer questions directly from our listeners! We share valuable advice and insights into starting and advancing in the cybersecurity field by addressing ways to overcome some common challenges such as imposter syndrome, applying skills from diverse industries, and filling e…

1
Battling the Ransomware Scourge: Prevention and Recovery 26:37

7M ago26:37

26:37

Ari Paul, Director of Product Marketing at Clumio, dispels the commonly held notion that the public cloud is immune from ransomware. Join him as he outlines what public cloud providers recommend customers do to ensure data resilience, and how Clumio has helped customers quickly and fully recover from ransomware incidents. Watch the on-demand video …

1
Achieving data protection greatness 12:11

7M ago12:11

12:11

Join Lindsay Piper, Clumio Product Marketing Manager, as she explains why AWS’s reliable infrastructure isn’t enough to protect your data and how Clumio’s architecture simplifies and secures your data while lowering costs. She also shares some real world customer examples across a variety of use cases. Watch the video Clumio is redefining data prot…

1
EP 111: SDP 8 Open Design 21:34

8M ago21:34

21:34

https://www.yourcyberpath.com/111/ In this episode, Kip and Jason delve into the specific security design principle of Open Design. Open Design does not equate to open-source software but refers to transparency in revealing the mechanisms and inner workings of security controls. The hosts discuss the misconceptions surrounding Open Design, emphasiz…

1
How Atlassian improved JIRA Cloud resilience - AWS re:Invent 2023 14:24

8M ago14:24

14:24

In this podcast episode, Woon, the co-founder and CTO of Clumio, joins Andrew Jackson from Atlassian to discuss their successful collaboration in the realm of cloud data backup and recovery. Andrew, a Senior Engineer at Atlassian, provides insights into the challenges faced by their team in ensuring data resiliency, especially with the vast amount …

1
CISO Coffee Talk_ NIST’s CSF Fifth Pillar - Recovery in the Cloud 46:57

8M ago46:57

46:57

Cybersecurity Awareness Month is the perfect time to review the NIST Cybersecurity Framework (CSF) to ensure your organization is well prepared against cyber threats. Of the five pillars in the framework, Recovery is arguably the most complex, involving coordination across multiple teams and dependencies on a well designed data protection plan to b…

1
EP 110: Am I too old to work in Cybersecurity 34:04

8M ago34:04

34:04

https://www.yourcyberpath.com/110/ In this episode, hosts Kip Boyle and Jason Dion discuss the topic of ageism in cybersecurity careers. They address a listener's question about whether it is too late for a career change into cybersecurity at the age of 60-65. The hosts acknowledge that ageism does exist in the industry, but they provide tips and s…

1
EP 109: SDP 7: Complete Mediation 20:42

9M ago20:42

20:42

https://www.yourcyberpath.com/109/ In this episode, we are returning to the Security Design Principles series, this time with Complete Mediation. Complete mediation means the system checks the user trying to access a file or perform an action is authorized to access this file or perform this action. Complete mediation is also implemented in the sec…

1
PCI Monthly Update: October - New SAQ Review, Focused Look at Requirement 7, and Expert QSA Insights 29:07

8M ago29:07

29:07

Dive into the latest in the PCI landscape with our October update. We kick off with a news segment spotlighting the new SAQ SPOC (Software PIN Entry on COTS) which includes portions of PCI DSS Requirements 3, 8, 9, and 12. Transitioning to Requirement 7, we discuss restricting access to system components and cardholder data based on business necess…

1
Episode 108: Self-Care 46:27

9M ago46:27

46:27

https://www.yourcyberpath.com/108/ In this episode, we discuss a critically important topic which is Selfcare. Cybersecurity is a great career, however it is not 100% stress free, burning out and working yourself into oblivion is very common. In this episode our hosts Jason and Kip give you some tips to make sure you have your selfcare in check. Th…

1
PCI Monthly Update: September Highlights & Requirement 6 Deep Dive 31:27

9M ago31:27

31:27

Catch the latest news in our September "PCI Monthly Update" from Tuesday, September 26, 2023. We kick things off with key insights from the recent PCI Community Meeting. Next, we dive into Requirement 6, discussing the essence of secure software development, from processes to security vulnerabilities, web application protection, and change manageme…

1
EP 107: SDP 6: Fail-safe Defaults 26:55

9M ago26:55

26:55

https://www.yourcyberpath.com/107/ In this episode, we go back to the Security Design Principles series, this time we are discussing Failsafe Defaults. Failsafe defaults simply means that the default condition of a system should always be to deny. An example of a failsafe default is the security reference monitor (SRM) that has been implemented in …

1
EP 106: All About Internships 38:00

10M ago38:00

38:00

https://www.yourcyberpath.com/106/ In this episode, we are discussing the much-anticipated topic of Internships! Internships are not that common in cybersecurity and that's because they are a huge long-term investment, which is risky for lots of organizations especially in the private sector. Some of the issues that come along with internships are …

1
EP 105 : SDP 5 Work Factor 34:29

10M ago34:29

34:29

https://www.yourcyberpath.com/105/ In this episode, we are returning to the Security Design Principles series, this time with Work Factor. Work factor refers to how much work it’s going to take an adversary to attack your assets and succeed in doing so. This is coming directly from the world of physical security that was imported into the cybersecu…

1
PCI Monthly Update: August Highlights & Requirement 5 Breakdown 24:57

11M ago24:57

24:57

Tune in to the August edition of our PCI Monthly Update. We kick off with a sneak peek into the upcoming PCI North America Community Meeting in Portland and introduce the newly launched PCI Community Job Board—a dedicated platform for security talent and job postings in the payment industry. Next, we delve into Requirement 5, shedding light on anti…

1
EP 104: Confidently Presenting with Meredith Grundei 49:43

11M ago49:43

49:43

https://www.yourcyberpath.com/104/ In this episode, our awesome host Jason Dion is back again with another episode of the Your Cyber Path podcast. This time, he’s accompanied by an amazing guest, Meridith Grundei. Meridith is a renowned public speaking coach and owner of Grundei Coaching who specializes in public speaking and presentation skills. M…

1
Finally, a SQL Server Backup that DBAs Won’t Hate 43:47

11M ago43:47

43:47

SQL Server DBAs and IT Ops teams often need to balance database performance and application uptime against necessary backup operations for recovery scenarios. This equation gets more complicated when dealing with SQL Server in the cloud. Renowned database technologist David Klee, Founder and Chief Architect of Heraflux Technologies, shares his insi…

1
EP 103: SDP 4 Compromise Recording 30:43

11M ago30:43

30:43

https://www.yourcyberpath.com/103/ In this episode, we are back with our Security Design Principles series, this time discussing Compromise. In the constantly evolving tech world, we are constantly bombarded with new products, updates, and software changes. To navigate through this ever-changing landscape, we require a foundation of stability. This…

1
PCI Monthly Update: July Insights & Innovations 24:05

12M ago24:05

24:05

Dive into the latest PCI news in our July PCI Update. This episode covers key PCI developments, an in-depth exploration of Requirement 4, and a helpful QSA Q&A. We kick off this episode by previewing the upcoming PCI Community Meeting in Portland and discuss our hosts' presentation on "Generative AI: Your New Secret Weapon or an Insider Threat?" We…

1
EP 102: Passing CISSP and CISM exams with Ed Skipka 39:38

12M ago39:38

39:38

https://www.yourcyberpath.com/102/ In this episode, we are back with one of our favorite guests, Ed Skipka, to talk about his latest achievements, studying and passing both CISSP and CISM exams. To start, Ed goes on about how you should find your own way of studying and figure out the most efficient way to digest information, whether that is online…

1
EP 101: SDP 3 Economy of Mechanism 23:58

1y ago23:58

23:58

https://www.yourcyberpath.com/101/ In this short episode, we are back discussing the Security Design Principles, with the third principle, Economy of Mechanism. Jason and Kip explain the principle of Economy of Mechanism and how you want to apply it in your career as a cybersecurity professional without falling into the trap of overcomplicating thi…

1
Episode 100 - Best of YCP 1:43:42

1y ago1:43:42

1:43:42

https://www.yourcyberpath.com/100/ We're celebrating the 100th episode of Your Cyber Path podcast with a special edition episode. It's going to be a little different this time. We are going to sit back and reflect on all our 100 previous episodes and take in the things that we learned, so basically welcome to the highlight reel of the Your Cyber Pa…

1
#12 - CNAPP - Cloud Native Application Protection Platform 20:33

1y ago20:33

20:33

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. Topics: Death By Slides - CNAPP - Cloud Native Application Protection Platform What Is CNAPP? Key Components Top CNAPP ProvidersBy Cybersecurity Growth

1
EP 99: How to use ChatGPT in your Job Search with Sean Melis 48:01

1y ago48:01

48:01

https://www.yourcyberpath.com/99/ In this episode, we are going over the latest trend in AI and NLP, ChatGPT, with our guest, Sean Melis, seasoned multi-modal developer and designer and the founder of bot•hello. In the beginning, Sean explains how chatbots work and the main difference between them and ChatGPT, explaining that ChatGPT leverages a hu…

1
#11 - CWPP - Cloud Workload Protection Platform 26:01

1y ago26:01

26:01

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. Topics: Death By Slides - CWPP - Cloud Workload Protection Platform What Is CWPP? Why Is CWPP Important? How Does CWPP Work? Key Benefits Top CWPP ProvidersBy Cybersecurity Growth

1
#10 - SSPM - SaaS Security Posture Management 19:38

1y ago19:38

19:38

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. Topics: Death By Slides - SSPM - SaaS Security Posture Management What is SSPM? Why is SSPM Important? Key Considerations Key Functionality Top SSPM ProvidersBy Cybersecurity Growth

1
Episode 98: SDP2, Psychological Acceptability 28:47

1y ago28:47

28:47

https://www.yourcyberpath.com/98/ In this episode, we are back discussing Security Design Principles, and this time we are focusing on Psychological Acceptability. The Security design principles are crucial for your work as a cybersecurity professional, they will not only help you do really well, they will also help your work stand out. Psychologic…

1
Automating HIPAA Compliance and Ransomware Recovery in AWS 19:48

1y ago19:48

19:48

You already know patient data needs to be backed up, air-gapped, immutable and encrypted. As applications and workloads in the cloud trend toward more unstructured data, the path to achieving HIPAA and HITECH compliant data protection can seem unclear. In this webinar with Clumio’s Field CTO, learn the easy, HIPAA-compliant way to automate protecti…

1
RDS backup costs too much, what can I do? 26:35

1y ago26:35

26:35

Amazon RDS provides the foundation for modern applications, bringing the benefits of cloud to relational databases. And while RDS databases are simple to use and easy to manage, long-term retention of RDS data can be a hassle. This is especially true for customers in regulated industries such as healthcare, financial services, and manufacturing, wh…

1
#9 - CSPM - Cloud Security Posture Management 14:47

1y ago14:47

14:47

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. Topics: Death By Slides - CSPM - Cloud Security Posture Management What is CSPM? Key Benefits & Capabilities Why Do You Need CSPM? Top 10 CSPM ProvidersBy Cybersecurity Growth

1
#8 - CASB - Cloud Access Security Broker 15:37

1y ago15:37

15:37

Welcome to Cybersecurity Growth. A show for aspiring and existing cybersecurity leaders. Topics: Death By Slides - CASB - Cloud Access Security Broker What is CASB? Key Benefits 4 Key Components Top 10 CASB ProvidersBy Cybersecurity Growth

1
EP 97: Passwordless Authentication with James Azar 52:51

1y ago52:51

52:51

https://www.yourcyberpath.com/97/ In today’s episode, we discuss the emerging topic of passwordless authentication with our guest James Azar, CTO and CSO of AP4 group who are well known for their work in critical infrastructure. Passwords have been here for decades, but with the ever-changing nature of the technology industry, passwords are becomin…

Podcasts Worth a Listen

Nist Csf Podcasts

Podcasts Worth a Listen

Quick Reference Guide