Presentations given at Oxford's International Conference on Water Security, Risk and Society, April 16-18th 2012. The event convened many of the world's leading thinkers from science, policy and enterprise to understand the status of and pathways to water security at multiple scales.
…
continue reading
1
Security, Privacy, Risk Management, Cryptocurrencies, & Fintech
Security, Privacy, Risk, Crypto, & Fintech
Sharing my experience, knowldedge, and views. #security #privacy #risk #fintech #blockchain #cryptocurrencies
…
continue reading
Today’s built environment we face ever increasing risk from cyber security. In this podcast we explore some of the challenges and or imports solutions Cover art photo provided by bharath g s on Unsplash: https://unsplash.com/@xen0m0rph
…
continue reading
Cyber Risk Reports provide strategic intelligence that highlight current security activity. The reports address seven major risk management categories: vulnerability, physical, legal, trust, identity, human, and geopolitical.
…
continue reading
1
Reduce Cyber Risk Podcast - Cyber Security Made Simple
Shon Gerber, vCISO, CISSP, Cyber Security Consultant, Author and Entrepreneur
Shon Gerber from the Reduce Cyber Risk podcast provides valuable insights, guidance, and training to you each week that only a senior cyber security expert and vCISO can perform. Shon has over 23+ years of experience in cyber security from large corporations, government, and as a college professor. Shon provides you the information, knowledge, and training needed to help protect your company from cyber security threats. Shon weekly provides cyber security training topics covering: Insider Th ...
…
continue reading
1
RCR 155: Identity Unlocked: Unraveling Identity Management (Domain 5)
39:14
39:14
Play later
Play later
Lists
Like
Liked
39:14
Ever get tangled up in the complexities of identity and access management? Tired of letting confusion rob you of effective cybersecurity strategies? Well, it's time to tune in and simplify it all! As your resident cybersecurity expert, Sean Gerber, I'll be taking the reins in this exciting journey into the heart of identity and access management. W…
…
continue reading
Ever wondered how to ace the CISSP Cyber exam's domain four? Or, perhaps, you're merely intrigued by the intricate world of Voiceover IP (VOIP)? Either way, this episode is packed with the insights you've been seeking! Join me, Sean Gerber, as we dissect the key protocols that VOIP uses for multimedia transmissions. Together, we'll unravel the comp…
…
continue reading
1
RCR 153: Unraveling the Intricacies of VOIP and iSCSI in Cybersecurity - CISSP Domain
39:51
39:51
Play later
Play later
Lists
Like
Liked
39:51
Ever wish you could decrypt the mysteries of cybersecurity and ace your CISSP exam? This episode is your treasure map to success, guiding you through the labyrinthine layers of the OSI model, starting with the physical transmission of data and the crucial role of physical access controls. We also enlighten you about MAC address filtering and how it…
…
continue reading
Ready to conquer the CISSP exam? Join me, Sean Gerber, as I break down complex concepts and guide you through an in-depth exploration of threat models, including their components and the crucial role they play in identifying and mitigating potential threats. You'll not only get an understanding of the TRITE methodology and when to use STRIDE or DRE…
…
continue reading
1
RCR 151: Mastering Threat Modeling: A Comprehensive Guide to Cybersecurity and CISSP Exam Preparation
42:46
42:46
Play later
Play later
Lists
Like
Liked
42:46
Are you prepared to defend your organization from cybersecurity threats? I'm Sean Gerber, and this week I'm unraveling the intimidating world of threat modeling. Get ready to supercharge your cybersecurity knowledge as we dissect threat identification, risk assessment, and mitigation strategies. This isn't just for acing your CISSP exam, it's for b…
…
continue reading
Are you ready to unlock the secrets of data classification and pass your CISSP exam in one go? That's right! Your host, Sean Gerber, is here to guide you through an insightful exploration into the world of data classification. From the intricacies of content-based and context-based data classification to the various stages of the information life c…
…
continue reading
1
RCR 149: Securing Your Digital Landscape- A Deep Dive into Data and Asset Classification (D2)
35:59
35:59
Play later
Play later
Lists
Like
Liked
35:59
Are you ready to make your digital assets and information impenetrable? Well, we're here to navigate you through the maze of understanding and protecting your most valued digital treasures. This episode is packed with a wealth of knowledge, as we discuss the intricacies of information and asset protection. We highlight the vitality of data classifi…
…
continue reading
Are you charged with navigating the precarious terrain of supply chain risk management? Then, prepare to sharpen your skills in this action-packed episode! I'm Sean Gerber, and I'll be guiding you through the labyrinth of supplier audits and evaluations, discussing the delicate balance between the two. We'll also delve into strategies for mitigatin…
…
continue reading
1
RCR 147: Securing the Chain- Mastering Supply Chain Risk Management (SCRM) for the CISSP (D1)
34:49
34:49
Play later
Play later
Lists
Like
Liked
34:49
Prepare to unravel the complexities of supply chain risk management (SCRM) and gain invaluable insights that could safeguard your business from massive disruptions. We're diving into the nerve-wracking challenges of SCRM, emphasizing just how crucial it is for every business in our hyper-connected age. Learn about the nuances of this formidable tas…
…
continue reading
Ready to conquer the CISSP exam with confidence? Join me, Shon Gerber, in this week's CISSP Cyber Training Podcast as we tackle questions from all eight domains to give you the insights and knowledge you need for success. From understanding the purpose of a risk register to exploring the primary security concerns in a microservices architecture, th…
…
continue reading
1
RCR 145: Mastering CISSP and Navigating Cybersecurity Certifications
20:35
20:35
Play later
Play later
Lists
Like
Liked
20:35
Ready to level up your cybersecurity career? Wondering which certifications are worth your time and investment? We've got you covered in today's episode, where we break down everything from the entry-level CompTIA A+ certification to the more advanced CISSP. Get an insider's look at the costs, study time, and areas of concentration for each of thes…
…
continue reading
Ready to elevate your cybersecurity knowledge and pass the CISSP exam? This episode is packed with insights on software development, diving into the crucial phase of integrating security into the software development lifecycle (SDLC). We uncover the secrets of design and architecture, as well as static and dynamic application security testing (SAST…
…
continue reading
1
RCR 143 - Navigating the Cybersecurity Landscape through Secure Software Design (D8.1)
42:32
42:32
Play later
Play later
Lists
Like
Liked
42:32
Are you ready to elevate your cybersecurity knowledge and ace that CISSP exam? Join me, Shon Gerber, as we delve deep into the often-overlooked realm of software development lifecycle and the essential security controls within the development ecosystem. We'll unpack the three key secure design principles: least privilege, fail-safe defaults, and de…
…
continue reading
Do you know the differences between security events and security incidents? Are you confident in your ability to protect log files from unauthorized access? Join me, your host Sean Gerber, in this week's episode of the CISSP Cyber Training Podcast as we explore domain 7 of the CISSP exam and tackle these important questions. Remember, it's all abou…
…
continue reading
1
RCR 141: Mastering Logging, Monitoring, and AI in Cybersecurity (CISSP Domain 7)
34:12
34:12
Play later
Play later
Lists
Like
Liked
34:12
Are you ready to level up your understanding of logging and monitoring in the world of cybersecurity? Join us, your host Sean Gerber, as we take a deep dive into CISSP domain seven, exploring the ins and outs of logging, monitoring, and how they play a crucial part in keeping your system protected. Listen closely as we unravel the challenges of man…
…
continue reading
Ready to ace the CISSP exam? Join me in this episode as we explore domain six, focusing on security controls and assessments. You'll not only learn the primary objective of security control testing but also gain insights into various types of tests and the limitations of vulnerability scanners. Together, we'll dive into the nitty-gritty of security…
…
continue reading
1
RCR 139: Conduct security control testing (D6.2)
37:48
37:48
Play later
Play later
Lists
Like
Liked
37:48
Ready to ace the CISSP exam and level up your cybersecurity knowledge? Together with my background as a former red teamer, we guide you through domain six - security assessments and testing, covering both military and corporate America perspectives. We'll discuss essential concepts such as vulnerability assessments, risk tolerance of companies, and…
…
continue reading
Ready to conquer the CISSP exam and advance your cybersecurity career? Join me, Sean Gerber, as we break down identity and access management, exploring the primary benefits of single sign-on systems, session management, and multi-factor authentication. Plus, get insights on the differences between role-based access controls and other access control…
…
continue reading
1
RCR 137: Manage identification and authentication of people devices and services (D5.2)
39:06
39:06
Play later
Play later
Lists
Like
Liked
39:06
Are you ready to up your cybersecurity game? Look no further, as I, Sean Gerber, take you on a deep-dive into the world of identity and access management. Together, we'll explore various authentication methods, such as passwords, tokens, biometrics, and multi-factor authentication, and analyze their strengths and vulnerabilities. We'll also tackle …
…
continue reading
Join Shon Gerber on the "CISSP Cyber Training Podcast" as he delves into Domain 4 of the CISSP exam, which focuses on Communications and Network Security. In this episode, Shon will cover some of the most challenging CISSP exam questions related to the OSI model, various TCP/IP layers, and protocols such as SYN, SYN/ACK, etc. He will explain the in…
…
continue reading
1
RCR 135: Implement Secure Communication Channels According to Design (D4.3)
29:28
29:28
Play later
Play later
Lists
Like
Liked
29:28
In this episode of the CISSP Cyber Training Podcast, we explore Domain 4 of the CISSP exam - Implementing a Secure Channel. We delve into the intricacies of the OSI model and TCP/IP, as well as the four layers of the TCP/IP model, to provide a comprehensive understanding of how to establish and maintain secure communication channels in your network…
…
continue reading
Join cybersecurity expert Shon Gerber on the CISSP Cyber Training Podcast as we explore Domain 3 of the CISSP exam, focused on security models. In this episode, we delve into the various security models, including the Bell-LaPadula, Biba, Clark-Wilson, and other models. Our expert guests share their experiences and insights on these models, their a…
…
continue reading
1
RCR 133: Understanding the Fundamental Concepts of Security Models (D3.2)
41:29
41:29
Play later
Play later
Lists
Like
Liked
41:29
Description: In this episode, we delve into the fundamental concepts of security models, a critical topic in the CISSP exam. Aspiring CISSP professionals and cybersecurity enthusiasts will gain valuable insights on Domain 3.2, covering key concepts, principles, and best practices related to security models. Join us as we explore various security mo…
…
continue reading
Do you struggle with understanding CISSP exam questions related to data ownership in Domain 2? Tune in to our latest episode of the CISSP Cyber Training Podcast, where we discuss the most challenging CISSP exam questions outlined by Shon Gerber in relation to data ownership. We cover the legal and regulatory requirements, establishing data ownershi…
…
continue reading
1
RCR 131: Understanding Data Asset Ownership and Management (D2.4)
26:33
26:33
Play later
Play later
Lists
Like
Liked
26:33
Welcome to the CISSP Cyber Training Podcast, where we're diving deep into Domain 2 and exploring the importance of data ownership. Join us as we discuss how understanding data ownership plays a crucial role in protecting sensitive information and ensuring compliance with legal and regulatory requirements. Our expert instructors will walk you throug…
…
continue reading
1
RCR 130: Managing Data Lifecycle for CISSP Success
10:21
10:21
Play later
Play later
Lists
Like
Liked
10:21
🔒 Master the Data Lifecycle with CISSP Cyber Training! 🎧🔍 🎙️ Attention CISSP Exam Takers! Introducing the "CISSP Cyber Training Podcast," your ultimate resource for mastering Domain 2: Managing Data Lifecycle! 📚💡 🔐 Deep dive into the intricacies of data management and gain expert insights on the lifecycle process through our engaging podcast episod…
…
continue reading
1
RCR 129: Managing Data Lifecycle for CISSP Success
29:00
29:00
Play later
Play later
Lists
Like
Liked
29:00
🔒 Master the Data Lifecycle with CISSP Cyber Training! 🎧🔍 🎙️ Attention CISSP Exam Takers! Introducing the "CISSP Cyber Training Podcast," your ultimate resource for mastering Domain 2: Managing Data Lifecycle! 📚💡 🔐 Deep dive into the intricacies of data management and gain expert insights on the lifecycle process through our engaging podcast episod…
…
continue reading
🔐 Ace the CISSP Exam with Confidence! 🎧🔍 🎙️ Exciting News for Aspiring CISSP Professionals! Introducing the "CISSP Cyber Training Podcast," your ultimate resource for mastering Domain 1: CISSP Exam Questions! 📚💡 🔐 Enhance your knowledge and test-taking skills with our expert-led podcast episodes. Get ready to tackle the most challenging concepts, f…
…
continue reading
1
RCR 127: CISSP Exam Essentials- Understanding Legal and Regulatory Issues in Cyber Security (Domain 1)
32:47
32:47
Play later
Play later
Lists
Like
Liked
32:47
🔒 Boost Your Cybersecurity Knowledge! 🎧🔍 🎙️ Exciting News for Aspiring CISSP Professionals! Introducing the "CISSP Cyber Training Podcast," your ultimate resource for acing Domain 1: Understanding the Legal and Regulatory Issues in Information Security! 📚💡 🔐 Dive deep into the crucial aspects of information security law and regulations with our exp…
…
continue reading
1
RCR 126: Understanding and Adhering to Professional Ethics (1-4) - CISSP Domain 1
7:02
7:02
Play later
Play later
Lists
Like
Liked
7:02
In the world of cybersecurity, maintaining professional ethics is paramount. Aspiring CISSP professionals need to understand the importance of ethical behavior and its impact on information security. Join us in this podcast episode as we explore Domain 1 of the CISSP exam, focusing on the fundamental concepts of understanding and adhering to profes…
…
continue reading
1
RCR 125: Integrate Security in SDLC (CISSP Domain 8)
29:57
29:57
Play later
Play later
Lists
Like
Liked
29:57
Welcome to CISSP Cyber Training, the podcast that delves deep into the world of cybersecurity and provides you with expert insights and strategies for mastering CISSP Domain 8. If you're seeking CISSP training and looking to excel in the field of information security, this is the podcast for you! Join our experienced hosts as they explore the criti…
…
continue reading
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
1
RCR 123: Understanding and Supporting Investigations (CISSP Domain 7)
33:37
33:37
Play later
Play later
Lists
Like
Liked
33:37
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
1
RCR 121: Assessment, Test, and Audit Strategies (CISSP Domain 6)
38:56
38:56
Play later
Play later
Lists
Like
Liked
38:56
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
1
RCR 119: Access Control Types (CISSP Domain 5)
31:02
31:02
Play later
Play later
Lists
Like
Liked
31:02
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
1
RCR 121: Assessment Test and Audit Strategies (CISSP Domain 6)
38:56
38:56
Play later
Play later
Lists
Like
Liked
38:56
hon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunct…
…
continue reading
1
RCR 117: Secure Network Component (CISSP Domain 4)
30:35
30:35
Play later
Play later
Lists
Like
Liked
30:35
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
1
RCR 115: Managing Engineering Processes (CISSP Domain 3)
34:40
34:40
Play later
Play later
Lists
Like
Liked
34:40
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
1
RCR 113: Understanding Data States (CISSP Domain 2)
33:32
33:32
Play later
Play later
Lists
Like
Liked
33:32
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
1
RCR 111: Cybercrime and Data Breach (CISSP Domain 1)
35:30
35:30
Play later
Play later
Lists
Like
Liked
35:30
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading
1
RCR 110: Identify and Apply Security Controls in Development Environments (CISSP Domain 8)
30:40
30:40
Play later
Play later
Lists
Like
Liked
30:40
Shon Gerber from CISSPCyberTraining.com provides you the information and knowledge you need to prepare and pass the CISSP Exam while providing the tools you need to enhance your cybersecurity career. Shon utilizes his expansive knowledge in cybersecurity from being a Red Team Squadron Commander; Chief Information Security Officer (CISO); and Adjunc…
…
continue reading