To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Artwork

Tech Jacob Hill
Content provided by Jacob Hill. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Jacob Hill or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

Similar to GRC Academy

Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

GRC Academy »
Georgia Tech Cybersecurity False Claims Scandal: Meet the Whistleblowers

41:35
 
Play
Playing
Share
 

MP3Episode home
Manage episode 439123042 series 3486726
Content provided by Jacob Hill. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Jacob Hill or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

Introducing the Georgia Tech Whistleblowers.

In this episode, the whistleblowers explain how they tried to stop Georgia Tech from allegedly LYING to the government about their NIST 800-171 compliance and what they have faced since they blew the whistle!

Whistleblower attorney Julie Bracker also shares what could come next and how much Georgia Tech may have to pay out!

Here are a few highlights from this episode:

  • Hear directly from the whistleblowers in this False Claims Act case
  • Details on the "Fictitious" NIST 800-171 SPRS Score
  • How much money Georgia Tech might have to pay
  • Recommendations to universities
  • Advice for other whistleblowers

Both of the whistleblowers have a long history with Georgia Tech and truly care for the institution.

Christopher Craig has worked at Georgia Tech for more than 20 years. He was the Associate Director of Cybersecurity where he managed all central cyber security personnel and built the GRC team until Georgia Tech demoted him to an Enterprise Security Architect.

Kyle Koza worked at Georgia Tech for more than 15 years until he left his role as a Principal Information Security Engineer in 2022. He got his bachelor’s and master's degrees from Georgia Tech and also co-wrote and still teaches a security incident response master's degree course at the university.

I thought Christopher's recommendation (24:37) for universities to centralize their labs was excellent!

How can a university expect to maintain its NIST / CMMC compliance if multiple labs are built and managed by different teams who may not even be familiar with the NIST 800-171 security controls?

I also loved hearing Chris tell us about the support he has received from the cyber community (38:00)! Who in cyber doesn't want to do the right thing? I would like to think those with bad intent are an extremely small percentage.

Special thanks to Christopher and Kyle for sharing their stories with us, and to Julie Bracker for coordinating this interview!

Follow Julie on LinkedIn: https://www.linkedin.com/in/juliekeetonbracker/

Bracker & Marcus LLC Website: https://www.fcacounsel.com/

-----------

Thanks to our sponsor Vanta!

Want to save time filling out security questionnaires?

Register for Vanta's upcoming webinar on Questionnaire Automation here: https://vanta.com/grcacademy

-----------

Governance, Risk, and Compliance Academy (GRC) Academy is a training and research platform!

Online GRC Training: https://grcacademy.io/courses/?utm_source=podcast&utm_medium=s1-e31&utm_campaign=courses

  continue reading

31 episodes

#Tech #Jacob Hill
Artwork

Georgia Tech Cybersecurity False Claims Scandal: Meet the Whistleblowers

GRC Academy

published

Play Playing
iconShare
 
MP3Episode home
Manage episode 439123042 series 3486726
Content provided by Jacob Hill. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Jacob Hill or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

Introducing the Georgia Tech Whistleblowers.

In this episode, the whistleblowers explain how they tried to stop Georgia Tech from allegedly LYING to the government about their NIST 800-171 compliance and what they have faced since they blew the whistle!

Whistleblower attorney Julie Bracker also shares what could come next and how much Georgia Tech may have to pay out!

Here are a few highlights from this episode:

  • Hear directly from the whistleblowers in this False Claims Act case
  • Details on the "Fictitious" NIST 800-171 SPRS Score
  • How much money Georgia Tech might have to pay
  • Recommendations to universities
  • Advice for other whistleblowers

Both of the whistleblowers have a long history with Georgia Tech and truly care for the institution.

Christopher Craig has worked at Georgia Tech for more than 20 years. He was the Associate Director of Cybersecurity where he managed all central cyber security personnel and built the GRC team until Georgia Tech demoted him to an Enterprise Security Architect.

Kyle Koza worked at Georgia Tech for more than 15 years until he left his role as a Principal Information Security Engineer in 2022. He got his bachelor’s and master's degrees from Georgia Tech and also co-wrote and still teaches a security incident response master's degree course at the university.

I thought Christopher's recommendation (24:37) for universities to centralize their labs was excellent!

How can a university expect to maintain its NIST / CMMC compliance if multiple labs are built and managed by different teams who may not even be familiar with the NIST 800-171 security controls?

I also loved hearing Chris tell us about the support he has received from the cyber community (38:00)! Who in cyber doesn't want to do the right thing? I would like to think those with bad intent are an extremely small percentage.

Special thanks to Christopher and Kyle for sharing their stories with us, and to Julie Bracker for coordinating this interview!

Follow Julie on LinkedIn: https://www.linkedin.com/in/juliekeetonbracker/

Bracker & Marcus LLC Website: https://www.fcacounsel.com/

-----------

Thanks to our sponsor Vanta!

Want to save time filling out security questionnaires?

Register for Vanta's upcoming webinar on Questionnaire Automation here: https://vanta.com/grcacademy

-----------

Governance, Risk, and Compliance Academy (GRC) Academy is a training and research platform!

Online GRC Training: https://grcacademy.io/courses/?utm_source=podcast&utm_medium=s1-e31&utm_campaign=courses

  continue reading

31 episodes

#Tech #Jacob Hill

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Similar to GRC Academy

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Quick Reference Guide

Top Podcasts
The Bill Simmons Podcast
PTI
First Take
Marketplace
Comedy of the Week
The Bugle
How Did This Get Made?
Doug Loves Movies
Planet Money
TED Talks Daily
NBC Nightly News with Lester Holt
The World This Hour
Daily Boost Motivation and Coaching
Radiolab
Science Friday
This American Life
Criminal
Sword and Scale
In The Dark
Player FM logo
Help/FAQ | Upgrade | Advertise
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2024 | Sitemap | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox