Explorez tous les épisodes du podcast Cyber Risk Management Podcast
| Titre | Date | Durée | |
|---|---|---|---|
| EP 165: The 2024 Verizon Data Breach Investigations Report (DBIR) Part 1 | 27 Aug 2024 | 00:54:16 | |
"Have you read the Verizon DBIR report for 2024? Find out what it contains in the first of two episodes on this extremely useful report with your hosts Kip Boyle, vCISO with Cyber Risk Opportunities, and Jake Bernstein, Partner with K&L Gates. ""Can you trust the Verizon Data Breach Investigations Report (DBIR) to help you run your Cyber Risk Program?"" -- https://www.cr-map.com/91" | |||
| EP 164: Why are we so bad at vulnerability management? | 12 Aug 2024 | 00:36:00 | |
"Vulnerability management is really difficult, especially at scale. And after 20+ years that's still true. Our guest Alex Wood, who's the CISO of Uplight, will help us understand why and consider practical suggestions for getting better. Your hosts are Kip Boyle, CISO with Cyber Risk Opportunities, and Jake Bernstein, Partner with K&L Gates. Alex Wood's LinkedIn Profile -- https://www.linkedin.com/in/alexbwood/ Colorado = Security -- https://www.colorado-security.com/ " | |||
| EP 155: Cybersecurity and data privacy in M&A transactions | 09 Apr 2024 | 00:42:25 | |
The role of cybersecurity and data privacy due diligence when buying or selling a company has gone way up compared to five years ago. Why? And, what's at stake? Let's find out with our guest Brian Levine. Your hosts are Kip Boyle, CISO with Cyber Risk Opportunities, and Jake Bernstein, Partner with K&L Gates. | |||
| EP 65: Cyber Exploitation Through Supply Chains | 27 Oct 2020 | 00:32:05 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and Cybersecurity Practice Lead at Focal Law Group, explore cyber exploitation through supply chains with our guest, Steven Carnovale, Assistant Professor of Supply Chain Management at the Rochester Institute of Technology. | |||
| EP 64: Current trends in Internet Freedom | 13 Oct 2020 | 00:35:19 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and Cybersecurity Practice Lead at Focal Law Group, review trends in Internet Freedom with our guest, Harold Li, Vice President of ExpressVPN. | |||
| EP 63: Quick look at the “Essential Eight” mitigations | 29 Sep 2020 | 00:38:40 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and Cybersecurity Practice Lead at Focal Law Group, do a quick review of the Essential Eight mitigations published by the Australian Signals Directorate. | |||
| EP 62: Going deeper into the 2020 edition of the DBIR | 15 Sep 2020 | 00:42:26 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and Cybersecurity Practice Lead at Focal Law Group, go deeper into the 2020 edition of the Verizon Data Breach Investigations Report (DBIR). | |||
| EP 61: The 2020 edition of the Verizon Data Breach Investigations Report (DBIR) | 01 Sep 2020 | 00:36:13 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, do a quick analysis of the 2020 edition of the Verizon Data Breach Investigations Report. | |||
| EP 60: LabCorp shareholder sues senior decision makers over cybersecurity failures | 18 Aug 2020 | 00:34:01 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, explain how 3rd-party cybersecurity failures have resulted in a shareholder derivative lawsuit that names senior decision makers as defendants. | |||
| EP 59: Can DoCRA (Duty of Care Risk Analysis) tell you if your cybersecurity controls are reasonable? | 04 Aug 2020 | 00:52:02 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discusses DoCRA – Duty of Care Risk Analysis. It’s an approach that helps organizations figure out whether their cybersecurity controls are reasonable. And we'll do that with the help of our guest, Chris Cronin. | |||
| EP 58: Why some companies are so intense about managing supply chain cyber risk | 21 Jul 2020 | 00:32:10 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss why some companies are so intense about managing cyber risk in their supply chains. | |||
| EP 57: The new “At a Minimum” FTC standard | 07 Jul 2020 | 00:40:23 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss the FTC’s new “at a minimum” language in its cybersecurity decisions and what that means for cyber risk managers. | |||
| EP 56: How to quickly and profitably close deals with your cybersecurity intensive customers | 22 Jun 2020 | 00:31:59 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss the three steps business leaders should follow to overcome pre-sales cybersecurity due diligence sales hurdles with prospective customers. | |||
| EP 154: NIST AI Risk Management Framework, part 2 | 26 Mar 2024 | 00:48:06 | |
Here's part 2 of what's in the NIST Artificial Intelligence Risk Management Framework (NIST AT-RMF)? And, how do you use it? Let's find out with your hosts Kip Boyle, CISO with Cyber Risk Opportunities, and Jake Bernstein, Partner with K&L Gates. | |||
| EP 55: How to graduate skilled cybersecurity analysts in only six months | 09 Jun 2020 | 00:22:47 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss how the Prelude Institute is helping to make up the shortfall in qualified cybersecurity professionals with our guest, Ted Ipsen. | |||
| EP 54: The legal and economic aftermath of cybersecurity breaches | 26 May 2020 | 00:31:57 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss how liability and blame is a serious obstacle to keeping the internet secure with our guest, professor and published author, Josephine Wolff. | |||
| EP 53: Post data breach requirements for law firms | 12 May 2020 | 00:31:43 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss ABA Formal Opinion 483, which sets out requirements for law firms who suffer breaches of client data. | |||
| EP 52: SysAdmins and the multi-million dollar privacy violations they will cause | 28 Apr 2020 | 00:22:59 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, reveal how people with privileged accounts are managing bigger risks to their organization than ever before. In the world of CCPA, GDPR, and SHIELD, not carefully setting permissions on those data lakes will lead to massive penalties for some organizations. | |||
| EP 51: Cyber Extortion of Patients | 14 Apr 2020 | 00:21:40 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss how cyber criminals are sending ransom demands to the people in the records they steal. | |||
| EP 50: Results of annual listener survey | 31 Mar 2020 | 00:11:34 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss the results of the annual listener survey. | |||
| EP 49: Utility computing for cybersecurity is “reasonable” | 17 Mar 2020 | 00:19:38 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss how organizations using Office 365 and G Suite should be using the many "hidden" but very affordable cybersecurity functions. Their availability is changing the definition of "reasonable cybersecurity". | |||
| EP 48: The effects of cyberattacks on corporate reputation and consumer confidence | 03 Mar 2020 | 00:32:21 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss the effects of cyberattacks on corporate reputation and consumer confidence with the help of our friend and public relations expert, Casey Boggs. | |||
| EP 47: California’s IoT Security Law: Why It Matters | 18 Feb 2020 | 00:22:33 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss California's new "Internet of Things" security law and its intersection with reasonable cybersecurity. | |||
| EP 46: Experiences with Law Enforcement on Cyber Crime Cases | 04 Feb 2020 | 00:36:30 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, share what is was like for each of them to work with FBI and Secret Service on two recent cyber crime cases. | |||
| EP 153: NIST AI Risk Management Framework, part 1 | 12 Mar 2024 | 00:40:49 | |
What's in the NIST Artificial Intelligence Risk Management Framework (NIST AT-RMF)? And, how do you use it? Let's find out with your hosts Kip Boyle, CISO with Cyber Risk Opportunities, and Jake Bernstein, Partner with K&L Gates. | |||
| EP 45: CCPA regulations and the New York SHIELD Act | 21 Jan 2020 | 00:35:27 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, give an update on CCPA and the New York SHIELD Act. | |||
| EP 44: Cybersecurity for entrepreneurs (and their employees) | 07 Jan 2020 | 00:23:05 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss why entrepreneurs need special guidance on cybersecurity. | |||
| EP 43: Why does the FTC settle on cybersecurity cases? | 24 Dec 2019 | 00:29:13 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss why the FTC tends to setting their cybersecurity cases instead of going to trial. | |||
| EP 42: Exploiting IT Service Providers and their Customers | 10 Dec 2019 | 00:33:04 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, discuss how cyber-attackers are abusing the trusted relationship between IT service providers and their customers. | |||
| EP 41: Security Outsourcing: Vendor Selection and Management | 26 Nov 2019 | 00:34:11 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, discuss Security Outsourcing: Vendor Selection and Management. | |||
| EP 40: Ransomware Defenses for cities | 12 Nov 2019 | 00:26:16 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, discuss a recent Dark Reading article by Sara Peters: "It Saved Our Community: 16 Realistic Ransomware Defenses for Cities" | |||
| EP 39: The Major Cyber Risk of Private Equity Firms | 29 Oct 2019 | 00:31:46 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal Law Group, review the rise and fall of Colorado Timberline, a one-time porfolio company of Frontenac and Charter Oak Equity. | |||
| EP 38: The new data breach notification law in Washington | 15 Oct 2019 | 00:30:12 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Focal PLLP, discuss the revised Washington State data breach notification law and why it matters to all our listeners. | |||
| EP 37: Cyber risk and public relations | 01 Oct 2019 | 00:31:25 | |
Kip Boyle, CEO of Cyber Risk Opportunities, talk with guest Casey Boggs about how to manage cyber risk with good public relations. | |||
| EP 36: The emerging “Reasonableness Test” for cybersecurity | 17 Sep 2019 | 00:36:49 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, discuss "The Sedona Conference Draft Commentary on Reasonable Security Test" | |||
| EP 152: Boards of Directors and Cybersecurity | 27 Feb 2024 | 00:47:14 | |
The SEC says that Boards of Directors need cybersecurity expertise. But how exactly does that work? Let's find out with our guest Vanessa Pegueros, former CISO of DocuSign. Your hosts are Kip Boyle, CISO with Cyber Risk Opportunities, and Jake Bernstein, Partner with K&L Gates. | |||
| EP 35: Wholesaler perspective in cyber insurance | 03 Sep 2019 | 00:34:14 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, talk with guest Peter Marchel about the current state of the wholesale cyber insurance market. | |||
| EP 34: Why The ASUS Supply Chain Cyberattack Is a Big Deal | 20 Aug 2019 | 00:25:07 | |
Kip Boyle, CEO of Cyber Risk Opportunities, talks with Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, about what cyber risk managers can learn from the ASUS supply chain cyberattack. | |||
| EP 33: How the blame game that follows big data breaches affects defenders | 06 Aug 2019 | 00:34:28 | |
Kip Boyle, CEO of Cyber Risk Opportunities, talks with Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, about what cyber risk managers can still learn from the 2012 data breach at the South Carolina Department of Revenue. | |||
| EP 32: Independent broker’s perspective on cyber insurance | 23 Jul 2019 | 00:32:03 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, talk with guest Chris Brumfield about the current state of the cyber insurance market. | |||
| EP 31: Protecting your accounts payable function from cyberattack | 09 Jul 2019 | 00:34:49 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, talk with guest Debra Richarson about how finance professionals should protect their company from common financial cyber fraud. | |||
| EP 30: Company Sues Employee For Being Phished | 25 Jun 2019 | 00:31:39 | |
Kip Boyle, CEO of Cyber Risk Opportunities, talks with Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, about a company that sued its employee for being phished out of $260,000. | |||
| EP 29: What the Private Sector Can Learn about Incident Response from the Military | 11 Jun 2019 | 00:32:30 | |
Kip Boyle, CEO of Cyber Risk Opportunities, and Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, talk with guest Melissa Van Buhler about what the military can teach the private sector about incident response. | |||
| EP 28: The Rise of WebApps and Their Impact on Cybersecurity | 28 May 2019 | 00:31:12 | |
Kip Boyle, CEO of Cyber Risk Opportunities, talks with Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, about how some people believe that by using webapps, they are more secure than when using traditional software. | |||
| EP 27: What’s at the intersection of AI and cybersecurity? | 14 May 2019 | 00:29:19 | |
Kip Boyle, CEO of Cyber Risk Opportunities, talks with Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, about three things that cyber risk managers will find at the intersection of artificial intelligence and cybersecurity. | |||
| EP 26: Computer Fraud and Abuse Act (Revisited) | 30 Apr 2019 | 00:28:15 | |
Kip Boyle, CEO of Cyber Risk Opportunities, talks with Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, about how the 35-year-old Computer Fraud and Abuse Act (CFAA) is a useful tool for today's cyber risk managers. | |||
| EP 151: Does Ransomware Kill Sick People? | 13 Feb 2024 | 00:41:36 | |
"Is there any reliable evidence that sick people die at a higher rate when their hospital is disabled by ransomware? Let's find out with your hosts Kip Boyle, CISO with Cyber Risk Opportunities, and Jake Bernstein, Partner with K&L Gates. “Hacked to Pieces? The Effects of Ransomware Attacks on Hospitals and Patients” University of Minnesota - Twin Cities - School of Public Health https://papers.ssrn.com/sol3/papers.cfm?abstract_id=4579292 ""Killware"" -- https://www.cr-map.com/97" | |||
| EP 25: BONUS: New book: “Fire Doesn’t Innovate” on sale now | 14 Jan 2019 | 00:32:10 | |
Kip Boyle, CEO of Cyber Risk Opportunities, talks with Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, about his new book, Fire Doesn’t Innovate, on sale January 15, 2019. It includes a free, online Cyber Risk Workbook that automates Part 2 of the book: The creation of your Cyber Risk Management Game Plan. | |||
| EP 24: How fake advertising fuels other cybercrimes | 16 Apr 2019 | 00:32:10 | |
Kip Boyle, CEO of Cyber Risk Opportunities, talks with Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, about how new techniques for automating ad fraud will probably lead to other types of cybercrime. | |||
| EP 23: What the last 30 years of cyber risks tells us about what’s ahead | 02 Apr 2019 | 00:37:23 | |
Kip Boyle, CEO of Cyber Risk Opportunities, talks with Jake Bernstein, JD and CyberSecurity Practice Lead at Newman DuWors LLP, about what the next 30 years of cyber risks will look like. | |||