ISF Podcast – Details, episodes & analysis

Today, BBC journalist Nick Witchell interviews Steve about the threat landscape in light of a number of damaging hacks that have recently been made public. They consider the challenges regulators face given the current geopolitical situation and discuss how organisations can create a thorough cyber defense and response plan.


Key Takeaways:

1. Organisations cannot abdicate responsibility for data security, even when outsourcing to third parties. They need strong incident response plans and ongoing assessment of third-party security capabilities. 
2. In terms of any country’s political agenda on cybersecurity, AI regulation is often overshadowed by other issues.
3. Few parliamentarians and ministers come from a security background, which is one reason why it’s critical to provide guidance and insight to them.
4. A more thoughtful and funded approach to security would benefit society, considering the potential impact on people’s lives and the need for effective incident response.


Tune in to hear more about:

1. Accountability and responsibility in cybersecurity (1:59)
2. Role of cybersecurity centers and national institutions (5:13)
3. Government and political involvement in cybersecurity (8:29)
4. Public awareness and the ISF’s role (12:21)
5. Risk management and security investment (16:32)
6. Concerns about technology implementation (20:14)


Standout Quotes:

1. “We (at the ISF) don't want to be one of those organisations that's constantly barracking people and complaining. We want to be holding true to some of our founding principles, which is about providing best advice, providing some of the best tools, providing some of the best insights that we gather from our own team and also from our member community. But we do need to make more noise about that, because people desperately need to understand some of the implications, and indeed, very much more importantly, what they can actually practically do about it.”  - Steve Durbin

2. “There is no one size fits all. That's the other thing about this. You have to have it in line with your business direction, your size, your maturity, all of those sorts of things. Very often people ask me for blueprints or, what does good look like? And my answer is always the same: it varies depending on your stage of maturity and your willingness to spend, and how important your data is to you.” - Steve Durbin


Mentioned in this episode:

• ISF Analyst Insight Podcast
  
  

Read the transcript of this episode
Subscribe to the ISF Podcast wherever you listen to podcasts
Connect with us on LinkedIn and Twitter

From the Information Security Forum, the leading authority on cyber, information security, and risk management.

Today’s conversation is a fascinating discussion on the nature of data with Jannis Kallinikos, professor of Information Systems at the London School of Economics. Jannis co-wrote the recently published book Data Rules: Reinventing the Market Economy, in which he and co-author Cristina Alaimo posit that data are a fluid cultural record, rather than a static statistical entity. He and Steve discuss the implications of this understanding of data for the security industry, from how it could change regulatory approaches to how we understand ourselves as humans in relation to data.

Key Takeaways:
1. Kallinikos argues that data are not just statistical entities, but cultural entities that convey aspects of our world and reality.

2. Data are cultural records, not just statistical entities, and are fundamental to economic and social transformation.

2. Durbin and Kallinikos discuss concerns about data-driven perspectives reinforcing narrow worldviews.

3. Data regulation needs to reflect data’s interactive and morphing nature and serves to protect society from greedy companies.

4. Kallinikos warns that politics has become instinct-based, with little time for reflection.

Tune in to hear more about:
1. Data’s role in society, economy, and transformation (0:00)

2. Data’s impact on society, culture, and individual perspectives, with a focus on regulation and balance (7:10)

3. Data as a living entity, challenges for security professionals, and need for education (18:01)

4. Data’s impact on society and politics, with a focus on education and government’s role in protecting data (23:15)

Standout Quotes:
1. “Data are cultural elements and not statistical entities. It makes a whole lot of difference. By cultural entities, we mean that they are records by which we represent our world. and we act upon the world. We use them to produce, we use them to interact, we use them to communicate. In this respect, data are cultural records, once again, and not statistical entities or entities like those ones that contemporary data science debates.“ - Jannis Kallinikos

2. “Think how many things we can do that were out of reach before these beasts and these technologies and the data we produce in the facilities that they prepare for us, how many things we can do that were not virtually possible before. So there is a positive side to it. But as you English say, there is no free lunch in life. And this applies here. We win a lot. But there are also important things that we lose.“ - Jannis Kallinikos

3. “But these are difficult discussions to have in politics. Because they require a little bit of reflection, a step back, a little bit of time. Politics, for good or bad, has become very instinct based over the last three or four decades. Instinct based, more to react, target, and produce reactions of a particular type that are mostly emotional or instinctual.“ - Jannis Kallinikos

Mentioned in this episode:

• Times Higher Education: We need a social science of data by Cristina Alaimo and Jannis Kallinikos
• ISF Analyst Insight Podcast

Read the transcript of this episode
Subscribe to the ISF Podcast wherever you listen to podcasts
Connect with us on LinkedIn and Twitter


 From the Information Security Forum, the leading authority on cyber, information security, and risk management.

Today is the second in a two-part conversation centered on cultural fluency with global leadership strategist and corporate coach Jane Hyun. Jane is the author of Leadership Toolkit for Asians: The Definitive Resource Guide for Breaking the Bamboo Ceiling and Breaking the Bamboo Ceiling: Career Strategies for Asians, and co-author of Flex: The New Playbook for Managing Across Differences. In this episode, Steve and Jane define cultural fluency and give more tips on fostering cohesion and innovation in global teams.

Key Takeaways:
1. To be effective in a global team with diverse languages and continents, leaders must recognize and attend to cultural differences.
2. Mergers and acquisitions can fail due to cultural differences.
3. In the security industry, retention is a significant issue, and creating a fun and thriving work environment can help address it.


Tune in to hear more about:
1. Cultural fluency and its importance in leadership, particularly when working with people from different backgrounds and cultures (0:00)
2. Cultural fluency in the workplace (6:17)


Standout Quotes:
1. “It's actually about building leadership capacity to work across difference. And it's not just for one cultural group or another; it’s actually for everyone. To build that cultural self awareness and to create an environment where we can ask questions, thoughtfully, that we give some room to each other.” - Jane Hyun

2. “If the leader can be attuned to those little things and show that kind of empathy that engages someone who feels, perhaps, kind of in the margins, or their voice is not always heard, I think that can make a tremendous difference in how they connect to your company, how loyal they are to you, and how much output you will get from their productivity as well.” - Jane Hyun


Mentioned in this episode:

• Flex: The New Playbook for Managing Across Differences
• Breaking the Bamboo Ceiling: Career Strategies for Asians
• Leadership Toolkit for Asians: The Definitive Resource Guide for Breaking the Bamboo Ceiling
• ISF Analyst Insight Podcast

Read the transcript of this episode
Subscribe to the ISF Podcast wherever you listen to podcasts
Connect with us on LinkedIn and Twitter

From the Information Security Forum, the leading authority on cyber, information security, and risk management.

Today, ISF CEO Steve Durbin is in conversation with Adam Rumanek, the founder and CEO of Aux Mode, a company that specializes in digital rights management, content strategy, and IP protection. Adam and Steve discuss the challenges of protecting content and intellectual property, how organisations can manage their risk in that area, and what to do if your content is compromised.


Read the transcript of this episode Subscribe to the ISF Podcast wherever you listen to podcasts Connect with us on LinkedIn and Twitter
From the Information Security Forum, the leading authority on cyber, information security, and risk management

Today, ISF CEO Steve Durbin is in conversation with Brett Beranek, Vice President and General Manager of security and biometrics at Nuance Communications. Steve and Brett discuss some of the potential and the challenges of biometrics in the security space, including recent advancements in deep neural networks and deep fakes.

Read the transcript of this episode Subscribe to the ISF Podcast wherever you listen to podcasts Connect with us on LinkedIn and Twitter
From the Information Security Forum, the leading authority on cyber, information security, and risk management

In this episode, Steve speaks with Carl Allen, a private equity investor and co-founder of the Dealmaker Wealth Society. They discuss security across the mergers and acquisitions process, particularly for small and mid-size businesses.
More ISF resources on this topic:

• Information Security in Mergers and Acquisitions
• Video Presentation: The Role of Information Security in Mergers and Acquisitions
• Consultancy Service: Cyber Risk for Mergers and Acquisitions

Read the transcript of this episode Subscribe to the ISF Podcast wherever you listen to podcasts Connect with us on LinkedIn and Twitter
From the Information Security Forum, the leading authority on cyber, information security, and risk management

Today, ISF CEO Steve Durbin is in conversation with Mark Ralls, President and COO of Invicti Security, a Texas-based company that provides dynamic web application security solutions. You’ll hear Mark mention what he calls the FUD approach to security — starting from fear, uncertainty and doubt. Steve and Mark talk about the cost this approach can ultimately have in relation to people, process, technology, and outsourcing. They also discuss the current threat landscape, security by design, and developing the next generation of cybersecurity talent.


Read the transcript of this episode Subscribe to the ISF Podcast wherever you listen to podcasts Connect with us on LinkedIn and Twitter
From the Information Security Forum, the leading authority on cyber, information security, and risk management

Today, ISF CEO Steve Durbin and producer Tavia Gilbert discuss highlights from the conversations we’ve featured on the podcast over the last several weeks. We review our season and consider takeaways, in terms of business leadership and actionable insights for our members, particularly during these times of instability.

Related Resources from ISF:

• “Are 5G Networks Setting The Stage For A New Wave Of Cyberattacks?” — Forbes, 10 August 2021
• Threat Horizon 2022: Digital and Physical Worlds Collide
• The New World Order (ISF Podcast, 19 January 2022)
• The Race for Tech Dominance (ISF Podcast, 25 January 2022)
• ISF Ransomware Support: Prepare, Respond, Resume
• Review and Gap Analysis of Cybersecurity Legislation and Cybercriminality Policies in Eight Countries

Read the transcript of this episode Subscribe to the ISF Podcast wherever you listen to podcasts Connect with us on LinkedIn and Twitter
From the Information Security Forum, the leading authority on cyber, information security, and risk management

Today, Steve is speaking with Prof. Federico Varese, a professor of criminology and head of the sociology department at Nuffield College at Oxford University. Prof. Varese talks with Steve about the history of organised crime in Russia and around the world, the mafia’s movement into cybercrime, and what the future may hold for these criminal organisations.

Related Resources from ISF:

• ISF Podcast, Alexander Seger — How Global Law Enforcement Fight Cybercrime
• ISF Podcast, Inside the Mind of Today’s Cybercriminals, Brett Johnson Part 1
• ISF Podcast, The Life of a Cybercriminal, Brett Johnson Part 2
• Misha Glenny: The Evolution of Cybercrime with Misha Glenny, author of McMafia

Read the transcript of this episode Subscribe to the ISF Podcast wherever you listen to podcasts Connect with us on LinkedIn and Twitter
From the Information Security Forum, the leading authority on cyber, information security, and risk management

Today, Steve sits down with Alexander Seger, head of the Cybercrime Division at the Council of Europe. They discuss ways to promote cooperation between private businesses and law enforcement agencies, the challenges of investigating and prosecuting cybercrimes across multiple jurisdictions, and recent developments with the Budapest Convention on Cybercrime that could mitigate those challenges.

Related Resources from ISF:

• Mitigating Ransomware Attacks
• Review and Gap Analysis of Cybersecurity Legislation and Cybercriminality Policies in Eight Countries

Read the transcript of this episode Subscribe to the ISF Podcast wherever you listen to podcasts Connect with us on LinkedIn and Twitter
From the Information Security Forum, the leading authority on cyber, information security, and risk management