The CISO Stories PodcastSubscribe
Supply chain, Threat Management

Securing Connections: 3rd Party Risk Mgmt Expert Insights – Charles Spence – CSP #165

Full Audio

View Show Index

Segments

1. Securing Connections: 3rd Party Risk Mgmt Expert Insights – Charles Spence – CSP #165

Breaches at software vendors used by many organizations have highlighted the external software supplier risk, requiring organizations to be even more diligent. Join us as we discuss the supply chain issues and their relationship to software supply chain issues and how organizations should approach environment with supplier software risk, geo-political risk, environmental concerns to maintain business resiliency.

This segment is sponsored by VISO TRUST. Visit https://cisostoriespodcast.com/visotrust to learn more about them!

Sponsored By

VISO TRUST

Guest

Cigna Healthcare

An accomplished and forward-thinking technology, cybersecurity and operations executive with over two decades of demonstrated success in spearheading transformational initiatives. Proven expertise in optimizing technological infrastructure, driving innovation, and catalyzing organizational growth through strategic technology solutions. A visionary leader renowned for orchestrating security into impactful digital transformations, aligning technology with business objectives, and delivering tangible results in complex, dynamic and heavily regulated environments.

Host

VP, Cybersecurity Strategy, Cybersecurity Collaborative at CyberRisk Alliance

Todd Fitzgerald promotes CISO/CPO leadership via the SCMedia CISO STORIES weekly podcast, advisory board participation, and international speaking engagements. Todd serves as VP, Cybersecurity Strategy, CyberRisk Collaborative. Todd authored 5 books, including #1 New Release (2024) Privacy Leader Compass: A Comprehensive Roadmap for Building and Leading Practical Privacy Programs, and #1 Best-selling (2019-2023) and 2020 CANON Cybersecurity Hall of Fame book, CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers. Named 2016–17 Chicago CISO of the Year, Todd’s senior leadership positions include Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, Wellpoint/National Government Services, Zeneca/Syngenta, IMS Health and American Airlines.

Related

AI fixes everything, C++ the actual worst, IAM is hard – ASW #308

This week, in the Application Security News, we dismiss magical thinking and discuss what generative AI will actually be able to do for us. We also discuss whether Secure by Design's goals are practical or not. OSC&R releases a report on software supply chain that should be interesting, though neither of us had time to read it yet. Also, Wat...
Exploding Pagers – PSW #843

Apple drops a lawsuit to avoid exposing secrets, what does it mean for the security industry if MS locks down the kernel?, exploding pagers, more things from the past: Adobe Flash exploits, robots get rid of your data, PKFail is still a thing, Android TV malware is back: now with conspiracy theories, DMA attacks, gamers are not nation-state attacke...
Wifi Vulns, Yubikeys, and Firmware – PSW #842

Don't tell the FCC there is a new Flipper firmware release, unpatchable?, argv[0] and sneaking past defenses, protect your registries, someone solved my UART RX problem, PKFail update, legal threats against security researchers documented, EDR bypass whack-a-mole continues, emulating PIs, VScode moonlights as a spy, Want to clone a YubiKey? All you...