The CISO Stories Podcast Subscribe

Identity, Blue team, Attack surface management

Have you ever had a pen tester own your network? – Julian Austin – CSP #199

November 5, 2024

Guessing the answer is yes. Well, let's talk about some of the simple ways you can avoid account compromises by strengthening your identity security through MFA, least privilege, account reviews, and all the things!

This segment is sponsored by CyberArk. Visit https://cisostoriespodcast.com/cyberark to learn more about them!

This segment is sponsored by Liminal. Visit https://cisostoriespodcast.com/liminal to learn more about them!

This segment is sponsored by Saviynt. Please visit https://cisostoriespodcast.com/saviynt to learn more and get a free demo!

Sponsored By

CyberArk

Liminal

Full episode and show notes

Guest

vCISO at Thrive

I’ve been in IT Security for 15+ years, from working in a Security Operations Center as a data analyst to multiple engineering roles. As a consultant, I’ve performed penetration testing and designed and implemented MSSPs for endpoint security, phishing, vulnerability assessment, and remediation. I worked in the merger and acquisition security assessment space during COVID-19 when large companies bought small companies. I’ve built cybersecurity roadmaps using frameworks like CIS Security Controls and presenting risks to executives and senior management.

A couple of Fun Facts about me: I rode a bike across America from Washington, DC, to San Francisco, CA, (over 4,300 miles) for Habitat for Humanity while in college with 25 other crazy people, and I currently referee men’s college basketball.

Host

Jessica Hoffman

Deputy CISO at City of Philadelphia

Jessica Hoffman is a Certified Information System Security Professional (CISSP) with almost 20 years of information technology and cybersecurity experience in both the government and private sectors. The majority of those years have been in Audit and Compliance. Jessica has dedicated her career to the safety, privacy of millions of Americans’ Personally Identifiable Information (PII), Protected Healthcare Information (PHI), and Federal Tax Information (FTI). She also is a Professor at Harrisburg University and The Pennsylvania State University. Jessica is a member of various organizations cultivating the next generation of cybersecurity professionals and also is a national speaker. Serving currently as the Deputy CISO for the City of Philadelphia and she enjoys long walks on the beach.

Related

Vulnerability Management

Google DeGoogled, Hammerbarn, Blofeld, VMWare, DeepData, SafePay, Josh Marpet and… – SWN #432

November 19, 2024

Google DeGoogled, Hammerbarn, Blofeld, VMWare, DeepData, SafePay, Josh Marpet and more on the Security Weekly News.

Identity Security: Navigating the New Normal with Dr. Sean Murphy – Sean Murphy – CSP #201

November 19, 2024

In this episode of CSP, we sit down with Dr. Sean Murphy, the CISO of BECU, one of Seattle’s largest credit unions, to discuss the shifts in identity security brought on by the COVID-19 pandemic. Dr. Murphy highlights how Zero Trust architecture became crucial for verifying internal users, especially as remote work became the norm. He shares insigh...

Risk Assessments/Management

Biometric Frontiers: Unlocking The Future Of Engagement – Andras Cser, Enza Iannopollo – ASW #308

November 18, 2024

This week's interview dives deep into the state of biometrics with two Forrester Research analysts! This discussion compares and contrasts regional approaches to biometrics; examine the security challenges and benefits of their implementation; and reveal how biometrics holds the keys to a range of engagement models of the future. Andras Cser div...