『ISF Podcast』のカバーアート

ISF Podcast

ISF Podcast

著者: Information Security Forum Podcast
無料で聴く

このコンテンツについて

 The ISF Podcast brings you cutting-edge conversation, tailored to CISOs, CTOs, CROs, and other global security pros. In every episode of the ISF Podcast, Chief Executive, Steve Durbin speaks with rule-breakers, collaborators, culture builders, and business creatives who manage their enterprise with vision, transparency, authenticity, and integrity. From the Information Security Forum, the leading authority on cyber, information security, and risk management.263000 マネジメント マネジメント・リーダーシップ 出世 就職活動 経済学
エピソード
  • S35 Ep5: Jimmie Lee - Leading with Vision and Empathy: The North Star Approach

    S35 Ep5: Jimmie Lee - Leading with Vision and Empathy: The North Star Approach
    2025/07/01
    Today, Steve speaks with Jimmie Lee, a leadership expert with decades of experience as a senior leader at companies like Boeing, Meta, and Microsoft. He explains that one of the most important things a business leader can do in times of crisis, is to keep focus on the big picture and the long term goals. Jimmie and Steve also discuss how to manage a team in a post-covid workplace and building supply chain resilience — and why empathy matters more than ever.

    Key Takeaways:
    1. Empathy for your team members is more important than ever for a thriving business.
    2. Relationship-building must begin before the crisis happens.
    3. Geopolitical instability is causing a shift from risk management to resilience.
    Tune in to hear more about:
    1. If empathy can be taught (12:50)
    2. How to build trust in a business environment that’s more virtual than ever (15:47)
    3. Why many businesses are struggling because of today’s volatile geopolitical landscape (21:33)
    Standout Quotes:
    1. “There's a lot of tools that I would typically lean on or go to, but the number one is honestly just empathetic connection. It is really just connecting with the leaders and help them understand that they're not alone. I think a lot of times as a leader, you get too stuck in the problems that you start trying to solve, that you focus more trying to solve them in the business, and you go deeper instead of staying up at the leadership level and start working on the business itself.” - Jimmie Lee
    2. “Now you have trust to work off of. If you didn't have that trust and that mistake happened, it's an uphill climb to get to a point of good with that person now. I don't know that we're equipping our employees, that we're actually giving our teams that visibility, that knowledge, that training. […] Are we as companies, are we as leaders investing in our training budget in that kind of way to target those areas?” - Jimmie Lee
    3. “I think the geopolitical landscape is potentially gonna shift the visibility and the approach and the strategy from small, medium- sized businesses and middle market to have more attention on that supply chain because. When it comes to geopolitical instability, when it comes to geo-economic macro and the micro instability, resilience is key. Resilience is the lifeblood. Resilience is your ability to last, to withstand the fluctuations, but if you don't have enough visibility and awareness of all the different components that are impacted, you can't navigate those waters.” - Jimmie Lee
    Read the transcript of this episode
    Subscribe to the ISF Podcast wherever you listen to podcasts
    Connect with us on LinkedIn and Twitter

    From the Information Security Forum, the leading authority on cyber, information security, and risk management.
    続きを読む 一部表示
    30 分
  • S35 Ep4: Yolanda Williams - Cyber on the Ground: Building Resilience in a Fragmented Landscape

    S35 Ep4: Yolanda Williams - Cyber on the Ground: Building Resilience in a Fragmented Landscape
    2025/06/24
    Today’s episode will focus on the challenges of the cyber landscape in the United States, as Steve sits down with Yolanda Williams, who is the Cybersecurity and Infrastructure Security Agency’s cyber security coordinator in the state of Florida. Steve and Yolanda dive deep into her work communicating cyber in a region where it for many isn’t top-of-mind and how state sovereignty and lack of standardisation between local stakeholders poses unique challenges. We hope that Yolanda’s many examples of successfully working with Floridians and stakeholders across the state will resonate with listeners across the US—and perhaps across the pond, too.

    Key Takeaways:
    1. Cyber leaders must possess the ability to shape their communication based on what the audience is looking for.
    2. Organisations are much more open to cyber advice today than they were five years ago.
    3. Look at the language in your contracts! Mistakes can prove costly from both a financial perspective and a cyber perspective.
    Tune in to hear more about:
    1. How cyber connects to physical security (3:25)
    2. The challenges of a lack of standardised guidelines or federal regulation (10:23)
    3. The importance of keeping local backups and not only use the cloud (18:24)
    Standout Quotes:
    1. “I hear a lot of people say, ‘dumb it down.’ But you don't want to dumb it down. You just want to make sure that you're tailoring it specifically. You may have technical folks who are looking for, okay, what was the ransomware? Who did it? Who deployed it? How was it deployed? What was the payload? All those types of things. And they want to get into the deep dive of it. A lot of individuals don't. I'll speak to healthcare individuals and they're more looking at ‘I'm not a target. I'm a small doctor's office. I'm not a target.’ And one of the things we try to get across to everyone is: you are definitely a target. If you have a US IP address, you are a target.” - Yolanda Williams
    2. “There are federal guidelines for federal agencies. However, we respect our states and their sovereignty, and one of the things I found in Florida definitely was a lack of collaboration. Even from the city to the county, there's nothing structured across the board.” - Yolanda Williams
    3. “One of the steps that I recommend across the board for anyone that I'm talking to is looking at the language in your contracts, making sure that language is covering, not just what you're purchasing.[…] So making sure that you're looking at that contract language and have somebody that's looking at it that understands the lexicon, understands what is required. You can't just hire somebody off the street and say, ‘Oh yeah, write this contract,’ and they don't know what should be in the contract.” - Yolanda Williams
    Read the transcript of this episode
    Subscribe to the ISF Podcast wherever you listen to podcasts
    Connect with us on LinkedIn and Twitter

    From the Information Security Forum, the leading authority on cyber, information security, and risk management.
    続きを読む 一部表示
    21 分
  • S35 Ep3: The Silent Risk in M&A: Cyber Security Oversights That Cost Millions

    S35 Ep3: The Silent Risk in M&A: Cyber Security Oversights That Cost Millions
    2025/06/17
    Financial due diligence is common practice when companies merge or one business acquires another. Cyber security due diligence, however, is not quite as common. Yet, in a world where the threat landscape changes by the day and risk is growing increasingly complex, solid cyber security practices are more important than ever.

    Today, Steve and Tavia dig into this very topic, and, more specifically, what role cyber security has in a merger or an acquisition. How is a cyber security review done? Why are they important? How do we balance speed with thoroughness? How do we interpret the results? There’s a lot to dig into here.

    Key Takeaways:
    1. Cyber due diligence is paramount in a corporate acquisition or merger.
    2. Risks of not doing cyber due diligence include both financial and reputational.
    3. Cyber due diligence is a team game.
    Tune in to hear more about:
    1. Who should be responsible for conducting the cyber review (4:34)
    2. How organizations can build cyber into their due diligence process (14:05)
    3. Examples of where insufficient cyber due diligence proved costly (19:05)
    Standout Quotes:
    1. “You can't play a team sport without a team. And for me, M&A is a team game. You can't go it alone. I think it would be a mistake for somebody to think that they could do this kind of work solo. Because as we've seen with cyber maturing, it now touches so many different parts of the organization. You do need to be involved.” - Steve Durbin
    2. “I think people are getting it. What I'm seeing now is people get it, but they don't know how to do it. That's where the cyber professional really now has to step up.” - Steve Durbin
    3. “Pre-deal, I think it is about being focused. It's about identifying, prioritizing the high risk areas that are out there that you want to look into. It's about doing things like making sure that the governance is there. It's about scanning for some of the known vulnerabilities. If you are in one particular market sector and you're buying a company in another because of expansion growth, you're going to need to be covering off a whole range of different things that perhaps might be unusual for you because you haven't been having to look into those areas.” - Steve Durbin
    Read the transcript of this episode
    Subscribe to the ISF Podcast wherever you listen to podcasts
    Connect with us on LinkedIn and Twitter

    From the Information Security Forum, the leading authority on cyber, information security, and risk management.
    続きを読む 一部表示
    34 分

ISF Podcastに寄せられたリスナーの声

カスタマーレビュー:以下のタブを選択することで、他のサイトのレビューをご覧になれます。

Audible.co.jp

Amazon.co.jp
レビューはまだありません。