In this episode seasoned expert in the physical security industry Baldvin Gislason Bern, discusses the critical transformation of cybersecurity regulations and compliance. The conversation delves into Baldwvin's journey from researcher to cybersecurity pioneer, highlighting the industry's pivotal shift towards cybersecurity – starting in 2014. Key topics include the impact of European regulations such as the NIS2 directive and the Cyber Resilience Act, which aim to address market vulnerabilities and enhance societal resilience against cyber threats. Baldwin emphasizes the importance of understanding the differences between frameworks, standards, and regulations, and their roles in safeguarding critical infrastructure.

The discussion also explores the significance of product security and adaptable regulations in the tech industry, focusing on standards like the UK’s Product Security and Telecommunications Infrastructure (PSTI) Act and HCE. Baldvin and Steve share insights from their experiences at Axis, underscoring the necessity for ongoing cybersecurity vigilance and proactive approaches beyond mere regulatory compliance. The episode provides valuable guidance for organizations navigating the complex landscape of cybersecurity legislation, stressing the importance of prioritizing security practices to build comprehensive cybersecurity strategies across various sectors.

About our guest:

Baldvin Gislason Bern is a distinguished figure in the cybersecurity and physical security industries, boasting over 25 years of extensive experience. Beginning his career as a researcher, Baldvin quickly transitioned into various senior engineering roles, significantly contributing to the field of cybersecurity. His career trajectory is marked by pivotal roles within organizations such as Axis Communications, where he played an instrumental part in shaping the company's approach to cybersecurity, particularly during the industry's transformative shift in 2014. Baldvin's expertise is not confined to the corporate world; he has also made significant contributions as a volunteer chairperson within the Open Network Video Interface Forum (ONVIF) and the International Association of Public Transport (UITP) Steering Group Committee on cybersecurity.

Connect with Baldvin on LinkedIn

Chapters:

(00:00) Cybersecurity Evolution in Physical Security

Explore Baldvin Gislason Bern's journey from researcher to industry pioneer, focusing on the shift towards cybersecurity in 2014.

(08:33) Impact of Cybersecurity Legislation

Discuss the evolution and impact of the NIS2 directive and GDPR, highlighting the challenges and preparations required by organizations.

(18:30) Adapting to Product Security Standards

Examine the UK’s PSTI Act and standards, emphasizing adaptable regulations for tech security.

(23:55) Ensuring Secure Tech Infrastructure

Delve into the importance of secure products and infrastructure, and the responsibilities placed on operators and manufacturers by new regulations.

Resources:

Learn more about Axis Communications’ role in Cybersecurity

Check out

Join us as Florian Matusek, Director of AI Strategy at Genetec, takes us on a journey into the evolving role of artificial intelligence in the security industry. Florian and Steve shed light on how AI has transitioned from its early days to today's sophisticated generative models. Emphasizing AI as a tool to augment human capabilities, rather than replace them, Florian advocates for terms like "machine intelligence" and "intelligent automation" to better reflect AI's practical applications.

Steve and Florian address crucial topics such as responsible AI regulations and ethical data usage, drawing comparisons to frameworks like the EU AI Act and GDPR. They stress the importance of self-regulation and ethical standards in deploying AI technologies, especially in security applications. Listen as we review some valuable insights into AI's future in security, setting the stage for future episodes that will continue to explore the implications and advancements of this dynamic technology.

About our guest:

Florian Matsuek is an expert in artificial intelligence strategy, currently serving as the Director of AI Strategy at Genetec following the acquisition of his venture, Kiwi Security. With a rich background that began at Skype as a video expert, Florian has become a prominent figure in video analytics and AI, recognized for his contributions through an Amazon global bestseller, "Nowhere to Hide," along with numerous scientific publications and patents. As a sought-after public speaker, Florian has been featured in outlets such as Wired and the LA Times and hosts the podcast "Video Analytics 101." Holding a PhD in information processing science, his expertise is deeply rooted in media computer science and computer vision. Florian also plays a vital role as a member of the AI advisory board for the Security Industry Association (SEIA) in the US. Known for his engaging discussions on AI's role in augmenting human capabilities, Florian emphasizes the importance of ethical considerations and practical applications in technology.

Connect with Florian on LinkedIn

Chapters:

[0:00:05] Artificial Intelligence in Security Technology

Our guest Florian Matsuek discusses the historical evolution of AI in the security industry, emphasizing the need to view AI as a tool that enhances human capabilities rather than replaces them, and advocates for terms like "machine intelligence" and "intelligent automation" to better describe AI's practical applications.

[0:08:11] Advancements in Video Analytics Technology

This segment explores the practical integration of AI in video analytics, highlighting the importance of selecting the right technology for real-world applications and managing user expectations by focusing on outcomes rather than hype.

[0:19:21] Responsible AI Regulations and Transparency

Florian underscores the importance of proactive self-regulation in the AI and data privacy sectors, drawing parallels to the EU AI Act and GDPR, and advocates for ethical standards in AI deployment to build trust and maintain human oversight.

[0:27:33] Navigating Risks and Opportunities With AI

The conversation addresses the issue of hallucinations in large language models and emphasizes the importance of user education and careful implementation of AI to avoid...

In this episode of "Security Tech Talk," cybersecurity expert Mike Gillespie delves into the intricate relationship between cybersecurity legislation and business practices. With over 35 years of experience, Mike provides a critical analysis of the gap between legislative intentions and their practical implementation in the business world. The episode explores key challenges such as the disconnect between lawmakers and businesses, the complexities of supply chain security, and the necessity for agile certification processes to keep pace with technological advancements.

Steve and Mike discuss the pressing need for industries, particularly construction and infrastructure, to integrate cybersecurity considerations into their projects from the outset. Mike brings us his opinions on the potential of cybersecurity to transform networks into vital business assets rather than mere security tools and the importance of frameworks like the NIS2 directive and the Cyber Resilience Act in ensuring secure technologies and better data management. Through these insights, Steve and Mike encourage organizations to prioritize cybersecurity as a critical aspect of modern business operations.

About our guest:

Mike Gillespie is a seasoned security expert with over 35 years of experience. His career began in the British military, transitioning into a 25-year focus on cybersecurity. He is the founder of Advent IM and holds numerous leadership positions, including Director at the Security Institute and Vice President of the Center for Strategic Cyberspace and Security Science. Mike also led a steering group for the UK Surveillance Camera Commissioner, focusing on secure by design and secure by default certification. With his extensive background in both physical and electronic security, Mike is uniquely qualified to address today's cybersecurity challenges.

Connect with Mike on LinkedIn

Chapters:

(00:06) Cybersecurity Challenges in Security Industry

Mike Gillespie discusses the complexities of aligning cybersecurity legislation with practical business practices, emphasizing the need for informed legislation and the proactive involvement of businesses to go beyond minimal compliance efforts.

(12:55) Ensuring Security in Supply Chain

This chapter delves into the intricacies of supply chain security in video surveillance systems, highlighting the challenges of adopting 'secure by default' standards and the critical role of transparency in preventing counterfeit components.

(21:10) Adapting to Evolving Security Standards

Exploring the cybersecurity industry's struggle to keep up with rapid technological advancements, this chapter underscores the need for agile certification processes and the transformative potential of AI in enhancing cybersecurity practices.

(26:55) Importance of Cybersecurity in Industries

The discussion reveals the alarming lack of cybersecurity considerations in construction and infrastructure projects, advocating for integrated cybersecurity strategies to enhance operational efficiency and data management across various sectors.

Resources:

Read more about