All links and images for this episode can be found on CISO Series.

This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), operating partner, YL Ventures. Joining me is our sponsored guest, Jay Trinckes, director of compliance, Thoropass.

In this episode:

• Why do credential stuffing attacks put organizations in such a tricky spot?

• Why is blaming the victim rarely the right move?

• What kind of reasonable expectations can companies have about how much users will do to protect themselves?

Thanks to our podcast sponsor, Thoropass

Still spending time collecting evidence and worrying about breaking free of an infinite audit loop? Relax! We fixed audits. Thoropass provides complete infosec compliance management, continuous monitoring, and security audits through AI-infused software and expert guidance – allowing you to do business with confidence. Learn more at www.thoropass.com.