Securing Small Businesses: Essential Cybersecurity Tools and Strategies In this episode of CISO Tradecraft, host G Mark Hardy discusses cybersecurity challenges specific to small businesses. He provides insights into key tools and strategies ne

#187 - Ensuring Profitable Growth

19 days ago 20m 16s

Welcome to another episode of CISO Tradecraft with your host, G. Mark Hardy! In this episode, we dive into how CISOs can drive the profitable growth of their company's products and services. Breaking the traditional view of security as a cost c

#186 - AI Coaching (with Tom Bendien)

26 days ago 44m 36s

Exploring AI in Cybersecurity: Insights from an Expert - CISO Tradecraft with Tom Bendien In this episode of CISO Tradecraft, host G Mark Hardy sits down with AI expert Tom Bendien to delve into the impact of artificial intelligence on cybersec

#185 - Ethics and Artificial Intelligence (AI)

Jun 10th, 2024 46m 38s

In this episode of CISO Tradecraft, host G Mark Hardy delves into the complex intersection of ethics and artificial intelligence. The discussion covers the seven stages of AI, from rule-based systems to the potential future of artificial superi

#184 - Complexity is Killing Us

Jun 3rd, 2024 15m 45s

In this episode of CISO Tradecraft, host G Mark Hardy explores the challenges complexity introduces to cybersecurity, debunking the myth that more complex systems are inherently more secure. Through examples ranging from IT support issues to th

#183 - Navigating the Cloud Security Landscape (with Chris Rothe)

May 27th, 2024 44m 25s

This episode of CISO Tradecraft features a conversation between host G. Mark Hardy and Chris Rothe, co-founder of Red Canary, focusing on cloud security, managed detection and response (MDR) services, and the evolution of cybersecurity practice

#182 - Shaping the SOC of Tomorrow (with Debbie Gordon)

May 20th, 2024 44m 30s

This episode of CISO Tradecraft, hosted by G Mark Hardy, features special guest Debbie Gordon. The discussion focuses on the critical role of Security Operations Centers (SOCs) in an organization's cybersecurity efforts, emphasizing the importa

#181 - Inside the 2024 Verizon Data Breach Investigations Report

May 13th, 2024 24m 38s

In this episode of CISO Tradecraft, host G Mark Hardy discusses the findings of the 2024 Verizon Data Breach Investigations Report (DBIR), covering over 10,000 breaches. Beginning with a brief history of the DBIR's inception in 2008, Hardy high

#180 - There's Room For Everybody In Your Router (with Giorgio Perticone)

May 6th, 2024 1h 6m

In this joint episode of the Security Break podcast and CISO Tradecraft podcast, hosts from both platforms come together to discuss a variety of current cybersecurity topics. They delve into the challenge of filtering relevant information in th

#179 - The 7 Broken Pillars of Cybersecurity

Apr 29th, 2024 32m 3s

In this episode of CISO Tradecraft, host G. Mark Hardy discusses seven critical issues facing the cybersecurity industry, offering a detailed analysis of each problem along with counterarguments. The concerns range from the lack of a unified cy

#178 - Cyber Threat Intelligence (with Jeff Majka & Andrew Dutton)

Apr 22nd, 2024 45m 33s

In this episode of CISO Tradecraft, hosts G Mark Hardy and guests Jeff Majka and Andrew Dutton discuss the vital role of competitive threat intelligence in cybersecurity. They explore how Security Bulldog's AI-powered platform helps enterprise

#177 - 2024 CISO Mindmap (with Rafeeq Rehman)

Apr 15th, 2024 46m 28s

This episode of CISO Tradecraft features a comprehensive discussion between host G Mark Hardy and guest Rafeeq Rehman, centered around the evolving role of CISOs, the impact of Generative AI, and strategies for effective cybersecurity leadershi

#176 - Reality-Based Leadership (with Alex Dorr)

Apr 8th, 2024 47m 45s

In this episode of CISO Tradecraft, host G Mark Hardy welcomes Alex Dorr to discuss Reality-Based Leadership and its impact on reducing workplace drama and enhancing productivity. Alex shares his journey from professional basketball to becoming

#175 - Navigating NYDFS Cyber Regulation

Apr 1st, 2024 33m 24s

This episode of CISO Tradecraft dives deep into the New York Department of Financial Services Cybersecurity Regulation, known as Part 500. Hosted by G Mark Hardy, the podcast outlines the significance of this regulation for financial services c

#174 - OWASP Top 10 Web Application Attacks

Mar 25th, 2024 44m 23s

In this episode of CISO Tradecraft, host G. Mark Hardy delves into the crucial topic of the OWASP Top 10 Web Application Security Risks, offering insights on how attackers exploit vulnerabilities and practical advice on securing web application

#173 - Mastering Vulnerability Management

Mar 18th, 2024 22m 16s

In this episode of CISO Tradecraft, host G Mark Hardy delves into the critical subject of vulnerability management for cybersecurity leaders. The discussion begins with defining the scope and importance of vulnerability management, referencing

#172 - Table Top Exercises

Mar 11th, 2024 41m 33s

This episode of CISO Tradecraft, hosted by G Mark Hardy, delves into the concept, significance, and implementation of tabletop exercises in improving organizational security posture. Tabletop exercises are described as invaluable, informal trai

#171 - Navigating Software Supply Chain Security (with Cassie Crossley)

Mar 4th, 2024 46m 57s

In this episode of CISO Tradecraft, host G Mark Hardy converses with Cassie Crossley, author of the book on software supply chain security. Hardy explores the importance of cybersecurity, the structure of software supply chains, and the potenti

#170 - Responsibility, Accountability, and Authority

Feb 26th, 2024 46m 41s

In this episode of CISO Tradecraft, the host, G Mark Hardy, delves into the concepts of responsibility, accountability, and authority. These are considered critical domains in any leadership position but are also specifically applicable in the

#169 - MFA Mishaps

Feb 19th, 2024 33m 21s

In this episode of CISO Tradecraft, host G Mark Hardy discusses various mishaps that can occur with Multi-Factor Authentication (MFA) and how these can be exploited by attackers. The talk covers several scenarios such as the misuse of test serv

#168 - Cybersecurity First Principles (with Rick Howard)

Feb 12th, 2024 47m 14s

In this episode of CISO Tradecraft, host G Mark Hardy is joined by special guest Rick Howard, Chief Security Officer, Chief Analyst and Senior Fellow at CyberWire. Rick shares his insights on first principles in cybersecurity, discussing how th

#167 - Cybersecurity Apprenticeships (with Craig Barber)

Feb 5th, 2024 44m 36s

In this episode of CISO Tradecraft, host G Mark Hardy is joined by guest Craig Barber, the Chief Information Security Officer at SugarCRM. They discuss the increasingly critical topic of cybersecurity apprenticeships and Craig shares his person

#166 - Cyber Acronyms You Should Know

Jan 29th, 2024 38m 49s

This video introduces a newly proposed acronym in the world of cybersecurity known as the 'Cyber UPDATE'. The acronym breaks down into Unchanging, Perimeterizing, Distributing, Authenticating and Authorizing, Tracing, and Ephemeralizing. The vi

#165 - Modernizing Our SOC Ingest (with JP Bourget)

Jan 22nd, 2024 44m 34s

In this episode of CISO Tradecraft, host G Mark Hardy interviews JP Bourget about the security data pipeline and how modernizing SOC ingest can improve efficiency and outcomes. Featuring discussions on cybersecurity leadership, API integrations

#164 - The 7 Lies in Cyber

Jan 15th, 2024 29m 2s

In this episode of CISO Tradecraft, we debunk seven common lies pervasive in the cybersecurity industry. From the fallacy of achieving a complete inventory before moving onto other controls, the misconception about the accuracy of AppSec tools,