Our Latest Product Release Includes Shiny New Security Vulnerabilities – CISO/Security Vendor Relationship Podcast

We have an exciting announcement: Our latest version of the podcast is packed with new features and they’re riddled with security holes. We know you wanted the features. The security vulnerabilities are just a bonus.

On this episode of the CISO/Security Vendor Relationship Podcast, we discuss:

  • Cybersecurity burnout: How bad is it? What can be done to mitigate it? And what are the warning signs? All tech professionals have burnout issues, but InfoSec has it toughest because it’s very hard for them to get a sense of accomplishment for their work.
  • CISO/Security Vendor Relationship Podcast is making an impact in the vendor community: We hear multiple stories from vendors how the advice from Mike and the guests is really changing the way they reach out to security professionals.
  • Are you willing to release a product with known security vulnerabilities? What if the customer really demands the new feature next week and they’re expecting it, but remediation may take much longer. Do you give the customer what they want, or are there other solutions?
  • What’s Worse?! We play a round of picking the worse of two evils. This one is all about training your staff.
  • We unleash another pitch on the security professionals: Their response will surprise you as will the outcome of this pitch.
  • Dumb CISO mistakes: This one actually may not be so dumb. It could actually be good advice when it comes to product testing.
  • Ten-second security tip: This one offers up a more holistic view of security that you may have not considered, but definitely should.

Special thanks to Signal Sciences for sponsoring this episode. If you’re using WAFs, make sure you read “Three Ways Legacy WAFs Fail,” by their head of research, James Wickett.

As always, the show is hosted by me, David Spark (@dspark), founder, Spark Media Solutions and Mike Johnson, CISO, Lyft. Our guest is Anne Marie Zettlemoyer, a security strategist and independent researcher who is also on the board of directors for SSH.

Listen and Subscribe to the CISO/Security Vendor Relationship Podcast

So many ways to connect and listen to the podcast.

Featured eBook
Securing the Code: DevOps Security and AppSec

Securing the Code: DevOps Security and AppSec

DevSecOps represents a fundamental shift from the status quo by making security a much more collaborative effort. Applications are the business in this digital age. Securing the applications that drive your business is essential to providing safe digital experiences to your entire business ecosystem. With DevSecOps, security is automated and integrated into the development process. Security ... Read More
DevOps.com

David Spark

David Spark is a veteran tech journalist with nine years experience covering cybersecurity. He has partnered with Security Boulevard to continue his popular CISO/Security Vendor Relationship Series. Spark is also the founder of the Spark Media Solutions, a B2B content marketing agency for the tech industry. He's a former standup comic, comedy writer for The Second City in Chicago, and San Francisco tour guide.

david-spark has 28 posts and counting.See all posts by david-spark