SBN

CISO Stories Podcast: No Insider Cybersecurity Risk? Guess Again!

CISO Stories Podcast: No Insider Cybersecurity Risk? Guess Again!

June 9, 2021 |

We want to trust our employees and contractors working within our organizations. For the most part, people are doing their jobs with integrity every day. What happens when an employee decides to leave the organization and start their own business – but with your Intellectual property or customer lists? 

Special guest Dawn Cappelli, VP Global Security and CISO at Rockwell Automation, discusses strategies to build a better insider risk program to mitigate these threats – check it out…

dawn capelli
About the Guest

Dawn Cappelli

VP Global Security and CISO at Rockwell Automation

Dawn Cappelli is responsible for developing and executing a holistic cybersecurity strategy to ensure that Rockwell Automation and the Connected Enterprise Ecosystem – the company’s infrastructure, products, and customers – is safe, secure, and resilient. She is also responsible for Global Security programs, including physical security, executive protection, workplace violence prevention, and crisis management. Cappelli became CISO in 2016. 

She came to Rockwell Automation in 2013 as Director, Insider Risk, and built the company’s Insider Risk Program to mitigate threats from individuals within the company or trusted third parties who might steal information, sabotage infrastructure or products, or violate physical security controls. The Rockwell Automation Insider Risk Program was awarded the Global Team Leadership award by the Society of Women Engineers in 2016.

Before Rockwell Automation Cappelli was Founder and Director of Carnegie Mellon’s CERT Insider Threat Center, where she was recognized as one of the world’s leaders in insider threat mitigation, and has worked with government and industry leaders on national strategy issues. Before that she developed software for nuclear power plants for Westinghouse, and for Carnegie Mellon. She co-authored the book “The CERT Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud)”, which was inducted into the Cybersecurity Canon – a list of must-read books for all cybersecurity practitioners.

About the Hosts

sam-hex-hs
About the Host

Sam Curry

Chief Security Officer at Cybereason

Sam Curry (@samjcurry) is CSO at Cybereason and is a Visiting Fellow at the National Security Institute.  Previously, Sam was CTO and CISO for Arbor Networks (NetScout) and was CSO and SVP R&D at MicroStrategy in addition to holding senior security roles at McAfee and CA. He spent 7 years at RSA, the Security Division of EMC as Chief Technologist and SVP of Product.

Sam also has over 20 patents in security from his time as a security architect, has been a leader in two successful startups and is a board member of the Cybersecurity Coalition, of SSH Communications and of Sequitur Labs.

todd-fitzgerald-hex-hs
About the Host

Todd Fitzgerald

Vice President, Cybersecurity Strategy at Cybersecurity Collaborative

Todd Fitzgerald (@securityfitz) has built information Fortune 500/large company security programs for 20 years. 

Todd serves as VP, Cybersecurity Strategy and Chairman of the Cybersecurity Collaborative Executive Committee, was named 2016–17 Chicago CISO of the Year, ranked Top 50 Information Security Executive, authored 4 books including #1 Best Selling and 2020 CANON Hall of Fame Winner CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers (2019), ground-breaking CISO Leadership: Essential Principles for Success, as well as contributions to a dozen others. 

Todd held senior leadership positions at Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, WellPoint (Anthem) Blue Cross Blue Shield/ National Government Services, Zeneca/Syngenta, IMS Health and American Airlines.

CISO Stories Podcast

About The CISO Stories Podcast


The Cybersecurity Collaborative, in conjunction with Cybereason, is proud to present the CISO Stories Podcast. Each week CISO Stories takes a deep dive on security leadership with top security professionals from across the public and private sectors who share their insights and expertise with the community.

The Cybersecurity Collaborative is a unique membership community enabling cybersecurity leaders to work together in a trusted environment. To learn more, visit: https://www.securityweekly.com/csc.

All Episodes of CISO Stories Podcast

CISO Stories Podcast: No Insider Cybersecurity Risk? Guess Again!

June 9, 2021 |

We want to trust our employees and contractors working within our organizations. For the most part, people are doing their jobs with integrity every day. What happens when an employee decides to leave the organization and start their own business – but with your Intellectual property or customer lists? 

Special guest Dawn Cappelli, VP Global Security and CISO at Rockwell Automation, discusses strategies to build a better insider risk program to mitigate these threats – check it out…

dawn capelli
About the Guest

Dawn Cappelli

VP Global Security and CISO at Rockwell Automation

Dawn Cappelli is responsible for developing and executing a holistic cybersecurity strategy to ensure that Rockwell Automation and the Connected Enterprise Ecosystem – the company’s infrastructure, products, and customers – is safe, secure, and resilient. She is also responsible for Global Security programs, including physical security, executive protection, workplace violence prevention, and crisis management. Cappelli became CISO in 2016. 

She came to Rockwell Automation in 2013 as Director, Insider Risk, and built the company’s Insider Risk Program to mitigate threats from individuals within the company or trusted third parties who might steal information, sabotage infrastructure or products, or violate physical security controls. The Rockwell Automation Insider Risk Program was awarded the Global Team Leadership award by the Society of Women Engineers in 2016.

Before Rockwell Automation Cappelli was Founder and Director of Carnegie Mellon’s CERT Insider Threat Center, where she was recognized as one of the world’s leaders in insider threat mitigation, and has worked with government and industry leaders on national strategy issues. Before that she developed software for nuclear power plants for Westinghouse, and for Carnegie Mellon. She co-authored the book “The CERT Guide to Insider Threats: How to Prevent, Detect, and Respond to Information Technology Crimes (Theft, Sabotage, Fraud)”, which was inducted into the Cybersecurity Canon – a list of must-read books for all cybersecurity practitioners.

About the Hosts

sam-hex-hs
About the Host

Sam Curry

Chief Security Officer at Cybereason

Sam Curry (@samjcurry) is CSO at Cybereason and is a Visiting Fellow at the National Security Institute.  Previously, Sam was CTO and CISO for Arbor Networks (NetScout) and was CSO and SVP R&D at MicroStrategy in addition to holding senior security roles at McAfee and CA. He spent 7 years at RSA, the Security Division of EMC as Chief Technologist and SVP of Product.

Sam also has over 20 patents in security from his time as a security architect, has been a leader in two successful startups and is a board member of the Cybersecurity Coalition, of SSH Communications and of Sequitur Labs.

todd-fitzgerald-hex-hs
About the Host

Todd Fitzgerald

Vice President, Cybersecurity Strategy at Cybersecurity Collaborative

Todd Fitzgerald (@securityfitz) has built information Fortune 500/large company security programs for 20 years. 

Todd serves as VP, Cybersecurity Strategy and Chairman of the Cybersecurity Collaborative Executive Committee, was named 2016–17 Chicago CISO of the Year, ranked Top 50 Information Security Executive, authored 4 books including #1 Best Selling and 2020 CANON Hall of Fame Winner CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers (2019), ground-breaking CISO Leadership: Essential Principles for Success, as well as contributions to a dozen others. 

Todd held senior leadership positions at Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, WellPoint (Anthem) Blue Cross Blue Shield/ National Government Services, Zeneca/Syngenta, IMS Health and American Airlines.

CISO Stories Podcast

About The CISO Stories Podcast


The Cybersecurity Collaborative, in conjunction with Cybereason, is proud to present the CISO Stories Podcast. Each week CISO Stories takes a deep dive on security leadership with top security professionals from across the public and private sectors who share their insights and expertise with the community.

The Cybersecurity Collaborative is a unique membership community enabling cybersecurity leaders to work together in a trusted environment. To learn more, visit: https://www.securityweekly.com/csc.

All Episodes of CISO Stories Podcast

*** This is a Security Bloggers Network syndicated blog from Blog authored by CISO Stories Podcast. Read the original post at: https://www.cybereason.com/blog/ciso-stories-podcast-cisos-no-insider-cybersecurity-risk-guess-again