In this episode, Jarell Oshodi, Deputy Chief Privacy Officer for the Centers for Disease Control and Prevention, discusses the role of privacy in the cybersecurity field. As an attorney, she brings a unique perspective to the conversation on how we can work better with our privacy officers.

Spotify: https://open.spotify.com/show/5UDKiGLlzxhiGnd6FtvEnm
Stitcher: https://www.stitcher.com/podcast/the-tripwire-cybersecurity-podcast
RSS: https://tripwire.libsyn.com/rss
YouTube: https://www.youtube.com/playlist?list=PLgTfY3TXF9YKE9pUKp57pGSTaapTLpvC3

We often hear how the field of cybersecurity is extremely broad, encompassing skills that range from those that are highly technical, to the administrative, and advisory roles.  The cybersecurity profession continues to evolve and grow.  With all of the new regulations that have emerged in recent years, privacy has also become part of the cybersecurity protectorate.  This has created even more broadening of the traditional roles that make up the profession.  However, privacy is larger than security.

I recently had the opportunity to speak with Jarrell Oshodi, who is the Deputy Chief Privacy Officer for the Centers for Disease Control and Prevention.  Jarell is not the typical cybersecurity professional.  She is an attorney; a skill which brings greater insight to privacy protection, and to cybersecurity as well.  Her perspective is important for all cybersecurity practitioners.

Tim Erlin:  Thanks for speaking with me, Jarell.  I am glad that you are here. I generally speak with people about information security, which is a pretty broad topic, and that topic can include privacy. But I, I think there is really a distinction between privacy and security. When you look at the details, the two disciplines of security and privacy don’t always align with each other. I want to start with understanding what the difference is. How do you see privacy and security as different? How are they distinct?

JO:  (Read more...)