CISO Stories Podcast
1) Agents at the Door: Vetting Non-Human Identities in External IAM - Rakesh Soni - CSP #219
This episode was about agentic IAM—what it is and the risks that come with letting non-human agents act for customers. We defined external IAM, then traced how the industry moved from basic login and ...Show More
2) ATT&CK → ATLAS: A CISO's Blueprint for AI Governance - Sandy Dunn - CSP #218
CISO Sandy Dunn breaks down her blueprint for AI-ready defense—pairing MITRE ATT&CK v18 with MITRE ATLAS to move from policy to behavior-based detections. We hit practical AI governance, her early foc...Show More
3) Security Awareness Through Trust and Influence - Jennifer Selby Long - CSP #217
Jennifer Selby Long reframes security awareness as more than training—it’s about earning trust and influence with executives and security teams. She shares leadership lessons on how to build stronger ...Show More
4) OT on the Frontlines: Threat Intelligence You Can’t Ignore - Dawn Cappelli - CSP #216
Dawn Capelli, Head of OT-CERT at Dragos, unpacks the evolving risks to Operational Technology. From nation-state attacks on Ukraine’s infrastructure to hacktivists targeting U.S. water systems, she ex...Show More
5) Reimagining Security Operations: SOC as a Service and the Role of AI - Kevin Nikkhoo - CSP #215
Kevin Nikkhoo joins the show to explore Security Operations Center as a Service (SOCaaS) and how it compares to traditional SOC models. He breaks down which organizations benefit most from this approa...Show More
6) From Diagram to Cloud: Rethinking Cloud Security in an Age of Uncertainty - Yogita Parulekar - CSP #214
From Diagram to Cloud: Rethinking Cloud Security in an Age of Uncertainty Episode Summary: In this month’s episode of CISO Stories, we dive deep into cloud security with cybersecurity veteran and clou...Show More
7) Empowering Developers: Fostering a Culture of Security in AppSec - Danielle Ruderman - CSP #213
In this episode, we explore the crucial role of cultivating a strong security culture to drive change in AppSec, where training and collaboration are key. Our distinguished guest, Danielle Ruderman, d...Show More
8) Mapping the Modern Attack Surface: Fintech’s Evolving Risk Frontier - Erika Dean - CSP #212
In this episode, Erika Dean dives into the evolution of attack surface management (ASM) in financial tech. From foundational strategies to future-focused threats, she explores how shifts in the fintec...Show More
9) Maximizing Cyber Liability Insurance: Risk, Relationships & Renewal Strategies - Mandy Andress - CSP #211
Mandy Andress joins our show to discuss leveraging cyber liability insurance for risk reduction. They explore the importance of strong broker relationships and key steps for selecting or renewing a po...Show More
10) Breach by the Dozen: Incident Response Lessons from the Field - Mike Miller - CSP #210
In this episode of the CISO Stories Podcast, we’re joined by Mike Miller, a seasoned penetration tester and audit and compliance SME, to explore the real-world impact of incident response controls. Fr...Show More