Cloud Security in the BoardRoom - CISO Perspective with Phil Venables
Cloud Security Podcast30 Heinä 2023

Cloud Security in the BoardRoom - CISO Perspective with Phil Venables

CISOs in organizations that are going through digital transformation have a responsibility of educating the board on how Cloud Security is measured and improved on to manage the risk posture of the organization. We had Phil Venables, CISO of Google Cloud share from his experience of serving as a CISO for so many years on how to best share cybersecurity and cloud security metrics with the c-suite and the board.


⁠⁠Episode YouTube Video Link⁠⁠


Host Twitter: Ashish Rajan (⁠⁠⁠⁠⁠⁠@hashishrajan⁠⁠⁠⁠⁠⁠)

Guest Socials: Phil Venable's Linkedin ⁠⁠(Phil's Linkedin)

Podcast Twitter - ⁠⁠⁠⁠⁠⁠@CloudSecPod⁠⁠⁠⁠⁠⁠ ⁠⁠⁠⁠⁠⁠⁠

If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:

- ⁠⁠⁠⁠⁠⁠Cloud Security Newsletter ⁠⁠

- ⁠⁠⁠⁠⁠⁠Cloud Security BootCamp⁠⁠⁠⁠⁠⁠


Spotify TimeStamp for Interview Questions

A word from our sponsors - you can visit them on ⁠⁠⁠⁠⁠⁠snyk.io/csp⁠⁠⁠⁠⁠⁠


(00:00) Introduction

(03:02) A bit about Phil Venables

(04:17) Are boards talking about Cloud Security?

(05:47) Security Metrics to show to the board

(07:48) Are Security Metrics seasonal?

(10:23) Aligning security metrics to business goals

(13:59) Educating the board about Cloud Security

(15:50) CISOs should be braver

(18:42) 3 Security Metrics to start with

(25:25) Setting the risk appetite as a organisation

(27:11) Essential attributes for a CISO

(29:14) What makes a successful security program?

(32:18) Skillsets required to become a CISO

(36:49) The fun questions


See you at the next episode!


Jaksot(344)

What is Cloud Native Application Protection Platform - CNAPP Explained!

What is Cloud Native Application Protection Platform - CNAPP Explained!

In this episode of the Virtual Coffee with Ashish edition, we spoke with Om Moolchandani (@omaitrika) is a CISO and CTO at Accurics (@AccuricsSec).. Episode ShowNotes, Links and Transcript on Cloud Se...

17 Loka 202148min

Google Cloud Next 21, Kubecon and VMworld - Cloud Security News

Google Cloud Next 21, Kubecon and VMworld - Cloud Security News

Cloud Security News this week 14 October 2021 It's an eventful month for all things cloud as Google Cloud Next 21 and Kubecon are happening this week. Ashish from Cloud Security Podcast was co-hosting...

13 Loka 20214min

Implementing Cloud Security Tools the Right way - Stay Alert Not Fatigue!

Implementing Cloud Security Tools the Right way - Stay Alert Not Fatigue!

In this episode of the Virtual Coffee with Ashish edition, we spoke with Gaurav Kumar (@gauravphoenix) is the Founder of Dassana (@DassanaSecurity). Episode ShowNotes, Links and Transcript on Cloud Se...

10 Loka 202135min

AWS Launches Cloud Control API - Cloud Security News

AWS Launches Cloud Control API - Cloud Security News

Cloud Security News this week 06 October 2021 AWS has announced the availability of AWS Cloud Control API - a set of common application programming interfaces (APIs) that are designed to make it eas...

6 Loka 20213min

Data Security in Cloud with David McCaw, Dasera

Data Security in Cloud with David McCaw, Dasera

In this episode of the Virtual Coffee with Ashish edition, we spoke with David McCaw (Linkedin - David McCaw) is a Co-Founder of Dasera (@DaseraInc). Episode ShowNotes, Links and Transcript on Cloud S...

3 Loka 202149min

Cloud Security ranks in 2021 OWASP Top 10 - Cloud Security News

Cloud Security ranks in 2021 OWASP Top 10 - Cloud Security News

Cloud Security News this week - 29 September 2021 Amazon Web Services, Google Cloud, IBM, and Microsoft have joined forces this week with the Enterprise Data Management (EDM) Council to publish a f...

29 Syys 20213min

Cloud Security Careers: Application Security Engineer Skills with Tanya Janca

Cloud Security Careers: Application Security Engineer Skills with Tanya Janca

In this episode of the Virtual Coffee with Ashish edition, we spoke with Tanya Janca (@shehackspurple) is an Author, Security Trainer and Founder of We Hack Purple (@WeHackPurple). Episode ShowNotes,...

26 Syys 202144min

Cloud Security Careers: Threat Analyst Skills

Cloud Security Careers: Threat Analyst Skills

In this episode of the Virtual Coffee with Ashish edition, we spoke with Abisola Dayspring Johnson aka Day (@CyberwoxAcademy) is a Threat Analyst at Optiv (@Optiv) and the Founder of Cyberwox Academy ...

24 Syys 202141min