Cloud Security in the BoardRoom - CISO Perspective with Phil Venables
Cloud Security Podcast30 Juli 2023

Cloud Security in the BoardRoom - CISO Perspective with Phil Venables

CISOs in organizations that are going through digital transformation have a responsibility of educating the board on how Cloud Security is measured and improved on to manage the risk posture of the organization. We had Phil Venables, CISO of Google Cloud share from his experience of serving as a CISO for so many years on how to best share cybersecurity and cloud security metrics with the c-suite and the board.


⁠⁠Episode YouTube Video Link⁠⁠


Host Twitter: Ashish Rajan (⁠⁠⁠⁠⁠⁠@hashishrajan⁠⁠⁠⁠⁠⁠)

Guest Socials: Phil Venable's Linkedin ⁠⁠(Phil's Linkedin)

Podcast Twitter - ⁠⁠⁠⁠⁠⁠@CloudSecPod⁠⁠⁠⁠⁠⁠ ⁠⁠⁠⁠⁠⁠⁠

If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:

- ⁠⁠⁠⁠⁠⁠Cloud Security Newsletter ⁠⁠

- ⁠⁠⁠⁠⁠⁠Cloud Security BootCamp⁠⁠⁠⁠⁠⁠


Spotify TimeStamp for Interview Questions

A word from our sponsors - you can visit them on ⁠⁠⁠⁠⁠⁠snyk.io/csp⁠⁠⁠⁠⁠⁠


(00:00) Introduction

(03:02) A bit about Phil Venables

(04:17) Are boards talking about Cloud Security?

(05:47) Security Metrics to show to the board

(07:48) Are Security Metrics seasonal?

(10:23) Aligning security metrics to business goals

(13:59) Educating the board about Cloud Security

(15:50) CISOs should be braver

(18:42) 3 Security Metrics to start with

(25:25) Setting the risk appetite as a organisation

(27:11) Essential attributes for a CISO

(29:14) What makes a successful security program?

(32:18) Skillsets required to become a CISO

(36:49) The fun questions


See you at the next episode!


Avsnitt(345)

Remote Access Trojans target Public Cloud Infrastructure

Remote Access Trojans target Public Cloud Infrastructure

Cloud Security News this week 19 Jan 2022 Cisco Talos Researchers have shared in a blog last week that a trio of remote access Trojans (RATs)—Nanocore, Netwire and AsyncRAT—are being spread in a ca...

19 Jan 20227min

Secret Management for Modern Apps Explained

Secret Management for Modern Apps Explained

In this episode of the Virtual Coffee with Ashish edition, we spoke with Dylan Ayrey (@insecurenature) is a Professional Hacker and Co-Founder of Truffle Security (@trufflesec) Episode ShowNotes, Link...

16 Jan 202248min

CISO in a Cloud World in 2022 - Stu Hirst

CISO in a Cloud World in 2022 - Stu Hirst

In this episode of the Virtual Coffee with Ashish edition, we spoke with Stu Hirst (Linkedin-Stu Hirst) is the Chief Information Security Officer (CISO) of Trustpilot (@Trustpilot). Episode ShowNotes,...

12 Jan 202239min

UK Financial Regulators monitoring Cloud Providers Closely

UK Financial Regulators monitoring Cloud Providers Closely

Cloud Security News this week 12 Jan 2022 UK’s financial regulators - The Prudential Regulation Authority is looking to increase it’s monitoring of Cloud providers like AWS, Azure and Google Cloud. ...

12 Jan 20224min

Building Modern Identity (IAM) Roadmap for Cloud

Building Modern Identity (IAM) Roadmap for Cloud

In this episode of the Virtual Coffee with Ashish edition, we spoke with Fred Wilmot (@fewdisc) is an ex-Veteran and Chief Information Security Officer (CISO) of JumpCloud (@JumpCloud). Episode ShowNo...

9 Jan 202248min

Google invests in Security + Microsoft's Log4Shell Update

Google invests in Security + Microsoft's Log4Shell Update

Cloud Security News this week 5 Jan 2022 Google has acquired security orchestration, automation and response (SOAR) provider, Siemplify. Neither company has disclosed any amounts however sources in...

5 Jan 20225min

Building Scalable Authorization in Cloud Native Apps

Building Scalable Authorization in Cloud Native Apps

In this episode of the Virtual Coffee with Ashish edition, we spoke with Or Weis (@OrWeis) co-founder and CEO of Permit.io (@permit_io). Episode ShowNotes, Links and Transcript on Cloud Security Podca...

2 Jan 202250min

The Latest with Log4J

The Latest with Log4J

Cloud Security News this week 22 December 2021 Most folks in cybersecurity have been consumed with all things Log4shell with a CVSS score of 10, since last week. Check out last week’s episode or our...

22 Dec 20213min

Populärt inom Teknik

uppgang-och-fall
elbilsveckan
market-makers
rss-elektrikerpodden
rss-laddstationen-med-elbilen-i-sverige
skogsforum-podcast
rss-uppgang-och-fall
bilar-med-sladd
natets-morka-sida
rss-veckans-ai
rss-powerboat-sverige-podcast
developers-mer-an-bara-kod
rss-fabriken-2
rss-technokratin
bli-saker-podden
rss-snacka-om-ai
rss-en-ai-till-kaffet
kodsnack
har-vi-akt-till-mars-an
vi-bilagares-podcast