The Cyber Security Transformation Podcast
By Corix Partners
JC Gaillard and his guests share their views on both the interesting cybersecurity news stories of the week and their own experiences. Now entering its second series with a stronger focus on cyber security governance and related board-level matters
Please feel free to reach out to find out more
Jean Christophe Gaillard
M: +44 (0)7733 001 530
Please feel free to reach out to find out more
Jean Christophe Gaillard
M: +44 (0)7733 001 530
Series 2 - Episode 11 - Cyber Security, the CISO and the CIO: Seeing it From Both Sides of the Fence
JC Gaillard is joined by Natasha McCabe to discuss the leadership lessons which can be learned from having held both CISO and CIO roles, and having seen cyber security from the two sides of the fence
September 30, 2021
Series 2 - Episode 10 - Oscar O'Connor and JC Gaillard on Security Transformation, Covid-19, People and Trust
JC Gaillard is joined by Oscar O'Connor to discuss "Playing the Triangles", his latest piece on the Corix Partners blog: A reflection on business and security transformation dynamics in the post-covid era
August 12, 2021
Series 2 - Episode 9 - Looking Back at the Cyber Security Skills Gap: Real Problem or Self-inflicted Pain?
JC Gaillard is joined by Rayna Stamboliyska to look back at the cyber security skills back, its implications and how to address it through better talent management, clearer career paths and a greater emphasis on diversity
July 20, 2021
Series 2 - Episode 8 - The Impact of the COVID Pandemic on Cyber Insurance: What has changed and what to expect?
JC Gaillard is joined with Hani Banayoti from CyberSolace to explore the impact the COVID-19 pandemic has had on the cyber insurance sector and what can be expected going forward in terms of new dynamics
July 6, 2021
Series 2 - Episode 7 - Cyber Security Career Paths: How do you bridge between security roles and IT management roles? - with guest Alexa Glynn
JC Gaillard is joined by Alexa Glynn, from Rabobank Australia & New Zealand, to discuss how you transition from security roles into IT management roles and why security professionals don't have to feel condemned to hopping between security jobs
June 15, 2021
Series 2 - Episode 6 - GDPR and the Schrems II ruling: Where are we now around data transfers between the EU and the US? - with guest Bostjan Makarovic
JC Gaillard is joined again by guest Bostjan Makarovic from Aphaia to discuss the impact of the Schrems II ruling on GDPR compliance and data transfers between the EU and the US
May 25, 2021
Series 2 - Episode 5 - IT Security vs. OT Security: What's the state of play? - with guest Steven O'Sullivan
JC Gaillard is joined by cyber security expert Steven O'Sullivan to explore the issues surrounding IT and OT convergence and their implications for cyber security at large across industry sectors
April 20, 2021
Series 2 - Episode 4 - Observability: What does it really mean for cyber security? - with guest Chris Burtenshaw
JC Gaillard is joined by Chris Burtenshaw from Strata Security; together they explore the meaning of observability in the cyber security space: Is it just hype over substance? or is there more to it than meet the eye?
March 30, 2021
Series 2 - Episode 3 - Where are we now with GDPR? - with guest Bostjan Makarovic
JC Gaillard is joined by Bostjan Makarovic from Aphaia for a great discussion on GDPR, the size of fine and role of regulators, the risk of irrelevance they may face if they keep things imbalanced, and the impact of the Schrems II ruling
March 9, 2021
Series 2 - Episode 2 - Resilience: What Does It Really Mean in Business Terms? - with guest Nick Simms
JC Gaillard is joined by experienced operational resilience consultant Nick Simms to explore what resilience really means in business terms and where cyber resilience needs to fit within a broader business resilience framework
February 25, 2021
Series 2 - Episode 1 - How to Frame the Cyber Security Conversation at Board Level? - with guest Richard Preece
JC Gaillard is joined by Richard Preece, director of DA Resilience, to explore how best to frame the conversation at Board level around cyber security in order to engineer effective and efficient engagement and top-down dynamics
February 16, 2021
What did we learn about cyber in the crazy year that was 2020?
.By any account the last year has been crazy. So much had to change so quickly and that included cyber security. In this episode we discuss the key lessons learned about security and privacy.
December 11, 2020
Digital transformation - is the role of the CISO becoming an outdated concept?
COVID has led many organizations to rush their provision or remote access to their employees and many have accelerated their digital transformation programmed. We discuss the role of the CISO in this context.
November 27, 2020
Ransomware: Why is defense in depth so important?
We discuss a recent survey that reveals the continued prevalence of ransomware and the shocking amount that organizations typically pay. We talk about how to protect organizations from becoming victims
November 20, 2020
How to embed security and privacy on the board agenda?
In this episode we discuss the need for top down engagement by the board to bring life into the to security and privacy strategy of their organisation. We look at the importance of embedding these important considerations into the Environmental, Social and Governance (ESG).
November 13, 2020
GDPR - when are the regulators going to show their muscles?
Following the recent announcement from the ICO of significantly reduced fines for BA and Marriott the question has to be asked "Where are the landmark cases of fines in the order of 4% of revenue for huge scale breaches?". Clearly during the pandemic the travel and hospitality industries are under great financial strain but since GDPR came in over two years ago there haven't been any fines that have been anywhere near the expected magnitude.
November 6, 2020
From Cyber Security Awareness to Genuine Cultural Change: What do you need to make this work?
.We’re joined by Zsuzsanna Berenyi from the London Stock Exchange Group who shares her experience on how to drive cultural change to embed security awareness into organizations.
October 22, 2020
Where are we with Cyber Insurance?
In this episode we are joined by Hani Banayoti (email@example.com) from Cyber Solace to discuss the ways in which the cyber insurance market has changed over the last ten years. We look at the drivers towards organisations choosing to pay for cyber insurance, it's role in helping them keep the lights on if they are breached and the trends with regard to ransomware and GDPR.
October 16, 2020
Why it’s important for CISOs not to get lost firefighting
Incoming CISOs clearly have to identify and put out fires. In this episode we discuss why many CISOs get stuck in this phase. We look at ways to enable transformative change.
October 9, 2020
Why should security and privacy be included in the MVP of startups
We discuss why it’s important to think carefully about how to ensure the Minimum Viable Product (MVP) software written by startups pays attention to the requirements of privacy and security
October 2, 2020
How to address the proliferation of security tools
Chris Burtenshaw, CEO of Strata Security joins us to discuss how many organizations have far too many security products and how to address the complexity and management overhead they often bring.
September 25, 2020
Cyber security skills gap - what skills gap?
We discuss the extent to which there are opportunities in the cyber industry and how to encourage people to join
September 11, 2020
Where are we with GDPR?
Given the financial strain caused by COVID-19 which has been especially severe on the hospitality and airline sectors the likelihood of large fines being imposed on Marriot and BA looks low - what does this mean for compliance?
September 4, 2020
Is it the right time to adopt Zero Trust Networking?
Zero Trust Networking promises much and is being touted extensively... how much sense does it make at the moment?
August 13, 2020
Ransomware - key elements to bear in mind and how to respond
The threat to business continuity posed by malicious actors using ransomware isn’t new but it’s causing pain to many. The most recent high profile attack was on Garmin - a company Steve relies upon to help with his marathon training
August 7, 2020
The importance of data privacy
I’m this episode we discuss the need for privacy to be carefully considered and for appropriate controls to be applied together with the challenges for GDPR regulators in light of the COVID pandemic.
July 24, 2020
Does the role of the "Virtual CISO" make any sense
Faced by constant reports of cyber-attacks in the media, most small and medium-size organisations have woken up to the reality of cyber threats over the past few years. Many still don’t really know what to do to protect themselves and turn to “virtual CISO” services for assistance. While this is better than doing nothing or relying blindly on the security of cloud providers, those externalised, part-time services – often delivered remotely – are rarely the magic bullet they pretend to be…
July 17, 2020
The hard truth around cyber security awareness programmes
In this episode we discuss how to bring constructive change by culture and top down leadership
July 10, 2020
The tenure of CISOs
We discuss the likely reasons for the trend towards CISOs having short tenure
July 3, 2020
Ensuring security and privacy for bespoke software
We discuss the challenges of ensuring that code that’s written either in-house or commissioned from a third party follows the Security Development Life Cycle
June 26, 2020
This is the first in a series of Cyber Security Transformation Podcasts. Each week JC and Steve will discuss the interesting cyber next stories and our own experiences with clients. Jean Christophe Gaillard M: +44 (0)7733 001 530 E: firstname.lastname@example.org https://twitter.com/@Corix_JC Steve Lamb M: +44 (0)75 0800 8864 E: email@example.com https://twitter.com/actionlamb
June 19, 2020