Skip to main content
The Virtual CISO Moment

The Virtual CISO Moment

By Greg Schaffer

The Virtual CISO Moment dives into the stories of information security, information technology, and risk management pros; what drives them and what makes them successful while helping small and midsized business (SMB) security needs. No frills, no glamour, no transparent whiteboard text, no complex graphics, and no script - just honest discussion of SMB information security risk issues. Email greg.schaffer@secondchancebook.org. A Second Chance Publishing, LLC podcast.
Available on
Amazon Music Logo
Apple Podcasts Logo
Castbox Logo
Google Podcasts Logo
iHeartRadio Logo
Overcast Logo
Pocket Casts Logo
Spotify Logo
Currently playing episode

The Virtual CISO Moment S0E0 - Genesis

The Virtual CISO MomentNov 30, 2017

00:00
03:57
S6E17 - A Conversation with Stanley Charles

S6E17 - A Conversation with Stanley Charles

Stanley Charles is the Founder of the Charles Technology Group and Senior Manager, Information Security and Compliance at Pixel United. I realized early in the discussion that we have similar career paths, from aircraft maintenance in the United States Air Force, to an early career in networking as a network engineer, to eventually land in the information security and cybersecurity space. We cover a lot of ground in this episode, including advising SMBs on how to get the most out of their relationship with their MSP/MSSP.

Mar 26, 202427:14
S6E16 - A Conversation with Nick Mullen

S6E16 - A Conversation with Nick Mullen

Nick Mullen is the Founder and Principal Consultant at Sanguine Security Solutions and is also a Cybersecurity Program Mentor at Kennesaw State University. He is a technology leader dedicated to enabling teams and facilitating achievement, and his expertise is in program/project management, information security, IT governance, and compliance in the financial services sector. In this special midweek episode, we talk security plus Star Trek - a great combination!

Mar 20, 202427:04
S6E15 - A Conversation with Robert Hill

S6E15 - A Conversation with Robert Hill

Robert Hill is a visionary leader with over three decades of expertise in the cybersecurity industry. As the founder and CEO of Cyturus Technologies, Inc, a leading Compliance and Risk Management solution provider, Robert has played an instrumental role in shaping the landscape of cybersecurity and helping organizations, navigate the complex challenges of a digital era.

Prior to founding Cyturus, Robert held positions within various consulting firms, where he honed his skills by collaborating closely with Fortune 500 companies to develop cybersecurity strategies. His hands-on experience in identifying deficiencies, mitigating risks, and implementing robust compliance frameworks has proven instrumental in fostering a culture of security awareness among clients. We cover a wide range of topics in this episode, including the limitations of traditional once-a-year assessments in organizations, where senior leadership makes decisions based on outdated data.

Mar 19, 202433:07
S6E14 - A Conversation with Nick Oles

S6E14 - A Conversation with Nick Oles

Nick Oles is an author, cybersecurity professional, and veteran. We cover many topics including his book How to Catch a Phish (available at https://lnkd.in/e35B8YHz) and career paths, including this preview where he reviews his beginnings in IT in college. I often say that working at a university is a great place to get foundational IT experience, and he is a great example.

Mar 12, 202426:40
S6E13 - A Conversation with Jonathan Mandell

S6E13 - A Conversation with Jonathan Mandell

Jonathan Mandell calls Chicago home and has worked across various tech roles, from Enterprise AE to Business Development. He was part of the founding team of Tiz, which later became Provi, a SaaS company reshaping the alcohol industry. He has worked in third party risk management (TPRM) for the past 5 years, and recently founded Teepee, a cybersecurity firm delivering solutions in the area of TPRM. Join us as we discuss the challenges and benefits for SMBs in ensuring effective third party risk management.


For more information, check out Teepee at https://teepeesafe.com/.

Mar 05, 202428:29
S6E12 - A Conversation with Matthew Meadows

S6E12 - A Conversation with Matthew Meadows

Matthew Meadows is an experienced Information Technology Security Specialist with a demonstrated history of working in the medical practice industry, and is currently an Information Security Engineer with Premier, Inc. Join us as he discusses a new approach to information security training for healthcare professionals. Learn more about the CyberSecurity Center of Excellence's Healthcare Track at https://cvcc.edu/CSCE/CyberSecurity-in-Healthcare.cfm.

Feb 27, 202426:32
S6E11 - A Conversation with Chris Foulon

S6E11 - A Conversation with Chris Foulon

Chris Foulon, Founder and Principal Cybersecurity Strategist of CPF-Coaching, is a seasoned vCISO, IT, and Security leader with over 17 years of progressive experience. He is also the co-host Breaking into Cybersecurity with Renee Smalls where they interviewed individuals who have transitioned into the cybersecurity industry within the past 5 years.

Feb 20, 202431:29
S6E10 - A Conversation with Daniel Moses

S6E10 - A Conversation with Daniel Moses

Daniel Moses is SDR for Cyble, which provides capabilities for customers to manage cyber risks with AI powered actionable threat intelligence, and are specialists in gathering intelligence across the Deepweb, Darkweb and the Surface Web. Join us as he discusses his journey, including that cybersecurity has taught him that you need to be able to pivot and keep pressing forward.

Feb 13, 202426:48
S6E9 - A Conversation with Bruno Aburto

S6E9 - A Conversation with Bruno Aburto

Bruno Aburto is the cofounder of and vCISO at Aburto Kinney Consulting LLC. He is responsible for providing comprehensive cybersecurity and IT support to executives and their organizations, working =tirelessly to safeguard all digital assets and sensitive information, ensuring that clients are protected against potential threats and vulnerabilities. He provides augmented cyber expertise that enables clients to identify and mitigate risks while supporting business operations and enhancing overall security posture.

Feb 06, 202424:22
S6E8 - A Conversation with Jason Mar-Tang

S6E8 - A Conversation with Jason Mar-Tang

Jay is a 17 year veteran of Information Technology who has been helping organizations of different industry verticals all over the United States. He also has 12 years experience in sales and recently stepped into leadership as well. In his spare time, Jay is extremely passionate about health, fitness, and nutrition.


As a bonus, see what I recommend for office fitness equipment to get in those workouts when going to a gym isn't feasible!

Feb 02, 202427:32
S6E7 - A Conversation with Brian Smith

S6E7 - A Conversation with Brian Smith

Brian Smith is a 20-year veteran and entrepreneur in multimedia, cybersecurity, and technologies alike. He is Co-Founder and CTO at Spyderbat, an automated runtime security platform. Spyderbat stops attacks and automates root cause analysis on cloud-native environments by proactively recording Cloud system and container activities into a living 'Google Map'. With Spyderbat, DevOps and Platform teams stop attacks, prevent misconfigurations, and get a full understanding of what happened, how to clean up, and how to prevent it in the future.


In 2000, together with Marc Willebeek-LeMair, Brian founded TippingPoint Technologies (acquired by 3Com), and in 2009 he founded Click Security (acquired by Alert Logic). Prior to TippingPoint, Brian received his Ph.D. in Computer Science from the University of California at Berkeley in 1994 and was the Xerox Professor of Computer Science at Cornell University until 1998. He now holds 13 patents and is a fellow of the Alfred P. Sloan Foundation.

Jan 30, 202432:17
S6E6 - A Conversation with Mike Pedrick

S6E6 - A Conversation with Mike Pedrick

Mike Pedrick is the VP, Cybersecurity Consulting for Nuspire. He believes that all businesses are at risk - hackers, crackers, nation states and bad actors - but small- and medium-sized businesses have to defend themselves against the same threats as the major corporations with fewer resources at their disposal. Who helps small business leaders navigate the murky waters of risk management, governance, compliance, privacy, and guerilla marketing campaigns? He does. Join us for an engaging conversation focused on SMB information security risk.

Jan 23, 202433:51
S6E5 - A Conversation with Ty Ward

S6E5 - A Conversation with Ty Ward

Ty Ward is a published author (https://a.co/d/ipWJj2G) and seasoned cybersecurity professional with over 15 years of experience in the field. Ty is a former U.S. Air Force and also a former U.S. Intelligence Agency member. He has responded to hundreds of real-world data breaches and cyber-attacks, performed hundreds of penetration tests against organizations, and has served as a chief information security officer for a multitude of companies both nationally and internationally. He holds multiple university degrees and a long list of professional certifications, including the CISSP, GCIH, and others. Ty is also the Founder of the NightLight Foundation ( https://www.nightlight-foundation.org/), an anti-child exploitation and trafficking not-for-profit organization.

Jan 20, 202429:15
S6E4 - A Conversation with Scott McCrady

S6E4 - A Conversation with Scott McCrady

With 25 years of experience working in the networking, telecommunications, and information security space, Scott McCrady is currently serving as the CEO of SolCyber Managed Security Services. Scott has worked with large companies and start-ups, among them IBM and EDS, where he held Security Engineer and Team Leader positions (US and London).


Join us in a where we discuss a unique approach to providing MSSP services. I also learned a new term, "talent stacking". Listen or watch to learn what that means!

Jan 16, 202428:04
S6E3 - A Conversation with Sabine VanderLinden

S6E3 - A Conversation with Sabine VanderLinden

Sabine VanderLinden is a seasoned executive with a proven track record of creating long-term sustainable impact for growth ventures and corporates. She specializes in designing, industrializing, and democratizing category-driven digital ecosystems that help de-risk corporate venturing for incumbent players. Sabine co-founded Alchemy Crew three years ago, a venture-first R&D lab that accelerates the commercialization of tech ventures by working with global Fortune 500 companies, venture capital funds, private equity funds, universities, and acceleration programs. Join us as we take on startups, insurance, entrepreneurship, taking risks, cybersecurity, and a bunch of other topics!

Jan 12, 202427:01
S6E2 - A Conversation with James Fair

S6E2 - A Conversation with James Fair

James Fair is the Senior VP of Technical Operations at Executech, a leading IT outsourcing company committed to cutting costs for businesses in various industries. With expertise spanning over 35 years in IT, 30 years in Leadership, and a dozen years in the interpersonal workspace, James is a seasoned professional with a deep understanding of business strategy, cybersecurity, information technology (IT), and management.


James's remarkable journey from an entry-level technician to Senior Vice President has equipped him with an extensive knowledge base in all facets of IT. He leverages his passion for IT and cybersecurity, coupled with his dedication to leadership development, to teach and mentor other IT professionals and leaders.

Jan 10, 202428:06
S6E1 - A Conversation with Thomas Ballin

S6E1 - A Conversation with Thomas Ballin

Thomas Ballin, Cofounder of Cytix, is an experienced security expert with leadership, management, and operational experience in cyber security. He has spent the past ten years as a security champion building innovative products, services, and teams to meet the needs of customers. In this episode we discuss SMB pen test challenges, scaling security programs, and Cytix's innovate approach to identifying how to effectively manage a vulnerability discovery program (hint: it's not put in a subnet and mask and click "run").

He is also cohost of the Real Cybertalk podcast, a new podcast premiering January 2, 2024. Check it out!

Jan 02, 202424:52
S6E0 - Season 6 Trailer

S6E0 - Season 6 Trailer

We're back with a new season of great conversations on The Virtual CISO Moment, beginning with our first episode of the year coming January 2, 2024. Hope you can join us!

Dec 29, 202302:13
S5E66 - Conversation with Keith Price

S5E66 - Conversation with Keith Price

We end 2023 with a very special guest! Keith Price is the CSO for National Highways. Has worked in tech since 1991, beginning as a Mainframe Operator in the United States Air Force - so of course I had to wear my Air Force cap for this discussion! If you've never come across Keith's LinkedIn posts I'd be surprised, as he is always providing excellent and helpful content. He assists students, military veterans, and professionals wanting a change in their profession in cybersecurity. Most importantly, he loves what he does!

Dec 28, 202329:00
S5E65 - A Conversation with Evgeniy Kharam

S5E65 - A Conversation with Evgeniy Kharam

Evgeniy Kharam is the founder of EK Cyber and Media Consulting providing consulting and advisory services in both the cyber and media domains, catering to vendors and MSSPs. He also is the founder of the Cyber Inspiration Podcast and cofounder of the Security Architecture Podcast, where they interview vendors in cybersecurity about their design and architecture. We talk about the need for SMBs to enhance awareness and the struggles for access to talent and other security issues for all businesses. Plus he's working on a book on the importance of soft skills in technical sales, to help communicate more effectively.

Dec 26, 202326:29
S5E64 - A Conversation with Daniel Waters

S5E64 - A Conversation with Daniel Waters

Daniel Waters is a cyber and technology strategist, startup advisor, business builder, and cybersecurity subject matter expert. We discuss how some issues affect large and small businesses alike, but startups often have more significant challenges in just trying to stay in business. We also tackle cyber burnout and how change from the leadership level can help.

Dec 19, 202330:44
S5E63 - A Conversation with Paul Valente

S5E63 - A Conversation with Paul Valente

Paul Valente is the CEO and co-founder of VISO Trust and former CISO of Restoration Hardware, Lending Club and ASAPP.


He holds several industry designations, including Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM) and ISO 27001 Lead Implementer.


Listen to learn how VISO Trust, leveraging AI, can help with an issue all CISOs and vCISOs deal with - Third Party Risk Management.

Dec 12, 202332:32
S5E62 - A Conversation with Marc Crudgington

S5E62 - A Conversation with Marc Crudgington

Marc Crudgington is the CEO, vCIO/vCISO of CyberFore Systems, has many years at the CISO level, and is a United States Air Force Veteran. He is also the author of two books, including "The Cyber War Is Here, US and Global Infrastructure Under Attack A CISO's Perspective". Join us as he discusses his career path and what led him to author two cybersecurity books.

Dec 06, 202328:42
S5E61 - A Conversation with Kyron Joseph

S5E61 - A Conversation with Kyron Joseph

Transitioning from one career to cyber can be challenging but also brings opportunities. Kyron Joseph is a newly converted Cyber Security Professional with 5+ years of experience in Social Media /Marketing account management, content creation, data protection and client communication and pursuing the GRC path. He's learned a very important aspect of information security that many don't, even after decades in the field, and that puts him ahead of others in the GRC space. Listen to find out what that is.

Dec 05, 202328:48
S5E60 - A Conversation with Esteban Ribičić

S5E60 - A Conversation with Esteban Ribičić

Esteban Ribičić is the Founder and Project Leader at eramba. Serving thousands of companies around the world, eramba is a popular open Governance, Risk and Compliance (GRC) application. Listen to hear the story of eramba, how it was developed to solve real problems with simplicity, and how eramba's core values center on service.

www.eramba.org

Nov 28, 202328:29
S5E59 - A Conversation with Grant Elliott

S5E59 - A Conversation with Grant Elliott

Grant Elliott is the CEO and Chairman of Ostendio. He is an entrepreneurial leader with over 20 years experience in a variety of Operations, Customer Service and Product Development roles mostly in an Executive capacity. He has a proven track record of successfully leading organizations that require significant growth, development or change, having led business units in large, medium and start-up enterprises.

Nov 21, 202328:56
S5E58 - A Conversation with Dave Hatter

S5E58 - A Conversation with Dave Hatter

Dave Hatter is an accomplished, enthusiastic, award-winning technology professional and servant leader with more than 30 years’ experience as a cybersecurity consultant, software engineer, project manager, and instructor. He also has more than 25 years' experience as a local government official, most recently the last nearly nine years as Mayor of Fort Wright, Kentucky.


Nov 14, 202331:56
S5E57 - A Conversation with TJ Bettles

S5E57 - A Conversation with TJ Bettles

TJ Bettles is the founder and CEO of WhiteHat CyberSecurity Solutions, a Vancouver based network of ethical hackers and security experts offering penetration testing as a service. He is also a strength athlete that has dedicated 12+ years to strength training, coaching and to a much lesser degree, competition.


Additionally, he is the host of a new podcast focused on bullying in the workplace, Bully Proof. The first episode of Bully Proof, a discussion with Jennifer Fraser, author of The Bullied Brain, drops Monday, November 13, 2023. You won't want to miss it!

Nov 10, 202327:14
S5E56 - A Conversation with Matt Winkeler

S5E56 - A Conversation with Matt Winkeler

Matt Winkeler is a analytical security and privacy leader. He created a security and privacy program compliant with SOC 2, GDPR, and CCPA in less than a year. He has provided leadership as organization expanded from US to Europe, India, Australia, and beyond.

Nov 07, 202326:06
S5E55 - A Conversation with Simon Janin

S5E55 - A Conversation with Simon Janin

Simon Janin is the CEO of X80. He is a Technology Entrepreneur with strong expertise in Security, Computer Science and Software as a Service. He is a prior member of the Swiss Military Intelligence CNO unit, founded three companies, and made contributions to the fields of secure protocols, financial infrastructure and cyber security.

Oct 31, 202324:19
S5E54 - A Conversation with Tim Golden

S5E54 - A Conversation with Tim Golden

Tim Golden am the founder of Compliancerisk.io, a company that focuses on empowering the compliance function within your #MSP by streamlining your compliance operations. He is a seasoned professional in the governance risk and compliance space, with over 20 years of experience helping organizations tackle their business problems with the help of people, process, policy, and technology. He is an expert in compliance, risk management, governance policy management, and cybersecurity, and provides training, consulting, and technical assistance and governance programs to Managed Service Providers (MSPs)

Oct 24, 202326:34
S5E53 - A Conversation with Iboro Philip

S5E53 - A Conversation with Iboro Philip

Empathy is his superpower, cyber security is his professional passion. Learn about Iboro Philip's rather unique journey and how a simple scam propelled him to a career in cybersecurity.

Oct 17, 202325:30
Throwback Thursday - A Conversation with Greg van der Gaast

Throwback Thursday - A Conversation with Greg van der Gaast

From March 29, 2023 - Greg van der Gaast is an international speaker on Why Security Fails, IT Quality, Leadership, and Strategy. He also is a former hacker, FBI & DoD operative, author, advisor, CISO, and people and culture enthusiast. Listen to hear his fascinating story and what is a major threat for SMB information security that most don't consider. He can be reached at https://gregvandergaast.com/.

Oct 12, 202328:01
S5E52 - A Conversation with Andrea Toponi

S5E52 - A Conversation with Andrea Toponi

Andrea Toponi is the CEO and founder of Cyberangels. With over 18 years of experience in project management, risk management, and IT consulting, he has always been passionate about using technology to solve complex problems and create value for customers. As a CEO and founder of Cyberangels, he helps small and medium-sized businesses (SMBs) secure their digital assets and protect their reputation from cyber attacks.


https://cyberangels.it

https://cyberangels.io (coming soon)

Oct 10, 202322:51
Throwback Thursday - A Conversation with Bill Butler

Throwback Thursday - A Conversation with Bill Butler

Bill Butler is an experienced Vice President Of Engineering with a demonstrated history of working in the hospital and health care and security compliance industry. He is the Founder and VP Engineering of PolicyCo (policyco.io), a platform that lets you tie Regulations, Policies, Procedures, Control Testing and Remediation together in a single platform, along with a host of other features like version control, reporting, sharing, attestations, and a public API.

Oct 05, 202326:08
S5E51 - A Conversation with Perry Ausbrooks

S5E51 - A Conversation with Perry Ausbrooks

Perry Ausbrooks is a passionate Veteran Success Specialist & IT Systems Analyst at Intellectual Point, where he combines his commitment to helping fellow veterans with his growing expertise in cybersecurity. With certifications in Security+, C|EH, and Splunk, he provide training and mentorship to veterans transitioning into IT and cybersecurity careers.

Oct 03, 202326:39
S5E50 - A Conversation with Jeremy Snyder

S5E50 - A Conversation with Jeremy Snyder

For our 100th discussion episode, Jeremy Snyder, founder and CEO of FireTail joins us. FireTail is a different, effective approach to API security. He looks for interesting challenges in the cloud, cybersecurity, data and robotics domain spaces, with the potential to have a positive impact. He tends towards entrepreneurial environments where people are highly motivated and moving at a fast pace, and where he can contribute more to the company's success.

Sep 28, 202329:14
S5E49 - A Conversation with Chris Rule

S5E49 - A Conversation with Chris Rule

"Cybersecurity Cowboy" Chris Rule joins us to discuss cybersecurity concerns in education. He has been a School District level Technology Director since 1999 and worked directly or consulted with numerous school districts in Wyoming and Colorado. Aside from being a CoSN certified Education Technology Leader (CETL), a Certified vCISO, and a former Microsoft Certified System Engineer (MCSE), he is an experienced technology infrastructure expert and carries a wide array of technology skills.

Sep 26, 202327:36
Throwback Thursday - A Conversation with Michael Lines

Throwback Thursday - A Conversation with Michael Lines

From March 21, 2023 - Michael Lines is CISO for Open Technology Solutions, an expert in developing and leading information security and risk programs for organizations ranging from global enterprises to SaaS startup, and is authoring a book titled Heuristic Risk Management, dealing with why most risk management efforts are ineffective and what to do about it.

Sep 21, 202329:07
S5E48 - A Conversation with Terence Bennet

S5E48 - A Conversation with Terence Bennet

With over 10 years of experience in cybersecurity, REST APIs, operations, and leadership, Terence Bennet the CEO and General Manager of DreamFactory Software. He oversees the daily operations, product development, customer success, and business strategy of DreamFactory, which is used by Fortune 500 companies, large tech companies, and government agencies. He served in the U.S. Navy as a Naval Intelligence Officer and Surface Warfare Officer during Operation Iraqi Freedom.

Sep 19, 202326:43
Infosec Wrap Up - September 15, 2023

Infosec Wrap Up - September 15, 2023

A new direction...
Sep 15, 202308:37
Throwback Thursday - A Conversation with Carlota Sage

Throwback Thursday - A Conversation with Carlota Sage

From March 14, 2023 - Carlota Sage is the Founder and Community CISO for Pocket CISO, thrives in that squishy area where business and technology meet human nature, and builds the relationships that get security, technology, business processes and people working together better, and has a background that includes information architecture, enterprise infrastructure, information security, and knowledge management. Among other things we discuss the vCISO space and the importance of brake lines!

Sep 14, 202324:08
S5E47 - A Conversation with Cyrus McCoy

S5E47 - A Conversation with Cyrus McCoy

Cyrus McCoy is a quality-driven Information Systems Engineering professional with ten plus years of cybersecurity experience in addition to being an Army veteran. He is an accomplished IT project manager (PMP Certified) with a proven ability to develop and implement strategies supporting business and financial objectives.

Sep 12, 202325:53
Cybersecurity Quick Strike - September 11, 2023
Sep 11, 202314:20
Infosec Wrap Up - September 8, 2023
Sep 08, 202312:59
Throwback Thursday - A Conversation with Dave Sobel

Throwback Thursday - A Conversation with Dave Sobel

From March 7, 2023 - Dave Sobel is the host of the Business of Tech podcast (https://www.businessof.tech/), a leading IT services focused news and analysis podcast and YouTube show, and owner of MSP Radio. He is regarded as a leading expert in the delivery of technology services, with broad experience in both technology and business. He owned and operated an IT Solution Provider and MSP for over a decade, both acquiring other organizations and eventually being acquired. Dave holds a bachelor's degree in Computer Science from the College of William and Mary. He is a dynamic voice within the IT community, a former member and facilitator for Heartland Technology Groups and passionate about collaborating with clients and peers on utilizing technology to advance organizations.

Sep 07, 202324:36
S5E46 - A Conversation with Dr. Fredrick Scholl

S5E46 - A Conversation with Dr. Fredrick Scholl

Dr. Fredrick Scholl is the Cybersecurity Program Director, Quinnipiac University. He is a cybersecurity thought leader and innovator, passionate about enabling success for people and businesses. He has a unique combination of skills and experience in academia, business and technology. His accomplishments range from the server room to the board room.

Sep 05, 202321:50
Cybersecurity Quick Strike - September 4, 2023
Sep 04, 202314:14
Infosec Wrap Up - September 1, 2023
Sep 01, 202318:08
Throwback Thursday - A Conversation with Caroline McCaffery

Throwback Thursday - A Conversation with Caroline McCaffery

From March 1, 2023 - Caroline McCaffery is a lawyer who started a data privacy and cybersecurity technology company called ClearOPS to provide technology to virtual CISOs. B2B2B It is a customer relationship management tool + work automation for managing security programs, such as vendor management, gap analysis, security posture and security questionnaire response. She also hosts The vCISO Chronicles, a new podcast series focused on telling the stories of virtual CISOs.

Aug 31, 202323:11