All links and images for this episode can be found on CISO Series

https://cisoseries.com/something-stinks-in-here-i-think-it's-your-code/

The problem isn't our users, it's you and your past due code. Something happened. It's either been tainted or expired, but whatever it is, it smells and you need to clean it up.

This episode is hosted by me, David Spark (@dspark), producer of CISO Series and Mike Johnson. Our sponsored guest this week is Brian Fox (@brian_fox), co-founder and CTO, Sonatype.

Thanks to our podcast sponsor, Sonatype

With security concerns around software supply chains ushered to center stage in recent months, organizations around the world are turning to Sonatype as trusted advisors. The company’s Nexus platform offers the only full-spectrum control of the cloud-native software development lifecycle including third-party open source code, first-party source code, infrastructure as code, and containerized code.

In this episode:

• How do you know if your DevSecOps effort is going to fail?
• How does an analyst justify their existence?
• Managing malicious intruders in code libraries
• Managing cybersecurity hygiene in the software chain

All links and images for this episode can be found on CISO Series

https://cisoseries.com/our-top-ten-list-of-vendors-that-arent-you/

You look at a top ten list is to see if you made the list. Don't bother. You're not on it.

This episode is hosted by me, David Spark (@dspark), producer of CISO Series and Mike Johnson. Our guest this week is Nancy Hunter, vp, CISO, Federal Reserve Bank of Philadelphia.

Thanks to our podcast sponsor, Code42

Redefine data security standards for the hybrid workforce. Check out Code42.

In this episode:

• Threat tracking: what’s better? Your SOC’s data or reading industry trends?
• Finding good security people -what’s better?: existing skills/experience, or a hunger to learn?
• Listing the things we like about security vendors
• Diversity hiring still has some challenges

All links and images for this episode can be found on CISO Series

https://cisoseries.com/do-we-have-to-let-the-ciso-sit-with-us/

I guess because it's a pandemic, and we really need them, just this one time, we'll let the CISO hang out at the cool kids' table.

This episode is hosted by me, David Spark (@dspark), producer of CISO Series and Mike Johnson. Our sponsored guest this week is Jadee Hanson (@jadeehanson), CISO, Code42.

Thanks to our podcast sponsor, Code42

Redefine data security standards for the hybrid workforce. Check out Code42.

In this episode:

• Apparently, CIOs have become really hot commodities within the organization
• Do compliance checkboxes to third party surveys provide any security for the supply chain?
• Insider risk should look more at mistakes as well as intentional acts
• The real value of vendor white papers

All links and images for this episode can be found on CISO Series

https://cisoseries.com/why-commute-when-you-can-stay-home-and-be-overworked/

Work from home seemed ideal until you realized you were working at all hours with people all over the world. It would actually be a nice respite to have to commute and leave work at a reasonable hour.

This episode is hosted by me, David Spark (@dspark), producer of CISO Series and Mike Johnson. Our guest this week is Adam Glick, CISO, Rocket Software.

Thanks to our podcast sponsor, Code42

Redefine data security standards for the hybrid workforce. Check out Code42.

In this episode:

• Work-from-home – the joys and the sorrows
• What do we want the board and C-Suite to know about cybersecurity?
• Are you a cybersecurity or infosec hiring manager? What kind of interview questions do you ask?
• CISOs working with young cybersecurity entrepreneurs