Socializing Security
A podcast that socializes security, compliance, and related topics to make them more approachable and understandable. Each week we’ll discuss a topic, usually with an expert in the area, with the goal of learning along with you. We’re here to socialize security!
Episodes
In this episode of Socializing Security, Milou and Brian delve into the complexities of compliance programs, focusing on the importance of selecting the right audit firms, the role of GRC software, and the common controls necessary for effective compliance. They discuss the significance of access control, incident response, risk management, data protection, vendor management, security awareness training, audit logging, business con...
In this episode of Socializing Security, the hosts delve into the essential topic of compliance within the cybersecurity landscape. They explore various compliance frameworks such as SOC 2, ISO 27001, HIPAA, and FedRAMP, discussing their significance, requirements, and the implications for organizations. The conversation highlights the importance of compliance in demonstrating security controls to customers and the challenges faced...
In this episode, Tracy Doaks, the president and CEO of MCNC, discusses her extensive background in both public and private sectors, emphasizing the importance of digital equity and the challenges faced in cybersecurity funding. She highlights the impact of technology on public service and the necessity of addressing the digital divide, particularly in rural communities. The discussion also delves into the ongoing negotiation betwee...
In this episode of Socializing Security, Brian and Milou delve into the fundamentals of risk management, emphasizing its importance across all organizations. They discuss the definition of risk management, the process of identifying and assessing risks, and the significance of executive buy-in. The conversation covers various aspects of risk management, including quantitative analysis, compliance requirements, and the integration o...
In this episode, Jake Williams discusses the intersection of physical and cybersecurity, emphasizing the importance of threat assessments and understanding vulnerabilities. The conversation explores how human behavior impacts security, the need for integrated security measures, and the balance between privacy and security. Jake shares insights on training for security awareness and the significance of proactive planning in maintain...
In this episode of Socializing Security, Steve Sims returns to discuss the fundamentals of cybersecurity, focusing on vulnerability management. The conversation covers the importance of understanding assets, the role of CVE in tracking vulnerabilities, prioritization strategies, and the necessity of having a robust vulnerability management plan. Steve emphasizes the significance of compensating controls, risk management, and the ne...
In this episode, the hosts discuss the various roles and responsibilities related to data security within organizations. They explore the importance of CISOs, compliance teams, and IT departments in managing data security, the lifecycle of data, and the challenges of sensitive data management. The conversation also touches on the implications of data breaches, public exposure of data, and the necessity of effective data retention p...
In this episode, Brian and Milou discuss the often-dreaded topic of phishing and compliance training. They explore the various types of phishing attacks, including spear phishing and whaling, and delve into the business aspects of phishing, such as ransomware. The conversation emphasizes the importance of human factors in cybersecurity, highlighting the need for effective training and awareness. They provide practical tips for iden...
In this episode, Yousuf Khan, a seasoned CIO and CISO turned venture capitalist, shares insights on the critical role of communication in leadership, the nuances between CIO and CISO responsibilities, and the importance of investing in B2B software. He discusses the challenges faced in the tech landscape, particularly regarding privacy and security, and emphasizes the need for a proactive approach in managing these issues. Yousuf a...
In this episode, Brian discusses security lessons derived from everyday life, focusing on urban planning, road safety, and their implications for cybersecurity. He emphasizes the importance of system design over individual accountability, the concept of normal accidents in complex systems, and the necessity of disaster preparedness. Brian also highlights the need for effective communication of security concepts to non-professionals...
In this episode of Socializing Security, Brian and Milou delve into the critical distinctions between IT disaster recovery and cyber attack recovery. They explore the definitions, planning strategies, recovery processes, and the varying impacts of each type of incident on organizations. The conversation emphasizes the importance of having well-defined disaster recovery and incident response plans, as well as the need for proactive ...
In this episode of Socializing Security, the hosts discuss the importance of trusting retailers when shopping online. They explore various strategies for evaluating the credibility of websites, the significance of payment methods in ensuring security, and the necessity of protecting personal information. The conversation also highlights warning signs of potential fraud and best practices for online shopping to enhance consumer safe...
In this episode, Milou and Brian sit down with Kimberly Williams, VP of People, Culture, and Compliance at Walker Advertising and spokesperson for the End Workplace Abuse movement. They explore how toxic work environments harm employee mental health—and create real security risks. Topics include: - What workplace psychological abuse looks like - How trauma impacts decision-making and security awareness - The Workplace Psychologica...
In this episode of Socializing Security, Brian and Milou discuss the complexities and recent changes to the FedRAMP certification process, which is essential for cloud service providers working with the U.S. government. They explore the challenges of compliance, the costs involved, and the implications of the new FedRAMP 20X program aimed at streamlining the certification process. The conversation highlights the balance between mai...
In this episode, Perry Correll joins us to demystify data governance—framing it not as a source of fear, but as a framework for smarter, safer business practices. We explore how different teams within an organization view data through different lenses, and how compliance can serve as a bridge between them to enable both innovation and accountability.
This is part two of a special edition episode that follows a tabletop framework wh...
In this episode, Perry Correll joins us to demystify data governance—framing it not as a source of fear, but as a framework for smarter, safer business practices. We explore how different teams within an organization view data through different lenses, and how compliance can serve as a bridge between them to enable both innovation and accountability.
This is a special edition two-part exercise that follows a tabletop framework wher...
In this episode, Jack Bailey joins Milou and Brian to share his extensive experience in IT and sales enablement, emphasizing the importance of effective communication in technology. He discusses the role of storytelling in making complex topics more relatable and the significance of data management strategies. The conversation also touches on the evolving nature of privacy and security, the necessity of sales enablement in startups...
It’s been one year of Socializing Security, and in this special anniversary episode, Brian and Milou reflect on what they've learned—and unlearned—about the evolving world of cybersecurity.
From redefining what "security" even means, to unpacking the human element behind most breaches, they explore why security isn’t just a tech problem—it’s a team sport. Tune in as they discuss the shifting role of security across organizations, h...
In this episode of Socializing Security, the hosts discuss their experiences at the RSA Conference with guest Bharat Jogi, a seasoned attendee. They explore the evolution of the conference, the importance of networking, and share valuable tips for first-time attendees. The conversation also touches on the role of AI in cybersecurity and the significance of making meaningful connections at such events.
Bharat's previous episode: Epi...
In this episode, Brian interviews Doug Landoll, a cybersecurity expert and assessment specialist with over 30 years of experience. They discuss the nuances of cybersecurity assessments versus compliance, the importance of continuous improvement in security practices, and common mistakes organizations make. Doug shares insights on navigating maturity models in cybersecurity and the ongoing battle between privacy and security, emphas...
Popular Podcasts
I’m Jay Shetty host of On Purpose the worlds #1 Mental Health podcast and I’m so grateful you found us. I started this podcast 5 years ago to invite you into conversations and workshops that are designed to help make you happier, healthier and more healed. I believe that when you (yes you) feel seen, heard and understood you’re able to deal with relationship struggles, work challenges and life’s ups and downs with more ease and grace. I interview experts, celebrities, thought leaders and athletes so that we can grow our mindset, build better habits and uncover a side of them we’ve never seen before. New episodes every Monday and Friday. Your support means the world to me and I don’t take it for granted — click the follow button and leave a review to help us spread the love with On Purpose. I can’t wait for you to listen to your first or 500th episode!
The heart was always off-limits to surgeons. Cutting into it spelled instant death for the patient. That is, until a ragtag group of doctors scattered across the Midwest and Texas decided to throw out the rule book. Working in makeshift laboratories and home garages, using medical devices made from scavenged machine parts and beer tubes, these men and women invented the field of open heart surgery. Odds are, someone you know is alive because of them. So why has history left them behind? Presented by Chris Pine, CARDIAC COWBOYS tells the gripping true story behind the birth of heart surgery, and the young, Greatest Generation doctors who made it happen. For years, they competed and feuded, racing to be the first, the best, and the most prolific. Some appeared on the cover of Time Magazine, operated on kings and advised presidents. Others ended up disgraced, penniless, and convicted of felonies. Together, they ignited a revolution in medicine, and changed the world.
Does hearing about a true crime case always leave you scouring the internet for the truth behind the story? Dive into your next mystery with Crime Junkie. Every Monday, join your host Ashley Flowers as she unravels all the details of infamous and underreported true crime cases with her best friend Brit Prawat. From cold cases to missing persons and heroes in our community who seek justice, Crime Junkie is your destination for theories and stories you won’t hear anywhere else. Whether you're a seasoned true crime enthusiast or new to the genre, you'll find yourself on the edge of your seat awaiting a new episode every Monday. If you can never get enough true crime... Congratulations, you’ve found your people. Follow to join a community of Crime Junkies! Crime Junkie is presented by audiochuck Media Company.
The World's Most Dangerous Morning Show, The Breakfast Club, With DJ Envy, Jess Hilarious, And Charlamagne Tha God!
If you've ever wanted to know about champagne, satanism, the Stonewall Uprising, chaos theory, LSD, El Nino, true crime and Rosa Parks, then look no further. Josh and Chuck have you covered.