All Episodes

April 22, 2025 46 mins


In this eye-opening episode of SecureTalk, host Justin Beals welcomes Bryant Tow, Chief Security Officer at LeapFrog Services, to discuss why technology alone can't solve cybersecurity challenges. Bryant reveals how the "Ring of Security" concept shows that up to half of your attack surface lies outside of technology—in governance, policies, people, and processes. The conversation explores real-world examples like the Change Healthcare breach, why security frameworks often fall short, and how building a culture of security requires connecting protection of company assets to personal security concerns.

Key Topics

  • The Change Healthcare breach: How a single oversight led to a $2.9 billion loss despite substantial technology investments
  • Why frameworks like CIS are great starting points but insufficient on their own
  • How the "Ring of Security" approach addresses the complete attack surface
  • Building a security culture that resonates with employees on a personal level
  • Why a business impact analysis is critical but often missing from frameworks
  • The importance of understanding your data before implementing AI solutions

Notable Quotes


"When you do the root cause analysis on headline breaches, nearly all of them started somewhere outside the technology." - Bryant Tow

"Even if you do your technology perfectly, you're leaving half of your attack surface open." - Bryant Tow


"Strategy drives governance. Governance drives operation." - Bryant Tow


About the Guest


Bryant Tow serves as Chief Security Officer at LeapFrog Services, where he assists clients with comprehensive security programs including strategy, governance, and operations. Previously, he owned Cyber Risk Solutions and served on the Department of Homeland Security Sector Coordinating Council. His "Ring of Security" concept emphasizes that cybersecurity is an organizational problem that uses technology as just one tool in the solution.


Resources Mentioned

  • The "Ring of Security" concept
  • CIS Framework limitations
  • Business Impact Analysis
  • AI Readiness Assessment
  • Department of Homeland Security Sector Coordinating Council

SecureTalk is hosted by Justin Beals, focusing on cybersecurity strategy, governance, and best practices for organizations of all sizes.


Mark as Played

Advertise With Us

Popular Podcasts

Stuff You Should Know
My Favorite Murder with Karen Kilgariff and Georgia Hardstark

My Favorite Murder with Karen Kilgariff and Georgia Hardstark

My Favorite Murder is a true crime comedy podcast hosted by Karen Kilgariff and Georgia Hardstark. Each week, Karen and Georgia share compelling true crimes and hometown stories from friends and listeners. Since MFM launched in January of 2016, Karen and Georgia have shared their lifelong interest in true crime and have covered stories of infamous serial killers like the Night Stalker, mysterious cold cases, captivating cults, incredible survivor stories and important events from history like the Tulsa race massacre of 1921. My Favorite Murder is part of the Exactly Right podcast network that provides a platform for bold, creative voices to bring to life provocative, entertaining and relatable stories for audiences everywhere. The Exactly Right roster of podcasts covers a variety of topics including historic true crime, comedic interviews and news, science, pop culture and more. Podcasts on the network include Buried Bones with Kate Winkler Dawson and Paul Holes, That's Messed Up: An SVU Podcast, This Podcast Will Kill You, Bananas and more.

The Joe Rogan Experience

The Joe Rogan Experience

The official podcast of comedian Joe Rogan.

Music, radio and podcasts, all free. Listen online or download the iHeart App.

Connect

© 2025 iHeartMedia, Inc.