CISO Tradecraft

CISO Tradecraft header image 1
January 17, 2022  

CISO Tradecraft: Presentation Skills

On this episode of CISO Tradecraft, we discuss how to give a great presentation.  

  • Starting with the Bottom Line Up Front (BLUF)
  • Using pictures to Capture Attention
  • Asking Thought Provoking Questions
  • Succinct Points to tell a story
  • Decision slides that show
    • The problem
    • The proposed solution
    • Cost to implement solution
    • Why alternatives are not as good
    • Next Steps after decision is made

We also discuss the Angels Cocktail which is a concept taken from a Ted Talk by JP Phillips

  • Dopamine is a neurotransmitter that stimulates focus, motivation, and memory.  If you want to use this chemical, then tell a story that has obstacles to build suspense and create cliffhangers 
  • Oxytocin is the hormone associated with generosity, trust, and bonding.  If you want to use this chemical,  tell a story that creates empathy or makes you vulnerable.  You can make the story more impactful by using the concept of delaying resolution of the story.
  • Endorphins are the last hormone which are associated with making people creative, relaxed, and focused.  If you want to use this chemical try making others laugh.  One way to do this is by being overly dramatic.  

References

https://www.verywellmind.com/glossophobia-2671860

https://hbr.org/2019/09/to-overcome-your-fear-of-public-speaking-stop-thinking-about-yourself

https://hbr.org/2013/06/how-to-give-a-killer-presentation

https://www.cnbc.com/id/100646197

https://www.youtube.com/watch?v=Nj-hdQMa3uA

January 10, 2022  

CISO Tradecraft: CISO Knowledge Domains Part 2

One of the most common questions that we get asked on CISO Tradecraft is what do I need to learn to be a good CISO?  After a lot of reflection, CISO Tradecraft put together a Top 10 List of CISO knowledge domains that we believe are the core skills which produce really good CISOs.  This episode is a continuation from the previous episode and will go over the 6th -10th knowledge areas.

  1. Product Security focuses on ensuring developers write secure code
  2. Defensive Technologies focuses on creating multiple layers of defenses in an organization to protect against a multitude of attacks
  3. Detection & Response Capabilities is about creating mechanisms to identify how attackers might circumvent your organization’s defensive technologies
  4. Laws, Regulations, & Oversight is about ensuring compliance with appropriate laws and regulations
  5. Enabling Technologies is about enabling businesses to create digital transformation
  6. Risk Management is about effectively identifying what are the biggest risks to the company, what's the likelihood and magnitude of a potential attack, and how to estimate the cost of remediation
  7. Governance is about understanding what technology your organization uses so you can effectively manage it through a process
  8. Identity & Access Management is about limiting the scope of an attacker who could cause harm to your organization
  9. Business Management & Leadership is an essential skill for executives to lead and influence others
  10. Security Culture is about building an organization where the entire company becomes resilient

https://github.com/cisotradecraft/podcast

January 3, 2022  

CISO Tradecraft: CISO Knowledge Domains Part 1

One of the most common questions that we get asked on CISO Tradecraft is what do I need to learn to be a good CISO?  After a lot of reflection, CISO Tradecraft has put together a Top 10 List of CISO knowledge domains that we believe are the core skills which produce really good CISOs.  This episode will go over just the first 5 knowledge areas with the remaining five on a future episode.

  1. Product Security focuses on ensuring developers write secure code
  2. Defensive Technologies focuses on creating multiple layers of defenses in an organization to protect against a multitude of attacks
  3. Detection & Response Capabilities is about creating mechanisms to identify how attackers might circumvent your organization’s defensive technologies
  4. Laws, Regulations, & Oversight is about ensuring compliance with appropriate laws and regulations
  5. Enabling Technologies is about enabling businesses to create digital transformation

https://github.com/cisotradecraft/podcast

December 27, 2021  

CISO Tradecraft: Active Directory is Active with Attacks

After bad actors gain an initial foothold into an organization, they often use active directory attacks to gain administrative privileges.  On this episode of CISO Tradecraft, we discuss Active Directory.  You can learn what it is, how it works, common attacks used against it, and ways you can secure it.  

References:

Stealthbits Active Directory Attacks

Wikipedia Active Directory

Wikipedia Directory Service

Wired Story on Not Petya

CIS Hardened Images

MS Domain Services 

Mimikatz

Kerberos

Indeed Active Directory Job Listing

December 20, 2021  

CISO Tradecraft: Brace for Audit

You just got the news that the Cyber Organization is going to be audited.  Do you know what an audit is, how best to prepare for it, and how to respond to audit findings?  On this episode of CISO Tradecraft, we help you understand key auditing concepts such as:

  • Audit Subject
  • Audit Objective
    • Vulnerability
    • Threat
    • Risk & Impact
  • Audit Scope with Goals & Objectives
  • Audit Plan
  • Audit Response
December 13, 2021  

CISO Tradecraft: Say Firewall One More Time

Have you ever heard someone say our firewalls block this type of attack?  In this episode, you can increase your understanding of firewalls so it won’t just be another buzzword. 

6 Basic categories of firewalls that we discuss on the show include:  

  1. Packet Filters focus on IP and port blocking 
  2. Stateful Inspection Firewall looks at active connections and consider context
  3. Network Address Translation Firewalls tools that allow private networks to connect to public ones and create secure enclaves
  4. Proxy Servers classify web traffic into topics that might be allowed or not allowed
  5. Web Application Firewalls block Web Application Attacks (SQL Injection,Cross Site Scripting, …)
  6. Next Generation Firewalls that try to do everything.

References - sitereview.bluecoat.com

December 3, 2021  

CISO Tradecraft: I have more Agents than the FBI

On this episode of CISO Tradecraft you can learn all about Software Agents.  Specifically we discuss: What does an Agent do, Why is an Agent helpful, and the 7 common types of Software Agents you would expect to find in large IT organizations.  Also, if you stick to the end you can also learn about Secret Agents (ie Agentless).

 

7 Common Software Agents are:

  1. Endpoint Configuration Agents - Tools like Microsoft Endpoint Manager or SCCM
  2. Mobile Device Managers - Tools like Microsoft Intune or Google Endpoint Management
  3. Vulnerability Agents - Tools like Qualys or Nessus
  4. Antivirus Agents - Tools like McAfee or Symantec
  5. Endpoint Detection & Response Agents - Tools like Crowdstrike or Carbon Black
  6. Data Loss Prevention Agents - Tools like Forcepoint or GTB Technologies
  7. Privilege Access Management Agents - Tools like BeyondTrust or CyberArk
November 19, 2021  

CISO Tradecraft: The Great Resignation

The Great Resignation is upon us, and if some of your top talent hasn't given you their notice, it may be happening soon.  Or not, depending on what you choose to do.  With plenty of time to contemplate options, people are quitting jobs at a record pace.  But wise leaders learn how to listen to their people's needs and desires, create a sense of purpose that motivates far beyond a paycheck, and creates a safe working space by allowing people to be human and make the occasional mistake.  Keep your IT Security team intact with these concepts and much more.

For more great CISO content please subscribe to our LinkedIn Page

Thank you for listening to CISO Tradecraft

References:

November 5, 2021  

CISO Tradecraft: Fun and Games to Stop Bad Actors with Dr. Neal Krawetz

In this episode, you can hear from Dr. Neal Krawetz, creator of Hacker Factor and FotoForensics. Neal's a long-time security practitioner who shares some fascinating insights in terms of how to identify potential bad actors early on (think reconnaissance interception), techniques for detecting bots and malicious entities, and ways to protect your team members from misattributed fake blog entries.

October 29, 2021  

CISO Tradecraft: Welcome to the C-Level with Nate Warfield of Prevailion

Some of the best C-level executives start in the technical ranks.  This episode features Nate Warfield, CTO of Prevailion, who differentiated himself by creating the CTI-League.com to assist healthcare companies with ransomware.  We'll cover some of that organization, how Nate got his first C-level job, and some lessons learned you might appreciate in your own CISO journey.

To learn more about Cyber Adversary Intelligence, please check out Prevailion

Podbean App

Play this podcast on Podbean App