Retail & Hospitality ISAC Podcast

Target’s Philosophy on Sharing & What’s Next for RH-ISAC

Wed, 15 May 2024 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden speaks with Rich Agostino, CISO at Target, to discuss developing a career in cybersecurity, his role leading Target’s cybersecurity group, the convergence of physical and cybersecurity, and some of the cybersecurity tools Target has developed and shared back with the community. Check out Target’s cybersecurity blog to learn more. Finally, RH-ISAC President Suzie Squier talks with Luke about the past and future of RH-ISAC, as well as the future of this podcast.

How to approach cybersecurity compliance, the female founders of the RH-ISAC, and the monthly intel briefing

Wed, 24 Apr 2024 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden speaks with Alex Douds of S3 to discuss cybersecurity compliance approaches. Then, RH-ISAC President Suzie Squier talks with Diane Brown, CISO at Ulta Beauty, and Debbie McMahon, CISO at Dillards, about their roles in establishing RH-ISAC back in 2014. Finally, Lee Clark gives us the monthly intelligence briefing.

Vulnerabilities Facing Retail and Hospitality Organizations and How Cybersecurity has Changed During the Past Decade.

Wed, 10 Apr 2024 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden speaks with Josh Donlan of Hackerone to discuss security research, vulnerabilities facing retail and hospitality organizations, and how generative AI is changing vulnerabilities. Then, RH-ISAC President Suzie Squier talks with David McLeod who is currently VP, Information Security Officer at Disney, and previously helped establish RH-ISAC back in 2014.

Future-Proofing Authentication, RH-ISAC’s 10th Anniversary, plus the Monthly Intelligence Briefing

Wed, 27 Mar 2024 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden speaks with Josh Cigna of Yubico to discuss PCI DSS 4.0, phishing-resistant multi-factor authentication, and passkeys. Then, RH-ISAC President Suzie Squier talks with Ken Athanasiou who helped to create the RH-ISAC a decade ago. Finally, Lee Clark joins us for the monthly intelligence briefing.

Security Validation and the History of RH-ISAC

Wed, 13 Mar 2024 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden speaks with Jason Mar-Tang of Pentera to discuss security validation, why it’s important, and how it can reduce risk. Then RH-ISAC President Suzie Squier talks with Jim Cameli who was a founding board member of the organization.

InfoSec Team Organizational Charts, Founding RH-ISAC, and the Intelligence Briefing

Wed, 28 Feb 2024 05:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, we talk with Piyush Jain of Accenture about the recently released Org Chart Benchmark Report, and continue the 10th-anniversary interview series with Richard Noguera discussing the founding of RH-ISAC. Finally, Lee Clark joins us for the monthly intelligence briefing.

New Malware Sharing Initiative & a Look Back at Cybersecurity Over the Past Decade

Wed, 14 Feb 2024 05:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Aaron Mog, Forward Deployed CISO at Stairwell, to discuss a new malware sharing initiative. Then RH-ISAC President Suzie Squier chats with Scott Howitt, a founding board member of RH-ISAC, about the parallels in cybersecurity between retail, hospitality, and gaming.

Michael Daniel on Developing an ISAC, Plus the Intel Briefing

Wed, 24 Jan 2024 05:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, we continue the RH-ISAC 10th anniversary interview series with RH-ISAC President Suzie Squier and Michael Daniel, who helped to found the organization back in 2014. In the past decade since then, Michael served in the Obama White House as an advisor on cybersecurity matters and he is now President & CEO of the Cyber Threat Alliance. Then, Lee Clark, cyber threat intelligence analyst & writer at RH-ISAC, provides the latest intel briefing, including information about recent vulnerabilities in GitLab and GitHub.

RH-ISAC’s 10th Anniversary Year, Trustwave on Emerging Threats, and an Interview with the CISO of Colgate-Palmolive

Wed, 10 Jan 2024 05:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, we kick off the RH-ISAC’s 10th anniversary year with an interview series featuring RH-ISAC President Suzie Squier and the cybersecurity leaders who helped to found the organization in 2014. Then, host Luke Vander Linden is joined by Ziv Mador of Trustwave to discuss trending and emerging threats in the retail industry. Finally, we close out the CISO Spotlight interview series with a conversation between Luke and Colgate-Palmolive CISO, Alex Schuchman.

CISO Spotlight & Deep Dive Into Working Groups

Wed, 13 Dec 2023 05:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Paul Suarez, CISO at Casey’s General Stores to discuss his career, the unique challenges facing fuel retailers, and the value of collaboration. Then, Luke talks with Jackie Deloplaine, who oversees RH-ISAC’s working groups, to discuss some of the hot topics in 2023 and what’s planned for 2024.

MISP Platform Integration, CISO Spotlight, & Intel Briefing

Wed, 22 Nov 2023 05:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Manpreet Kang, security automation engineer at Williams-Sonoma, Inc. and RH-ISAC staff, Ian Furr, security integration engineer and JJ Josing, principal threat researcher, to discuss Williams-Sonoma’s adoption of the MISP platform. Manpreet touches upon the pros associated with MISP and how Williams-Sonoma integrated the platform within their own environment. Then, Luke talks with Ngozi Eze, Global CISO at Levi Strauss & Co. about how he entered the cybersecurity industry and how the retail sector presents unique challenges. Finally, Lee Clark, cyber threat intelligence analyst & writer at RH-ISAC, provides the latest intel briefing.

Threat Landscape During the Holidays & Michael Francess Member Spotlight

Wed, 08 Nov 2023 05:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Target team members Ryan Miller, senior director of cyber security and cyber threat intelligence, and Leah Schwartzman, lead cyber security analyst, cyber threat intelligence, to discuss the ever-evolving threat landscape. They’ll provide insight on how retailers can better prepare for the upcoming holiday season. Luke is then joined by Anthony Lauro, director of security technology and strategy at Akamai Technologies to discuss three Magecart-style attack campaigns that Akamai has been tracking since the beginning of 2023. To learn more about these attacks, visit Akamai’s blog. Finally, Luke talks to our latest member spotlight feature Michael Francess, senior manager of cybersecurity advanced threat and response at Wyndham Hotels & Resorts. We were able to talk with Michael about his fascination with cybersecurity during his youth, his role at Wyndham, and how the RH-ISAC community has impacted him.

CISO Spotlight, the State of Ransomware, & Intel Briefing

Wed, 25 Oct 2023 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden sits down with Marnie Wilking, CISO at Booking.com, to discuss her background in cybersecurity, the global threat landscape, and emerging technology such as AI. Then, Luke is joined by Chip Witt, vice president of product management at SpyCloud, to talk about the state of ransomware and how threat actors are circumventing authentication. Chip also reviews techniques retailers can use to better protect themselves. Finally, Lee Clark, cyber threat intelligence analyst & writer at RH-ISAC, provides the latest intel briefing covering the latest Intelligence Trends Summary Report and cyber incidents stemming from the Israeli–Palestinian conflict.

RH-ISAC CISO of the Year, Security Control Validation with Aaron’s, Inc., and Credit Card Fraud Landscape with SecurityScorecard

Wed, 11 Oct 2023 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Brett Cumming, sr. director of information security at Skechers, to talk about emerging threats, fostering a culture of sharing, and his recent RH-ISAC CISO of the year win. Then, Luke sits down with Jonathan Buckner and Tyler Compton from Aaron’s, Inc. to discuss their project, security control validation on a budget. Finally, Alex Heid, VP, fellow, and threat research at SecurityScorecard covers the developments surrounding the credit card fraud scene and how it impacts retail and hospitality.

Analyzing Top Attack Techniques in Multi-Party Data Breaches, Summit Preview, & Intel Briefing

Wed, 27 Sep 2023 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by David Severski, senior security data scientist at Cyentia Institute, to expand upon the relationship between Associate Member, RiskRecon, and Cyentia and how that connection plays a part with examining top cyber-attack techniques. Then, Alexandra Brown, senior director of operations at RH-ISAC, provides a preview of the upcoming RH-ISAC Cyber Intelligence Summit, the premier event for cybersecurity practitioners in retail and hospitality. Still deciding on whether to attend the Summit? There’s still time to register today! Finally, Lee Clark, cyber threat intelligence analyst & writer at RH-ISAC, provides the latest intel briefing, specifically the recent Okta customer breach.

Cybersecurity Awareness Month & SEC Updates

Wed, 13 Sep 2023 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Jay Banks, senior information security analyst of IT risk and compliance at Dick’s Sporting Goods, to talk about Cybersecurity Awareness Month in October. They explore the mechanisms Dick’s Sporting Goods employs to advocate for cybersecurity throughout the month. Then, Luke sits down with Christian Beckner, vice president of retail technology and cybersecurity at the National Retail Federation (NRF), to discuss the recent rules governing cybersecurity released by the U.S. Securities and Exchange Commission (SEC).

Charles Fedorko Member Spotlight, Cyber Safety for Children, & Intel Briefing

Wed, 23 Aug 2023 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Charles Fedorko, director of IT security at Sage Hospitality Group, to discuss his role, journey leading to his career in cybersecurity, and the current cybersecurity landscape surrounding the hospitality industry. Then, Luke sits down with Ellen Sabin, president of Watering Can Press, to discuss her new book educating children on proper cyber safety, The Super Smart Cyber Guide for Kids. Finally, Lee Clark, cyber threat intelligence analyst & writer at RH-ISAC, provides the latest intel briefing.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

Discussion with Summit Title Sponsor, Synack, & Natura &Co’s CISO

Wed, 09 Aug 2023 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Blake Sobczak, Synack’s head of communications and README’s editor-in-chief, to discuss the latest news impacting the cybersecurity world. Keep an eye out for Synack at the upcoming RH-ISAC Cyber Intelligence Summit. Then, Luke sits down with Natura &Co’s CISO, Jonathan Lloyd White, to expand upon his background, current role, and Natura &Co’s founding principles.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

Safeguarding Security with Associate Member Accenture, the Role of a BISO, & the Latest Intel Briefing

Wed, 26 Jul 2023 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Piyush Jain, global managing director of security (retail, consumer goods, life sciences, mobility, and travel) at Accenture, to discuss safeguarding an organization’s security. Then, Luke chats with Suzie Brown, hospitality solutions BISO (Business Information Security Officer) at Sabre Corporation, about her background, the role of a BISO, and provides aspiring and current BISOs with tips for success. Finally, Lee Clark, cyber threat intelligence analyst & writer at RH-ISAC, delivers the latest intel briefing including a full run-down of the ongoing CL0P/MOVEit vulnerability.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

NACD Accelerate, Ian Furr’s Volunteer Work, & Bidemi (Bid) Ologunde Member Spotlight

Wed, 12 Jul 2023 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by John Scrimsher, chief information security officer (CISO) at Kontoor Brands, Inc., and Marcel Bucsescu, senior director of credentialing and strategic engagement at NACD, to expand upon the NACD Accelerate program. Then Ian Furr, security integration engineer at RH-ISAC, talks about his volunteer work with the Information Technology Disaster Resource Center (ITDRC) and the Fairfax County Fire and Rescue Department. Finally, Luke chats with Bidemi (Bid) Ologunde, intelligence analyst at Expedia Group, about his own podcast, The Bid Picture, background, and the trajectory of cybersecurity.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

Securing the Store of the Future & Intel Briefing

Wed, 28 Jun 2023 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Shad Taylor, solution architect for retail & hospitality at Fortinet, to expand upon securing the store of the future. Then, Lee Clark, cyber threat intelligence analyst & writer at RH-ISAC, provides the latest intel briefing.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

Homographs in Domain Spoofing & Rafia Noor Member Spotlight

Wed, 14 Jun 2023 04:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Dom Lutz, an information security engineer at URBN, to expand upon a personal research project he is working on, homographs in domain spoofing. Then, Luke sits down with Rafia Noor, an information security engineer in the operation technology division at Colgate-Palmolive, to discuss her career path, intelligence sharing at the RH-ISAC, and the trajectory of cybersecurity.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

Hyatt’s CISO, Intel Briefing, & Third-Party Risk Management with Cyber GRX

Wed, 24 May 2023 11:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Ben Vaughn, senior vice president and CISO at Hyatt. During the second part of this interview, Ben reviews Hyatt’s guiding principles and how Hyatt optimizes cyber insurance renewal. Luke also highlights N2K’s new podcast, T-Minus. Then, Lee Clark, cyber threat intelligence analyst & writer at RH-ISAC, provides the latest intel briefing. Finally, Luke chats with Dave Stapleton, Cyber GRX’s CISO, on accelerating business growth while minimizing third-party risk.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

Hyatt’s CISO & PCI DSS v4.0

Wed, 10 May 2023 11:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Ben Vaughn, senior vice president and CISO at Hyatt. During this two-part interview, Ben discusses diversity in the cybersecurity industry and explains Hyatt guiding principles. The second part of this interview will air during the May 24 episode.

Then, Luke is joined by co-host Alicia Malone, senior manager of public relations at PCI SSC, Kandyce Young, manager of data security standards at PCI, and Tony James, director of cyber security at Target to discuss the rollout of PCI DSS v4.0. Questions relating to the rollout? Register here for the RH-ISAC and PCI DSS v4.0 webinar on May 25 at 3 p.m. ET. More information about PCI and the new version can be found on the following resources page.

Cyber Risk Quantification, Level 6 Cybersecurity, & Intel Briefing

Wed, 26 Apr 2023 11:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Cam Sabatini, senior analyst of information security, planning, and architecture at Abercrombie & Fitch Co., and Kristen Dalton, director of strategic cyber engagement, research, and analytics at RH-ISAC, as they explore cyber risk quantification (CRQ). Then, Kevin Jackson, founder and CEO of Level 6 Cybersecurity, expands upon how Level 6 came to fruition, the business model, and new offerings. Finally, Lee Clark, cyber threat intelligence analyst & writer at RH-ISAC, provides the latest intel briefing.

Link to episode 21 on 2023 CISO and Practitioner Benchmark Survey.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

Threat Actor Profile Catalog, Upcoming Europe Events, & Cybersecurity First Principles

Wed, 12 Apr 2023 11:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Bryon Hundley, RH-ISAC’s VP of intelligence operations, and JJ Josing, RH-ISAC’s principal threat researcher, to discuss the recent launch of RH-ISAC’s threat actor profile catalog. Then, Suzie Squier, RH-ISAC’s president, and Rafael (Rafa) Villoria Ferrer, head of global cyber security operations centre at Nestlé, discuss the upcoming events occurring in Europe. The episode concludes with a feature from Rick Howard, N2K's CSO and The CyberWire’s chief analyst and senior fellow, who expands upon his new book, Cybersecurity First Principles: A Reboot of Strategy and Tactics.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

360 Privacy, Intel Briefing, & Jeffrey Davidhizar Member Spotlight

Wed, 22 Mar 2023 11:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Benjamin Barrontine, vice president of executive services at 360 Privacy. Then, Lee Clark, RH-ISAC's cyber threat intelligence analyst & writer, reviews the latest intel briefing. Finally, Luke speaks with Jeffrey Davidhizar about how he transitioned from teaching math to middle and high school students, to his career in cybersecurity at Crutchfield Corporation.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

Consumer Safety in the Cyber Landscape & Chris De La Rosa Member Spotlight

Wed, 08 Mar 2023 12:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, host Luke Vander Linden is joined by Courtney Radke, field CISO, retail & hospitality at Fortinet, and Ryan Lange, IT director infrastructure and security at Batteries Plus. Together they investigate the risks and latest threats confronting the cyber industry impacting customers, effective technologies in addition to mitigation tactics, and learning to pivot in the rapidly evolving retail space. Then, Luke speaks with Chris De La Rosa, about how he cultivated a career in cybersecurity and his current role at DICK'S Sporting Goods as their senior threat intelligence analyst.

To hear the full interview of Luke's interview with Ira Winkler, check out Episode 16.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

National Retail Federation, Intel Briefing, and 2023 Events Kick-off

Wed, 22 Feb 2023 11:00:00 -0000

In this episode of the Retail & Hospitality ISAC podcast, RH-ISAC's president, Suzie Squier, and Christian Beckner, National Retail Federation’s vice president of retail technology and cybersecurity, expand upon RH-ISAC’s new partnership with NRF. Then, Lee Clark, RH-ISAC's cyber threat intelligence analyst & writer, reviews the latest intel briefing. Finally, host Luke Vander Linden and Alex Brown, RH-ISAC’s director of events, discuss this year’s Regional Workshop series.

Thank you to Fortinet for their sponsorship of the Retail & Hospitality ISAC podcast.

2023 CISO and Practitioner Benchmark Survey

Wed, 18 Jan 2023 08:54:00 -0000

In this episode of the RH-ISAC podcast, Kristen Dalton, director of strategic cyber engagement, research, and analytics, shares the results of this year's CISO and Practitioner Benchmark Surveys, including CISO priorities, budget, staffing, and skill gaps.

Thank you to Fortinet for their sponsorship of the RH-ISAC podcast.

Retail Threat Trends: Holidays and Beyond

Tue, 13 Dec 2022 17:31:00 -0000

In this episode of the RH-ISAC podcast, Lee Clark, RH-ISAC cyber threat intelligence analyst & writer, provides an update on holiday threat trends. Then, Courtney Radke, retail CISO and principal architect at Fortinet, shares predictions for top retail threats in 2023.

Download the Holiday Threat Trends Report. Not a member? Learn more about exclusive member benefits.

Thank you to Fortinet for their sponsorship of the RH-ISAC podcast.

Bug Bounty Programs: The Good, the Bad, and How To Get Started

Wed, 30 Nov 2022 02:10:00 -0000

In this episode of the RH-ISAC podcast, RH-ISAC member, Rob Fuller, shares his first-hand experience with vulnerability disclosure, or bug bounty programs, the benefits, the challenges, and some tips for getting your program off the ground.

Thank you to Fortinet for their sponsorship of the RH-ISAC podcast.

API Security & Target’s Take on Ransomware Resilience

Thu, 17 Nov 2022 18:56:00 -0000

In this episode of the RH-ISAC podcast, Matt Tesauro, distinguished engineer at Noname Security, discusses API vulnerabilities and how API testing is shifting left. Then, Kelsey Helms, principal analyst, and Ryan Miller, senior director, cybersecurity, at Target share how they're taking ransomware resiliency beyond the basics and collaborating across their organization.

Thank you to Fortinet for their sponsorship of the RH-ISAC podcast.

Getting Started with MISP & Commercialization of Bots in Fraud

Wed, 26 Oct 2022 09:06:00 -0000

In this episode of the RH-ISAC podcast, our intel team shares how members can start taking advantage of the new RH-ISAC community instance of the threat intel platform, MISP. Then, Lee Clark, RH-ISAC cyber threat intelligence analyst and writer, and Sam Crowther, founder & CEO of Kasada, discuss the trends they're seeing in the fraud space, including how bots have become commercialized, lowering the barrier of entry for fraud attacks.

Thank you to Fortinet for their sponsorship of the RH-ISAC podcast.

You Can Stop Stupid: Security Awareness Month

Wed, 12 Oct 2022 09:37:00 -0000

In this episode of the RH-ISAC podcast, Ira Winkler, author of "You Can Stop Stupid", shares how we can start designing systems with controls in place to limit the damage caused by human error. Then, Mike Britton, CISO of Abnormal Security, shares how they're using automation to stop the next generation of email threats.

Thank you to Fortinet for their sponsorship of the RH-ISAC podcast.

Preparing for PCI DSS 4.0 & Monthly Intel Threat Briefing

Wed, 28 Sep 2022 08:20:00 -0000

In today's podcast episode, Lee Clark, RH-ISAC's cyber threat intelligence analyst & writer, shares monthly threat trends including information on the recent Lockbit builder code leak and MFA bombing. Then, Idan Cohen from Reflectiz shares how you can prepare for PCI DSS 4.0 to make sure you remain compliant.

Thank you to Fortinet for their sponsorship of the RH-ISAC podcast.

Creating the 2022 Summit & Christy Elgee Member Spotlight

Tue, 13 Sep 2022 21:09:00 -0000

In this episode of the RH-ISAC podcast, Alex Brown, director of events, talks with members of the Summit Working Group about the content at this year's event. Then, Kristen Dalton, director of strategic cyber engagement, research, and analytics, chats with our September Member Spotlight, Christy Elgee, about how she transitioned from business into cybersecurity with the help of the SANS Institute's Women's Immersion Academy.

Not registered for the Summit yet? Register now for next week's event!

Thank you to Fortinet for their sponsorship of the RH-ISAC podcast.

Jordan Bodily Member Spotlight & The Future of Cloud Security

Tue, 30 Aug 2022 13:21:00 -0000

In this episode of the RH-ISAC podcast, Ian Furr, our security integrations engineer, interviews Jordan Bodily, infrastructure security engineer at BigCommerce. Jordan describes his start in cybersecurity, “drinking from a firehose”, and how being a member of the RH-ISAC sharing community has helped him and his team. Then, our president, Suzie Squier, interviews Jim Reavis and Troy Leach from the Cloud Security Alliance who share with us some of the trends they're keeping an eye on, such as blockchain and post-quantum cryptography.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Fraud Along the Customer Journey & Retail Intel Sharing Trends

Wed, 17 Aug 2022 13:16:00 -0000

In this podcast episode, Nate Kharrl and Anthony Micara from Spec discuss organizational challenges that prevent fraud detection across the customer journey. Then Lee Clark, from RH-ISAC's intel team, shares how RH-ISAC's member community sharing trends compare to those of the broader retail industry.

You can find the Verizon DBIR report referenced in this episode, on the RH-ISAC website.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Shadow IT & Passwordless Authentication

Wed, 27 Jul 2022 17:15:00 -0000

In this episode of the RH-ISAC podcast, Bel Lepe, Co-Founder & CEO of Cerby, shares how security teams can regain control of their shadow IT, or unmanageable applications. Then, Derek Hanson Vice President, Product Evangelist, at Yubico discusses how passwordless authentication and phishing-resistant MFA can help you accomplish business goals and improve the retail and hospitality customer experience.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Cybersecurity Professionals Helping Victims of Abuse

Wed, 13 Jul 2022 08:21:00 -0000

In this episode of the RH-ISAC podcast, RH-ISAC member, Nick Leicht, interviews Tony Hunt and Chris Cox from Operation: Safe Escape, or OSE. They share with us how their volunteers use cybersecurity skills to help victims of domestic abuse, stalking, and harassment, safely escape from their abusers.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

https://safeescape.org/

info@safeescape.org

Zero Trust Is Not a Product

Wed, 29 Jun 2022 08:38:00 -0000

In this episode of the RH-ISAC podcast, Bryon Hundley, VP of intel operations at RH-ISAC and Courtney Radke, Retail CISO and principal architect at Fortinet, discuss zero trust, what it is, what it isn't, and how organizations can work towards implementing zero trust policies.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Threats Across the Globe & Benchmarking with CyberGRX

Wed, 15 Jun 2022 08:45:00 -0000

In this episode, Luke Vander Linden, RH-ISAC's VP of membership and marketing, interviews the intel team who provide an update on the threat landscape in Asia and how MISP, a threat intel platform heavily used overseas, has grown in popularity among RH-ISAC members in the US. Then, Fred Kneip from CyberGRX shares with Suzie Squier, RH-ISAC president, how their risk assessment tools can be used to benchmark your security posture.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Using OSINT for Good & the Cybercrime Support Network

Wed, 25 May 2022 10:12:00 -0000

In this episode, RH-ISAC member, Nick Leicht, interviews Tom Hocker, director of Trace Labs, an organization dedicated to using open source intelligence to assist law enforcement in the search for missing persons. Then, Andrew Dolan, director, cybersecurity strategic engagement, research & analytics sits down with Bob Burda, chief strategy officer for the Cybercrime Support Network. Bob shares with us CSN's mission and the top four things they advise everyone include in their security awareness training programs.

To learn more about these organizations, visit:

Trace Labs: https://www.tracelabs.org/

Cybercrime Support Network: https://cybercrimesupport.org/

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Cybersecurity Legislation & Lowering Your Cyber Insurance Premium

Wed, 11 May 2022 09:30:00 -0000

In this episode of the RH-ISAC Podcast, former Cybersecurity Coordinator for President Obama, and current CEO of the Cyber Threat Alliance, Michael Daniel, shares the work CTA is doing to help CISA implement new cyber incident reporting legislation. Then, Justin Huff, security managing director at Accenture, provides tips for lowering your cyber insurance premium.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Defining Playbooks & Application Security in the Modern World

Wed, 27 Apr 2022 09:36:00 -0000

In this episode, two members of RH-ISAC's Incident Response Working Group, Jeff Mercer from Kontoor Brands and Logan Johnson from Discount Tire, discuss what defines a "playbook". Then, Dan Holden from BigCommerce gives us a preview of the content in his upcoming Cyber Thursday session, Client-Side Security Challenges Caused by the Usage of Third-Party Applications.

To learn more and register for Dan's session visit https://rhis.ac/appsec_podcast

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Risks that Lead to Ransomware & Confirming Spring4Shell

Wed, 13 Apr 2022 11:00:00 -0000

This episode features an interview with Kelly White, founder of RiskRecon, sharing the risk factors that have the highest correlation with successful ransomware attacks. Plus, RH-ISAC's intel team shares the work that was done to confirm the proof of concept of the Spring4Shell vulnerability.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Diversity Conversations in Cybersecurity and Live Events in 2022

Tue, 29 Mar 2022 19:27:00 -0000

In this episode of the RH-ISAC podcast, two female CISOs, Lauren Dana Rosenblatt, vice president & CISO at International Flavors & Fragrance and Chandra McMahon, senior vice president & CISO at CVS Health discuss how conversations about diversity have changed over the course of their careers. Then, RH-ISAC's director of events, Alex Brown, shares exciting news about the return to live events, kicking off in May with regional workshops.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Women in Cybersecurity and Holiday Retail Fraud Trends

Wed, 16 Mar 2022 10:17:00 -0000

March is Women's History Month, and to celebrate, we're dedicating this month's episodes to highlighting some of the amazing women in our cybersecurity community. In this episode of the RH-ISAC podcast, RH-ISAC's president, Suzie Squier talks to Lynn Dohm, executive director of Women in Cybersecurity (WiCyS) about their workforce development programs for students and how your organization can implement gender neutral hiring practices. Then, RH-ISAC's VP of intelligence operations, Bryon Hundley, sits down with Ashley Allocca of Flashpoint to discuss her research on the 2021 holiday season's retail fraud trends and the continued importance of security awareness for both customers and employees.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.

Insights from the 2021 CISO Benchmark Report

Mon, 28 Feb 2022 12:35:00 -0000

In this episode of the RH-ISAC Podcast, moderator Julia Hare, editor in chief of RETHINK Retail and panelists Courtney Radke, retail CISO, principal architect at Fortinet, Bryon Hundley, RH-ISAC VP of intelligence, and Diane Brown, vice president of IT risk management and CISO, discuss top initiatives for CISOs in 2022. The panelists discuss how their organizations are prioritizing critical projects like ransomware planning and implementation of multi-cloud environments, as well as limitations, such as lack of security awareness across company staff.

Thank you to Fortinet for their sponsorship of the RH-ISAC Podcast.