CISO Stories Podcast (Audio)

SC Media and Sophos are proud to present this month’s CISO Stories program, where CISOs share tales from the trenches and unpack leadership lessons learned along the way. Hosted by Jessica Hoffman.

Maximizing Cyber Liability Insurance: Risk, Relationships & Renewal Strategies - Mandy Andress - CSP #211 04/14/2025

Breach by the Dozen: Incident Response Lessons from the Field - Mike Miller - CSP #210 03/10/2025

AI Governance: Navigating Risks, Frameworks, and the Future - Rock Lambros - CSP #209 02/10/2025

Privacy Under Siege: Navigating Data Theft and the BadBox Threat - Gavin Reid - CSP #208 01/13/2025

Cloud Security in Higher Education: Balancing Trust and Risk - Sheena Thomas - CSP #207 12/31/2024

Cybersecurity in the Cloud: Lessons for Businesses and Beyond - Melina Scotto - CSP #206 12/24/2024

Cloud Security for SMBs: Strategies, Risks, and Resources - Adam John - CSP #205 12/17/2024

Cloud Security at Risk: Tackling Misconfigurations Head-On - Nadia Mazzarolo - CSP #204 12/10/2024

Cloud Security: Lessons Learned and Applied to Emerging Tech - Bertrum Carroll - CSP #203 12/03/2024

Identity Challenges in Manufacturing - Tammy Klotz - CSP #202 11/26/2024

Identity Security: Navigating the New Normal with Dr. Sean Murphy - Sean Murphy - CSP #201 11/19/2024

Identity Security Training: How important is it? - Eric Belardo - CSP #200 11/12/2024

Have you ever had a pen tester own your network? - Julian Austin - CSP #199 11/05/2024

How important is your relationship with your tool vendors? - Jacob Lorz - CSP #198 10/29/2024

What level of tool rationalization does your company do and why? - LaLisha Hurt - CSP #197 10/22/2024

Have you consider your team’s cognitive biases when selecting tools? - Dustin Sachs - CSP #196 10/15/2024

Tokyo DriftSec: Who is going First? Who is going Smooth? - Lisa Landau - CSP #195 10/08/2024

What are your pet peeves when it comes to tool selection? - Timothy Ball - CSP #194 10/01/2024

Tried and True. Going back to basics with Incident Response - Levone Campbell - CSP #193 09/24/2024

The vCISO’s role in Incident Response Accountability - William Klusovsky - CSP #192 09/17/2024

CISO & Legal: Partnerships Needed - Joe Sullivan - CSP #191 09/10/2024

Todd’s Moving On after 185+ Episodes - Future CISO Vision - Todd Fitzgerald - CSP #190 09/03/2024

Vulnerability Management: Tips and Techniques - John Kellerhals - CSP #189 08/27/2024

Are You Vulnerable to Deep Fakes? Controlling the Risk - Paul Neff - CSP #188 08/20/2024

Focus, Breadth, or Depth: Reduce Vulnerabilities with Less $ - Julian Mihai - CSP #187 08/13/2024

No One Succeeds Alone! Why You Must Have an Informal Network - Gene Scriven - CSP #186 08/06/2024

Driving the Business of Infosec Through the GRC Program - Greg Bee - CSP #185 07/30/2024

Evolving from Security to Trust, more than Just Compliance - Mike Towers - CSP #184 07/23/2024

Evolving from Security to Trust, more than Just Compliance - Mike Towers - CSP #184 CISOs need to enhance their strategic influence and operational impact within their organizations. This calls for a departure from traditional, insular security approaches towards a partnership model that aligns security initiatives with business growth and value. By adopting an attitude of listening, humility, and interdisciplinary collaboration, CISOs can transcend fear-based justifications for investment and instead, demonstrate how robust cyber security measures contribute to the overall health and success of the business. Such an evolution in the CISO role is essential for building resilient, forward-looking organizations that view security as a cornerstone of their strategic endeavors. In the combined context of Resilience and Reputation and Trust, CISOs must orchestrate a delicate balance between robust defensive measures and the cultivation of a strong, trustworthy brand. At this juncture, resilience becomes more than just a technical safeguard; it is about ensuring the continuity and reliability that stakeholders have come to expect. This reliability directly feeds into the organization's reputation, setting the stage for trust to be the cornerstone of all engagements—internal and external. The journey from a reactive security posture to one that is proactive and business-aligned requires that CISOs embed security consciousness into the corporate DNA. As they reach these advanced stages, CISOs transform their roles from protectors to strategic enablers, guiding their organizations through the digital landscape with a clear vision for safeguarding and enhancing both operational fortitude and brand integrity. Security thus becomes an integral part of the value proposition, fostering trust and loyalty among customers, and cementing the organization's reputation as a leader in responsible business practices in the digital age. Segment Resources: Webcast: Podcast (Enterprise Security Weekly): News/interview: This segment is sponsored by RegScale. Visit to learn more about them! Visit for all the latest episodes! Show Notes: /episode/index/show/cspaudio/id/32248862

CISO Risk Reduction: Adopting Emerging Technologies - Timothy McKnight - CSP #183 07/16/2024

Deep Dive in GRC: Know Your Sources - Jonathan Ruf - CSP #182 07/09/2024

CISO Stories Podcast (Audio)

TOPICS