Cybersecurity Sense

Welcome to Cybersecurity Sense, the podcast where real-world security meets practical insights. Hosted by LBMC’s Andy Kerr and Kyle Hinterberg, this show goes beyond compliance checklists to explore the fast-moving world of cybersecurity.

The Future of AI Security: Legacy AI, Emerging Risks & Business Impact 03/18/2025

The Future of AI Security: Legacy AI, Emerging Risks & Business Impact Cybersecurity is evolving, and so is our podcast! 🎙️ New hosts Andy Kerr and Kyle Hinterberg discuss their backgrounds and the a new, broader focus for the podcast—expanding beyond PCI compliance to cover real-world cybersecurity trends. In this episode, you'll learn about the evolution of security challenges and the growing impact of AI in cybersecurity. Key topics include: DeepSeek vs. OpenAI – A new AI model shaking up the industry AI Risks & Compliance – Guardrails, security gaps, and legal concerns Practical Business Impact – How organizations should approach AI securely Tune in for insights on staying ahead in an AI-driven security landscape! 🎧 Questions? We're here to help. to our team directly! /episode/index/show/cybersecuritysense/id/35725810

PCI Monthly Update: Latest News and Updates to Requirement 12 05/21/2024

PCI Monthly Update: Latest News and Updates to Requirement 12 Join us for the latest episode of our PCI Monthly Update podcast, where we explore the latest developments in the world of payment card industry security. We begin with a news segment covering the impact of PCI v4.0 and how organizations are adjusting. In case you missed it - Andy Kerr joined PCI Practice Partner Stewart Fey for an interactive Q&A session on PCI 4.0. If you're interested in watching this session, to our team for a link. Next up, we'll cover the last requirement - Requirement 12 - the "Information Security Catch-All Requirement." This requirement covers all security functions including policies, security awareness, incident response, etc. Our QSA experts provide their insights on what's changed with v4.0 and share some experiences in the field. This episode is a must-listen for professionals seeking to stay informed and improve their organization's payment security and compliance. /episode/index/show/cybersecuritysense/id/31337982

PCI Monthly Update: Latest PCI News, Requirement 11 Overview, and QSA Insights 04/30/2024

PCI Monthly Update: Latest PCI News, Requirement 11 Overview, and QSA Insights Join us for the latest episode of our PCI Monthly Update podcast, where we explore the latest developments in the world of payment card industry security. We begin with a news segment covering the launch of PCI v4.0 and the ins and outs of the new INFI (Items Noted For Improvement) Worksheet. Next up, we'll cover Requirement 11 - Test security of systems and networks regularly. This requirement can either be the easiest or hardest for organizations depending on their setup. Our QSA experts provide their insights on best practices and what has changed in v4.0. This episode is a must-listen for professionals seeking to stay informed and improve their organization's payment security and compliance. /episode/index/show/cybersecuritysense/id/31031098

PCI Monthly Update: Version 4.0 Countdown, Requirement 10, and QSA Insights 03/19/2024

PCI Monthly Update: Version 4.0 Countdown, Requirement 10, and QSA Insights In this edition of the PCI Monthly Update, we’re counting down to the launch of PCI 4.0! We start this month's podcast with a reminder that v4.0 goes into full effect on March 31. Our focus then shifts to Requirement 10 covering logging and monitoring all access to system components and card holder data and what is changing with v4.0. This podcast is your monthly briefing on PCI standards - an indispensable listen for anyone tasked with safeguarding payment card data. /episode/index/show/cybersecuritysense/id/30985293

PCI Monthly Update: Gearing Up for Version 4.0, Mastering Requirement 9, and QSA Insights 01/30/2024

PCI Monthly Update: Gearing Up for Version 4.0, Mastering Requirement 9, and QSA Insights In this January edition of the PCI Monthly Update, we’re on the brink of exciting changes with version 4.0 just around the corner! We start with a spotlight on the ongoing Request for Comments (RFC) period for PCI DSS v4.0, inviting insights from industry experts. Plus, we discuss the Global Content Library, showcasing insights from the 2023 Community Meetings. Our focus then shifts to Requirement 9, where we break down the critical protocols for restricting physical access to cardholder data. We'll cover everything from documenting security policies to managing visitor access, ensuring secure storage and destruction of media with cardholder data, and protecting Point of Interaction (POI) devices from security threats. Wrap up with us as we consolidate today's takeaways and prepare you for what these updates mean for your compliance strategy. This podcast is your monthly briefing on PCI standards - an indispensable listen for anyone tasked with safeguarding payment card data. /episode/index/show/cybersecuritysense/id/29410103

PCI Monthly Update: December News, Deep Dive into Requirement 8, and QSA Q&A 01/11/2024

PCI Monthly Update: December News, Deep Dive into Requirement 8, and QSA Q&A Join us for the latest episode of our PCI Monthly Update podcast, where we explore the latest developments in the world of payment card industry security. We begin with a news segment highlighting the PCI SSC's TRA Guidance. Next, we delve into Requirement 8 of the PCI DSS, dedicated to identifying users and authenticating access to system components. We'll explore the intricate details of this requirement, covering sub-requirements 8.1 to 8.6. These discussions will include processes for user identification, strict management of user and administrator accounts, strong authentication methods, and the implementation of multi-factor authentication (MFA) to ensure the security of cardholder data environments (CDE). Our QSA Q&A segment then addresses a critical question: Do all accounts need to comply with these requirements? We'll provide clarity on the scope, applicability, and exceptions, helping listeners understand the nuances of compliance. Tune in for a comprehensive review of December's PCI updates, an in-depth analysis of Requirement 8, and valuable insights from our QSA experts. This episode is a must-listen for professionals seeking to stay informed and improve their organization's payment security and compliance. /episode/index/show/cybersecuritysense/id/29409748

PCI Monthly Update: October - New SAQ Review, Focused Look at Requirement 7, and Expert QSA Insights 11/07/2023

PCI Monthly Update: October - New SAQ Review, Focused Look at Requirement 7, and Expert QSA Insights Dive into the latest in the PCI landscape with our October update. We kick off with a news segment spotlighting the new SAQ SPOC (Software PIN Entry on COTS) which includes portions of PCI DSS Requirements 3, 8, 9, and 12. Transitioning to Requirement 7, we discuss restricting access to system components and cardholder data based on business necessity, delving into sub-requirements 7.1 to 7.3, and discussing the principles of 'need to know' and 'least privileges.' Our QSA Q&A segment addresses the applicability of Requirement 7 to customer/cardholder accounts, clarifying the scope and the specific entities impacted by this requirement. Join us for a comprehensive exploration of this month's PCI developments, an in-depth look at Requirement 7, and expert insights in our QSA dialogue, paving your way towards enhanced compliance and security. /episode/index/show/cybersecuritysense/id/28532927

PCI Monthly Update: September Highlights & Requirement 6 Deep Dive 10/17/2023

PCI Monthly Update: September Highlights & Requirement 6 Deep Dive Catch the latest news in our September "PCI Monthly Update" from Tuesday, September 26, 2023. We kick things off with key insights from the recent PCI Community Meeting. Next, we dive into Requirement 6, discussing the essence of secure software development, from processes to security vulnerabilities, web application protection, and change management. Our QSA Q&A segment addresses a vital question: What documentation should you expect from PCI DSS compliant service providers? Join us for a succinct roundup of September's essential PCI updates and insights. Perfect for both newcomers and seasoned PCI professionals. /episode/index/show/cybersecuritysense/id/28310294

PCI Monthly Update: August Highlights & Requirement 5 Breakdown 09/05/2023

PCI Monthly Update: August Highlights & Requirement 5 Breakdown Tune in to the August edition of our PCI Monthly Update. We kick off with a sneak peek into the upcoming PCI North America Community Meeting in Portland and introduce the newly launched PCI Community Job Board—a dedicated platform for security talent and job postings in the payment industry. Next, we delve into Requirement 5, shedding light on anti-malware solutions. We explore the criteria for system components which do not require anti-malware, delve into the specifics of anti-malware implementation, and highlight the periodic evaluations required for maintaining optimal security. Wrapping up, our QSA Q&A segment addresses a common query: the rotation of QSAs in organizations. Whether you're a PCI pro or new to the domain, this episode offers a concise overview of August's essential PCI topics. Join us for these insights and more! /episode/index/show/cybersecuritysense/id/27917253

PCI Monthly Update: July Insights & Innovations 08/08/2023

PCI Monthly Update: July Insights & Innovations Dive into the latest PCI news in our July PCI Update. This episode covers key PCI developments, an in-depth exploration of Requirement 4, and a helpful QSA Q&A. We kick off this episode by previewing the upcoming PCI Community Meeting in Portland and discuss our hosts' presentation on "Generative AI: Your New Secret Weapon or an Insider Threat?" We also talk about the INFI worksheet and the importance of Continuous Compliance. In the Requirement 4 segment, we focus on strong cryptography, robust security protocols, and the need to secure PAN during transmission over public networks. We highlight industry best practices for wireless networks transmitting PAN and the necessity to secure PAN when using end-user messaging technologies. A QSA Q&A session wraps up our episode and tackles the issue of responsibility for PCI compliance when using third-party payment services. Whether you're an industry veteran or new to PCI, this episode offers a concise, informative roundup of the month's most significant PCI topics. /episode/index/show/cybersecuritysense/id/27684117

Worried about Ransomware? 05/23/2023

Worried about Ransomware? Do you know the average payout organizations are hit with for every attack? William Parks and Bill Dean discuss a service dedicated to helping your organization (big or small) withstand a ransomware attack. Bill and his team are ready to help you and your organization obtain peace of mind when it comes to these advanced threats. Questions for Bill? Find him here: /episode/index/show/cybersecuritysense/id/26914110

Advance Guard Could Save You 04/11/2023

Advance Guard Could Save You LBMC Shareholder Bill Dean and William Parks spend today’s episode discussing Advance Guard, a new service offering from LBMC's Security Technical Team. Learn how Advance Guard may help protect your organization's most valuable assets, save time on compliance audits, and give peace of mind about your current security stance. Want to see Bill’s “Prescription”? Check out the link below: Questions for Bill? Find him here: /episode/index/show/cybersecuritysense/id/25957095

PCI Monthly Update: March News & Requirement 3 03/29/2023

PCI Monthly Update: March News & Requirement 3 Stay up to date with the latest in PCI compliance. In this episode, William Parks, Andy Kerr, and Kyle Hinterberg discuss the latest in PCI news, new restrictions around PAN data, and how to master Requirement 3 while preparing for PCI 4.0. Don't miss our upcoming webinar: "How to Reduce Your PCI Scope: Tips & Technology Your Organization Needs to Know" on Thursday, April 13 at 11am CT. For any questions, feel free to reach out to us here: Kyle Hinterberg: Andy Kerr: William Parks: /episode/index/show/cybersecuritysense/id/26365491

ChatGPT: What You Need to Know 03/21/2023

ChatGPT: What You Need to Know ChatGPT is making headlines worldwide and its impact is making a lot of business owners uncomfortable. What is ChatGPT? How will this tool change how you do business? Is ChatGPT a security risk? What to expect from ChatGPT4? William Parks interviews team members to discuss this controversial topic, dive into facts your organization needs to know, and explore probable scenarios that could happen with this level of Artificial Intelligence. Want more insights? Contact LBMC's Data Insights team: Jon Hilton, Shareholder () Will Son, Senior Manager () /episode/index/show/cybersecuritysense/id/26157258

Interviewing a Real Hacker 02/16/2023

Interviewing a Real Hacker William Parks takes this podcast to introduce a key member of LBMC Information Security’s Technical Services team, Daniel Nguyen. Daniel is a manager on the team with quite the insightful background. William and Daniel spend time discussing current steps to keep your organization successful in their journey to a healthier security posture. Questions for Daniel? Find him here: /episode/index/show/cybersecuritysense/id/25957287

PCI Monthly Update: January News & Requirement 1 01/12/2023

PCI Monthly Update: January News & Requirement 1 Stay up to date with the latest in PCI compliance. In this episode, William Parks, Andy Kerr, and Kyle Hinterberg discuss the latest in PCI news and how to master Requirement 1 while preparing for PCI 4.0. For any questions, feel free to reach out to us here: Kyle Hinterberg: Andy Kerr: William Parks: /episode/index/show/cybersecuritysense/id/25583184

PCI Monthly Update: December News & FAQs 12/06/2022

PCI Monthly Update: December News & FAQs William Parks, Andy Kerr, and Kyle Hinterberg discuss the latest PCI news, share how to create and what should be covered in an executive summary for a PCI assessment, and answer a few questions from our listeners. If you’d like us to answer and address questions on our next episode, reach out to us here: Andy Kerr – Kyle Hinterberg – William Parks – /episode/index/show/cybersecuritysense/id/25226904

PCI SSC Community Meeting Top Takeaways 11/08/2022

PCI SSC Community Meeting Top Takeaways In this podcast, Host William Parks discusses with LBMC Information Security Senior Managers Andy Kerr and Kyle Hinterberg some of the top takeaways at this year’s PCI SSC Community Meeting. Topics discussed during this episode include changes to the “In-Place with Remediation” reporting option which was added in PCI DSS v4.0, what to do if you miss an ASV Scan, new ways to interact with the PCI Council, SAQ updates, and much more! /episode/index/show/cybersecuritysense/id/24872403

Keeping Your Digital Identity Secure with Mark Burnette 10/13/2022

Keeping Your Digital Identity Secure with Mark Burnette The Internet provides access to lots of good data, useful websites, social media options, and entertainment, but unfortunately, it also poses some risks to the security and privacy of individuals. In this episode, William Parks and Mark Burnette will share some practical tips for how you can keep yourself and your family safe and secure online. You will learn how to keep your kids safe on social media, how to avoid having to remember hundreds of online passwords (and how to avoid having them hacked), and how to protect your privacy while surfing the Internet. Episode Bonus: LBMC's free interactive resource, "Keeping Your Digital Identity Secure." /episode/index/show/cybersecuritysense/id/24663891

All About HITRUST 09/29/2022

All About HITRUST In this episode, Host William Parks interviews LBMC Shareholder Robyn Barton about HITRUST, what it is, the relationship between HITRUST and HIPAA, and the new HITRUST i1, r2, and bC Assessments. /episode/index/show/cybersecuritysense/id/24519297

AIG Cyber Mercenary Group Raises Concern 08/23/2022

AIG Cyber Mercenary Group Raises Concern In this episode, Host William Parks shares the latest on the new cyber mercenary group, Atlas Intelligence Group or AIG. /episode/index/show/cybersecuritysense/id/24131586

Ransomware Awareness 04/28/2022

Ransomware Awareness In this episode, Host William Parks shares ransomware awareness tips and cybersecurity best practices to keep your company safe from attacks. /episode/index/show/cybersecuritysense/id/22935791

Women in Cybersecurity 03/24/2022

Women in Cybersecurity To celebrate Women's History Month, LBMC interviews a panel of our women cybersecurity experts on their unique career journeys, what advice they would give to women looking to work in the field, and goals for the future. /episode/index/show/cybersecuritysense/id/22544483

Hiring Perspectives 12/08/2020

Hiring Perspectives In this episode, the LBMC team gives listeners insight into what to expect when interviewing for a role in information security. Learn what qualities hiring managers are looking for as you prepare for your job interview. /episode/index/show/cybersecuritysense/id/17118233

Information Security Careers (Part 2) 11/10/2020

Information Security Careers (Part 2) Part two of our Information Security Careers podcast series. Our panel of experts share their paths to their first infosec jobs and provide advice for pursuing a career in the field. /episode/index/show/cybersecuritysense/id/16759721

Information Security Careers 10/21/2020

Information Security Careers Learn how a few members of the LBMC Information Security team got started in their careers, and what you should consider when going into the field. /episode/index/show/cybersecuritysense/id/16483592

What is the Cybersecurity Maturity Model Certification (CMMC)? 10/21/2020

What is the Cybersecurity Maturity Model Certification (CMMC)? In this episode, Caryn Wooley joins us to discuss the Cybersecurity Maturity Model Certification (CMMC). Learn why the Department of Defense created the model to improve security for government contractors and subcontractors. Hear what you can do to start preparing for CMMC today. /episode/index/show/cybersecuritysense/id/16483544

HITRUST Guide 09/18/2020

HITRUST Guide Nancy Spizzo, Senior Manager at LBMC Information Security, joins Bill Dean to talk about HITRUST and the new LBMC Information Security HITRUST Guide being released later this fall. /episode/index/show/cybersecuritysense/id/16068281

PCI Pen Testing 07/10/2020

PCI Pen Testing In this episode Bill Dean and Stewart Fey discuss penetration testing for PCI compliance. Learn about the differences between penetration testing and vulnerability assessments, and what is needed to meet requirements for PCI compliance. /episode/index/show/cybersecuritysense/id/14619893

The Return to a "New Normal" 05/20/2020

The Return to a "New Normal" In this episode Nancy Spizzo joins Bill Dean to discuss re-entry to the workplace. They'll discuss what items you should consider from a security and technology perspective as organizations plan to reopen their facilities. /episode/index/show/cybersecuritysense/id/14502833

Cybersecurity Sense

TOPICS