Join us on our 8th episode of season 2, as Julien and Troy from GoSecure explore the transformation of cybersecurity threats over the years, from traditional phishing attacks to the emergence of sophisticated ransomware campaigns. Gain insights into the role of artificial intelligence and IoT in enhancing security measures, while also introducing new challenges and vulnerabilities.

Looking ahead, our guests discuss the potential impact of deepfakes and quantum computing on cybersecurity, shedding light on the future challenges that organizations may face in safeguarding their digital assets.

Throughout the conversation, Julien and Troy emphasize the importance of continuous learning and staying proactive in the field of cybersecurity. They share valuable advice for aspiring professionals, highlighting the significance of community engagement and understanding the underlying technologies driving the industry forward.

Whether you're an IT leader, cybersecurity enthusiast, or simply curious about the evolving threats in the digital realm, this episode offers a wealth of knowledge and insights to help you navigate the complex world of cybersecurity.

About Julien Turcot:

Julien Turcot, a seasoned professional with over two decades of experience in the dynamic realm of information security, stands as a formidable figure in the industry. Armed with a wealth of expertise in large-scale information security, cyber resilience programs, and risk management, he has been a guiding force for organizations of all sizes in both public and private sectors. Recognized as a preeminent authority, Julien is not just a practitioner; he is a visionary who effortlessly translates intricate technological challenges into tangible, commercially viable solutions. His renowned speaking engagements at international cybersecurity conferences underscore his commitment to knowledge sharing. Driven by a relentless pursuit of results, Mr. Turcot has successfully implemented cutting-edge IT solutions across diverse industry verticals in Canada, significantly enhancing operational efficiency and reducing total cost of ownership for his clients. With a natural flair for leadership and a positive attitude, Julien thrives under pressure, firmly believing that every problem has a solution.

LinkedIn: https://www.linkedin.com/in/julienturcot/

Cybersecurity Executive at GoSecure - Help clients thrive through the darkness of Hackers tyranny

About Troy Vennon:

Troy Vennon, Certified | CISO , GoSecure Security Product Manager, Information Security Expert, Threat Intelligence Tradecraft and Mitre Att&ck Evangelist. Former United States Marine. Real Estate Investor. Firearms Instructor. Wrestling Coach. Ohio State Football and Wrestling Fanatic.

Troy Vennon’s career spans 25 years and focused entirely on Information Security roles across every security domain, beginning in 1998 with the United States Marine Corps as SNCOIC of the Marine Corps Network Operations & Security Center’s (MCNOSC) Marine Computer Emergency Response Team (MarCERT), until he joined the private sector in 2006.

As a Certified Chief Information Security Officer, Troy focuses on coaching CISO’s and security teams in their efforts in building security programs that can rapidly identify effective control coverage strategies for risk identification, risk treatment, and security investment.

LinkedIn: https://www.linkedin.com/in/troyvennon/

GoSecure Website: https://www.gosecure.net/

About Luigi:

25 Years of IT Experience: Luigi boasts extensive experience in cyber security, working with Fortune 100 companies.

Assurance IT's Edge: At Assurance IT, we manage 1PB+ of data in our certified data...

On the seventh episode of 10 Questions to Cyber Resilience, Assurance IT welcomes Director of Cybersecurity, Paul Baker, from Purilock, to explore the vital theme of safeguarding AI in the enterprise. With the escalating popularity of AI, especially tools like ChatGPT, join us as we uncover insights from expert Paul Baker on how enterprises are proactively securing themselves against potential risks posed by AI and ensuring a robust and safe integration of these technologies.

In this episode, Paul Baker from Purilock and co-founder of Assurance IT, Luigi Tiano, discuss: 

1. Potential Risks of AI, Specifically ChatGPT
2. Ethical Considerations in Implementing AI
3. Measures to Ensure Responsible AI Use
4. Ensuring Accuracy and Validity of AI Responses
5. Overview of Purilock's Solution - Prompt Guard
6. Best Practices for Secure AI Utilization
7. The importance of education and awareness in AI usage

Resources: 

Transcript: 

Watch the episode: 

Paul Baker's LinkedIn: 

Purilock's website: 

Luigi Tiano’s LinkedIn: 

Assurance IT Website: 

About Paul Baker: 

Customer-facing manager who collaborates with all levels of stakeholders, from developers and technical staff through to C-Suite executives. Builds solid relationships and quickly becomes the reliable "go-to" person internally and externally. Analytical thinker with a creative edge, who deftly identifies client needs, and assesses both financial and technical viability. Passionate about helping clients discover new possibilities, maximizing investment in technology, and driving revenue for their company. Translates customer requests into detailed requirements, then follows through to delivery and beyond.

About 10 Questions to Cyber Resilience: 

Discover the strategies IT leaders employ to fortify their cybersecurity practices in every enlightening episode. Uncover the answers to 10 questions, each bringing you a step closer to achieving cyber resilience. Stay ahead in the ever-evolving landscape of cybersecurity by subscribing and staying up-to-date with the latest insights on hot topics in the field.

About Assurance IT: 

Assurance IT (www.assuranceit.ca) specializes in data protection and data privacy for the mid-market in Canada, since 2011. The Montreal-based company’s unique approach to helping customers become cyber resilient is called the PPR Methodology which stands for Prepare, Protect and Recover. Based on industry best practices, the PPR Methodology is an easier way to achieve cyber security and compliance objectives.

In this episode, Luigi Tiano interviews Christopher Reily from ExaGrid, focusing on topics related to on-premises storage versus the cloud. Christopher introduces himself as the Director of Solutions Engineering for the eastern half of the Americas at ExaGrid.

The conversation covers the challenges, benefits, and strategies around data storage, emphasizing the importance of local backup storage even as more businesses adopt a cloud-first model. They discuss the risks of relying solely on cloud-based storage for backup, touching on cost unpredictability and performance issues during data restoration.

Resources: 

Watch the episode: https://youtu.be/uvyskcvyllE

Chris' LinkedIn: https://www.linkedin.com/in/chrisreily/

ExaGrid's website: https://www.exagrid.com/

Luigi Tiano’s LinkedIn: https://www.linkedin.com/in/luigitiano/

Assurance IT Website: http://www.assuranceit.ca/

About Christopher Reily: 

25+ year industry professional with a history of holding influential positions in the field of Information Technology. Prior roles include: Principal Consultant, VP Solutions Architecture, University Senior Lecturer, Chief Technology Officer and Managing Director.

About 10 Questions to Cyber Resilience: 

Twice per month, learn about how IT leaders are strengthening their cyber security practices. Every episode comprises of 10 questions that get you one step closer to cyber resilience. Subscribe to stay up-to-date with hot topics in cyber security. 

About Assurance IT: 

Assurance IT (www.assuranceit.ca) specializes in data protection and data privacy for the mid-market in Canada, since 2011. The Montreal-based company’s unique approach to helping customers become cyber resilient is called the PPR Methodology which stands for Prepare, Protect and Recover. Based on industry best practices, the PPR Methodology is an easier way to achieve cyber security and compliance objectives.

In this podcast episode, Luigi Tiano interviews Tom Molden from Tanium to delve into the challenges of manufacturing cybersecurity. The conversation explores the convergence of IT and OT, emphasizing the critical need for collaboration between the two domains. Tom emphasizes three key points for manufacturers to enhance their cybersecurity:

1. Cultural Collaboration: Build a bridge between the IT and manufacturing engineering teams. Establish a collaborative culture that recognizes and utilizes the distinct skill sets present in each domain.
2. Visibility: Gain comprehensive visibility into all technology assets, from lower-tier OT devices to more IT-like devices. Recognize the importance of modern technology tools to track, monitor, and assess the state of assets in real time.
3. Hygiene Culture: Introduce a hygiene culture in manufacturing plants, focusing on practices like patching, maintaining cleanliness, and adhering to security best practices. This cultural shift toward cybersecurity resilience is essential for protecting manufacturing environments.

The conversation also touches on the historical perspective of manufacturing security, the challenges posed by legacy systems, and the evolving landscape of cybersecurity in an era of increased connectivity.

Throughout the discussion, Tom emphasizes the potential for operational efficiency gains through the convergence of IT and OT, and he briefly touches on the role of AI in manufacturing, highlighting its potential for preventative maintenance.

Resources: 

Watch the episode: https://youtu.be/t07G8fOwUZ8

Tom Molden’s LinkedIn: https://www.linkedin.com/in/tmolden/

Tanium website: https://www.tanium.com/

Luigi Tiano’s LinkedIn: https://www.linkedin.com/in/luigitiano/

Assurance IT Website: http://www.assuranceit.ca/

About Tom Molden: 

"I am a versatile technology executive with an international background and a successful leadership track record in IT, Strategy, Finance, and Operations. I have a reputation as a change agent, and a unique combination of business and technology expertise.

I have led growth and transformation strategies, as well as multiple M&A initiatives, in high-tech, semiconductor and automotive. I have built and led high performing teams in large global enterprises as well as in rapidly growing mid-sized companies.

I have an MBA in finance and MIS from the University of Texas, a BA in International Studies from the University of Washington and an Advanced Computer Security Certificate from Stanford University. I also speak French, German and English.

Specialties:

• Strategic Planning - FP&A, M&A deal side, JV’s, short and long-range plans

• IT Strategy and Governance - Portfolio & PMO, budgets, post-merger integration, carve-outs, cybersecurity

• Business/Digital Transformation - Roadmap development, program structuring, organizational design

• Innovation - Data & analytics, ERP, custom development"

About 10 Questions to Cyber Resilience: 

Twice per month, learn about how IT leaders are strengthening their cyber security practices. Every episode comprises of 10 questions that get you one step closer to cyber resilience. Subscribe to stay up-to-date with hot topics in cyber security. 

About Assurance IT: 

Assurance IT (www.assuranceit.ca) specializing in data protection and data privacy for the mid-market in Canada, since 2011. The Montreal-based company’s unique approach to helping customers become cyber resilient is called the PPR Methodology...

Dive into the world of manufacturing cybersecurity with an insightful podcast episode featuring Ashley McGlone, a seasoned technology strategist from Tanium. Join your host, Luigi Tiano, as he engages in a riveting conversation with Ashley, unraveling the complexities of Industry 4.0, IoT, and the critical role of cybersecurity in the manufacturing landscape.

In this episode, Ashley shares his wealth of expertise, drawing on decades of experience in the tech industry, including roles at Microsoft, Toyota, and his current tenure at Tanium. The duo delves into the challenges posed by the convergence of IT and OT, exploring the unique cybersecurity concerns faced by manufacturing companies in an era of increased connectivity and automation.

Discover the significance of standards like ISA 62443 and the Purdue model in structuring cybersecurity practices for manufacturing environments. Luigi and Ashley explore the pressing need for visibility and control in OT environments, shedding light on the evolving trends and the potential risks associated with cloud integration.

As the conversation unfolds, Ashley provides valuable insights into the diverse mix of devices in manufacturing and how strategic platform partnerships can be the key to effective cybersecurity. The duo navigates the landscape of resources available for companies venturing into cybersecurity enhancements, with a special spotlight on the SANS Institute's industrial controls training.

Resources: 

Watch the episode: https://youtu.be/1u6Ot5s-sXI

Ashley's LinkedIn: https://www.linkedin.com/in/ashleymcglone/

Tanium's website: https://www.tanium.com/

Luigi Tiano’s LinkedIn: https://www.linkedin.com/in/luigitiano/

Assurance IT Website: http://www.assuranceit.ca/

About Ashley McGlone: 

Ashley McGlone has spent his life in IT. Between recordings of Tanium Tech Talks he enjoys advocating for customers, getting in the weeds of tech, and savoring a particular retro variety of red licorice. In his role as Technology Strategist he researches and creates vertical-specific guidance for customers to maximize their Tanium experience. He also is a megaphone for customer feedback to the Tanium product teams. As a frequent conference speaker he's always looking for opportunities to share the "Wow Tanium" experience with new audiences. Message him just to say hi or to talk Tanium and tech.

About 10 Questions to Cyber Resilience: 

Twice per month, learn about how IT leaders are strengthening their cyber security practices. Every episode comprises of 10 questions that get you one step closer to cyber resilience. Subscribe to stay up-to-date with hot topics in cyber security. 

About Assurance IT: 

Assurance IT (www.assuranceit.ca) specializes in data protection and data privacy for the mid-market in Canada, since 2011. The Montreal-based company’s unique approach to helping customers become cyber resilient is called the PPR Methodology which stands for Prepare, Protect and Recover. Based on industry best practices, the PPR Methodology is an easier way to achieve cyber security and compliance objectives.

Zero trust is a hot topic, so we invited the Director of Cybersecurity from Plurilock, Paul Baker, to discuss the subject in detail.

In this episode, Paul Baker from Plurilock and co-founder of Assurance IT, Luigi Tiano, discuss: 

1. What is zero trust? 
2. How do you never assume someone is a good actor?
3. How do you get an enterprise to prioritize zero trust?
4. Is it easy to calculate the cost to protect a network?
5. How do you get people to buy into cybersecurity?
6. What role does zero-trust play in identity access management?
7. What is continuous authentication? Compared to MFA?
8. Is continuous authentication safe?
9. How does a team measure the effectiveness of implementing zero-trust initiatives?
10. Has zero trust helped you get cyber insurance?
11. What are the long-term benefits of zero-trust?

Resources: 

Watch the episode: https://youtu.be/D5oL9B1-0qw

Paul Baker’s LinkedIn: https://www.linkedin.com/in/paul-baker-uk/

Plurilock website: https://plurilock.com/

Luigi Tiano’s LinkedIn: https://www.linkedin.com/in/luigitiano/

Assurance IT Website: http://www.assuranceit.ca/

About Paul Baker: 

A customer-facing manager who collaborates with all levels of stakeholders, from developers and technical staff through to C-Suite executives. Builds solid relationships and quickly becomes the reliable "go-to" person internally and externally. Analytical thinker with a creative edge who deftly identifies client needs and assesses financial and technical viability. Passionate about helping clients discover new possibilities, maximizing investment in technology, and driving revenue for their company. Translates customer requests into detailed requirements, then follows through to delivery and beyond.

About 10 Questions to Cyber Resilience: 

Learn about how IT leaders are strengthening their cyber security practices twice a month. Every episode comprises of 10 questions that get you one step closer to cyber resilience. Subscribe to stay up-to-date with hot topics in cyber security. 

About Assurance IT: 

Assurance IT (www.assuranceit.ca) specializes in data protection and data privacy for the mid-market in Canada, since 2011. The Montreal-based company’s unique approach to helping customers become cyber resilient is called the PPR Methodology which stands for Prepare, Protect and Recover. Based on industry best practices, the PPR Methodology is an easier way to achieve cyber security and compliance objectives.

Assurance IT invited Identify and Deception Specialist, David Lindstrom, from SentinelOne, to chat about how unsophisticated attacks breached high-profile companies like Uber, Cisco, and LastPass.

In this episode, David Lindstrom and co-founder of Assurance IT, Luigi Tiano, answer the following questions: 

1. Do you need someone with high credentials to hack a system?
2. Is Active Directory good at protecting the enterprise?
3. Is it possible to understand the full scope of a data breach?
4. What is a honey pot?
5. Can you buy credentials on the dark web?
6. How do you prevent an employee from being a target of social phishing?
7. Is there a golden rule for creating a safe password?
8. How do you avoid being the softest target for dark web credentials?
9. What does it mean to secure your identity in an enterprise?

Resources: 

Watch the episode: https://youtu.be/9zs2MzInI50

David Lindstrom's LinkedIn: https://www.linkedin.com/in/davidlindstrom/

SentinelOne's website: https://www.sentinelone.com/

Luigi Tiano’s LinkedIn: https://www.linkedin.com/in/luigitiano/

Assurance IT Website: http://www.assuranceit.ca/

About David Lindstrom: 

Passionate cybersecurity sales professional focused on successful security and business outcomes. I’ve had the pleasure of working on behalf of enterprise and educational organizations across industries and have excelled in the role of start-up evangelist, team leader, and practice expert for established companies.

About 10 Questions to Cyber Resilience: 

Twice per month, learn about how IT leaders are strengthening their cyber security practices. Every episode comprises of 10 questions that get you one step closer to cyber resilience. Subscribe to stay up-to-date with hot topics in cyber security. 

About Assurance IT: 

Assurance IT (www.assuranceit.ca) specializes in data protection and data privacy for the mid-market in Canada, since 2011. The Montreal-based company’s unique approach to helping customers become cyber resilient is called the PPR Methodology which stands for Prepare, Protect and Recover. Based on industry best practices, the PPR Methodology is an easier way to achieve cyber security and compliance objectives.

Assurance IT invited our favorite ethical hacker, Laurent Desaulniers. In this episode, Laurent Desaulniers, Security Cloud Manager, and co-founder of Assurance IT, Luigi Tiano, discuss:

1. What does ethical hacking really mean?

2. Should pentests be done multiple times per year?

3. Who was Mafia Boy?

4. How did he give ethical hacking a bad name?

5. What will the lack of IT talent result in?

6. The truth behind the ethical hacking community

7. What are some ways to get started in ethical hacking?

8. How do you identify great hacking talent?

9. The #1 question to ask ethical hackers in interviews.

10. How much money you can make as an ethical hacker.

BONUS TOPICS

What schools should really be teaching about tech?

Resources for learning cyber security.

Resources:

Laurent Desaulniers’s LinkedIn: https://www.linkedin.com/in/laurentdesaulniers/

Luigi Tiano’s LinkedIn: https://www.linkedin.com/in/luigitiano/

Assurance IT Website: http://www.assuranceit.ca/

About Laurent Desaulniers:

Laurent Desaulniers combines a strong technical experience with creative thinking to achieve elegant solutions with a passion for security, especially forensic, web and penetration testing.

Laurent Desaulniers is knowledgeable in the following technologies :

- Operating systems: Linux (Ubuntu/Debian) , Windows (2008, 2003 Server, Windows 2000 Server), Cisco IOS

- Programming languages: PHP, Javascript, Python, Java (J2EE, EJB3, Servlet, Swing), JSP, Struts

- Framework: PCI-DSS, ISO-27001, ISO27034, ISO17799, ISO13335, ITIL, COBIT.

- Methodology: OSSTM, OWASP, OCTAVE

- Security: IDS systems, Honeypots, Penetration Testing

Specialties: Forensic, Web application intrusion, Vulnerability Analysis

About 10 Questions to Cyber Resilience:

Twice per month, learn about how IT leaders are strengthening their cyber security practices. Every episode comprises of 10 questions that get you one step closer to cyber resilience. Subscribe to stay up-to-date with hot topics in cyber security.

About Assurance IT:

Assurance IT (www.assuranceit.ca) specializing in data protection and data privacy for the mid-market in Canada, since 2011. The Montreal-based company’s unique approach to helping customers become cyber resilient is called the PPR Methodology which stands for Prepare, Protect and Recover. Based on industry best practices, the PPR Methodology is an easier way to achieve cyber security and compliance objectives.