In this episode, Sammy Migues and Andrew Kilbourne chat with Rich Jones, a cybersecurity expert with over 30 years of experience in risk, technology, business, and management, about the state of application security and some of the major shifts Jones has observed in organizations managing their AppSec risk.

In this episode, Sammy Migues and Andrew Kilbourne chat with Jeff Cohen, an accomplished software development leader, about using metrics to help leadership teams make decisions about risk management and budgets.

In this episode, Sammy Migues and Andrew Kilbourne chat with distinguished cybersecurity expert and visionary leader, Dr. Lisa Bradley about her perspectives, insights and commentary on the current and future state of cybersecurity.

How can CIOs and CTOs confidently navigate the changing risk landscape? How does the adoption of the cloud and the emergence of AI and quantum computing impact security decisions? We discuss this, and more in episode 5.

Recent history has seen large changes in client expectations, executive views of investment required, and how security programs have matured. This is driven in part by increased client awareness and by evolving attacker methods. Zero trust methods are coming into play in how organizations are responding to some risks, as are “behavioral biometrics” that set a baseline for better authentication. Managing security, including in DevSecOps, means also managing friction, which can actually help speed up some processes. Going forward, organizations need to consider innovative approaches—such as password-less access—and managing legacy environments. What are the big rocks that need to be rolled over to make real progress? Progressing from a BISO role to a CISO to a CSO has introduced evolving challenges in protecting what exists, but also enabling the future in a safe way.We discuss how the worlds are converging and what it means for an organization.

In episode 1, we discuss with Jim Routh (a seasoned cybersecurity professional) how we got to the current state of DevOps and the cloud-first view today, along with how work-from-home functioned as an accelerant.