App Store

Google Play

Details page - Device banner - 894x1036

Step into an infinite world of stories

Listen and read

Mike Johnson

David Spark

and Andy Ellis

Discussions, tips, and debates from security practitioners and vendors on how to work better together to improve security for themselves and everyone else.

CISO Series Podcast

All links and images for this episode can be found on CISO Series.
 
This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Mike Johnson, CISO, Rivian. Joining us is our sponsored guest, Itzik Alvas, co-founder and CEO, Entro.
 
In this episode:
 
 • What to expect when you’re offboarding
 • The threats are coming from inside the organization
 • The risk of stale identities
 • Working backward to risk
 
Thanks to our podcast sponsor, Entro!
 

 
Reclaim control of your non-human identities with Entro Security! Our platform securely manages non-human identities and secrets throughout their lifecycle. Detect and prevent unusual activity before it becomes a threat. Trust Entro to safeguard your non-human identities in today’s complex digital ecosystem.

Can’t Our Employees Just Go Back to Stealing Pens?

All links and images for this episode can be found on CISO Series.
 
This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Mike Johnson, CISO, Rivian. Joining us is our sponsored guest Daniel Daraban, senior director of product management, Bitdefender.
 
In this episode:
 
 • Practice makes perfect
 • Shaming doesn’t help anyone
 • Cybersecurity is a flat circle
 • Building the bridge
 
Thanks to our podcast sponsor, Bitdefender!
 

 
Enterprise-grade cybersecurity without complexity. Backed by extensive research from hundreds of experts in Bitdefender Labs and consistently top-rated in independent tests, Bitdefender GravityZone platform provides multi-layered prevention, protection, detection, and response capabilities, including managed security services. Learn more at Bitdefender.com.

Why Bother Helping Users When We Can Complain About Them?

All links and images for this episode can be found on CISO Series.
 
This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Yabing Wang, VP and CISO, Justworks.
 
In this episode:
 
 • Building a path to action
 • Cracking the EOL conundrum
 • The burning platform question
 • Uncertainty is our only constant
 
Thanks to our podcast sponsor, Entro!
 

 
Reclaim control of your non-human identities with Entro Security! Our platform securely manages non-human identities and secrets throughout their lifecycle. Detect and prevent unusual activity before it becomes a threat. Trust Entro to safeguard your non-human identities in today’s complex digital ecosystem.

Ewww! How Long Has This Router Been in the Fridge?

All links and images for this episode can be found on CISO Series.
 
This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Steve Zalewski. Joining us is our guest, Brett Perry, CISO, Dot Foods.
 
In this episode:
 
 • A new MDR policy
 • Staying on top of the technical debt cycle
 • Beating retention struggles
 • In the gully of SOAR
 
Thanks to our podcast sponsor, Tines!
 

 
Build, run, and monitor your most important workflows with Tines. Tines' smart, secure workflow platform empowers your whole team regardless of their coding abilities, environment complexities, or tech stack. From low code, no code to natural language, anyone can get up and running in minutes – not days or weeks. Learn more at Tines.com.

I Support Open Source as Long as I Don't Have to Invest in It

All links and images for this episode can be found on CISO Series.
 
This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Mike Johnson, CISO, Rivian. Joining us is George Finney, CISO, The University of Texas System and author of Project Zero Trust.
 
In this episode:
 
 • Aligning on privacy
 • Bringing Zero Trust to OT
 • Restores and resilience
 • Focus on what you can control
 
Thanks to our podcast sponsor, Vanta!
 

 
Say goodbye to spreadsheets and screenshots. Vanta automates evidence collection needed for audits with over 350 integrations—giving you continuous visibility into your compliance status. And with cross-mapped controls across over 35 frameworks, you’ll streamline compliance— and never duplicate your efforts.

4th Party Data Breach? We Can Barely Catch the 1st Party Ones!

All links and images for this episode can be found on CISO Series.
 

 
This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Rinki Sethi, vp and CISO, BILL. Joining us is our sponsored guest, Lamont Orange, CISO, Cyera.
 
 
 
This episode was recorded in front of a live audience at Cyera’s first DataSec conference (November 2024) in Dallas. Thanks to Adam Holland, CISO, Wendy's, Farray Rahman of Vibrant Emotional Health and 988 Lifeline, and Biji John of USAA for our questions in the episode.
 

 
In this episode:
 
 • Shifting from traditional recovery
 • Do you know where your data is?
 • The science of tradeoffs
 • How do you measure security culture?
 
Thanks to our podcast sponsor, Cyera!
 

 
 Cyera’s data security platform discovers your data attack surface, protects sensitive data, governs data access, monitors critical data events, and quickly responds to data risks. Cyera’s agentless design allows us to deploy within minutes across any environment and provide a 95% precision rate through our AI-powered classification engine. Learn more at Cyera.io

As Long as We Keep Moving the Goalposts, We Have a Great Security Culture (LIVE in Dallas, TX)

All links and images for this episode can be found on CISO Series.
 
This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Deneen DeFiore, Vice President & Chief Information Security Officer, United Airlines.
 
In this episode:
 
 • Minding the gap
 • Copilot overreliance
 • Opening up the field
 • Navigating the SMB cyber insurance conundrum
 
Thanks to our podcast sponsor, Vanta!
 

 
Say goodbye to spreadsheets and screenshots 
 
Vanta automates evidence collection needed for audits with over 350 integrations—giving you continuous visibility into your compliance status. And with cross-mapped controls across over 35 frameworks, you’ll streamline compliance— and never duplicate your efforts.

Our Developers’ New Motto is “LLM Take the Wheel”

All links and images for this episode can be found on CISO Series.
 
This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Steve Zalewski. Joining us is our sponsored guest, Matt Muller, field CISO, Tines.
 
In this episode:
 
 • Seeking the early AI adopters
 • Taking the SOC back to basics
 • Changing our automation expectations
 • Communicate risk
 
Thanks to our podcast sponsor, Tines!
 

 
Build, run, and monitor your most important workflows with Tines. Tines' smart, secure workflow platform empowers your whole team regardless of their coding abilities, environment complexities, or tech stack. From low code, no code to natural language, anyone can get up and running in minutes – not days or weeks. Learn more at Tines.com.

Zero Trust Purple Team DevSecOps Mesh: A CASB Journey Through the Identity Fabric

All links and images for this episode can be found on CISO Series.
 
This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is our sponsored guest, Danny Jenkins, CEO, ThreatLocker.
 
In this episode:
 
 • A zero-day upgrade
 • Don’t let a pentest go bad
 • Improving user training
 • Cybersecurity is made for people
 
Thanks to our podcast sponsor, ThreatLocker!
 
 
 
ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the attack surface and mitigate potential cyber vulnerabilities. To learn more and start your free trial, visit ThreatLocker.com.

Fix it? Let’s Just Get Rid of It.

All links and images for this episode can be found on CISO Series.
 
This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Andy Ellis (@csoandy), partner, YL Ventures. Joining us is Shaun Marion, vp, CSO, Xcel Energy.
 
In this episode:
 
 • Setting policy
 • The hard thing about soft skills
 • Never let a good crisis go to waste
 • Avoiding the tarpit
 
 Thanks to our podcast sponsor, Noma Security!
 

 
Secure your entire Data & AI Lifecycle—from development to production and classic data engineering to GenAI. Noma’s full-lifecycle platform delivers seamless protection against risks like misconfigured data pipelines, malicious models, and adversarial AI attacks, empowering AppSec teams with complete visibility, security, and compliance—without disrupting data and AI teams’ workflows.

Every Failed Startup Starts as a Dream for a Single Pane of Glass

I’m proud and excited to announce the launch of the CISO/Security Vendor Relationship Podcast based on the series of articles and videos I produced that examine the relationship between security buyers and sellers. That series was heavily inspired by the writings, posts and insane engagement that Mike Johnson, CISO of Lyft, continues to drive on LinkedIn. And what’s even more awesome, Mike agreed to be my co-host! For our first episode, Mike and I invite Dwayne Melançon (@ThatDwayne), CTO, Innovyze. In this episode we have:
 
 • 10-second security tips.
 Tidal claims “breach” when they’re accused of faking streaming numbers Google Chrome switches its “secured” website alert to one of “not secured” Juro introduces a privacy policy that anyone can read. • How security vendors helped me this week
 • How to improve your pitch
 • And ASK a CISO
 
The written content for this podcast was first published on Security Boulevard.

A Privacy Policy Written in English (Introducing the CISO/Security Vendor Relationship Podcast with Mike Johnson and David Spark)

Listen and read

Other podcasts you might like ...