Day Two Cloud 177: IT Security Is Broken; Here’s Ideas On How To Fix It
The Everything Feed - All Packet Pushers Pods - A podcast by Packet Pushers
Categories:
Today on the Day Two Cloud podcast we’ve got a security humdinger! Guest Mick Douglas is here to talk about a couple of issues that plague IT security. First, companies are in business to do business, but security controls often get in way. When push comes to shove, doing business always takes priority—and it should. Second, IT vendors deliver insecure products to customers, and expect customers to bolt on security controls after the fact. He compares this to buying a car, but the buyer has to add their own brakes, seat belts, air bags, and other safety features. That’s how we’re doing IT now. He argues for a significant shift in how we do cybersecurity and how organizations and security professionals should think about cybersecurity, compliance, and more. Mick is a Managing Partner at InfoSec Innovations. This episode is based on a Twitter thread Mick posted. We discuss: * The friction between running a business and security constraints on business operations * Why many security people are actively harming their organizations * Rethinking security practices and security education * Shifting focus to what attackers do once they get a foothold * Defending against attackers and regulators * The impact of cyber-insurance * More Sponsor: CDN77 Why should you care about CDN77? To retain those 17 out of 20 people who click away due to buffering. CDN77 is a global Content Delivery Network (CDN) optimized for video and backed by skilled 24-by-7 support. Go to cdn77.com/packetpushers to get your free, unlimited trial. Show Links: @bettersafetynet – Mick Douglas on Twitter “cyber security isn’t important… and that’s OK.” – Mick’s Twitter thread Why Data Breaches Don’t Hurt Stock Prices – Harvard Business Review FTC Takes Action Against Drizly and its CEO James Cory Rellas for Security Failures that Exposed Data of 2.5 Million Consumers – Federal Trade Commission Infosec Innovations Blog Mick Douglas on LinkedIn Transcript: [00:00:01.130] – Ethan Why should you care about CDN 77 to retain those 17 out of 20 people who click away due to buffering? CDN 77 is a global content delivery network optimized for video and backed by skilled 24/7 support. Visit CDN 77 dot slash packet pushers to get your free unlimited trial. [00:00:33.130] – Ethan Welcome to day two. Cloud. And today we got a security humdinger for you, Mick Douglas, managing partner at Infosec Innovations. Who says humdinger? I don’t even know why I said that, Ned, but it was quite a show, wasn’t it? [00:00:46.240] – Ned It really was. And we got into sort of, does cybersecurity matter? And why might it not matter as much as you think it does? [00:00:55.650] – Ethan So please enjoy this conversation with Mick Douglas, managing partner at Infosec Innovations. Mick Douglas. Welcome to day two, Cloud. And, Man, I don’t think you’ve been on the show before. In fact, I know that you have not. So why don’t you introduce yourself to the audience? [00:01:10.