Info

Bill Murphy's RedZone Podcast | World Class IT Security

World Class IT Security – Strategic and Tactical Thought Leadership, Advanced Topics for Top IT Leaders: Innovation, Ideas, Creativity, Neuroscience of Optimal Performance – Fearlessness Living Principles.
RSS Feed Subscribe in Apple Podcasts
Bill Murphy's RedZone Podcast | World Class IT Security
2017
August
July
June
February
January


2016
December
November
October
September
August
July
June
May
April
March
February
January


2015
December
November
October
September
August
July
June
May
April
March
February
January


Categories

All Episodes
Archives
Categories
Now displaying: 2016
Dec 26, 2016

My guest this week is Alex Tapscott. Alex is the co-author of the critically acclaimed non-fiction bestseller Blockchain Revolution: How the Technology Behind Bitcoin is Changing Money, Business, and the World. A Definitive Guide for Business IT Leaders, this book is “on how to survive and thrive in this next wave of technology-driven disruption. Likely to become one of the iconic books of our time.” (Clay Christensen, author of The Innovator’s Dilemma)

Major Take-Aways From This Episode:

  1. Reclaim Control of your Privacy and Identity
  2. No, Privacy is Not Dead
  3. The benefits of ultimate User centric identity
  4. Revolutionizing Business, Institutions, and the Economy
  5. Learn about Types of Blockchains
  6. Why Blockchain is a trust protocol
  7. How Blockchain could disrupt the sharing economy' with Uber and Airbnb for example
  8. The massive positive social impact

About Alex

Alex Tapscott is a globally recognized thought-leader, speaker and writer focused on the impact of emerging technologies on business, society and government. Alex is the co-author (with Don Tapscott) of the critically acclaimed #1 Globe and Mail Non-fiction best-seller, BLOCKCHAIN REVOLUTION: HOW THE TECHNOLOGY BEHIND BITCOIN IS CHANGING MONEY BUSINESS AND THE WORLD. His writing has been featured in TIME, Fortune, Forbes, the Harvard Business Review, the Toronto Star, the Globe and Mail and dozens of other publications.
Alex is the founder and CEO of Northwest Passage Ventures, a social innovator. Alex currently sits on Advisory Board to Elections Canada, the independent, non-partisan agency responsible for conducting federal elections and referendums. He is also a founding Member of the World Economic Forum's Global Futures Council on Blockchain. Alex is a graduate of Amherst College (cum laude) and is a CFA Charterholder. He lives in Toronto.

Read full transcript here.

How to get in touch with Alex Tapscott:

Website:

Northwest Passage Ventures 

Books:

Blockchain Revolution: How the Technology Behind Bitcoin is Changing Money Business and the World

Publications:

The Internet of Things Needs a Ledger of Things, Forbes Magazine

Contributing Articles, Forbes Magazine

Other Resources:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Dec 19, 2016

My guest for the most recent episode was an AI expert Roman Yampolskiy. While listening to our conversation, you will fine-tune your understanding of AI from a safety perspective. Those of you who have decision- making authority in the IT Security world will appreciate Roman's viewpoint on AI Safety.

Major Take-Aways From This Episode:

1) Wire heading or Mental Illness with Machines - Miss aligned objectives/incentives for example what happens when a sales rep is told to sell more new customers, but ignores profits. Now you have more customers but less profit. Or you tell your reps to sell more products and possibly forsake the long term relationship value of the customer. There are all sorts of misaligned incentives and Roman makes this point with AIs.
2) I can even draw a parallel with coaching my girls' teams where I have incented them to combine off each other because I want this type of behavior. This can also go against you because you end up becoming really good at passing but not scoring goals to win.
3) AI Decision making: The need for AIs to be able to explain themselves and how they arrived at their decisions.
4) The IT Security implications of AI Chat bots and Social Engineering attacks.
5) The real danger of Human Level AGI Artificial General intelligence.
6) How will we communicate with systems that are smarter than us? We already have a hard time communicating with dogs, for example, how will this work out with AIs and humans?
7) Why you can't wait to develop AI safety mechanisms until there is a problem.....We should remember that seat belts were a good idea the day the first car was driven down the road, but weren't mandated till 60 years after...
8) The difference between AI safety and Cybersecurity.

About Roman Yampolskiy

Dr. Roman V. Yampolskiy is a Tenured Associate Professor in the department of Computer Engineering and Computer Science at the Speed School of Engineering, University of Louisville. He is the founding and current director of the Cyber Security Lab and an author of many books including Artificial Superintelligence: a Futuristic Approach. During his tenure at UofL, Dr. Yampolskiy has been recognized as: Distinguished Teaching Professor, Professor of the Year, Faculty Favorite, Top 4 Faculty, Leader in Engineering Education, Top 10 of Online College Professor of the Year, with many other distinctions too numerous to mention.
Dr. Yampolskiy's main areas of interest are AI Safety, Artificial Intelligence, Behavioral Biometrics, Cybersecurity, Digital Forensics, Games, Genetic Algorithms, and Pattern Recognition. Dr. Yampolskiy is an author of over 100 publications including multiple journal articles and books. His research has been cited by 1000+ scientists and profiled in popular magazines both American and foreign (New Scientist, Poker Magazine, Science World Magazine), dozens of websites (BBC, MSNBC, Yahoo! News), Dr. Yampolskiy's research has been featured 250+ times in numerous media reports in 22 languages.

Read full transcript here.

How to get in touch with Roman Yampolskiy:

Resources:

Books/ Publications:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Nov 25, 2016

While listening to my podcast interview with Rich Sheridan, you will get an innovative perspective on people, culture and design from one of the top organizational leaders and business builders in the US today.

I am fascinated with people who have the enormous courage, heart, vulnerability it takes to actually do things differently (in Rich’s case, radically different). Whether you are a business IT leader employed by a company, or an entrepreneur. Rich and I cover equally cover the two, because he has had massive success with both.

This discussion is a master- class. I felt like he was speaking to me personally on how to think about my own company and my own teams. I trust his message will be equally ring true for you.

Subscribe to my Exponential Innovation Insider Newsletter.

Make sure to check out the show notes page at redzonetech.net/podcast where you can connect with him via twitter.

About Rich Sheridan

Rich Sheridan got started as a kid programmer in 1971. He is the author of Joy, Inc. He is a Michigan graduate BS Computer Science + MS Computer Engineering. He has never shied from challenges, opportunities nor the limelight. While his focus has always been around technology, his passion is actually process, teamwork and organizational design, with one inordinately popular goal: the Business Value of Joy! He is an avid reader and historian, and his software design and development team at Menlo Innovations didn't invent a new culture, but copied an old one ... Edison's Menlo Park New Jersey lab. Henry Ford's recreation of the Menlo Park Lab in Greenfield Village was a childhood inspiration!

Some call it agile, some call it lean … Rich and his team call it joyful. And it produces results, business and otherwise. Six Inc. magazine revenue growth awards, invites to the White House, speaking engagements around the nation, numerous articles and culture awards and so much interest they are doing a tour a day of the Menlo Software Factory™.

Major Take-Aways From This Episode:

  1. How to handle the chaos of software development with process and culture,
  2. The process of installing a culture of delight into your teams,
  3. His version of instilling accountability and service,
  4. The concept of team flow,
  5. One simple phrase to disarm every naysayer ever again.

Read full transcript here.

How to get in touch with Rich Sheridan

Website:

Menlo Innovations

Blog:

Menlo Blog

Book:

Joy Inc.: How to Build a Workplace People Love

Video:

Richard Sheridan's Recommendations:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Nov 18, 2016

I had a wonderful discussion with Steven Kotler. I don’t believe that you can talk about Exponential Tech, Leadership, and Enterprise IT Security without discussing Human Potential.

During this episode you will be a fly on the wall in exploring the Frontiers of Human Potential with one of the top leaders in this field.

By reading Steven’s books and engaging with the body of research around them, I have greatly expanded my capacity as an individual, father, businessman, and leader.

Subscribe to my Exponential Innovation Insider Newsletter.

About Steven Kotler

Steven is a New York Times bestselling author, an award-winning journalist and the cofounder/director of research for the Flow Genome Project. He is one of the world’s leading experts on ultimate human performance.

His latest work, Bold was called a “visionary roadmap for change,” by president Bill Clinton and spent many weeks atop both the New York Times and Wall Street Journal bestseller lists.

His previous book, The Rise of Superman, was one of the most talked about books in 2013 and the first book in history to land on national bestseller lists in the sports, science, and business categories simultaneously. In it, Steven decodes the science of flow, an optimal state of consciousness where we feel our best and perform our best.

Just as Rise explores the upper limits of individual possibility, his book, Abundance, explores the upper limits of societal possibility, breaking down four emerging forces that give humanity the potential to significantly raise global standards of living over the next 20 to 30 years. Abundance spent 10 weeks atop the New York Times bestseller list and appeared on four prestigious “Best Book of the Year” lists.

His writings have been translated into over 40 languages and appeared in over 80 publications, including The New York Times, Atlantic Monthly, Forbes, Wired and TIME.

Alongside his wife, author Joy Nicholson, Steven is the cofounder of Rancho de Chihuahua, a dog sanctuary in the mountains of Northern New Mexico.

Make sure to check out resources on redzonetech.net/podcast to Steven Kotler’s programs at Flow Genome Project, which I am currently taking, and the three books I have mentioned. You can also find the link to his twitter profile on this page.

Major Take-Aways From This Episode:

  • Science and neurobiology.
  • How to increase flow in your life.
  • Leading in times of exponential change.
  • Reducing the signal of noise to the brain.
  • Reducing the inner critic.
  • Developing lateral thinking,
  • Staying focused.

Read full transcript here.

How to get in touch with Steven Kotler:

 

Websites:

Blog:

Books:

Publications:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Subscribe to Bill Murphy's weekly newsletter: Exponential Innovation Insider.

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Nov 16, 2016

My guest for this episode was a great IT Leader Prabhash Shrestha.

Prabhash, Vice President of Information Technology, currently overseas, manages, strategizes business and operation of digital and Health IT at American Gastroenterological Association (AGA). He actively works with AGA's senior management team, board and volunteers, members, and business partners in analyzing the trends and the direction of technology of AGA.. Previously, he was Chief Information Officer (CIO) at Association of Fundraising Professionals for eight years, from 2006 to 2014.

He was chosen as DC's Top Association Tech Gurus by Trending 40. He was honored as the Top Ten Association Technology Leaders by Association Trends in December 2015. He was also awarded Top Association & Non-Profit Innovators 2015. Prabhash was chosen as the Top Innovators in the Washington, DC Association and Non-Profit community in January 2015. He was featured on the The A List on 2014 Nov/December issue of Associations Now magazine. He also was featured as one of the Top 5 under 35 in 2007. He has been interviewed on by various publications, radio and news media, and magazines. He speaks frequently at non-profit/association technology conferences and other conferences on various technology, leadership, management and business issues.
Prabhash holds a Master of Science in Information Systems. and holds Massachusetts Institute of Technology (MIT) Sloan Executive Certificate on Strategy and Innovation. He has been teaching at Georgetown University's Master's Degree program in Technology Management since 2010. He has won several teaching excellence awards at Georgetown University.

Major Take-Aways From This Episode:

1. His almost automatic focus on revenue and customer needs,
2. I don't mean the clique customer needs examine but really putting yourself in the customer, patient, experience so that you really, really know it,
3. How to bring quick wins to market,
4. He has an approach we discussed where you evaluate 5 areas a) Audit the market b) Build a MVP minimum viable product fill the gap c) Shrink the time to market d) Grow by examining data (a Core IT leader skill) e) and evolving the product,
5. Books and articles he recommends.

Read full transcript here.

How to get in touch with Prabhash Shrestha:

Book Recommendations:

Interview(s):

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Nov 4, 2016

Hod Lipson is a fascinating conversationalist.

Hod is a professor of Mechanical Engineering and Data Science at Columbia University in New York, and a co-author of the award winning book “Fabricated: The New World of 3D printing”, and “Driverless: Intelligent cars and the road ahead”, by MIT Press. Before joining Columbia University in 2015, Hod spent 14 years as a professor at Cornell University. He received his PhD in 1999 from the Technicon – Israel Institute of Technology, followed by a postdoc at Brandeis University and MIT. His work on self-aware and self-replicating robots challenges conventional views of robotics, and has enjoyed widespread media coverage. He has also pioneered many aspects of 3D Printing, including bio-printing, electronics printing, and now Food Printing, and launching the firs open-source printer in the US, the Fab@Home in 2005. Lipson has co-authored over 300 publications that received over 12,000 citations to date. He has founded four companies, and is frequent keynoter both in industry and academic events. His TED Talk on self-aware machines is one of the most viewed presentations on AI and robotics. Hod directs the Creative Machines Lab, which pioneers new ways to make machines that create, and machines that are creative.

Major Take-Aways From This Episode:

3D Printing and Digital Manufacturing

  1. Why is Complexity free now? It used to be that you add complexity and you need more skill and add cost;
  2.  The importance of AI design tools for 3D printing;
  3. The vision of Design on Demand;
  4. Understanding the downside risks;
  5. Understanding the 4 exponential trends giving gas to AI.

4 Exponential Trends making AI Spread like wildfire:
1) Moore’s Law;
2) Exponential Data Growth is the AI and Machine Learning Oxygen;
3) Algorithms that get better and better (with perceptions and differential equations);
4) Machines learning from each other competitively. Machines sharing knowledge. Driverless cars, for example.

Creativity, Perception, Design, Decision Making Breakthroughs with AI:
1. Using crowdsourcing to access talent to solve problems;
2. Who owns the data ? Data is the new oil;
3. Who owns the algorithms?
4. Analysis and Synthesis.

Historical trends of AI and Machine Learning:
1) Algorithmic approach dominated;
2) Now, Machine learning learns by itself;.
3) Deep learning is a programmatic off shoot of Machine learning.
I have linked up all the show notes on redzonetech.net/podcast where you can get access to Hod Lipson's books and publications.

Read full transcript here.

How to get in touch with Hod Lipson:

Website:

http://www.hodlipson.com/

Books/Publications:

Video:

Other Resources:

 

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Oct 28, 2016

My guest for this episode is David Bray, named one of the 24 Americans Changing the World under 40 by Business Insider.

Dr. David A. Bray, who I believe to be the most innovative CIO in Washington, shares his secrets in this episode. He has been leading the FCC’s IT transformation since 2013 through the efforts of a team of positive “change agents.” He has transformed the FCC’s IT legacy from more than 207 different systems to award-winning technology in less than two years.

He also was selected to be one of the "Fedscoop 50" for Leadership in 2014.

FCW's "Fed 100" winners in 2015, and the recipient of the Armed Forces Communications and Electronic Association's Outstanding Achievement Award for Civilian Government in 2015.

David began working for the U.S. government at age 15 on computer simulations at a Department of Energy facility. In later roles he designed new telemedicine interfaces and space-based forest fire forecasting prototypes for the Department of Defense.

He then joined as IT Chief for the Bioterrorism Preparedness and Response Program at the U.S. Centers for Disease Control and Prevention, leading the program's technology response to during 9/11, anthrax in 2001, Severe Acute Respiratory System in 2003, and other international public health emergencies.

He later completed a PhD in Information Systems from Emory University and two post-doctoral associateships at MIT and Harvard in 2008.

David volunteered in 2009 to deploy to Afghanistan to help "think differently" on military and humanitarian issues and in 2010 became a Senior National Intelligence Service Executive advocating for increased information interoperability, cybersecurity, and protection of civil liberties.

He received both the Arthur S. Flemming Award and Roger W. Jones Award for Executive Leadership in 2013. He also was chosen to be an Eisenhower Fellow to meet with leaders in Taiwan and Australia on multisector cyber strategies for the "Internet of Everything" in 2015.

He also has been named the "Most Social CIO" globally in 2015 by both Forbes Magazine and the Huffington-Post, tweeting as @fcc_cio.

Major Take-Aways From This Episode:

  1. David's unique perspective on leadership;
  2. His approach to experiments and risk;
  3. How he curates ideas in his organization (portfolio effect);
  4. How he brings outside innovative (silicon valley-esque) thinking into the organization;
  5. His approach to being a VC internal venture capitalist;
  6. His reading recommendations.

Read the full transcript here.

How to get in touch with David Bray

Publications:

David's Reading Recommendations:

David's Leadership Mentors:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Oct 22, 2016

There was literally too much ground to cover with Peter Singer. He was one of these interviews where you just have to let him run because he has so much to say. His knowledge and experience are too wide to cover in a short hour, but here are some key takeaways that you will learn when you listen.

Major Take-Aways From This Episode:

He is not a doomsday figure, but one that seeks to find alternatives, explain, and develop context to the changes that are impacting our lives.

He was on a research project that asked 60 people what are the 5 trends that are of the same magnitude the release of computer in 1980:

  1. Hardware – Robots, autonomous vehicles
  2. Software – IoT, Big Data, AI
  3. Waveware – Energy Sources, solar, lasers
  4. Hardware – Additive printing and manufacturing, 3d, bits to atoms
  5. Wetware – human performance enhancing technology

Bio science is impacting technological breakthroughs faster than Moore’s law on the computer side. These breakthroughs are coming in endurance, cognition, concentration and will impact everything from classrooms to high performance executive functioning.

The Biological Metaphor for Security is huge. I have been using it for a while to compare tech security to how nature secures herself from threats. What can we learn from nature in order to defend our systems:

  • Nature has designed resilient systems;
  • Nature has natural defenses all working in unison;
  • Public and private sector interaction;
  • No one action can do it all;
  • Attitude of The British =  “Keep Calm and Carry On”

I have linked up all the show notes on redzonetech.net/podcast where you can get access to Peter Singer’s books and publications.

About Peter W. Singer:

Peter Warren Singer is a Strategist and Senior Fellow at the New America Foundation, the author of multiple award-winning books, and a contributing editor at Popular Science. He has been named by the Smithsonian Institution-National Portrait Gallery as one of the 100 "leading innovators in the nation," by Defense News as one of the 100 most influential people in defense issues, by Onalytica social media data analysis as one of the ten most influential voices in the world on cybersecurity, and by Foreign Policy to their Top 100 Global Thinkers List, of the people whose ideas most influenced the world that year.

Described in the Wall Street Journal as "the premier futurist in the national-security environment," Dr. Singer is considered one of the world's leading experts on changes in 21st century warfare. He has consulted for the US Military, Defense Intelligence Agency, and FBI, as well as advised a range of entertainment programs, including for Warner Brothers, Dreamworks, Universal, HBO, Discovery, History Channel, and the video game series Call of Duty, the best-selling entertainment project in history. He served as coordinator of the Obama-08 campaign's defense policy task force and was named by the President to the US Military's Transformation Advisory Group. He has provided commentary on security issues for nearly every major TV and radio outlet, including ABC, Al Jazeera, BBC, CBS, CNN, FOX, NPR, and the NBC Today Show. In addition to his work on conflict issues, Singer is a member of the State Department's Advisory Committee on International Communications and Information Policy. In the entertainment sector, he has received awards/support from the Tribeca Film Institute, Sloan Filmmakers Fund, Film Independent, and FAST Track at the L.A. Film Festival.

Read full transcript here.

How to get in touch with Peter W. Singer:

Website:

Books:

Publications:

Other Resources:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Sep 27, 2016

This episode is brought to you by the CIO Scoreboard

Massimo Pigliucci has a Doctorate in Genetics from the University of Ferrara (Italy), a PhD in Evolutionary Biology from the University of Connecticut,
and a PhD in Philosophy from the University of Tennessee.


He has done post-doctoral research in evolutionary ecology at Brown University and is currently the K.D. Irani Professor of Philosophy at the City College of New York.

His research interests include the philosophy of biology, the relationship between
science and philosophy, the nature of pseudoscience, and the practical philosophy of Stoicism. Prof. Pigliucci has been elected fellow of the American Association for the Advancement of
Science.

In the area of public outreach, Prof. Pigliucci has published in national outlets such as the NewYork Times, Philosophy Now and The Philosopher's Magazine among others. I have linked in the show notes to a great article he wrote recently in the New York times.

Pigliucci publishes two blogs: Plato's Footnote (platofootnote.org), on general philosophy, and How to Be a Stoic (howtobeastoic.org), on his personal exploration of Stoicism as practical philosophy.

At last count, Prof. Pigliucci has published 146 technical papers in science and philosophy. He is also the author or editor of 10 technical and public outreach books, most recently of Answers for Aristotle: How Science and Philosophy Can Lead Us to a More Meaningful Life (Basic Books) Philosophy of Pseudoscience: Reconsidering the Demarcation Problem (University of Chicago Press), co-edited with Maarten Boudry. Other books include Answers for Aristotle: How Science and
Philosophy Can Lead Us to a More Meaningful Life (Basic Books) and Nonsense on Stilts: How to Tell Science from Bunk (University of Chicago Press).


We explored quite a few topics on Ethics and AI, Types of Ethical Philosophies, the difficulty of programming ethics, stoicism.


I also asked him how to pose great questions to stir great conversation at the table with my kids...

There is a bunch of resources that we discussed. Check them out on redzonetech.net.

Major Take-Aways From This Episode:
1) 3 Major Types of Ethical Philosophies.
2) Ancient Virtue Ethics and Philippa Foot .The answer is always well it depends, what would a good person do? Human judgment is needed + nuance.
3) Modern Kantian (Started by Immanuel Kant) Deontological Ethics Rule-based ethics.
4) Modern John Stuart Mill's Utilitarianism Ethics is whatever increases the happiness of the largest number of people.
5) Why there is no such thing as Intuition and how understanding Intuition and Science can make you aware of how to make yourself better as a person and leader.
6) 3 Steps to augmenting intuition using Stoicism.
7) AI vs. Smart Intelligence versus consciousness
a. Trolley dilemma;
b. Throw-man-off-bridge dilemma;
c. Autonomous cars (programming a car to avoid a human being).
8) The different types of philosophy.
9) Kids and Philosophy resources to get your kids into good dinner table debates.
10) The Stoic Philosophy between (preferences and desires) and examples.
11) Skill acquisition and developing expertise using Stoic Philosophy.
12) Types of Philosophy of Science (Mathematics, Logic, Stoic). The role of Logic.
13) Why Stoicism is gaining popularity.
14) Stoicism for kids.

Ways to connect with Massimo Pigliucci:

Website:

Teachings, event and news updates

Podcast:
Rationally Speaking (archives)

Books and Publications: 

Video Resources:

Resources Mentioned:

Kids Philosophy Resources:

Other Resources: 

This episode is sponsored by the CIO Security Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:

 

Other Ways To Listen to the Podcast 
iTunes | Stitcher | Libsyn | Soundcloud | RSS Feed | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here.

Click here for instructions on how to leave a review if you’re doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

 

Sep 23, 2016

Daniel Burrus has over 800k followers on Linkedin. Out of 300 million linkedin profiles he is in the top 35. This is stunning, but wait because once I go through his bio you will understand why.

He is considered one of the World's Leading Futurists on Global Trends and Innovation. The New York Times has referred to him as one of the top three business gurus in the highest demand as a speaker.

He is a strategic advisor to executives from Fortune 500 companies helping them to develop game-changing strategies based on his proven methodologies for capitalizing on technology innovations and their future impact. He is the author of six books, including THE NEW YORK TIMES and THE WALL STREET Journal best seller Flash Foresight as well as the highly acclaimed Technotrends.

Daniel Burrus' accurate predictions date back to the early 1980s (over 35 years) where he became the first and only technology futurist to accurately identify the twenty technologies that would become the driving forces of business and economic change for decades to come. Since then he has established a worldwide reputation for his exceptional record of predicting the future of technology driven change and its direct impact on the business world.

As a business strategist, he has helped hundreds of clients profit from new opportunities and develop successful competitive business strategies based on the creative application of leading-edge technologies. Daniel is a thought leader and contributing writer on the topics of innovation, change and the future for HARVARD BUSINESS REVIEW, LINKEDIN, HUFFINGTON POST, WIRED MAGAZINE AND EXAMINER.COM to name a few.

He has founded six businesses, four of which were national leaders in the United States in the first year. He is the CEO of Burrus Research, a research and consulting firm that monitors global advancements in technology driven trends to help clients profit from technological, social and business forces that are converging to create enormous, untapped opportunities.

Major take – aways from this episode are:

  1. Why is having an ‘anticipatory’ organization  better than being ‘agile’.
  2. Developing a Methodology to Anticipate Disruption and Opportunities.
  3. The critically important difference between a HARD and a SOFT trends in evaluating risk.
  4. Is Bitcoin a Hard or Soft trend for example? Is Cyber currency a hard or soft trend?
  5. The difference between ‘computing power’ and ‘processing power’ related to Moore’s Law.
  6. What happened to Kodak when they treated digital photography as a Soft Trend.
  7. Business process trends over the next 5 years [Hard Trend].
  8. The Science of Strategic Foresight.
  9. How to Avoid Busying Yourself out of business.
  10. How to identify change versus transformation.
  11. Rapid problem solving for CIOs by using the “skip it process”.
  12. The problem is never ‘budget’.
  13. 3 HARD Technology TRENDS to pay attention to: Technology, Demographics (Gen Z), and Government Regulation (caused by Cyber).

Read full transcript here.

I have linked up all the show notes on redzonetech.net/podcast where you can get access to Daniel Burrus’s  book and publications.

About Daniel Burrus:

DANIEL BURRUS is considered one of the World's Leading Futurists on Global Trends and Innovation, and is the founder and CEO of Burrus Research, a research and consulting firm that monitors global advancements in technology driven trends to help clients understand how technological, social and business forces are converging to create enormous untapped opportunities. He is the author of six books including New York Times & Wall Street Journal best seller Flash Foresight.

Daniel Burrus is also the creator of The Anticipatory Organization™ Learning System–named a Top 10 Product of 2016.The AO Learning System is a training process for executives and their teams to develop the skills to accurately foresee and take critical actions before disruption strikes.

How to get in touch with Daniel Burrus :

Website:

Blog:

Books/Publications:

Key Resources:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Sep 2, 2016

Kevin Kelly, I think, may be the smartest person in the world...and I am only half-joking. I have been deeply interested in his work, and his thinking has influenced mine.
His 2010 book What Technology Wants changed my perspective on Information Technology in 2010; his book Cool Tools is a compendium of the best tools cultivated from his years of research. Among other resources I like is his blog post 1000 True Fans; his latest book just released this summer titled The Inevitable; and his podcast interviews on London Real, Tim Ferriss, Lewis Howes, and Chase Jarvis.
I asked him to come onto the show to get into topics that I had not heard him dive into from the perspective that I was curious about... I know you will be too.

Major take aways from this episode are:

1. If you were the leader of a 1000 person company, what would you ask your direct 5 reports to do?
2. What skills are needed to teach kids to handle this new future in regards to learning and failure?
3. How Kevin Kelly would handle ethics and governance as we program Artificial Intelligence.
4. How humans will become more ethical and moral training AI.
5. Kevin's AI philosophy is very unique and will help you understand the role of AI working with other AIs.
6. His opinion on the difference between AI, Machine Learning, and Deep Learning.
7. The importance of being a newbie and an attitude of being a lifelong learner.
8. The difference between learning, how to learn versus finding how you learn that is unique to you.
9 . The skills enterprise leaders need to have in regards to how to fail.
10. The important skill of looking at the edges.
11. "In a world of abundance the only scarcity will be our attention," Herbert Simon.

I have linked up all the show notes on redzonetech.net/podcast when you can get access to Kevin Kelly's books and publications.

About Kevin Kelly:

Kevin Kelly is Senior Maverick at Wired magazine. He co-founded Wired in 1993, and served as its Executive Editor for its first seven years. He is also founding editor and co-publisher of the popular Cool Tools website, which has been reviewing tools daily since 2003. From 1984-1990 Kelly was publisher and editor of the Whole Earth Review, a journal of unorthodox technical news. He co-founded the ongoing Hackers' Conference, and was involved with the launch of the WELL, a pioneering online service started in 1985. His books include the best-selling New Rules for the New Economy, the classic book on decentralized emergent systems, Out of Control, a graphic novel about robots and angels, The Silver Cord, an oversize catalog of the best of Cool Tools, and his summary theory of technology in What Technology Wants (2010). His new book for Viking/Penguin is called The Inevitable.

Read full transcript here.

How to get in touch with Kevin Kelly:

Website:

Podcast:

Blog:

Books:

Key Resources:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Aug 26, 2016

Chris Hadnagy specializes in understanding how malicious attackers exploit human communication and trust to obtain access to information and resources through manipulation and deceit. His goal is to secure companies by educating them on the methods used by attackers, identifying vulnerabilities, and mitigating issues through appropriate levels of awareness and security.
Chris, is the founder and CEO of Social-Engineer. Chris possesses over 16 years experience as a practitioner and researcher in the security field. His efforts in training, education, and awareness have helped to expose social engineering as the top threat to the security of organizations today. What I found fascinating from Chris' bio is that he is a certified Expert Level graduate of Dr. Paul Ekman's Micro Expressions courses, having made the study of non-verbal behaviors one of his specialties.
He established the world's first social engineering penetration testing framework at www.social-engineer.org, providing an invaluable repository of information for security professionals and enthusiasts. That site grew into a dynamic web resource including a podcast and newsletter, which have become staples in the security industry and are referenced by large organizations around the world. Chris also created the first hands-on social engineering training course and certification, Advanced Practical Social Engineering.
A sought-after writer and speaker, Chris has spoken and trained at events such as RSA, Black Hat, and various presentations for corporate and government clients. Chris is also the best-selling author of three books My favorite was - Phishing Dark Waters: The Offensive and Defensive Sides of Malicious Emails, which is his latest that I read. You can access all the link to his books, website, etc. at www.redzonetech.net/podcasts

Major take – aways from this episode are:

  1. Reminder: you can download the transcript of the entire interview at redzonetech.net/podcast.
  2. A classic story of a Social Engineering hack that Chris did is at the 12 minute mark; it is a great example that will remind you of what you need to do to train employees.
  3. The importance of the brain and amygdala as it relates to IT Security.
  4. The importance of the psychology of security.
  5. The importance of non-verbal facial expression and body language.
  6. How to trigger empathy and compassion in a target which really shows how this method is so effective.
  7. The role of mirror neurons.
  8. You will understand the brain and how it reacts to fear, emotion, and danger in relation to social engineering hacks.
  9. @ 35 minutes learn about What is a BEC Scam – Business Email Compromise and how to avoid it.
  10. The difference between Whaling, Vishing, and Phishing.

I have linked up all the show notes on redzonetech.net/podcast when you can get access to Chris Hadnagy’s books and publications.

Read full transcript here.

How to get in touch with Chris Hadnagy

Website:

Podcast:

Social Engineer Podcast

Blog:

Social Engineer Blog

Books/Publications/ Videos:

Resources Mentioned:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Aug 19, 2016

I first learned about Brian MacKenzie when I was training for my first Ironman’s and I read his books about endurance and mobility and he changed my concepts about what was possible with running. Basically, pounding out miles just doesn’t work as you get older (and when younger too). But this doesn’t apply to just running…… Brian applies exponential training approaches to optimize human performance; he relentlessly challenges conventions and tests assumptions. Recently I was reacquainted with Brian’s work when I started training with Wim Hof's cold and breathing methods and was looking to see who else was interested in them….. So I reached out to ask him on the show.

 Major take – aways from this episode are:

  1. How you can change anything with 10 breaths.
  2. Using breathing techniques to amplify, deepen and quicken meditation benefits.
  3. The power of breath work to stabilize mood regulation and reactive behavior patterns.
  4. Co2 adaptation + Integrating breathing, ice and heat.
  5. How to activate the Vagus nerve.
  6. Importance of diaphramatic breathing.
  7. Using breathing to access Flow States.
  8. Proper breathing technique for sport, business and life.
  9. Mobility – the importance of keeping tissue supple.
  10. Eating principles vs fads to follow that Brian coaches people on related to a) Vegetables; b)humanely treated animal protein (not stressed); c) High quality fats.
  11. The impact of a) sugar; b) processed foods; c) hydration; d) high quality breads.
  12. Must read and listen to Netflix video by Mike Pollan, “Cooked” and In Defense of Food – An Eaters Manifesto.
  13. Taking personal responsibility of your health by engaging your doctor.
  14. Benefits of getting your genetics tested (Wellness fx).
  15. Dumbing down technology so that you can feel again.
  16. Mike Rowe on the importance of working opportunities not passion.

I have linked up all the show notes on redzonetech.net/podcast where you can get access to Brian’s blog publications.

About Brian

Brian Mackenzie is a human performance and movement specialist. He is the innovator of the endurance, strength and conditioning paradigm. He has studied performance and movement for more than a decade along with altitude, hypoxia, breathing mechanics, heat and cold exposure. He has spent most of his time training in and around the water and ocean. Brian has competed in Ironman (Canada 2004), and has run the Western States 100 and the Angeles Crest 100 mile endurance runs.
He co-authored the book Power Speed Endurance, and NYTimes Best Seller UnBreakable Runner. Brian founded and created Power Speed Endurance (PSE), which specializes in movement, skill & strength development for sports with an emphasis in running, cycling, and swimming mechanics.
MacKenzie's program has taught over 50 seminars per year (on avg since 2007) worldwide and provides free programming via PSE. MacKenzie and his programs have been featured in Muscle & Fitness, Men's Health, Competitor Magazine, Runners World, Triathlete Magazine, Men's Journal, ESPN Rise, The Economist, Tim Ferriss' New York Times bestseller The 4-Hour Body, Men's Running UK, LA Sport & Fitness, Muscle & Performance Magazine, and Rivera Magazine.
Brian has worked with many top-level professional athletes including iconic surfers and waterman such as Laird Hamilton, Jamie Mitchell, Mark Healy, Kai Borg Garcia. CrossFit Games athletes including Rich Froning Jr (4X CrossFit Games Champion) and Annie Thorisdottir (2X CrossFit Games Champion). And also Olympic Gold Medalists such as Erin Cafaro (2X Olympic Gold Medalist in Rowing W8+, Wife) and Taylor Ritzel (2012 Olympic Gold Medalist W8+). Brian continues to work with several other professional and elite level athletes in sports spanning from Triathlon, Running, MMA, Swimming, Cycling, Rowing, Surfing, Base Jumping, to US Navy SEALS, Army Rangers and many other Military and Specialty units helping them optimize their movement and lifestyle practices.

Read full transcript here.

How to get in touch with Brian MacKenzie:

 Website:

Blog:

Power Speed Endurance Blog

Brian’s Books:

Podcast Interviews:

Power Speed Endurance Podcast

 In the Press:

RunningCompetitor.com

Resources Mentioned:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Aug 12, 2016

It took a while to get John Sileo on the show after my team heard him speak at an ISACA conference. He is a very in demand speaker and you will see why soon.

John Sileo’s identity was stolen and used to embezzle $300,000 from his clients. The exposure destroyed John’s career and consumed two years of his life as he fought to stay out of jail.

Combining real-world experience with years of study, John became an award-winning author and leading expert on cyber security, identity theft and data privacy.

John is CEO of The Sileo Group, a data security think tank that helps organizations protect the information that drives their profits. His body of work includes engagements with the Pentagon, USA Today, Visa, 60 Minutes, Homeland Security, Rachael Ray, Schwab and organizations of all sizes.

John graduated with honors from Harvard University and spends his free time with his remarkable wife and two highly spirited daughters.

Major take – aways from this episode are:

  1. Why do you start with Why? With IT Security. Security starts with a person behind the social security number.
  2. The Difference between Offense (CIO) and Defense (CSO) for IT Business Leaders.
  3. The importance of splitting the role of CSO away from the CIO – so that you don’t have defense reporting to offense.
  4. Renting CSO Services vs buying.
  5. Building security as a habit – Review the Book by Charles Duhigg Power of Habit:Why We Do What We Do In Life and Business.
  6. Build one new habit into your IT Sec Program.
  7. The importance of company culture and IT Security.
  8. Do you celebrate IT Security wins at the highest levels?
  9. Celebrate the reductions of employee errors clicking on phishing attempts.
  10. 3 ways to protect your data from a ransomware. See John Sileo’s website.
  11. Of the people he has studied 90% of the people who have paid the ransom only 50% receive the key to unlock their data.
  12. The Neuroscience of the Pre-frontal cortex, Cortisol, amygdala and how it applies to IT Security.
  13. Review your greatest threat protection and the role of HR.

I have linked up all the show notes on redzonetech.net/podcast when you can get access to John’s books and publications.

Ways to Connect with John Sileo

Website:

Blog:

Books/Publications:

TV Appearances:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you’re doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Aug 5, 2016

The challenge for many CIOs is that Board discussions regarding IT Security still lack a common language and toolset with which to accurately convey the security profile of the organization.
CFOs, on the other hand, have numerous commonly accepted tools they can use to present the financial health of the organization and drill down to any level of detail. Using a common lexicon, they can even compare data over a monthly or yearly basis to provide a clear picture of progress, or lack of it. The data is trusted. The tools are trusted. The CFO is trusted.
Until recently, CIOs have had to struggle to build the same level of trust with the Board because there was no comparable reporting system for IT Security. As a result, CIOs could easily get caught up in the latest shiny toys or distraction-of-the month discussions with individual Board members and fail to address IT Security threats. For CIOs, the consequences included mission failure and personal failure.
In this podcast, I explore the challenges and opportunities CIOs face when they present security issues to the Board. With challenges come opportunities. The opportunities are created when CIOs understand the critical role they play in distilling the complexities of IT Security and coaching the Board. These activities build trust, and once achieved, drive investment decisions that protect the business. Getting to that point is the topic of this episode.
 

How to get in touch with Bill Murphy

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Other Ways to Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Credits:
* Outro music provided by Ben’s Sound

Jul 23, 2016

I have never had a guest like Frank Ahearn on the show. He has a very unique perspective on security having lived a set of life experiences we only read about.

Frank works with individuals who need to learn how to disappear, fall off the radar or have extreme privacy needs. He is an expert at vanishing people, creating high-net-worth-privacy, travel privacy and foreign state privacy. Law firms and private asset companies worldwide utilize his unique disinformation and stratagem services.

Major take aways from this episode are:

1) The practice and reality of disappearing in today's digital world of zero privacy
2) Creating disinformation to protect the innocent. Think Ninja smoke screen effect
3) Social engineering & pretexting
4) The underground world of skip tracing
5) Tales of an undercover for hire
6) Hunting people
7) Disappearing from Big Brother Government and Companies
8) Reputation Management
9) If your son gets drunk in college and now his mug shot is public. What can you do about it?

I have linked up all the show notes on redzonetech.net/podcast when you can get access to Frank's blog and published books.

Read full transcript here.

About Frank

Frank M. Ahearn is a privacy expert, skip tracer and social engineer. He is a New York Times Bestselling author of numerous privacy books.

How to get in touch with Frank Ahearn

Websites:

Frank's Books:

Books Mentioned:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Jul 9, 2016

Jacob Morgan is an Author, speaker and futurist. Jacob is a great resource for Business Technology Leaders as he helped craft and create this Future of Work Conversation from scratch 8 years ago.
 
Major take aways from this episode are:

1. What people ask him most about Future of Work as he speaks around the world
2. Tools being used to augment your education.
3. The future of AI and Robotics for jobs.
4. What Cisco is doing for their workers?
5. Organizational Design and Employee Experience.

I have linked up all the show notes on redzonetech.net/podcast when you can get access to Jacob's podcast episodes and blog publications.

You can read full transcript here.

About Jacob

Jacob Morgan is an author, speaker, and futurist. Jacob's latest book, The Future of Work: Attract New Talent, Build Better Leaders, and Create a Competitive Organization, explores how the workplace is changing and was endorsed by business leaders such as the Chairman of KPMG, CEO of Whirlpool, CEO of Intuit, CEO of SAP, CEO of Schneider Electric, and many others.

Jacob also co-founded the Future Of Work Community which is a brand council of the world's most forward thinking organizations who come together to explore the future of work. He frequently speaks at conferences and events all over the world and contributes to media publications such as Forbes, the WSJ, USA Today, INC Magazine, CNN, and many others.
His clients include companies such as Microsoft, St. Jude Children's Research Hospital, NYU, Wells Fargo, The Harvard Business Review, SAP, Cisco, and many others. Jacob also hosts the popular Future of Work Podcast where he interviews business leaders, executives, and authors. In addition he has a bi-weekly Youtube video series called the Future in 5 and a longer form program called The Future of Work Show where he goes inside of the world's most forward thinking companies to interview employees, executives, and tour their offices.

How to get in touch with Jacob Morgan

Website:

thefutureorganization.com

Podcast:

The Future of Work Podcast

Publications:

Books:

YouTube:

the Future in 5

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Jul 1, 2016

Enrique Rubio and I share a favorite quote:
"you can't solve problems from the same level of thinking that created them." Albert Einstein
I was interested to bring Enrique onto the show because he has great depth of knowledge in understanding perplexing challenge unique to our generation. How do we in the Western World who live in a World of Abundance solve complex problems in the developing world? How do we deploy exponential technologies in a sustainable way that makes the lives of others better? How do we approach solving complex problems.

Enrique Rubio is an Electronic Engineer and a Fulbright scholar with an Executive Master's Degree in Public Administration from Syracuse University. Enrique is passionate about leadership, business and social entrepreneurship, curiosity, creativity and innovation. He is a blogger and podcaster, and also a competitive ultrarunner.

Major take aways from this episode are:
1. Design Thinking and how Design thinking and collaboration is used to solve complex problems.
2. The problem with heavy strategic and design versus the advantage of resource constraints.
3. The power of experiments. Cheap, flexible, nimble experiments.
4. Stories about Entrepreneurship, Nomads, The Himalayas and Solar Panels.
5. What is a Social Entrepreneur?
6. The Power of Curiosity and being "open-minded .
7. Understanding that "Fearing Less" is our primary mission in order to develop better questions.

I have linked up all the show notes on redzonetech.net/podcast where you can get access to Enrique's podcast episodes and blog publications.

Read full transcript here.

How to get in touch with Enrique Rubio:

Website:

Innovation for Development

Podcast:

Publications/ Interviews:

Resources Mentioned:

Books Mentioned:

Abundance Kotler, Diamandis

Exponential Organizations Salim Ismail

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.


 
 
 

Jun 22, 2016

Chuck Blakeman is a successful entrepreneur, best-selling business author and world-renowned business advisor who has built ten businesses in seven industries on four continents, and now uses his experience to advise others. His company, Crankset Group, provides outcome-based mentoring and peer advisory for business leaders worldwide.

He has written two best-selling books titled Making Money is Killing Your Business and  Why Employees are Always a Bad idea which have both been #1 and top ten rated business books.

Chuck writes thought provoking books and blog posts. His writing, ideas and philosophy rattle my brain in a good way. I have provided links below to his published work online with New York Times, Entrepreneur Magazine, Success Magazine and my favorites, which are his articles on Inc. Magazine.

If you are an Entrepreneur or a Senior Leader you will find Chuck’s message inspiriting and refreshing and relieving.

This is my second discussion with Chuck and I like him so much because he is a practitioner and not a theoretician. I think this is important for people owning, running and operating businesses.

Major take – aways from this episode are:

  1. The Concept of Freedom Mapping and the importance of asking yourself “why” you are doing things.
  2. The Formula for Success is Time + Money = Significance.
  3. How to avoid being a hostage to your business.
  4. Is there such a thing as work – life balance?
  5. The tyranny of urgent versus important.
  6. The difference between “learning” and “education” for adults and why adults suck at education. The irony of this is that I was just listening to a Tony Robbins interview on Lewis Howes' Show (on Tony’s Jet) where he said “the happiest people are lifetime learners”!
  7. The importance of groups to support your growth. See Chuck’s 3to5 Club
  8. The importance of EQ – Emotional Intelligence.
  9. The role of HR in the future.
  10. What Chuck would tell his 30 year old self.
  11. What his most gifted book is.
  12. The importance of taking risks.

I have linked up all the show notes on redzonetech.net/podcast where you can get access to Chuck’s presentation and research.

About Chuck

Chuck Blakeman is an internationally acclaimed speaker, best-selling business author, and world-renowned business advisor.

Chuck sold on of his businesses to the largest consumer fulfillment company in America and led three other $10-100 million companies. He presently leads the Crankset Group and a for-profit business based in Africa, focused on developing local economies to solve poverty.

Mr. Blakeman is a results leader with decades of experience leading companies in marketing, import/export, fulfillment, call centers, website development, printing and direct mail processing.

Some of Mr. Blakeman’s customers have included Microsoft, Apple, Eli Lilly, TAP Pharmaceuticals, Sun Microsystems, Tyco Healthcare, Johns Manville and many more Fortune 5000s and smaller businesses.

He is a convention speaker, writer, and non-profit board member. Recent speaking appearances include Kenya, Canada, Ireland, New Zealand, and across the US. 100+ times a year. Recent print and online appearances include Inc. Magazine (regular contributor), Success Magazine, Entrepreneur Magazine, CNNMoney.com. He was recently cited in Dr. Stephen Covey’s recent book, The 3d Alternative.

Read full transcript here.

How to get in touch with Chuck Blakeman:

Websites:

Books:

Publications:

Videos:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

Jun 14, 2016

Marshall Kuypers is a PhD candidate in Management Science and Engineering at Stanford University, concentrating in Risk Analysis. His research studies quantitative models to assess cyber security risk in organizations. I heard Marshall talk at a major IT Security conference and after listening to him, I knew that I had to get him on the show to share his expertise.
Marshall continues a theme that I have been harping on recently which is for you to deepen your sophistication of communicating at the highest level in your organization about Cyber Risk and investments that you want your company to mitigate against.
For some of you this discussion will be re-enforcement of concepts and ideas that you already know but need to be reminded of. For others, Marshall will bring a fresh approach to you to test with your CFO, CEO or Board. The more effective you can be with communicating to your horizontal peers and upstream reports the better you can fulfill your mission within your company.

Major take aways from this episode are:

1. A Practical and actionable discussion regarding Risk Analysis for Cyber Security
2. How Develop situational awareness for making better IT Security Investment Decisions
3. How to look at your internal security event data in a different way (no not your log data) to support IT Security investment.
4. How to validate or eliminate intuition from assessing probability of IT Security events happening.
5. How to eliminate recency bias from IT Security decisions (Fear and uncertainty cranked by media).
6. We also discuss power laws and complex systems theory which is fun as well.
I have linked up all the show notes on redzonetech.net/podcast where you can get access to Marshall's presentation and research.

About Marshall

Marshall Kuypers is a PhD candidate in Management Science and Engineering at Stanford University, concentrating in Risk Analysis. His research studies quantitative models to assess cyber security risk in organizations. Marshall has a diverse background spanning many fields, including modeling cyber security, developing trading algorithms with a high frequency trading company, researching superconducting materials at UIUC, and modeling economic and healthcare systems with the Complex Adaptive Systems of Systems (CASoS) engineering group at Sandia National Labs. Marshall is also the Co-President of the Stanford Complexity Group and a predoctoral science fellow at the Center for International Security and Cooperation (CISAC) at Stanford.

Read full transcript here.

How to get in touch with Marshall Kuypers:

Key Resources:

Books Mentioned:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Please Leave a Review 
Support this growing and thriving program by giving us a review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill on LinkedIn and Twitter.

May 21, 2016

Jack Freund, the guest of my latest podcast, is the co-author of a book with Jack Jones on quantifying risk (Measuring and Managing Information Risk: A FAIR Approach). This book was inducted into the Cybersecurity Canon in 2016. The Cyber Security Canon is a Hall of Fame for IT Security books. The founder Rick Howard has been a previous guest on this podcast.

Some of the links that I really like from this episode are Jack’s presentation called “Assessing Quality in Cyber Risk Forecasting”, his most recent article in the ISSA Journal that I love called “Using Data Breach Reports to Assess Risk Analysis Quality”. You will be able to find all links and show notes at redzonetech.net/podcast

This episode is sponsored by the CIO Scoreboard

Major take-aways from this episode are:

1. Elevate Your IT Security Risk Communication Game using Data Breach reports to Inspire Action in the Business
2. How to use Risk Data so that the business becomes more comfortable with uncertainty
3. New Refreshing perspectives on presenting IT Security Risk to the business
4. Predicting and Forecasting likelihood and frequency of events happening into your risk analysis
5. How to Use External Data Breach Sources of competitors and non-competitors to build your risk cases.

About Jack

Dr. Jack Freund is a leading voice in Information Risk measurement and management with experience across many industry segments. His corporate experience includes spearheading strategic shifts in IT Risk by leading his staff in executing multimillion dollar efforts in cooperation with other risk and control groups.

Jack has been awarded a Doctorate in Information Systems, Masters in Telecom and Project Management, and a BS in CIS. He holds the CISSP, CISA, CISM, CRISC, CIPP, and PMP designations. Jack's academic credentials include being named a Senior Member of the ISSA, IEEE, and ACM, a Visiting Professor, and an Academic Advisory Board member.

Find transcript here

How to get in touch with Jack Freund

Key Resources:

Books/Publications

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you're doing this for the first time.

Apr 9, 2016

During my last interview I had a great talk with Daniel McDuff. Daniel’s research is at the intersection of psychology and computer science. He is interested in designing hardware and algorithms for sensing human behavior at scale, and in building technologies that make life better. Applications of behavior sensing that he is most excited about are in: understanding mental health, improving online learning and designing new connected devices (IoT).
Listen to more about why it is important to collect data from much larger scales and help computers read our emotional state.

Key Learning Points:
1. Understanding the impact, intersection, and meaning of Psychology and Computer Science
2. Facial Expression Recognition
3. How to define Artificial Intelligence, Deep Learning, and Machine Learning
4. Applications of behavior sensing with Online Learning, Health, and Connected Devices
5. Visual Wearable sensors and heart health
6. The impact of education and learning
7. How to build computers to measure phycology, our reactions, emotions, etc
8. The impact of working in a no-fear zone for top accomplishment.

About Daniel

Daniel is building and utilizing scalable computer vision and machine learning tools to enable the automated recognition and analysis of emotions and physiology. He is currently Director of Research at Affectiva, a post-doctoral research affiliate at the MIT Media Lab and a visiting scientist at Brigham and Womens Hospital. At Affectiva Daniel is building state-of-the-art facial expression recognition software and leading analysis of the world’s largest database of human emotion responses.

Daniel completed his PhD in the Affective Computing Group at the MIT Media Lab in 2014 and has a B.A. and Masters from Cambridge University. His work has received nominations and awards from Popular Science magazine as one of the top inventions in 2011, South-by-South-West Interactive (SXSWi), The Webby Awards, ESOMAR, the Center for Integrated Medicine and Innovative Technology (CIMIT) and several IEEE conferences. His work has been reported in many publications including The Times, the New York Times, The Wall Street Journal, BBC News, New Scientist and Forbes magazine. Daniel has been named a 2015 WIRED Innovation Fellow. He has received best paper awards at IEEE Face and Gesture and Body Sensor Networks. Two of his papers were recently recognized within the list of the most influential articles to appear in the Transactions on Affective Computing.

How to get in touch with Daniel McDuff

Key Resource

YouTube:

Books/Publications:

This episode is sponsored by the CIO Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Credits:
* Outro music provided by Ben’s Sound

Other Ways To Listen to the Podcast
iTunes | Libsyn | Soundcloud | RSS | LinkedIn

Leave a Review
If you enjoyed this episode, then please consider leaving an iTunes review here

Click here for instructions on how to leave an iTunes review if you’re doing this for the first time.

About Bill Murphy
Bill Murphy is a world renowned IT Security Expert dedicated to your success as an IT business leader. Follow Bill onLinkedIn and Twitter.

Mar 30, 2016

I recently had a wonderful talk with Pascal Finette. I am really excited to share our conversation on the exponential technologies with you. Pascal is the head of Singularity University's SU Labs, where he leverages most intractable problems with cutting-edge technologies. One of the concepts we have delved into during our discussion was the concept of innovating organization at the edge instead of the core and how to approach growth through the lens of this concept. A lot of us are familiar with innovation when it comes to processes. How is it done with a product that is a business unit?

Listen to more about the question to ask about open-sourcing, concept of “crow funding”, and the importance of moonshot thinking and exploring more at the edge.

 4 Key Learning Points:

  1. The importance of the innovation at the edge of the core of an organization.
  2. The importance of moonshot thinking and asking big questions.
  3. What to be aware of when it comes to implementing open source concept.
  4. How to use the crowd funding mechanism to utilize talent from outside of the organization.

Find full transcript here

About Pascal Finette

Pascal heads up Entrepreneurship at Singularity University, including the Startup Accelerator, Venture Fund and the Entrepreneurship Track where he inspires, educates and empowers entrepreneurs tackling the world’s most intractable problems leveraging exponential technologies. Pascal has spent his career pushing the boundaries of technology and passionately believes the Internet can deeply impact mankind.

He founded the non-profit organizations Mentor for Good and The Coaching Fellowship; the ‘GyShiDo’ (Get Your S%#& Done) movement and publishes the opinionated newsletter, ‘The Heretic’, which is read by ten of thousands of entrepreneurs around the globe.

Pascal frequently speaks and writes about the interaction of entrepreneurship, technology, and global impact. Pascal coaches clients on leadership potential and loves to work with entrepreneurs who are making things better and go from zero to one.

How to get in touch with Pascal:

LinkedIn profile

Twitter

Facebook

Key Resources:

Website

Your Story

Singularity University

AngelList

The Setup

Startupery

You Tube

TED Talk

Illuminate 2015

Talk on Exponential Technologies

Interview at BSR 2015

http://technoport.no/content/343/Pascal-Finette

Interview

https://www.youtube.com/watch?v=EiwkFgBk3B0

Books

 Amazon Book Reviews

Publications

http://theheretic.org/

http://unreasonable.is/author/pascal/

http://www.unlife.co/pascal-finette/

This episode is sponsored by the CIO Security Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Feb 23, 2016

Today I had a wonderful talk with Zack Schuler. Zack is the founder and CEO of Ninjio, which is an I.T. Security Awareness business.   We discuss how 95 % of all breaches are caused by human error. It seems like such an obvious problem. But what can you do about this? Zach’s company has developed a way using a team of Hollywood writers to develop compelling security education and training to not just have your IT professionals involved in IT defense but have all your employees involved.

4 Key Learning Points:

  1. The importance of the gamification of security training in developing a security culture
  2. The importance of entertainment in storytelling
  3. How to deploy training easily and efficiently.
  4. How to measure the effectiveness of training.

Zack Schuler

Zack is the founder and CEO of Ninjio, which is an I.T. Security Awareness business.   Zack is passionate about keeping people safe from the countless cyber threats that are ever increasing.

Listen to more about how to help train staff on increasing security awareness and education through a unique method of gamification and storytelling.

Time Stamped Show Notes:

  • How Zack found Ninjio [02:56]
  • Thoughts on securing the weakest link in the chain [04:22]
  • How to spend money on tools and make them your allies[05:03]
  • Zack's opinion on end user responsibilities  [06:01]
  • The main cause of most breaches and ways to fight it [06:55]
  • Discussing the tendency of spending money on technology instead of educating humans about security [07:29]
  • Creating an inter-active environment to educate people[08:10]
  • Elaborating on the importance of creating a story to help people retain new information. [09:30]
  • How to create a teachable moment in order to get people to learn. [10:12]
  • Changing the culture of how people learn about security is more entertaining [10:35]
  • Security Awareness training is not easy needs a different educational approach[11:11]
  • Thoughts on security documentation and plethora of policies. [14:07]
  • Zack Schuler’s gives details on his educational approach [15:21]
  • Monitoring educational progress with the help of dashboard [16:35]
  • Zack's concept validation with the help of Knowbe4 . [17:22]
  • What security awareness companies are implementing the training[18:14]
  • Building gamification into a product [20:03]
  • Thoughts on gamification and Jane McGonigal's book Super Better [21:11]
  • Elaborating on the importance of employee education [23:23]

 

 

Feb 17, 2016

Today I had an interesting conversation with Jack Jones. This is Jack’s second time on the show and I loved our discussion. It is a gem of learning and is packed with information that you can use right away. Jack was one of the first CISOs in the United States and he is the inventor of the FAIR model for analyzing Information Security Risk. Jack’s bio is extensive and here is a short list of his accomplishments.

Jack Jones has worked in technology for over 30 years, and information security and risk management for 25 years. He has over nine years of experience as a CISO with three different companies, including five years at a Fortune 100 financial services company. He received the ISSA Excellence in the Field of Security Practices award at the 2006 RSA Conference. In 2007, he was selected as a finalist for the Information Security Executive of the Year, Central United States, and in 2012 was honored with the CSO Compass award for leadership in risk management. Jones is also the author and creator of the Factor Analysis of Information Risk (FAIR) framework. Currently, Jones serves on the ISC2 Ethics Committee, and is the Executive Vice President, Research and Development of Risk Lens, Inc.

Suffice it to say that Jack is a rock star in the Information Security and IT risk community!

6 Key Points:

  1. Why top 10 lists for IT Security are useless]
  2. How to add probability and possibility of events happening into your risk models
  3. How to present data that your board of directors will love
  4. How to develop range into your communication
  5. How to apply critical thinking, logic and Socratic methods to your analysis
  6. How to apply rigor in developing a defensible argument

Sponsored By:

This episode is sponsored by the CIO Security Scoreboard, a powerful tool that helps you communicate the status of your IT Security program visually in just a few minutes.

Time Stamped Show Notes:

  • FAIR is a framework of critical thinking and model or codification of risk and how risk works. Provides reference for thing through complex risk problem problems, risk assumptions and enabling risk discussions [04:53]
  • Servicing assumption enabling debate like dialogue in this discussion [05:15]
  • Jack Jones one of the first CISOs. CISO late 1980s. How to present risk? Technique with FAIR possibility vs probability what is it? Eg. McAfee virus impacting company and disrupting operations. Genesis was a 2003 XP system that contractor required them to have on their network. Sophisticated tools. Blindsided for a few days - because an admin was using a personal machine for surfing, so how would somebody apply FAIR. Knew administrator issues. How do you apply FAIR analysis to this? [08:49]
  • In organization that knows it has control deficiencies. In doing risk analysis of landscape and threat landscape we face are the scenarios that could be painful. Develop straightforward taxonomy and availability high level. From confidentiality perspective what are assets would be exposed from and integrity perspective. [10:00]
  • Deeper level of granularity - step-by-step process develop Taxonomy of events that represents loss. Then analyze likelihood of loss [10:39]
  • If organization done that and they might have, when there is significant impact even if the likelihood is low - controls you want to be able to fast detection and recovery. If down for three days, then recovery rate not what is should be. Organization - in a rigorous fashion - lay out the risk landscape which on the surface they understand exist but don't know where it's relative to the other things in their landscape. Way they triage their world and identify set of conditions - work to be done and could have prioritized it more effectively [12:20]
  • Concept of probability vs possibility linked to Russian Roulette. Organizations fall into the trap of possibility and not probability considerations. If we Focus solely on events are conceivably possible and hugely painful - an asteroid strike would come up and what we would do for an asteroid strike. There has to be a probability element - you can't just solely focus on possibility. Possibility of bad events 100-percent but probability might be lower. Crucial in order to prioritize. [14:38]
  • If there was a risk with old systems because of the admin issue it would have and fitted access to work things out how would you reverse engineer that situation [15:09]
  • In that instance - high probability of encountering malware - the only question from a probability perspective is what are odds of encountering malware that their preventative measures aren’t going to handle. Most security professionals would say that that could happen with the regularity so probability is higher. From a threat perspective zero Day stuff happens with some regularity – and we would be able to come up with likelihood estimate. One of the factors that place into the likelihood is the administrative privilege exposure. What it does is it allows the malware to have greater control and broader Impact than otherwise [17:35]
  • Patching situation would be factors in the evaluation as well but they might have - fragile state wholly dependent on that malware situation due to administrative situation and patching situation. They just fragile to the single control element. Within FAIR there is probability and impact and also2 states: 1) fragile depending on single control in an active threat landscape and the other is 2) unstable where an asset you want to protect that exists in a not very active landscape but you don't have any preventative or resistance control. databases - evaluating scenario rogue database administrators. Nothing to stop it. So when you identify unstable conditions you look at how you would resolve and detect a situation because you have no resistant option. [19:36]
  • In evaluating Probability and Impact and two qualifiers fragile and unstable [20:01]
  • How do you estimate likelihood of happening. All kinds of downsides to scales. Doesn’t allow you to effectively articulate best case, worst case, & most likely case - range of outcomes. From a probability perspective not a lot of work to look at industry data relevant to Technologies in this particular organization. Two ends of the spectrum. Do you see the trends what's more or fewer? Using the data set the minimum at 5 that are relevant to technology concerned about Maximum 15 or perhaps 15 or 20 – per year. Depending on quality of data - make the Range wider or narrower. Faithfully representing your range of uncertainty is critical. Put a discrete number. I don't want number I want a range. Two dimensions. The width of the range. And the most likely value how flat or sharply peaked to B. Perk distribution. Expressing range of uncertainty. [24:09]
  • Interesting in profession when you try to quantify something precision take the distance second to accuracy. When I give you a range that incorporates the actual outcomes in my Range – then my range is accurate and you increase probability of accuracy with wider ranges – but diminished returns [26:25]
  • The useful degree of precision with a confidence level you can stand behind – Process of Calibration, How to Measure Anything - Douglas Hubbard a book that covers this beautifully [26:44]
  • Utility for decision-making vs estimatingconcept, in expression ranges - when presenting risk to use decision makers trying to influence decision to make buying decisions. Calibration piece helps the decision maker make this decision [28:59]
  • Blog series written about this - look at ordinal scales organizations rely on. HIGH MEDIUM LOW. They will identify top ten risks they are identified 10 things in the landscape that they would place into a high risk bucket. Top 3 - how do you differentiate in that bucket when choosing why things don't go into the bucket people. Can't identify why things don't go into that bucket they don't think things through with sufficient [30:25]
  • Not very effective if you use quantitative measures quantitative measures allows you to distribute one above another I would focus on the thing that I have less certainty on. The lack of certainty is risk factor that needs to be dealt with [31:50]
  • Telescopic piece and level of sophistication is not sufficiently advanced to explain to business decision maker to explain why they can't spend money in that area so will spend money in this area. How can someone reconcile real security and audit findings – which are at odds [33:46]
  • Key component is applying real rigor to developing scenarios when encryption at rest is relevant. Encrypt your hard drive - very useful. But a lot of scenarios where the data can be compromised and encryption increases risk. Define set of scenarios where data is at risk in that subset where is encryption adds value and where not. Then evaluating impact. Then have means for comparing solutions. [36:35]
  • Playing at the scenarios is sufficient for people to realize which options are better. [37:05]
  • Set of control opportunities that cost a fraction and show through analysis how it reduces risk more than encryption. [37:38]
  • Some IT professionals feels that (engagement) implies combat. They feel they are protecting an organization so we are asking a government entity auditor but what about educating people to prevent risk. [38:55]
  • People are hesitant to go toe-to-toe against a regulator auditor –operating from intuition. They haven't applied rigorous approach to developing argument - sometimes intuition is wrong and then you realize there right. That's ok. But very often intuition is right. Need framework (like FAIR) for critical thinking through complex problems and developing argument and rationale and surface assumptions making estimates - put before the auditors, if you go through the process to the authoritative figure have you has not applied any rigor to it [40:35]
  • Critical thinking, the Socratic method, logical way of thinking. Interesting to back-up intuition with a rigorous reproach to have a defensible argument [41:21]
  • Save looking at problems and potential Solutions and more rigorous critical-thinking-like fashion is hugely valuable. Just having the framework for discussing and debating things – hugely valuable. [42:27]
  • Another component is normalizing terminology. [43:02]
  • FAIR model - really valuable. Every organization’s risk summary includes top 10 risks and that includes cybercriminals, social engineering, change management, mobile media and cloud computing. And if you look at those - cybercriminal threat community and cloud computing – technology, change management is a control element. It's like comparing apples and oranges. Those are not loss scenarios. FAIR Institute Blog that discusses this. How organizations are identifying and managing top 10 risks and it's a huge problem. We cannot expect to mature if we can't get a fundamental nomenclature correct [45:53]
  • What are the easy steps that someone can transform the top 10 list lost scenarios change the top 10 list? [46:21]
  • Create 2 lists of the top loss scenarios - taxonomy is a list of outcomes. Taxonomy is a categorization. Categorize loss events to a level of abstraction that’s balanced. Balance to be struck. easy to recognize with that balance lies as you go through the process. Qualitatively or quantitatively then do a probability & impact around those and that will tell you which off top 5 or 10. [48:02]
  • Other list - control deficiencies. Risk assessment is controlled assessment. How to prioritize what contributes most of this risk. That identifies top control positions. Cant mix together. Simple way - get handle on risk landscape and determine focus. Look at list of top 10 deficiencies - map them to which scenarios highly relevant less likely relevant - these three or four need to be hitting these hard. We can say over time this will reduce or change this list scenario. [49.24]
  • Recognizing you have to have two lists - top 10 less list is worse than useless you can't compare because it's misinformation in the worst way [49:47]
  • Recommend Measuring and Managing Information Risk: A FAIR Approach co-authored with Dr. Jack Freund. FAIR Institute where to get education at the ecosystem of people in organization to Leverage framework. Universities taking part. Institute, free copy of book but different membership levels soft launch in December formal launch in February [52:10]
  • The org (owns IP for Unix) has resources for FAIR and certification for practitioners. Risk Lens blog resources case studies and the book [52:22]
  • Risk lens does fair Consulting and Open Group is organization but only intellectual property and they adopted her Institute have found her [53:06] 

How to get in touch with Jack:

Key Resources:

Credits:

 

 
1 2 Next »