Episodes

  • Surviving the Ransomware Threat with Art Ocain

    Surviving the Ransomware Threat with Art Ocain
    Apr 1 2025
    In this conversation, Art Ocain discusses the current landscape of cybersecurity threats with the No Trust crew, particularly focusing on ransomware attacks. They explore how attackers gain access to systems, the importance of multi-factor authentication, and the vulnerabilities of small and medium-sized businesses. The conversation delves into immediate actions organizations should take during a ransomware attack, the balance between recovery and forensic investigation, and the critical role of communication during incidents. They also address the ethical dilemma of paying ransoms and share lessons learned from past incidents, emphasizing the need for ongoing security improvements and preparedness for future threats. Takeaways • VPN is currently the main vector for attacks • Small and medium businesses are often less prepared for attacks • Many companies still lack MFA on their VPNs • Organizations often believe they are immune to attacks until it's too late • Hypervisors are a primary target for ransomware attacks • Minimizing the attack surface is crucial for security • Isolating from the internet is a key first step during an attack • The decision to pay ransom is complex and often driven by immediate business needs • A full forensic investigation is essential after an attack • Ransomware trends continue to evolve and are not declining Follow & Subscribe on all Podcast platforms. link.chtbl.com/XIW5zsAn What is the Zero Trust Forum about? It’s about empowering zero trust security professionals with strategies, architecture, and real world journeys to secure the digital future, the right way! Follow the Zero Trust Forum on LinkedIn www.linkedin.com/company/zero-trust-forum/. Follow Jaye Tillson on LinkedIn - www.linkedin.com/in/jaye-tillson/ Follow John Spiegel on LinkedIn - www.linkedin.com/in/john-spiegel-2011543/ Takeaways • Identity is the heart of zero trust. • Most breaches occur due to weak passwords. • Identity is the key to the perimeter. • Assuming trust can lead to vulnerabilities. • Zero trust is a continuous journey. • Organizations need visibility into their identity landscape. • AI can assist in analyzing identity-related data. • Non-human identities are a growing concern. • MFA is essential but not the only solution. • The future of identity management will involve AI. Follow & Subscribe on all Podcast platforms. link.chtbl.com/XIW5zsAn What is the Zero Trust Forum about? It’s about empowering zero trust security professionals with strategies, architecture, and real world journeys to secure the digital future, the right way! Follow the Zero Trust Forum on LinkedIn www.linkedin.com/company/zero-trust-forum/. Follow Jaye Tillson on LinkedIn - www.linkedin.com/in/jaye-tillson/ Follow John Spiegel on LinkedIn - www.linkedin.com/in/john-spiegel-2011543/
    Show more Show less
    46 mins
  • Identity in the Age of Zero Trust with David Morimanno

    Identity in the Age of Zero Trust with David Morimanno
    Mar 10 2025
    In this conversation, David Morimanno and the No Trust crew delve into the critical role of identity in the context of zero trust security. They discuss how identity serves as the new perimeter, the importance of multi-factor authentication, and the challenges organizations face in implementing effective identity management strategies. The conversation also touches on the significance of non-human identities, the potential of AI in enhancing security measures, and the future trends in identity and cybersecurity. Takeaways • Identity is the heart of zero trust. • Most breaches occur due to weak passwords. • Identity is the key to the perimeter. • Assuming trust can lead to vulnerabilities. • Zero trust is a continuous journey. • Organizations need visibility into their identity landscape. • AI can assist in analyzing identity-related data. • Non-human identities are a growing concern. • MFA is essential but not the only solution. • The future of identity management will involve AI. Follow & Subscribe on all Podcast platforms. link.chtbl.com/XIW5zsAn What is the Zero Trust Forum about? It’s about empowering zero trust security professionals with strategies, architecture, and real world journeys to secure the digital future, the right way! Follow the Zero Trust Forum on LinkedIn www.linkedin.com/company/zero-trust-forum/. Follow Jaye Tillson on LinkedIn - www.linkedin.com/in/jaye-tillson/ Follow John Spiegel on LinkedIn - www.linkedin.com/in/john-spiegel-2011543/
    Show more Show less
    47 mins
  • From Theory to Practice: The Zero Trust Journey with John Kindervag and Dr Chase Cunningham

    From Theory to Practice: The Zero Trust Journey with John Kindervag and Dr Chase Cunningham
    Feb 27 2025
    In this episode of No Trust, Jaye Tillson, John Spiegel, John Kindervag, and Chase Cunningham discuss the evolution and significance of the Zero Trust cybersecurity model. They explore its origins, the pivotal moments that have shaped its adoption, and the importance of aligning organizational culture and leadership with Zero Trust principles. The conversation highlights the need for a strategic approach to cybersecurity that transcends traditional methods, emphasizing the importance of protecting data and assets in a constantly evolving threat landscape. Takeaways • Zero Trust originated from the limitations of traditional security models. • The concept of trust in digital systems is flawed and should be eliminated. • Zero Trust has evolved to address modern cybersecurity threats. • A strategic approach to Zero Trust is essential for effective implementation. • Incentives from leadership can drive the adoption of Zero Trust. • Understanding what to protect is crucial for a successful Zero Trust strategy. • Zero Trust should be seen as a continuous journey, not a one-time project. • Cultural shifts within organizations are necessary for Zero Trust to succeed. • The cybersecurity landscape is constantly changing, requiring ongoing adaptation. • Community engagement and charity initiatives can enhance the mission of cybersecurity professionals. Follow & Subscribe on all Podcast platforms. link.chtbl.com/XIW5zsAn What is the Zero Trust Forum about? It’s about empowering zero trust security professionals with strategies, architecture, and real world journeys to secure the digital future, the right way! Follow the Zero Trust Forum on LinkedIn www.linkedin.com/company/zero-trust-forum/. Follow Jaye Tillson on LinkedIn - www.linkedin.com/in/jaye-tillson/ Follow John Spiegel on LinkedIn - www.linkedin.com/in/john-spiegel-2011543/
    Show more Show less
    45 mins
  • Cybersecurity Trends: Reflections on 2024, Predictions for 2025 with Evgeniy Kharam

    Cybersecurity Trends: Reflections on 2024, Predictions for 2025 with Evgeniy Kharam
    Jan 24 2025
    In this episode of No Trust, Jaye Tillson, John Spiegel and Evgeniy Kharam discuss the key trends and challenges in cybersecurity as they reflect on 2024 and look ahead to 2025. They explore the impact of AI, the evolving startup landscape, the importance of asset management, and the ongoing threat of ransomware. The conversation also touches on the concept of zero trust, the significance of recovery and resilience in cybersecurity, and predictions for the future of the industry. Takeaways • 2024 was a year of reflection and adaptation in cybersecurity • AI has become a dominant buzzword, overshadowing other topics • Startups are facing challenges in raising funds due to market uncertainties • Ransomware remains a significant threat, evolving in its targeting • Zero trust is understood better but is not just a vendor solution • Asset management is critical for effective cybersecurity • Collaboration within the industry is increasing to tackle challenges • The cybersecurity impact on the economy is substantial, nearing $10 trillion • Mergers and acquisitions in cybersecurity are expected to rise in 2025 • Recovery and resilience are as important as protection in cybersecurity Follow & Subscribe on all Podcast platforms. link.chtbl.com/XIW5zsAn What is the Zero Trust Forum about? It’s about empowering zero trust security professionals with strategies, architecture, and real world journeys to secure the digital future, the right way! Follow the Zero Trust Forum on LinkedIn www.linkedin.com/company/zero-trust-forum/. Follow Jaye Tillson on LinkedIn - www.linkedin.com/in/jaye-tillson/ Follow John Spiegel on LinkedIn - www.linkedin.com/in/john-spiegel-2011543/
    Show more Show less
    39 mins
  • A Journey Back with Chris Denbigh-White

    A Journey Back with Chris Denbigh-White
    Jan 10 2025
    In this episode of No Trust, Jaye Tillson, and John Spiegel discuss with Chris Denbigh-White his transition back to the corporate world as a CISO after a brief stint in the vendor space. They explore the challenges and benefits of networking at industry conferences, the importance of peer support and information sharing among security leaders, and the evolving security landscape as they look ahead to 2025. The conversation emphasizes the need for organizations to focus on the basics of cybersecurity, the potential role of AI in alleviating mundane tasks, and the necessity of building a solid security foundation before layering on advanced technologies. Takeaways • Transitioning from vendor to CISO brings new challenges • Networking at conferences is crucial for sharing experiences • Peer support groups can provide valuable insights • The security landscape in 2025 will focus on regulation and ransomware • Organizations must prioritize basic cybersecurity practices • AI can assist with mundane cybersecurity tasks • Building a solid foundation is essential for security • Sharing information among peers is becoming more accepted • The basics of cybersecurity are often overlooked for shiny new tools • Effective communication and user education are key to security success Follow & Subscribe on all Podcast platforms. link.chtbl.com/XIW5zsAn What is the Zero Trust Forum about? It’s about empowering zero trust security professionals with strategies, architecture, and real world journeys to secure the digital future, the right way! Follow the Zero Trust Forum on LinkedIn www.linkedin.com/company/zero-trust-forum/. Follow Jaye Tillson on LinkedIn - www.linkedin.com/in/jaye-tillson/ Follow John Spiegel on LinkedIn - www.linkedin.com/in/john-spiegel-2011543/
    Show more Show less
    48 mins
  • The Data Episode with Cher Fox

    The Data Episode with Cher Fox
    Dec 17 2024
    In this engaging conversation with Jaye Tillson and John Spiegel, Cher Fox shares her unique journey from a young programmer to a data fitness coach and public speaker. She discusses the importance of data quality, security, and governance, emphasizing that everyone in an organization shares responsibility for data management. Cher also highlights the challenges of implementing AI and the need for organizations to be prepared before adopting new technologies. Additionally, she addresses the future of data science careers and the importance of fostering curiosity about technology in younger generations. Takeaways • Cher Fox began her career at a young age, learning programming on a Commodore 64 • Data fitness coaching parallels personal training, focusing on data quality and purpose • Bad data leads to significant issues in organizations, impacting decision-making • Everyone in an organization shares responsibility for data management • Data governance is a complex but necessary undertaking for businesses • Only a small percentage of organizational data meets quality standards • Many companies are unprepared for the implementation of AI technologies • Hiring practices need to evolve to allow diverse talent into data roles • Youth today are overexposed to technology, impacting their curiosity • Cher emphasizes the importance of fitness and physical activity in her life Follow & Subscribe on all Podcast platforms. link.chtbl.com/XIW5zsAn What is the Zero Trust Forum about? It’s about empowering zero trust security professionals with strategies, architecture, and real world journeys to secure the digital future, the right way! Follow the Zero Trust Forum on LinkedIn www.linkedin.com/company/zero-trust-forum/. Follow Jaye Tillson on LinkedIn - www.linkedin.com/in/jaye-tillson/ Follow John Spiegel on LinkedIn - www.linkedin.com/in/john-spiegel-2011543/
    Show more Show less
    54 mins
  • Zero Trust Adoption with Roy Chua

    Zero Trust Adoption with Roy Chua
    Dec 9 2024
    In this episode, Jaye Tillson and John Spiegel discuss with Roy Chua the evolving landscape of Zero Trust and SASE across different regions. They explore the challenges organizations face in implementing Zero Trust, the importance of governance, and the need for simplification in security tools. The conversation also highlights the significance of quick wins in Zero Trust implementation, the current state of SASE, and the concept of Universal Zero Trust. The episode concludes with a discussion on vendor diversity and the importance of community engagement in sharing knowledge and experiences. Takeaways • Zero Trust is recognized globally as essential for security • Many organizations struggle with the practical implementation of Zero Trust • Governance often leads to a checkbox mentality rather than genuine adoption • Simplifying security tools can enhance user experience and effectiveness • Identifying quick wins is crucial for gaining momentum in Zero Trust initiatives • Documentation on Zero Trust is often dense and vendor-specific • SASE is still evolving, with a need for simplification and integration • Universal Zero Trust aims to provide consistent security policies across environments • Diversity in security vendors can mitigate risks associated with single vendor reliance • Community engagement is vital for sharing best practices and learning from each other Follow & Subscribe on all Podcast platforms. link.chtbl.com/XIW5zsAn What is the Zero Trust Forum about? It’s about empowering zero trust security professionals with strategies, architecture, and real world journeys to secure the digital future, the right way! Follow the Zero Trust Forum on LinkedIn www.linkedin.com/company/zero-trust-forum/. Follow Jaye Tillson on LinkedIn - www.linkedin.com/in/jaye-tillson/ Follow John Spiegel on LinkedIn - www.linkedin.com/in/john-spiegel-2011543/
    Show more Show less
    37 mins
  • Introducing the Zero Trust Forum with Jaye Tillson & John Spiegel

    Introducing the Zero Trust Forum with Jaye Tillson & John Spiegel
    Dec 9 2024
    In this episode, Jaye and John discuss the rebranding of their podcast to focus on Zero Trust in cybersecurity. They explore the importance of Zero Trust as a strategy, share insights on community engagement, and reflect on personal experiences, including Thanksgiving culinary traditions. The conversation emphasizes the need for resources and support in navigating the Zero Trust journey, inviting listeners to participate and contribute. Takeaways • We rebranded to focus on Zero Trust • Zero Trust is a critical strategy in cybersecurity • Community engagement is essential for sharing knowledge • We will review books and resources related to Zero Trust • Listeners are encouraged to reach out and participate • Thanksgiving traditions can spark culinary conversations • Food plays a significant role in cultural exchanges • We aim to help others avoid roadblocks in their Zero Trust journey • The new website is zerotrustforum.net • We want to hear from our listeners about topics and guests Follow & Subscribe on all Podcast platforms. link.chtbl.com/XIW5zsAn What is the Zero Trust Forum about? It’s about empowering zero trust security professionals with strategies, architecture, and real world journeys to secure the digital future, the right way! Follow the Zero Trust Forum on LinkedIn www.linkedin.com/company/zero-trust-forum/. Follow Jaye Tillson on LinkedIn - www.linkedin.com/in/jaye-tillson/ Follow John Spiegel on LinkedIn - www.linkedin.com/in/john-spiegel-2011543/
    Show more Show less
    11 mins