Socializing Security

In this episode, we discuss the importance of security and compliance for everyone in an organization. We emphasize that security is not just the responsibility of cybersecurity experts or compliance professionals, but something that every employee needs to be aware of. We highlight the risks of human error and the need for a culture of compliance and security within the organization. The conversation also touches on the challenges of security training and the importance of regular communication and reinforcement of security practices.Chapters00:00 Introduction01:24 Security and Compliance: Everyone's Responsibility06:06 The Risks of Human Error in Security10:59 Creating a Culture of Compliance and Security19:05 The Importance of Regular Communication and Reinforcement28:13 Conclusion

In this episode, we talk to Frank Arriaga, the owner of HMO Studios, a photography and videography shop, about how his background in disaster recovery and cloud services applies to protecting his own business and his clients' data. He emphasizes the importance of planning and building a data backup strategy from the beginning, the need for privacy and security in the photography industry, how copyright and data distribution are critical services for his customers, and the unique challenges and significance of data protection and business continuity in the photography and videography space.
Contact Frank and learn more about HMO Studios: https://hmostudios.com/
 
Chapters
00:00 Introducing This Week's Guest: Frank Arriaga
03:15 Introduction to Frank and HMO Studios
07:33 Transitioning from Selling Solutions to Being a Consumer
09:56 Creating a Data Backup Strategy: Internal vs. Outsourced
13:01 Providing Marketable Services: Protecting and Reprinting Photos
15:50 Beneficiaries for Sensitive Data: Business and Personal Use Cases
18:54 Including External Pieces in the Business Continuity Plan
23:03 The Connection Between Security, Privacy, and Accessibility
24:49 Planning for Business Scenarios and Continuity
27:36 Navigating Terms and Conditions for Social Media Platforms
29:55 Privacy and Security: Inseparable and Valued
32:49 Reacting to Frank's Story
37:12 Outro

In this episode, we talk about the risk of data breaches and how to time a data breach announcement. We talk about the recent AT&T example and discuss incident response, customer reporting, regulatory involvement, and customer compensation. Is credit monitoring enough?
 

In this episode, we discuss the challenges and considerations of starting a business, including the importance of building processes and templates, the need for redundancy and disaster recovery planning, and the struggle of balancing multiple roles and responsibilities. They also touch on the trust and legitimacy that comes with having well-documented processes and procedures in place.00:00 Introduction01:45 The Many Decisions of Startups06:46 Startup Prioritization and Building Trust10:50 Ensuring Security and Efficiency17:29 Structure for Success22:51 Maturing Startup Culture26:05 The Challenges of a Small Team30:01 Startup Disaster Planning34:44 Closing Out

In this episode, we interview Steve Sims, a former founder of an MSSP and cybersecurity expert. Together we discuss the importance of focusing on the basics of security, especially in the SMB space. Steve emphasizes the need for inventory control of hardware and software assets, secure configurations, and understanding critical data.

How a system fails is almost as important as how it works. Whether that be how a system reacts to a power outage or failed password attempts, anticipating these failure scenarios and ensuring safety is properly prioritized requires thoughtful planning. The need for balance between protecting consumers and maximizing profits, and the positive developments in consumer protection laws are also discussed.
Milou's LinkedIn post about parking garage liability: https://www.linkedin.com/posts/milou-lammers-meier-9815824b_complianceinthewild-clearandconspicous-atx-activity-7182033206483775488-MmrA
00:00 Intro02:40 Exploring Failure and Compliance08:45 A Real World Example of Failure and Compliance13:01 Consumer Risk and Compliance22:22 Balancing Consumer Protection and Profit Maximization25:24 Finding a Positive Note in Failure32:53 Wrapping Up34:19 Outro

In this episode, we discuss the impact of content creation on individuals and professionals. We explore topics such as the use of AI in content creation, issues related to copyright infringement, data labeling, and the challenges and opportunities that content creators face in the digital age.TedTalk about content creation: https://youtu.be/Uzo8VBiyxOM?t=345 Trevor Noah keynote from IAPP 2023: https://iapp.org/news/a/trevor-noah-warns-of-unintended-consequences-of-techs-advancement-at-iapp-gps-2023/Chapters 00:00 Introduction 01:01 Content Creation and its Impact 04:59 Data Labeling and Internal vs External Data 08:44 AI and Content Creation 10:06 Legal Case: New York Times vs OpenAI 13:14 Concerns about AI and Context 15:51 US Patent Office and Generative AI 21:37 The impact of AI on content creation 23:46 Using others' work in content creation 30:22 The volume of content and copyright infringement 33:46 The evolving landscape of content creation 37:19 Socializing With Us 38:32 Outro

In this episode, we discuss the science of marketing with Eric Wright - a technologist, product marketer, and startup advisor. The discussion touches on the psychology of sales and marketing, highlighting the importance of building trust, reciprocity, and integrity in the sales process.

In this episode, we discuss the challenges and importance of vendor due diligence, explore the reasons why the term 'due diligence' often elicits a negative reaction, highlight the need for cross-functional collaboration, and emphasize the importance of automation and continuous monitoring to ensure compliance and security standards are met throughout the vendor relationship.

In this episode, we discuss the career of Josh Kuntz, a Chief Information Security Officer (CISO) with an impressive background working with state government agencies in Texas. We discuss the importance of mentorship, the need for diversity of thought and experience in building a strong cybersecurity team, and the importance of clear communication and trust within a team.