The De-Risking Business Podcast
By Apptega
The De-Risking Business PodcastFeb 08, 2024
The Hidden Gotchas Lurking Within Your Cyber Insurance Policy – and How to Overcome Them
Picture this: a data breach strikes, and just when you think your $5 million policy has you covered, it vanishes into thin air. Terrifying, right? In this episode, Tracy Fox, national channel sales director at Foresite Cybersecurity reveals the secrets to uncovering and tackling hidden insurance pitfalls and shares the essential guidance for building a compliance playbook that helps secure insurance and, more importantly, that covers you when you need it.
Identifying Weird to Unify Your Security
You know how some people learn to swim by being thrown into the deep end? That’s how most organizations approach implementing a cybersecurity compliance program, too. Not Cyber Guards, though. In this episode, we talk with Erik Holmes, CEO of Cyber Guards, about how to establish a compliance program that unifies your security program and business goals.
At the Intersection of Cybersecurity and...Costco?
You know how Costco treats their customers well, has a base membership fee, and sells their products with minimal markup? And how customers will drive basically any distance to shop there? Now imagine all that’s still true but there’s zero markup...and they’re selling cybersecurity products to help safeguard your business. That’s exactly the model that Kelly Hammons, CEO and VP of customer success at Secutor, launched – and it’s been incredibly successful.
A Culture of Security
As an MSP, it can be frustrating when you work hard to establish a compliance program for a client, only to discover that it's not being properly adopted. In this episode, Garrett Brown, president and co-founder of Ihloom, explains how he guides organizations in building a robust compliance program from the ground up. We also discuss Brown's method for cultivating a culture of security, enabling organizations to establish a sustainable cybersecurity program that gains support across all levels.
How AI Is Transforming Cybersecurity... and Cybercrime
Remember those phishing emails you used to get from Nigerian princes? Well now they're written in perfect grammar by generative AI, look real, and hit inboxes by the millions. Oh, and that video of your boss asking you to run down to Walgreens and buy hundreds of dollars of gift cards for clients? It looks like the CEO. It sounds like the CEO. But it's purely a figment of the internet's imagination. AI is a candy store for criminals. But it's also increasingly wielded by forward-thinking organizations to build robust counter-defenses and powerful cybersecurity programs. In this episode, we're joined by Ian Paterson, CEO of Plurilock, the rapidly growing real-time cybersecurity solution that uses artificial intelligence to identify, prevent, and eliminate insider threats. Ian gives real-world examples of how businesses can leverage AI to secure their most important assets and amplify their resources -- and shares considerations for its responsible use during a period of swift change.
For more resources, visit plurilock.com/safetyforai and connect with Ian at https://www.linkedin.com/in/ianlpaterson/.
In Perfect Harmony
Mapping a cybersecurity compliance program to a specific framework is challenging enough. What if you have to account for multiple frameworks? Multiple regulators? A constantly changing universe of requirements? 😱 In this episode, Paul Horn, founder and CEO of H2Cyber, shares guidance on how to build and manage a "harmonized" multi-framework program that achieves economies of scale and minimizes business disruption.
The Security vs. Productivity Dilemma
"There's a fine line between being a secure organization and being a productive organization," says James Ogier, Resolution IT's resident senior information security consultant and this week's guest on the pod. "A secure organization can just disconnect... but you're not going to get any work done." And therein lies the rub. So how do you rightsize your security approach so that it's proportional both to your compliance obligations and, ultimately, to the goals of the business? We dig in.
Learning to Sell Value—Not Features
"Where I feel most comfortable is nerding out on technology," our guest Tiffany Ricks explains. "And I lost a lot of deals before I learned that, often, software buyers don't care about technology—they care about how technology *helps*." In this episode, the HacWare founder and CEO shares how MSPs can value sell and overcome common go-to-market challenges.
The Path to Cybersecurity Compliance for SMBs
Just dipping your toe into the cybersecurity compliance pool? Well the water's warm. Come on in... In this episode of Apptega Cybersecurity Podcast, Chris Brackett, owner and CEO of security-focused MSP Greater Nashua Technology Consulting, joins us to address how small and emerging businesses can get started on their journey, some of the challenges they should expect to face, and how forward-thinking MSPs can successfully guide them down the path to compliance.
Those Who *Can* Consult
A LinkedIn people search for "cyber security consultant" yields 36,000 hits. How do you find a good one? In this episode of Apptega Cybersecurity Podcast, presented by Apptega, Michael Faas, director of strategy and risk at MorganFranklin Consulting, and James Jackson, sr. manager of cybersecurity strategy and GRC, share how their in-house experiences informed their approach to consulting, give tips for identifying successful partners, and share the roadmap for a long-term relationship.
Your CMMC Life Coach
Think CMMC is just an expensive box to check? Hmmm. Think again. "It's not a project. It's a lifestyle." So says David Endicott, a risk assessor and CMMC guru at Cyber74. With the framework quickly approaching (or slowly approaching -- it's unclear), David walks you step-by-step through the hurdles you'll need to clear to get and, importantly, stay certified under the DoD's forthcoming regulations.
What We Talk About When We Talk About vCISOs
A recent ISC workforce study estimated a global workforce shortage of more than 3.4 million cybersecurity personnel. And to say that organizations have struggled to fill that talent gap is an understatement. Enter the vCISO: part strategic advisor, part boots on the ground, part exec-level security champion. In this episode, we chat with Heather Lantz, SVP of Cybersecurity Services at Ascend Technologies, about what to look for in a vCISO, how an organization can get the most out of that relationship, and what MSSPs should prioritize when hiring and staffing the role. You can find more from Heather on LinkedIn at https://www.linkedin.com/in/heatherllantz/.
How to Build a Thriving Cybersecurity Business
With more than 40,000 MSPs and MSSPs in the U.S. alone, and an exploding number of products, the cybersecurity market is harder to navigate than ever before—for consumers AND providers. That's why we asked Zach Fuller to join the pod. Zach and his partners founded Silent Sector seven years ago and quickly made a name for themselves — and built a fast-growing business — by emphasizing expertise, establishing personal relationships with customers, and leading with a purpose-driven mission.
In this episode, he discusses how they built Silent Sector from the ground up, shares mistakes and lessons learned along the way, and gives tips for avoiding the fluff, the hype and the false promises that are rife in the industry.
For more from Zach and Silent Sector, check out his Cyber Rants podcast at https://www.silentsector.com/podcast and the best-selling Cyber Rants book here: https://www.amazon.com/Cyber-Rants-Embellished-Cybersecurity-Frameworks-ebook/dp/B08DXWNRFQ
The Calm Before the CMMC Storm
The CMMC waiting game is almost over – well, kinda – and the requirements set to take effect look a whole lot different than the requirements the DoD initially conceived. In this episode of Apptega Cybersecurity Podcast, we chat with resident expert Carl Carpenter, CEO of Arrakis Consulting and erstwhile skydiver, about what the final version of CMMC might entail, how it will be enforced, and what steps organizations pursuing government work must take to meet its regulations. For more from Carl, check out his YouTube channel here: https://www.youtube.com/@arrakisconsulting
The Comprehensive Value of Investing in Both Cybersecurity and Cyber Insurance
Apptega’s recent conversation with Robert Merva, owner and CEO of the security-focused managed services provider Avrem Technologies, and Mercy Komar, an insurance advisor and risk manager at L. Calvin Jones Insurance, details the relationship between cybersecurity and cyber insurance and what you need to know about both.