To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Search a title or topic

Over 20 million podcasts, powered by 

Player FM logo
Artwork

Tech MBA Business Careers Mark Hardys CISO Tradecraft®
Content provided by CISO Tradecraft®. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by CISO Tradecraft® or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://player.fm/legal.

Similar to CISO Tradecraft®

Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

CISO Tradecraft® « »
#217 - Includes No Dirt (with Bill Dougherty)

44:59
 
Play
Playing
Share
 

MP3Episode home
Manage episode 463389470 series 2849492
Content provided by CISO Tradecraft®. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by CISO Tradecraft® or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

In this episode of CISO Tradecraft, host G. Mark Hardy sits down with Bill Dougherty, CISO of Omada Health, to discuss a groundbreaking threat model called 'Includes No Dirt'. This comprehensive model integrates security, privacy, and compliance considerations, aiming to streamline and enhance threat modeling processes. The conversation covers the origin and principles of the model, its applicability across different sectors, and the essential aspects of threat modeling. Listeners are also treated to insights on handling third-party risks and adapting to emerging AI challenges. The episode provides practical advice for cybersecurity leaders looking to effectively manage and mitigate risks while reducing redundancy.

Big Thanks to our Sponsors:

ZeroPath - https://zeropath.com/

CruiseCon - Use code CISOTRADECRAFT10 at https://cruisecon.com/ for 10% off registration!

The No DIRT Threat Model can be found here: http://www.includesnodirt.com/nodirt.pdf

Transcripts: https://docs.google.com/document/d/1vWq4Zx7pzM_B65W933m8_TE0fLKaUw3X

Chapters

  • 03:27 The Genesis of Includes No Dirt
  • 05:05 Combining Security, Privacy, and Compliance
  • 07:24 Implementing the No Dirt Model
  • 11:42 Scoring and Evaluating Risks
  • 17:41 Third-Party Risk Management
  • 25:49 Evaluating SaaS Requests Based on Risk
  • 27:55 Adapting Threat Models for AI
  • 31:24 Principles of Minimum Necessary Data
  • 33:42 General Applicability of Security Principles
  • 35:12 Includes No Dirt: A Comprehensive Threat Model
  • 40:15 Final Thoughts and Recommendations
  continue reading

238 episodes

#Tech #MBA #Business #Careers #Mark Hardys #CISO Tradecraft®
Artwork

#217 - Includes No Dirt (with Bill Dougherty)

CISO Tradecraft®

43 subscribers

published

Play Playing
iconShare
 
MP3Episode home
Manage episode 463389470 series 2849492
Content provided by CISO Tradecraft®. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by CISO Tradecraft® or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

In this episode of CISO Tradecraft, host G. Mark Hardy sits down with Bill Dougherty, CISO of Omada Health, to discuss a groundbreaking threat model called 'Includes No Dirt'. This comprehensive model integrates security, privacy, and compliance considerations, aiming to streamline and enhance threat modeling processes. The conversation covers the origin and principles of the model, its applicability across different sectors, and the essential aspects of threat modeling. Listeners are also treated to insights on handling third-party risks and adapting to emerging AI challenges. The episode provides practical advice for cybersecurity leaders looking to effectively manage and mitigate risks while reducing redundancy.

Big Thanks to our Sponsors:

ZeroPath - https://zeropath.com/

CruiseCon - Use code CISOTRADECRAFT10 at https://cruisecon.com/ for 10% off registration!

The No DIRT Threat Model can be found here: http://www.includesnodirt.com/nodirt.pdf

Transcripts: https://docs.google.com/document/d/1vWq4Zx7pzM_B65W933m8_TE0fLKaUw3X

Chapters

  • 03:27 The Genesis of Includes No Dirt
  • 05:05 Combining Security, Privacy, and Compliance
  • 07:24 Implementing the No Dirt Model
  • 11:42 Scoring and Evaluating Risks
  • 17:41 Third-Party Risk Management
  • 25:49 Evaluating SaaS Requests Based on Risk
  • 27:55 Adapting Threat Models for AI
  • 31:24 Principles of Minimum Necessary Data
  • 33:42 General Applicability of Security Principles
  • 35:12 Includes No Dirt: A Comprehensive Threat Model
  • 40:15 Final Thoughts and Recommendations
  continue reading

238 episodes

#Tech #MBA #Business #Careers #Mark Hardys #CISO Tradecraft®

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Similar to CISO Tradecraft®

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play
icon
Help/FAQ | Advertise with Us
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2025 | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox
Listen to this show while you explore
Play