Best CISO Series Podcasts (2025)

1
We All Agree That Prevention Is the Best Advice We're Never Going to Follow 44:27

Play Pause

1h ago44:27

44:27

All links and images can be found on CISO Series. This week’s episode is hosted by David Spark, producer of CISO Series and Andy Ellis, principal of Duha. Joining us is Jason Loomis, CISO, Freshworks. In this episode: Making organizations take their security medicine Building CISO support systems Holding the door for humans Underappreciated risks: …

1
ShinyHunters hits Vietnam, Petya-NotPetya copycat appears, CISA wants CVE 8:44

3h ago8:44

8:44

ShinyHunters hits Vietnam National Credit Information Center HybridPetya is a Petya/NotPetya copycat with UEFI Secure Boot bypass CISA seeks control over CVE Huge thanks to our sponsor, Drata Leading security teams trust SafeBase by Drata to turn trust into a growth engine. Our enterprise-grade Trust Center puts your security posture in one secure,…

1
Ep. 321 - Security Awareness Series - Trust But Verify Even Under Abnormal Circumstances: A Red Team Story with Chris and Faith 29:29

20h ago29:29

29:29

Today on the Social-Engineer Podcast: The Security Awareness Series, Chris is joined by Faith Kent. Together, they delve into the critical role of effective communication, the art of role adaptation, and the psychological dynamics in crisis situations. The conversation highlights the importance of proactive preparedness and fostering trust within t…

1
Week in Review: Qantas penalizes executives, UK cyberlegislation delayed, SonicWall VPN flaws 37:26

2h ago37:26

37:26

Link to episode page This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guests Rob Teel, CTO, Oklahoma Department of Commerce and Howard Holton, CEO, GigaOm Thanks to our show sponsor, Vanta Do you know the status of your compliance controls right now? Like…right now? We know that real-time visibility is critic…

1
SonicWall VPM exploits, Fed cyberchief’s priorities, U.S spyware investment triples 8:18

2h ago8:18

8:18

SonicWall SSL VPN flaws now being actively exploited Acting federal cyber chief outlines his priorities U.S. based investors in spyware firms nearly tripled in 2024 Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like...right now? We know that real-time visibility is critical for security, but when it…

1
npm update, Cursor Autorun flaw details, Microsoft probe over Ascension hack? 8:03

2h ago8:03

8:03

The npm incident: nothing to fret about? Cursor Autorun flaw lets repositories execute code without consent Senator Wyden urges FTC to probe Microsoft over Ascension hack Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like...right now? We know that real-time visibility is critical for security, but w…

1
Responsible AI or Responsible Marketing? A CISO’s Take 47:30

6d ago47:30

47:30

"I get it. I need to stop banging on the table. This will be fixed in future episodes. Sorry for the poor sound experience." - David Get your Responsible AI Vendor Due Diligence Checklist here: https://webforms.pipedrive.com/f/ccV6a7kFIWKZpodmLcDbBhKhYnVU5N81A2tM20DGC8gepc0UtzfcqYaHXfzBi8gzuz Episode Summary: In this episode of The Professional CIS…

1
Blood center attack details emerge, Electoral Commission recovers, Plex suffers password breach 7:23

28m ago7:23

7:23

Thousands had data leaked in blood center ransomware attack UK Electoral Commission recovers, 3 years after China hack Npm packages with 2 billion weekly downloads targeted in supply chain attack Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like...right now? We know that real-time visibility is cri…

1
GhostAction campaign, scam centers grow, GPUGate hits IT 7:44

1h ago7:44

7:44

GhostAction campaign targets GitHub Scam centers see huge growth in Myanmar GPUGate targets IT firms Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like...right now? We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time checks. But …

1
SVG phishing campaign, Anthropic piracy lawsuit, Qantas penalizes executives 8:45

23h ago8:45

8:45

New malware phishing campaign hidden in SVG files Anthropic agrees to pay $1.5bn in book piracy lawsuit Qantas penalizes executives for cyberattack Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like...right now? We know that real-time visibility is critical for security, but when it comes to our GRC…

1
Ep. 320 - Human Element Series - Using Gestures To Enhanced Communications with Lauren Gawne 33:03

1d ago33:03

33:03

Today we are joined by Lauren Gawne. Lauren is a Senior Lecturer in linguistics at La Trobe University. Her work focuses on understanding how people use gestures and grammar, with a particular focus on cross-cultural gesture use. Lauren also does research on emoji, scicomm and the grammar of Tibetan languages in Nepal. [Sept 8, 2025] 00:00 - Intro …

1
Week in Review: Baltimore’s expensive gaffe, ransomware takedown outcomes, Workiva Salesforce breach 27:47

3d ago27:47

27:47

Link to episode page This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Ray Espinoza, vp of information security, Elite Technology Thanks to our show sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day …

1
France cookie fines, CISA TP-Link KEV, sports piracy takedown 8:43

4d ago8:43

8:43

France fines Google and Shein over cookie misconduct CISA adds more TP-Link routers flaws to its KEV catalog World’s largest sports piracy site shut down Huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomwar…

1
Fintech foils bank heist, NotDoor backdoor, Salesloft-Drift impact continues drifting 8:02

5d ago8:02

8:02

Fintech foils bank heist NotDoor backdoor Salesloft-Drift impact continues drifting Huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. ThreatLocker operates with a default deny approach to reduce the at…

1
Google: Gmail is secure, Cloudflare blocks largest DDoS attack, Amazon shutters theft campaign 6:55

6d ago6:55

6:55

'2.5 billion Gmail users at risk'? Entirely false, says Google Cloudflare blocks largest recorded DDoS attack peaking at 11.5 Tbps Jaguar Land Rover says cyberattack ‘severely disrupted’ production Huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect bu…

1
We're All for a Responsible AI Rollout as Long as It Goes as Fast as Possible 40:00

7d ago40:00

40:00

All links and images can be found on CISO Series. This week’s episode is hosted by David Spark, producer of CISO Series and Mike Johnson, CISO, Rivian. Joining them is Jennifer Swann, CISO, Bloomberg Industry Group. In this episode: Vulnerability management vs. configuration control Open source security and supply chain trust Building security lead…

1
LLM legalese prompts, Maryland Transit cyberattack, hacking into university 8:04

10d ago8:04

8:04

LegalPwn technique hides LLMs prompts inside contract legalese Maryland Transit investigating cyberattack Hacker attempts to forge his way into Spanish university Huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and …

1
Ep. 319 - The Doctor Is In Series - Can You Trust Your Gut? - All About Intuition 27:05

8d ago27:05

27:05

Welcome to the Social-Engineer Podcast: The Doctor Is In Series – where we will discuss understandings and developments in the field of psychology. In today’s episode, Chris and Abbie delve into the fascinating world of intuition and gut feelings. They explore whether these instincts are rooted in biology or shaped by past experiences and discuss t…

1
Velociraptor C2 tunnel, Baltimore’s expensive con, ransomware gangs multiply 8:11

8d ago8:11

8:11

Velociraptor forensic tool used for C2 tunneling City of Baltimore gets socially engineered to the tune of $1.5 million Ransomware gang takedowns create more smaller groups Huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day at…

1
Week in Review: Citrix RCE flaw, steganography revived, major telecom fiasco 28:02

13d ago28:02

28:02

Link to episode page This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Johna Till Johnson, CEO and founder, Nemertes Thanks to our show sponsor, Prophet Security Ever feel like your security team is stuck in a loop of alert fatigue and manual investigations? Meet Prophet Security. Their Agentic AI SOC Pl…

1
Malicious nx Packages, AI worker scam, Salt Typhoon attacks Netherlands 8:56

18d ago8:56

8:56

Malicious nx Packages leak GitHub, Cloud, and AI Credentials North Korean remote worker scheme boosted by generative AI The Netherlands announces Salt Typhoon penetration Huge thanks to our sponsor, Prophet Security Security teams are drowning in alerts - many companies generate upwards of 1000 or more alerts a day, and nearly half go ignored. That…

1
Salt Typhoon expands, AI-powered ransomware, Anthropic warns of vibe-hacking 7:39

15d ago7:39

7:39

FBI warns of expanded Chinese hacking campaign AI-powered ransomware is a thing now Anthropic warns about “vibe-hacking” Huge thanks to our sponsor, Prophet Security SOC analyst burnout is real - repetitive tasks, poor tooling, and constant alert noise are driving them out. Prophet Security fixes this. Their Agentic AI Analyst handles alert triage …

1
DOGE puts critical SS data at risk? CISA warns of new exploited flaw, K-Pop stock heist attacker extradited to South Korea 7:10

16d ago7:10

7:10

DOGE Put Critical Social Security Data at Risk, Whistle-Blower Says CISA warns of actively exploited Git code execution flaw Alleged mastermind behind K-Pop celebrity stock heist extradited to South Korea Huge thanks to our sponsor, Prophet Security Your security analysts didn’t sign up to chase false alarms all day. With Prophet Security’s AI SOC …

1
New Study Finds No Email Has Ever “Found You Well” 34:13

14d ago34:13

34:13

All links and images can be found on CISO Series. This week’s episode is hosted by me, David Spark, producer of CISO Series and Mike Johnson, CISO, Rivian. Joining us is David Cross, CISO, Atlassian. In this episode: Breaking the Sales Cycle Leadership Under Fire Predicting the Unpredictable Security Startups' Security Paradox A huge thanks to our …

1
Farmers Insurance also hit by Salesforce breach, UpCrypter phishing campaign, Pakistan hits Indian government agencies 8:20

14d ago8:20

8:20

If Salesforce flutters its wings in San Francisco... How is this still tricking people? From tagging to bagging Huge thanks to our sponsor, Prophet Security Security teams are drowning in alerts - many companies generate upwards of 1000 or more alerts a day, and nearly half go ignored. That’s where Prophet Security comes in. Their AI SOC platform a…

1
Ep. 318 - The 4th Monday Series - Finding Stable Employment in a Crazy Economy with Bobby Knost 29:10

19d ago29:10

29:10

Welcome to the Social-Engineer Podcast: The 4th Monday Series with Chris Hadnagy and Mike Holfeld. Chris and Mike will be covering cutting edge global news to help people remain safe, secure and knowledgeable in a world where it is hard to know what is real and what is fake news. Today Chris and Mike are joined by Bobby Knost. Bobby is a proud memb…

1
Malicious Go module, new Mirai botnet, Silk Typhoon exploits cloud 9:26

15d ago9:26

9:26

Malicious Go module steals credentials via Telegram Mirai-based botnet resurfaces targeting systems globally Silk Typhoon hackers exploit cloud trust to hack downstream customers Huge thanks to our sponsor, Prophet Security Ever feel like your security team is stuck in a loop of alert fatigue and manual investigations? Meet Prophet Security. Their …

1
Week in Review: Celebrating 5 years of Cyber Security Headlines 45:50

17d ago45:50

45:50

Link to episode page This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino. This is our milestone edition, celebrating five years of the daily Cyber Security Headlines news podcast. Our guests today will be the CSH reporters themselves, reflecting on some stories from this week as well as their favorite stories from th…

1
Apple’s urgent update, Scattered Spider sentence, Microsoft seeks SSD feedback 8:44

18d ago8:44

8:44

Apple urges iPhone, iPad and Mac update ASAP Scattered Spider operative gets 10 years and a big fine Microsoft seeks customer feedback on SSD failure issues Huge thanks to our sponsor, Conveyor Does logging into a portal security questionnaire feel like punishment? We get it. Other solutions offer browser extensions that require you to do all the c…

1
Apple zero-day patch, Jailbreaking ChatGPT-5 Pro, 7-year old Cisco Vulnerability exploited 8:57

19d ago8:57

8:57

A patch today keeps the zero-day away Jailbreaking ChatGPT-5 Pro The thing about vulnerabilities is they stay vulnerable Huge thanks to our sponsor, Conveyor It’s Thursday. Have you been personally victimized by a portal security questionnaire this week? Most solutions just give you a browser extension to copy and paste answers in, still leaving ho…

1
AI Adoption vs. Security Reality — Insights from GPSEC STL 17:01

27d ago17:01

17:01

Sponsors: ObservoAI (www.observo.ai) Guidepoint Security (www.guidepointsecurity.com) Episode Summary: AI isn’t just hype anymore — it’s transforming the way enterprises operate. At GPSEC St. Louis, David Malicoat sits down with Felix Simmons, Principal Security Architect at GuidePoint Security, to cut through the noise around AI adoption, risk, an…

1
UK drops Apple backdoor mandate, Allianz Life breach impacts 1.1M, attack stifles speed cameras 7:13

20d ago7:13

7:13

UK agrees to drop 'backdoor' mandate for Apple devices Massive Allianz Life data breach impacts 1.1M people Speed cameras knocked out after cyber attack Huge thanks to our sponsor, Conveyor If portal questionnaires were a person, you’d block them by now. Endless clicks, bad navigation, and expanding questions stacked like russian nesting dolls, all…

1
I Just Can’t Communicate With the Business. I’ve Tried Condescension AND Derision. 35:44

24d ago35:44

35:44

All links and images can be found on CISO Series. This week’s episode is hosted by me, David Spark, producer of CISO Series and Andy Ellis (@csoandy), principal of Duha. Joining us is Gary Chan, CISO, SSM Health. Be sure to check out Gary's security mentalism website: https://www.gschan2000.com. In this episode: Decision-making with incomplete info…

1
Workday breach, post-quantum alliance, Chinese group targets Taiwan 8:15

21d ago8:15

8:15

Workday confirms data breach An alliance to unify post-quantum cryptography New Chinese threat actor targeting Taiwan Huge thanks to our sponsor, Conveyor If the thought of logging into a portal questionnaire makes you want to throw your laptop away, you’re not alone. Most solutions just give you a browser extension to copy and paste answers, still…

1
Agentic AI in the SOC: Risk, Reliability, and the Future of Security Operations 36:32

28d ago36:32

36:32

Agentic AI is moving from hype to reality, reshaping how enterprises operate, and how cyber defenders must adapt. In this CyberTalks episode, Mark Gillett (Chief Product Officer, eSentire) is joined by Ben Wilde (Head of Innovation, Georgian) to break down the risks, reliability challenges, and opportunities presented by autonomous AI agents. In th…

1
Cisco firewall warning, Colt Telecom cyberattack, CISA’s OT request 7:49

23d ago7:49

7:49

Cisco warns of maximum-severity defect in firewall software UK’s Colt Telecom suffers cyberattack CISA implores OT environments to lock down critical infrastructure Huge thanks to our sponsor, Conveyor Have you been personally victimized by portal security questionnaires? Conveyor is here to help. Endless clicks, bad navigation, and expanding quest…

1
Ep. 317 - Security Awareness Series - Are You Ready For A Breach? with Jowan and Chris 23:10

22d ago23:10

23:10

Today on the Social-Engineer Podcast: The Security Awareness Series, Chris is joined by Jowan Joseph. Chris and Jowan discuss the importance of effective communication, role adaptation, and the psychological aspects of crisis situations. The discussion emphasizes the need for proactive preparedness and building trust within teams to navigate challe…

1
Week in Review: ShinyHunters-Scattered Spider merge, DARPA AI prize, Water infrastructure volunteers 30:29

25d ago30:29

30:29

Link to episode page This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Steve Zalewski, co-host, Defense in Depth Thanks to our show sponsor, Vanta Do you know the status of your compliance controls right now? Like…right now? We know that real-time visibility is critical for security, but when it comes to…

1
NFC fraud reappears, Canada government breach, Zoom’s critical flaw 8:08

26d ago8:08

8:08

New wave of NFC relay fraud, call hijacking, and root exploits in banking sector Canada’s House of Commons suffers cyberattack Zoom fixes critical Windows client flaw that could enable privilege escalation Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like...right now? We know that real-time visibil…

1
Bonus Episode: The Human Edge of AI 50:02

28d ago50:02

50:02

In this episode, Ciaran and James are joined by SANS Chief of Research and Head of Faculty, Rob Lee, to tackle the one big issue on everyone’s mind, AI. Rob shares his expert insight on the rapid rise of AI, from mainstream adoption to cognitive impact, and examines the threats, opportunities, and where human judgment still matters. Contact: Have q…

1
Court filing system hack explained, PA AG weighs in on attack, Fortinet attacks raise concerns 7:22

27d ago7:22

7:22

Hack of federal court filing system exploited security flaws known since 2020 Pennsylvania attorney general says cyberattack knocked phone, email systems offline Spike in Fortinet VPN brute-force attacks raises zero-day concerns Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like...right now? We know…

1
EP82: Lessons from CISO XC DFW: Leadership, Risk & Real-World Security 38:04

1M ago38:04

38:04

Summary: Recorded live at CISO XC DFW, this episode of The Professional CISO Show features three powerful conversations from leaders shaping the future of cybersecurity. First, Sonya Wickel shares her 24-year career journey from IT generalist to CISO & CIO, offering insights on fourth-party risk, the value of empathy in leadership, and the importan…

1
Fortinet SSL VPNs getting hammered, The Netherlands critical infrastructure compromise, Africa the most targeted for cyber attacks 7:26

28d ago7:26

7:26

The hits just keep on coming Where's the Little Dutch Boy when you need him? I felt the ransomware down in Africa Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like...right now? We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-time…

1
Impressive! Our AI is Approaching “One 9” of Accuracy. 39:43

28d ago39:43

39:43

All links and images can be found on CISO Series. This week’s episode is hosted by me, David Spark, producer of CISO Series and Andy Ellis (@csoandy), principal of Duha. Joining us is our sponsored guest, Kevin Tian, co-founder and CEO, Doppel. In this episode: AI fraud gets on the juice Agentic AI demands a new security mindset The new frontier fo…

1
North Korean crypto theft, Microsoft rolls out back up, four charged in global scheme 9:07

1M ago9:07

9:07

North Korean crypto theft Microsoft rolls out PC back up during attack U.S. charges four in $100M global fraud scheme Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like...right now? We know that real-time visibility is critical for security, but when it comes to our GRC programs…we rely on point-in-…

1
DARPA code prize, ScarCruft adds ransomware, Columbia breach tally 8:21

30d ago8:21

8:21

DARPA awards $4 million prize for AI code review at DEF CON North Korea ScarCruft group adds ransomware to its activities Columbia University hack affects over 860,000 Huge thanks to our sponsor, Vanta Do you know the status of your compliance controls right now? Like...right now? We know that real-time visibility is critical for security, but when…

1
Ep. 316 - Human Element Series - Do It Scared, But Do It Anyway with Shang Saavedra 27:32

1M ago27:32

27:32

Today we are joined by Shang Saavedra, the Founder and CEO of Save My Cents, an influential personal-finance website and social-media platform. Saavedra teaches readers the key habits and behaviors needed to become less fearful of money and live life with joy. Saavedra was named one of the "25 Most Influential New Voices of Money" by TIME/NextAdvis…

1
Week in Review: UK LegalAid collapse, public ransomware approval, Salesforce breach impact 30:03

1M ago30:03

30:03

Link to episode page This week’s Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Montez Fitzpatrick, CISO, Navvis Thanks to our show sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-day attacks and ransomware. Th…

1
Hybrid Exchange flaw, France telecom breach, Dialysis company attack 7:44

1M ago7:44

7:44

Microsoft warns of high-severity flaw in hybrid Exchange deployments France’s third-largest mobile operator suffers breach Dialysis company’s April attack affects 900,000 people Huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybersecurity controls to protect businesses from zero-d…

1
Gemini AI hijacked, Nvidia rejects AI chip backdoors, phishers abuse Microsoft 365 6:23

1M ago6:23

6:23

Hackers hijacked Google’s Gemini AI with a poisoned calendar invite to take over a smart home Nvidia rejects US demand for backdoors in AI chips Google says hackers stole its customers’ data by breaching its Salesforce database Huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust endpoint security, offering cybers…