To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Search a title or topic

Over 20 million podcasts, powered by 

Player FM logo
Artwork

Tech MBA Business Joshua Nicholson
Content provided by Joshua R Nicholson and Joshua Nicholson. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Joshua R Nicholson and Joshua Nicholson or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Cyber Security America « »
Cybersecurity’s Golden Rule: The Legal Blueprint No One Shares

48:07
 
Play
Playing
Share
 

MP3Episode home
Manage episode 500565909 series 3563154
Content provided by Joshua R Nicholson and Joshua Nicholson. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Joshua R Nicholson and Joshua Nicholson or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

In this episode, sponsored by Darkstack7, Joshua sits down with Chris Cronin, partner at Halock Security Labs and founding partner of Reasonable Risk, to explore the intersection of cybersecurity, risk management, and the legal principles behind “reasonable” safeguards. Chris unpacks the DoCRA Standard and CIS RAM, sharing how historical and legal frameworks can guide today’s cybersecurity strategies. From his journey in academia to his leadership in cyber risk, Chris offers practical insights on balancing risk, ensuring compliance, and applying reasonable security measures that stand up to regulatory and legal scrutiny. The discussion covers real-world risk assessments, notable legal cases, and emerging tools that automate and enhance risk management.

Key Topics: - How the DoCRA Standard and CIS RAM shape practical risk analysis

  • Applying “reasonableness” from legal precedent to cybersecurity
  • Balancing regulatory specificity with operational flexibility
  • The role of community and professional standards in defining reasonable safeguards
  • Historical analogies, insurance considerations, and executive decision-making in risk management Timestamps:
  • 00:00 Introduction to Cybersecurity Challenges
  • 00:26 Meet Chris: A Cybersecurity Expert
  • 01:25 Chris’s Journey into Cybersecurity
  • 02:50 Where Law Meets Cybersecurity
  • 04:37 Defining Reasonable Security Measures
  • 06:37 Regulations and Compliance in Practice
  • 08:24 The Legal Concept of Reasonableness
  • 10:22 Translating Legal Standards into Cyber Practices
  • 14:53 Practical Risk Analysis Steps
  • 21:20 Balancing Flexibility and Specificity in Regulations
  • 24:54 Professional Standards That Shape Reasonableness
  • 25:49 Certifications and Industry Benchmarks
  • 26:17 How Community Shapes Standards
  • 26:34 Lessons from Aviation for Cybersecurity
  • 28:29 The CIS RAM and Risk Assessment Methods
  • 30:51 Legal Implications of Adopting Reasonableness
  • 32:16 Insurance and Risk Management
  • 34:38 Challenges in Incident Response Reporting 39:40 Risk Assessments for Executive Decision-Making
  • 46:02 Closing Thoughts and Call to Action

www.darkstack7.com

  continue reading

41 episodes

#Tech #MBA #Business #Joshua Nicholson
Artwork

Cybersecurity’s Golden Rule: The Legal Blueprint No One Shares

Cyber Security America

published

Play Playing
iconShare
 
MP3Episode home
Manage episode 500565909 series 3563154
Content provided by Joshua R Nicholson and Joshua Nicholson. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Joshua R Nicholson and Joshua Nicholson or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

In this episode, sponsored by Darkstack7, Joshua sits down with Chris Cronin, partner at Halock Security Labs and founding partner of Reasonable Risk, to explore the intersection of cybersecurity, risk management, and the legal principles behind “reasonable” safeguards. Chris unpacks the DoCRA Standard and CIS RAM, sharing how historical and legal frameworks can guide today’s cybersecurity strategies. From his journey in academia to his leadership in cyber risk, Chris offers practical insights on balancing risk, ensuring compliance, and applying reasonable security measures that stand up to regulatory and legal scrutiny. The discussion covers real-world risk assessments, notable legal cases, and emerging tools that automate and enhance risk management.

Key Topics: - How the DoCRA Standard and CIS RAM shape practical risk analysis

  • Applying “reasonableness” from legal precedent to cybersecurity
  • Balancing regulatory specificity with operational flexibility
  • The role of community and professional standards in defining reasonable safeguards
  • Historical analogies, insurance considerations, and executive decision-making in risk management Timestamps:
  • 00:00 Introduction to Cybersecurity Challenges
  • 00:26 Meet Chris: A Cybersecurity Expert
  • 01:25 Chris’s Journey into Cybersecurity
  • 02:50 Where Law Meets Cybersecurity
  • 04:37 Defining Reasonable Security Measures
  • 06:37 Regulations and Compliance in Practice
  • 08:24 The Legal Concept of Reasonableness
  • 10:22 Translating Legal Standards into Cyber Practices
  • 14:53 Practical Risk Analysis Steps
  • 21:20 Balancing Flexibility and Specificity in Regulations
  • 24:54 Professional Standards That Shape Reasonableness
  • 25:49 Certifications and Industry Benchmarks
  • 26:17 How Community Shapes Standards
  • 26:34 Lessons from Aviation for Cybersecurity
  • 28:29 The CIS RAM and Risk Assessment Methods
  • 30:51 Legal Implications of Adopting Reasonableness
  • 32:16 Insurance and Risk Management
  • 34:38 Challenges in Incident Response Reporting 39:40 Risk Assessments for Executive Decision-Making
  • 46:02 Closing Thoughts and Call to Action

www.darkstack7.com

  continue reading

41 episodes

#Tech #MBA #Business #Joshua Nicholson

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play
icon
Help/FAQ | Advertise with Us
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2025 | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox
Listen to this show while you explore
Play