ByteWise

In this special Credit Union Edition of the ByteWise Podcast, Daniela, Brian, and Glen are joined by Tom Costello, CEO of Upstreme, to unpack the future of the Automated Cybersecurity Examination Tool (ACET) and its impact on credit unions.

For years, ACET has been the standard tool for cybersecurity self-assessments, but with its foundation—the FFIEC’s Cybersecurity Assessment Tool (CAT)—now officially sunset, credit unions must p...

Welcome back to ByteWise! October is right around the corner and it is Cybersecurity Awareness Month. This episode is packed with budget-friendly, creative ideas to boost security awareness in your organization and personal life. The four key themes of this year's Cybersecurity Awareness Month: strong passwords, multi-factor authentication (MFA), recognizing phishing, and updating software.

The hosts discuss why these "usual suspec...

In a departure from their usual tech-focused topics, Brian, Daniela, and Glen get personal in this Friday afternoon chat. They pull back the curtain on the realities of stress in the high-stakes world of IT and InfoSec. The team shares how stress manifests for them, the challenge of disconnecting in an "always-on" world, and the short-term and long-term strategies they use to decompress—from hobbies and workouts to the simple power...

In this episode of ByteWise, the team welcomes back Mark Carroll, founder of the Enterprise Risk Management master's program at Boston University, to tackle the controversial Business Impact Analysis (BIA). They explore why BIAs are non-negotiable for regulated industries, how to demonstrate their value in other sectors, and what separates a "check-the-box" BIA from a truly effective one. Mark shares real-world examples and practic...

John Hill joins the ByteWise team to pull back the curtain on Shadow IT. He kicks off the conversation with a chilling narrative from a hacker's perspective, illustrating how unapproved apps can bypass millions of dollars in security infrastructure. The discussion unpacks what Shadow SaaS is, why well-intentioned employees turn to it, and the significant risks it poses to security, compliance, and even disaster recovery.

However, t...

In today's rapidly evolving professional landscape, particularly in fields like cybersecurity and for those navigating career transitions, mentorship serves as a crucial anchor, providing guidance amidst a sea of information and diverse opinions. Glen, Daniela, and Brian agree that effective mentors do more than just impart knowledge; they challenge conventional thinking, encourage mentees to safely step outside their comfort zones...

In this insightful episode of ByteWise, Brian switches roles to interview Glen and Daniela about a common challenge: overcoming skepticism and objections from leadership when trying to secure investment for crucial projects, particularly in information security. They dive into common pushbacks like "we're too small to be a target," "we can't afford it," or "it won't happen to us," providing practical strategies, real-world examples...

This shocking episode of ByteWise uncovers the emerging threat of deepfakes being used in remote job interviews. Daniela, Glen, and Brian discuss how AI-generated fake identities are deceiving hiring managers, potentially granting malicious actors access to sensitive company data and infrastructure.

They explore the technical aspects, motivations behind this fraud, and...

This episode dives into actionable strategies for tackling "executive debt" – the accumulation of flawed decision-making and unchallenged assumptions at the leadership level. Hosts Daniela, Monty Fowler, and Mark Dallmeier explore how companies can move beyond traditional, gut-based approaches to goal setting by leveraging data and AI for more informed strategic planning.

They discuss the importance of self-assessments in identifyi...

In this first part of a two-episode series, Daniela, Glen, and Brian welcome Monty Fowler and Mark Dallmeier from AspireSix to talk about the concept of "Executive Debt."

Monty and Mark, seasoned leaders with extensive experience in startups and consulting, introduce executive debt as the accumulation of negative long-term consequences resulting from short-sighted deci...

Are you truly prepared for when disaster strikes? In this ByteWise episode, Daniela, Glen, and Brian draw on their front-line experience to demystify tabletop exercises and reveal their power to transform your organization's crisis response. Beyond theoretical discussions, they share hard-earned lessons from leading real-world simulations, including a recent large-scale ransomware exercise with over 100 participants. Listen in to g...

Daniela, Brian, and Glen delve into the difficulties of getting organizations to prioritize and support risk management, IT, and information security. They discuss how departmental silos, conflicting priorities, and a lack of understanding can lead to these areas being marginalized. The conversation explores the tension between documenting risks and the need for action, the importance of relationship-building to bridge communicatio...

Welcome back to ByteWise! Today, with the episode launching on April Fool's Day, we're diving into the world of phishing tests. It's a topic that often straddles the line between a security measure and, let's be honest, a workplace prank. We're here to discuss how these tests have evolved, moving from potentially punitive tools to a more nuanced approach. Glen kicks us off by defining phishing as a subset of social engineering, foc...

Ever wonder if your disaster recovery (DR) plan would actually work when you need it? Daniela, Brian, and Glen cut through the jargon and get real about DR, focusing on the security gaps you might be missing. They unpack why backups aren't a silver bullet, how problems can lurk in your recovery plans, and why relying solely on cyber insurance can leave you exposed.

What You'll Learn:

• Backups: Not Your Security Blanket: Glen ex...

In this episode, Daniela welcomes Treena Reilkoff, an expert in conflict management and resilient risk mitigation, to discuss the human side of risk management. Treena shares her insights on how trauma and stress can manifest in the workplace, the importance of creating a psychologically safe environment, and practical strategies for leaders and employees to navigate challenging situations.

Treena emphasizes the need for trauma-inf...

Daniela and Brian tackle the topic of disaster recovery (DR). They define DR, discuss its importance, and explore how it relates to business continuity. They also delve into the role of cloud computing, the importance of backups, and the challenges of testing and budgeting for DR.

Key Takeaways:

• DR is a subset of business ...

This episode of ByteWise Podcast features Mark Carroll, a senior business executive and founder of the Masters of Science in Enterprise Risk Management program at Boston University. Mark discusses the evolution of risk management, the importance of understanding operational risk, and the critical skills needed for success in the field. He also shares insights into the unique aspects of the BU Risk Management Program and offers advi...

In this episode of ByteWise, we welcome our first international guest, Klaus Agnoletti, a security professional with 20 years of experience and a passion for improving security policies. Klaus discusses why security policies are often overlooked, the importance of clear and concise language, and how AI can be used to create more effective policies. He also shares his insights on the cultural differences in approaching security poli...

In this episode of ByteWise, Daniela Parker connects with Margaret J. Millett, winner of the 2023 BCI Lifetime Achievement Award, to discuss her remarkable journey in business continuity management. Margaret shares valuable insights on navigating the ever-changing landscape of risk, emphasizing the need for adaptability, continuous learning, and strong leadership support. They delve into the challenges of securing executive buy-in ...