CISO Stories Podcast: Is There a Magic Security Control List?

April 15, 2021 |

2 minute read

Never in history has the cyber defender had access to so many technologies and tools to defend our companies. This has created a “Fog of More,” making the choices difficult to manage.

This week’s guest is Tony Sager, a 35-year NSA software vulnerability analyst and executive, and the innovator of community-based controls sharing. Sager discusses how the CIS Controls can be used effectively to manage your environment – check it out…

About Tony Sager

pasted image 0 (1)-3Tony Sager is a Senior VP for the Center for Internet Security. He led the development of the CIS Controls, a community consensus project to identify and support best practices in cybersecurity.

His “volunteer army” identifies practices that will stop the vast majority of attacks seen today, and he leads projects that will share, scale, and sustain these practices for worldwide adoption.

Sager retired from the National Security Agency in 2012 after 34 years as a mathematician, software vulnerability analyst, and executive manager. He oversaw all NSA Red and Blue Teams, as well as all security product evaluation teams, and he helped guide the Agency’s top talent development programs in addition to founding the Vulnerability Analysis and Operations Group, NSA’s premier technical organization in defense.

About the CISO Stories Podcast

ciso storiesThe Cybersecurity Collaborative, in conjunction with Cybereason, is proud to present the CISO Stories Podcast.  Each week CISO Stories takes a deep dive on security leadership with top security professionals from across the public and private sectors who share their insights and expertise with the community. 

The Cybersecurity Collaborative is a unique membership community enabling cybersecurity leaders to work together in a trusted environment. To learn more, visit: https://www.securityweekly.com/csc.

CISO Stories Hosts

Sam Curry, Chief Security Officer at Cybereason

sam-curry-hs-cisostoriesSam Curry (@samjcurry) is CSO at Cybereason and is a Visiting Fellow at the National Security Institute.  Previously, Sam was CTO and CISO for Arbor Networks (NetScout) and was CSO and SVP R&D at MicroStrategy in addition to holding senior security roles at McAfee and CA. He spent 7 years at RSA, the Security Division of EMC as Chief Technologist and SVP of Product.  Sam also has over 20 patents in security from his time as a security architect, has been a leader in two successful startups and is a board member of the Cybersecurity Coalition, of SSH Communications and of Sequitur Labs.

Todd Fitzgerald – VP, Cybersecurity Strategy at Cybersecurity Collaborative

todd bio photoTodd Fitzgerald (@securityfitz) has built information Fortune 500/large company security programs for 20 years.  Todd serves as VP, Cybersecurity Strategy and Chairman of the Cybersecurity Collaborative Executive Committee, was named 2016–17 Chicago CISO of the Year, ranked Top 50 Information Security Executive, authored 4 books including #1 Best Selling and 2020 CANON Hall of Fame Winner CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers (2019), ground-breaking CISO Leadership: Essential Principles for Success, as well as contributions to a dozen others. 

Todd held senior leadership positions at Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, WellPoint (Anthem) Blue Cross Blue Shield/ National Government Services, Zeneca/Syngenta, IMS Health and American Airlines.

CISO Stories Podcast
About the Author

CISO Stories Podcast

The Cybersecurity Collaborative, in conjunction with Cybereason, is proud to present the CISO Stories Podcast. Each week CISO Stories takes a deep dive on security leadership with top security professionals from across the public and private sectors who share their insights and expertise with the community. The Cybersecurity Collaborative is a unique membership community enabling cybersecurity leaders to work together in a trusted environment. To learn more, visit: https://www.securityweekly.com/csc.

All Posts by CISO Stories Podcast

April 15, 2021 |

2 minute read

Never in history has the cyber defender had access to so many technologies and tools to defend our companies. This has created a “Fog of More,” making the choices difficult to manage.

This week’s guest is Tony Sager, a 35-year NSA software vulnerability analyst and executive, and the innovator of community-based controls sharing. Sager discusses how the CIS Controls can be used effectively to manage your environment – check it out…

About Tony Sager

pasted image 0 (1)-3Tony Sager is a Senior VP for the Center for Internet Security. He led the development of the CIS Controls, a community consensus project to identify and support best practices in cybersecurity.

His “volunteer army” identifies practices that will stop the vast majority of attacks seen today, and he leads projects that will share, scale, and sustain these practices for worldwide adoption.

Sager retired from the National Security Agency in 2012 after 34 years as a mathematician, software vulnerability analyst, and executive manager. He oversaw all NSA Red and Blue Teams, as well as all security product evaluation teams, and he helped guide the Agency’s top talent development programs in addition to founding the Vulnerability Analysis and Operations Group, NSA’s premier technical organization in defense.

About the CISO Stories Podcast

ciso storiesThe Cybersecurity Collaborative, in conjunction with Cybereason, is proud to present the CISO Stories Podcast.  Each week CISO Stories takes a deep dive on security leadership with top security professionals from across the public and private sectors who share their insights and expertise with the community. 

The Cybersecurity Collaborative is a unique membership community enabling cybersecurity leaders to work together in a trusted environment. To learn more, visit: https://www.securityweekly.com/csc.

CISO Stories Hosts

Sam Curry, Chief Security Officer at Cybereason

sam-curry-hs-cisostoriesSam Curry (@samjcurry) is CSO at Cybereason and is a Visiting Fellow at the National Security Institute.  Previously, Sam was CTO and CISO for Arbor Networks (NetScout) and was CSO and SVP R&D at MicroStrategy in addition to holding senior security roles at McAfee and CA. He spent 7 years at RSA, the Security Division of EMC as Chief Technologist and SVP of Product.  Sam also has over 20 patents in security from his time as a security architect, has been a leader in two successful startups and is a board member of the Cybersecurity Coalition, of SSH Communications and of Sequitur Labs.

Todd Fitzgerald – VP, Cybersecurity Strategy at Cybersecurity Collaborative

todd bio photoTodd Fitzgerald (@securityfitz) has built information Fortune 500/large company security programs for 20 years.  Todd serves as VP, Cybersecurity Strategy and Chairman of the Cybersecurity Collaborative Executive Committee, was named 2016–17 Chicago CISO of the Year, ranked Top 50 Information Security Executive, authored 4 books including #1 Best Selling and 2020 CANON Hall of Fame Winner CISO COMPASS: Navigating Cybersecurity Leadership Challenges with Insights from Pioneers (2019), ground-breaking CISO Leadership: Essential Principles for Success, as well as contributions to a dozen others. 

Todd held senior leadership positions at Northern Trust, Grant Thornton International, Ltd, ManpowerGroup, WellPoint (Anthem) Blue Cross Blue Shield/ National Government Services, Zeneca/Syngenta, IMS Health and American Airlines.

CISO Stories Podcast
About the Author

CISO Stories Podcast

The Cybersecurity Collaborative, in conjunction with Cybereason, is proud to present the CISO Stories Podcast. Each week CISO Stories takes a deep dive on security leadership with top security professionals from across the public and private sectors who share their insights and expertise with the community. The Cybersecurity Collaborative is a unique membership community enabling cybersecurity leaders to work together in a trusted environment. To learn more, visit: https://www.securityweekly.com/csc.

All Posts by CISO Stories Podcast

*** This is a Security Bloggers Network syndicated blog from Blog authored by CISO Stories Podcast. Read the original post at: https://www.cybereason.com/blog/ciso-stories-podcast-is-there-a-magic-security-control-list