Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Razorthorn

Why InfoSec is the 'Department of No': Insights from a Cybersecurity Expert

Dive into the world of cybersecurity with this eye-opening episode from the Razorwire Podcast. Discover why cybersecurity teams are often seen as the "Department of No" in the corporate world, similar to how dentists are viewed—necessary but avoided until absolutely essential. This short explores the crucial, yet often thankless job of protecting data and systems, highlighting the unique challenges faced by those in information security. Join us to understand the critical role these professionals play, especially when crisis strikes and the organisation's digital health is at risk.

Wake Up Call: XZ Utils Breach Demands Open Source Security Reform

In late March 2024, the cybersecurity community was shaken by the revelation of a critical vulnerability in XZ Utils, a popular open source compression tool integral to many Linux systems. The discovery was made by Andres Freund, a developer at Microsoft, who reported that versions 5.6.0 and 5.6.1 had a backdoor that could potentially allow unauthorised remote code execution.

Cybersecurity Burnout and Organisational Culture with Yanya Viskovich & Eve Parmiter

Dive into today's Razorwire episode where we explore the critical issue of burnout in the cybersecurity field. Join Yanya Viskovich, a cyber resilience expert, and Eve Parmiter, a clinical traumatologist, as they provide invaluable insights into combating burnout among cyber defenders. In this episode.

Controversy and Criticism: Navigating Resistance to Cyber Risk Clarification | Razorthorn Security

Dive into the contentious realm of cyber risk clarification in this eye-opening video. Explore the challenges faced by proponents of risk assessment methodologies as they encounter resistance from influential figures in the industry. Hear about the shocking experiences of individuals who have been met with accusations of criminal negligence simply to advocate for clearer risk communication. Despite the pushback, join us as we navigate through the discourse and strive to shed light on the importance of cyber risk understanding and mitigation.

Navigating Conceptual Challenges: Insights from Actuarial Experts in Developing FAIR

Delve into the journey of overcoming conceptual challenges in the development of FAIR (Factor Analysis of Information Risk) in this enlightening video. Join as the creator shares personal insights into grappling with quantitative limitations and navigating the complexities of risk assessment. Discover how invaluable support from seasoned executives in actuarial departments provided clarity and assurance amidst uncertainties. Gain valuable perspectives on tackling subjectivity, measurements, and more from experienced professionals.

Applying Physics to Cybersecurity: The Journey of Control Factoring | Razorthorn Security

Embark on a journey into the innovative realm of control factoring in cybersecurity in this captivating video. Explore the inspiration behind this approach, rooted in the principles of physics and physical environments. Join the creator as they draw parallels between rating scales for tornado strength and structural requirements, pondering the applicability of such concepts in the cybersecurity domain. Delve into the challenges of translating physical forces into abstract measurements and discover the complexities inherent in this endeavor.

Perspective-Driven Probability: Simplifying Risk Assessment with FAIR Methodology

Explore the nuanced nature of probability and risk assessment in this insightful video. Join us as we navigate the diverse perspectives that shape individual interpretations of what's probable. Discover how the FAIR (Factor Analysis of Information Risk) methodology provides a structured approach to understanding and communicating risk, making it accessible not only to the creator but to a wider audience. Gain insights into the challenges of assigning probabilities to uncertain events with limited data, and learn how FAIR methodology offers clarity in the face of uncertainty.

Evolution of Cyber Clarification: Challenging Old Beliefs for New Possibilities |Razorthorn Security

Unravel the evolution of cyber clarification in this thought-provoking video. Drawing inspiration from physicist Max Planck's famous quote, we explore how science – and in this case, cybersecurity – progresses with the passing of the old guard and the emergence of the new. Delve into the challenges faced by those entrenched in traditional beliefs, who once deemed cyber clarification an impossibility. Join us as we challenge these notions and pave the way for new perspectives and possibilities in the realm of cybersecurity.

Unlocking Tactical Insights: Leveraging Fair Models for Military Strategies & Sales Tactics

In this intriguing video, we delve into the transformative power of Fair models originally designed for military applications. Discover how these models can be repurposed to analyze targets, maximize risk, and strategize for both offense and defense. But that's not all – with a simple shift in perspective, these models can be adapted for sales and marketing, helping businesses identify opportunities and mitigate losses. Join us as we explore the fascinating intersection of strategy and marketing tactics.

The Impact of FAIR on Risk Management with Jack Jones | Razorthorn Security

Welcome to Razorwire, the podcast that cuts through cybersecurity and risk management complexities. Host Jim welcomes Jack Jones, creator of the FAIR risk methodology, for an in-depth discussion on how his approach has transformed information security risk perception and management. Jack shares his journey from facing scepticism to global recognition, detailing the development of FAIR and its impact on the industry. He also previews his upcoming book on the controls analytics model, exploring the future of risk management and FAIR's role in advancing cybersecurity practices.