Episodios

  • S36 Ep13: Preparing for AI-Generated Cyber Intrusions

    S36 Ep13: Preparing for AI-Generated Cyber Intrusions
    Dec 2 2025
    In the second part of his interview with journalist Nick Witchell, Steve and Nick delve into the world of AI and cyber. Steve shares his thoughts on autonomous cyber defense and argues that major actors like the ISF, large private enterprises, and the UK’s National Cyber Security Centre, must lead the way and support small and medium-sized businesses in keeping pace with technological advancements. The two also discuss the future of AI, cautioning that we aren’t as prepared as we need to be…

    Key Takeaways:
    1. Small and medium-sized businesses must receive support to stay up-to-date with new technologies.
    2. As more automation is introduced into business operations, understanding of one’s crown jewels and how to protect them is increasingly important.
    3. AI is advancing rapidly with evermore funding, and globally society is not preparing as well as it needs to for what’s to come.
    Tune in to hear more about:
    1. Steve’s view on autonomous cyber defense (00:55)
    2. The National Cyber Security Centre and its role in the cyber resilience of UK businesses (3:36)
    3. How AI will impact jobs in cyber (7:55)
    Standout Quotes:
    1. “You'll never get me going into an autonomous car. I just won't do it. And people will say, ‘Yes, they're being looked after by some bloke in a tower somewhere who's watching it.” I'm not buying it. I've been working in technology for far too long to know that it is fallible. And so I think we have to really move toward much more transparency in our understanding of where the AI tool is active, the data that it's using, the decisions it's making.” - Steve Durbin
    2. “We are looking for large private enterprise to be working collaboratively with people like the NCSC, with people like the ISF, to really help some of these smaller organizations that don't have the luxury or resources available to them to keep a pace with [technology].” - Steve Durbin
    3. “If you go back to the internet, we didn't do a good enough job of trying to forecast the way in which the internet was going to be used. We put it out there and we said, ‘Let everybody use it and let's see where it goes.” We are doing, I fear, a similar kind of thing with AI.” - Steve Durbin
    Read the transcript of this episode
    Subscribe to the ISF Podcast wherever you listen to podcasts
    Connect with us on LinkedIn and Twitter

    From the Information Security Forum, the leading authority on cyber, information security, and risk management.
    Más Menos
    14 m
  • S36 Ep12: Steve Durbin - Cyber Governance in Transition: What Boards Should Do Next

    S36 Ep12: Steve Durbin - Cyber Governance in Transition: What Boards Should Do Next
    Nov 25 2025
    In today's episode, Steve sits down with journalist Nick Witchell for a conversation focused on what business leaders can learn from this year's major cyber attacks and the recent AWS outage. The two also discuss cyber regulations and the challenge of operating global enterprise during significant geopolitical turmoil.

    Key Takeaways:
    1. Boards and senior executives understand there is a threat, but many still lack knowledge of how to deal with it.
    2. We are too reliant on technology; for the sake of business continuity, a backup plan must be in place.
    3. High-quality simulation exercises are a crucial step toward more cyber resilience.
    Tune in to hear more about:
    1. The role of policy and regulation (3:17)
    2. Why cyber simulation exercises are so important (5:45)
    3. Steve’s thoughts on the recent AWS outage (7:54)
    Standout Quotes:
    1. “Now, in the boardroom itself, in companies themselves, we have seen over the past few years an increasing awareness of the threat that these kinds of things can bring to really the future of an organization. But the challenge I think we now face is really helping boards, senior executives to transition from, yes, I get there's a threat, but what should I actually be doing about it?” - Steve Durbin
    2. “I think that in the main, cloud service providers are still probably far better equipped to provide the level of service that most companies need than you'd be able to do yourself. However, we do need to take into account that things will go wrong. And we have to plan for that. So if you are an organization that can quite happily exist without access to data in a cloud provider, it doesn't have to be Amazon, it could be anybody else, then fine. I would question why you're using them in that case. If on the other hand, you are dependent on them, you have to have some backup in place.” - Steve Durbin
    3. “All too often I'm seeing people particularly in the area of, say, cyber simulation exercises, because they're viewing it as a compliance exercise, going for least cost. That to me is a bit like saying I've just moved into an area where I know the burglary rate is quite high. What's the cheapest lock and door that I can get on my front door? It's madness. Not many of us would do it. We would try to work within our budget. We'd try to really figure out how important things were in our house. That's the mentality we have to adopt. So yes, you can get some of these things done very cheaply and you can tick a box, but it's not going to help you when things go wrong.” - Steve Durbin
    Read the transcript of this episode
    Subscribe to the ISF Podcast wherever you listen to podcasts
    Connect with us on LinkedIn and Twitter

    From the Information Security Forum, the leading authority on cyber, information security, and risk management.
    Más Menos
    14 m
  • S36 Ep11: Steve Durbin - Why Cybersecurity Should Be a Boardroom Conversation

    S36 Ep11: Steve Durbin - Why Cybersecurity Should Be a Boardroom Conversation
    Nov 11 2025
    Today’s special episode features Steve’s recent Business Matters broadcast interview with Juliette Foster, featuring conversation about critical cybersecurity challenges facing organizations today. Steve and Juliette discuss targeted phishing, the growing threat of Crime-as-a-Service, the increase in AI-driven cybercrime, and more.

    Key Takeaways:
    1. Cyber attacks will continue to increase, and businesses must adjust.
    2. Regulators must strike a balance to have clear guidelines without stifling businesses.
    3. To take advantage of new technologies like AI, businesses must invest in upskilling their employees.
    Tune in to hear more about:
    1. Why cyber crime is on the rise (2:17)
    2. How cyber criminals target their victims (4:00)
    3. Solving the cyber skills shortage (29:02)
    Standout Quotes:
    1. “The bad guys only need to get lucky once and they can cause havoc. And so the sorts of numbers you are seeing are them plugging away at it, trying to break down defenses, trying to find a way through. And on the defensive side, of course, we have to be at the top of our game 24/7, and that's just impossible.” - Steve Durbin
    2. “We also have very complex supply chains now that obviously are made up of small to mid-size companies. [...] So an easier way of accessing some of this high value information is often via the third party. So you don't necessarily need to be attacking the larger enterprise. You can target a smaller to mid-size, which probably doesn't have the same level of defense, maybe not the same level of awareness. And because it's in the supply chain and sharing information, you can then access through to the larger enterprise.” Steve Durbin
    3. “You have to invest in actually looking at the skill sets that you need within your organization and making some hard calls, I think, as to whether or not you do have the right capabilities within your organization. That doesn't necessarily mean that you have to get rid of a lot of people. It means you probably do need to invest significantly in upskilling and training and thinking very hard about how you're going to use some of that new technology.” - Steve Durbin
    Read the transcript of this episode
    Subscribe to the ISF Podcast wherever you listen to podcasts
    Connect with us on LinkedIn and Twitter

    From the Information Security Forum, the leading authority on cyber, information security, and risk management.
    Más Menos
    32 m
  • S36 Ep10: Dr. Tunisha Singleton - The Psychology of Media: Story, Identity, Influence & Connection

    S36 Ep10: Dr. Tunisha Singleton - The Psychology of Media: Story, Identity, Influence & Connection
    Nov 4 2025
    In today’s episode, Steve sits down with Dr. Tunisha Singleton, Director of Clinical and Sport Psychology Services at University of Arizona and a leading expert in how media, technology, and culture shape the human experience. Dr. Singleton highlights that authenticity and humanity still matter despite all the technology around us, and the two discuss how business leaders can navigate an online presence where almost anything you post can be turned against you.

    Key Takeaways:
    1. Social media is a tool that can be used for good.
    2. Authenticity is key for brand-building online.
    3. Posting without purpose is worse than not posting at all.
    Tune in to hear more about:
    1. Dr. Singleton’s background (1:21)
    2. How to grow your brand authentically (10:22)
    3. The risks of posting too much online (15:44)
    Standout Quotes:
    1. “At a certain point we all just have to come to grips with, we are in charge of our behaviors. We have authority, we have much more agency than we give ourselves credit for. The tech is there. But if we use it, that's up to us. How we rely on it is up to us. Are we only using Chat GPT now? So there's a bit of authority that we still have to appoint ourselves.” - Dr. Tunisha Singleton
    2. “If technology is the car, then let story be the driver behind the wheel. There has to be a point in this. Where are we going? That means what are you offering? What are you giving me that can be a utility to my life, my human experience, rather than a replacement?” - Dr. Tunisha Singleton
    3. ”If we want to stick out and if we want to build our brand, then shouldn't we have the use the one thing that's different than everybody else, that's our voice. So why would we want to act like everybody else? If our goal is to stand out, then be an individual.” - Dr. Tunisha Singleton
    Read the transcript of this episode
    Subscribe to the ISF Podcast wherever you listen to podcasts
    Connect with us on LinkedIn and Twitter

    From the Information Security Forum, the leading authority on cyber, information security, and risk management.
    Más Menos
    24 m
  • S36 Ep9: Maria Ross - The Human Side of Cybersecurity: Empathy, Risk, and Resilience

    S36 Ep9: Maria Ross - The Human Side of Cybersecurity: Empathy, Risk, and Resilience
    Oct 21 2025
    Maria Ross keynote Speaker and Award-winning journalist welcomes Steve Durbin at the Empathy Podcast for a compelling discussion on the intersection of empathy and leadership.

    Managers focus on tasks, leaders empower people. Curiosity is the defining trait of an empathetic leader, the ability to set aside ego and truly listen.
    Más Menos
    42 m
  • S36 Ep8: Catherine Bosley - Reputation in the Digital Age: Protecting Your Online Identiry

    S36 Ep8: Catherine Bosley - Reputation in the Digital Age: Protecting Your Online Identiry
    Oct 14 2025
    Today, Steve is in conversation with Catherine Bosley, an award-winning veteran journalist, with more than thirty years of public speaking experience. Steve and Catherine discuss the importance of protecting one’s online image, what to do when *it* hits the fan, and why a social media policy is something all organizations should have. Catherine also offers a reminder: pause before you post…

    Key Takeaways:
    1. Think before you post! It will save you a whole lot of headache.
    2. What you put online never goes away.
    3. Today, offline events can impact your online persona, so be aware of how you appear in public.
    Tune in to hear more about:
    1. How to shine online (4:07)
    2. How to deal with negative publicity online (11:19)
    3. Being online in the age of AI and deepfakes (19:03)
    Standout Quotes:
    1. “These days, that online image or online presence is so important. It almost is more important than a resume or a portfolio.” - Catherine Bosley
    2. “My first step with a response is to ignore the negative because the more you respond to the negative, especially in a defensive negative way, the more you're going to fuel that fire and the more it's going to catch on and become part of your forever and for all to see.” - Catherine Bosley
    3. “Understand that people are watching and people especially are looking for those social media gold moments, and if they capture you having one of those ‘what was I thinking?’ moments, because we all have them. We're all human. We all make mistakes. Then you just don't know what that's going to do to your world on the personal side or on the professional side." - Catherine Bosley
    Read the transcript of this episode
    Subscribe to the ISF Podcast wherever you listen to podcasts
    Connect with us on LinkedIn and Twitter

    From the Information Security Forum, the leading authority on cyber, information security, and risk management.
    Más Menos
    26 m
  • S36 Ep7: Dr. Amy Athey - Under Pressure: Leadership & High Performance

    S36 Ep7: Dr. Amy Athey - Under Pressure: Leadership & High Performance
    Oct 7 2025
    In today’s episode, Steve sits down with Dr. Amy Athey, founder of Athey Performance. Her mission is to make the tools of elite performance accessible and human. Amy is a nationally recognized performance psychologist and executive coach with more than two decades of experience working with NCAA champions, Olympians, Navy SEALs, Fortune 500 leaders, and individuals navigating complex lives. She shares how business leaders can help their teams feel more connected to their organization’s purpose and talks about what drives high-achievers. Steve and Amy also discuss stress in the cybersecurity industry and why rest is absolutely crucial for success.
    Key Takeaways:
    1. Leaders can address rising anxiety, burnout, and disconnection across all levels of their organization by fostering empathy, trust, and a stronger sense of shared purpose.
    2. Work with elite athletes and special forces has taught Athey that in high stress environments, recovery and rest are as essential to peak performance as hard work.
    3. Prioritize foundational wellness habits — consistent sleep, movement, hydration, and play — for sustainable performance and resilience.

    Tune in to hear more about:
    1. Impact of the grind (2:56)
    2. Technology and human disconnect (6:29)
    3. Keeping it simple (22:17)

    Standout Quotes:
    1. “What we came to learn and implement and certainly we've seen the results for, is that role of recovery is just as crucial as the tactics or the strategies you're using to solve that problem, the rehearsal and maybe it's the communication or in that performance domain, what you are drilling all the time to be able to execute.” - Amy Athey
    2. “And even to the extent that situation permits, how can you take a step away, even turn your back on your computer, even if it's for 90 seconds? Close your eyes and take three deep breaths. We've seen the return of energy stores just from that disconnection in that moment. So when you're sympathetically engaged, basically you're in that fight or flight response, you're trying to solve that problem.” - Amy Athey
    3. “And so keeping it simple with each of those. If people wanna take deep dives, certainly I could share the value of that. But some of the culture around hacking and like the quick fixes, that's what I will push up against until I'm blue in the face. Building in wellness as a foundation for performance isn't about a quick fix, if we could do just 80% of this, like how can you reduce some of the processed foods in your diet? How can you make sure you're hydrating? Movement. Then that active recovery..” - Amy Athey

    Read the transcript of this episode
    Subscribe to the ISF Podcast wherever you listen to podcasts
    Connect with us on LinkedIn and Twitter

    From the Information Security Forum, the leading authority on cyber, information security, and risk management.
    Más Menos
    27 m
  • S36 Ep6: Dr. Glen Moriarty - Human Connection in a Digital World

    S36 Ep6: Dr. Glen Moriarty - Human Connection in a Digital World
    Sep 30 2025
    Today, Steve speaks with psychologist Dr. Glen Moriarty, founder and CEO of Seven Cups, a free emotional support service with 570,000 trained volunteer listeners who support users in 189 countries. Steve and Glen explore the origins of Seven Cups, its background and its global user base, and discuss why so many feel alone in a hyper-connected online world. Glen also explains the nature of the gift economy and how we can avoid getting addicted to technology.

    Key Takeaways:
    1. Even as more things move online, human interaction remains important.
    2. Technology can be good and bad, it depends on how it’s designed.
    3. The mental health care system needs better triaging so that people get the right help.
    Tune in to hear more about:
    1. How and why Seven Cups began (1:58)
    2. Technology addiction (4:59)
    3. Whether Seven Cups is replacing humans with computers when it comes to mental health (9:54)
    Standout Quotes:
    1. “Technology can be used for good or bad. And so the internet can be a source of amazing compassion and love. But it has to be deliberately designed that way. It won't happen by accident.” - Glen Moriarty
    2. “Certainly there are cultural differences and different pushes and pulls, but humans we're a lot similar. The way we read emotions are universal, so it doesn't matter where you live. The emotional expression is similar. Human societies are pretty similar. Relationships are similar. There's different assumptions about I'm part of more collective society, or I'm part of a more individualistic society, but by and large, people generally struggle with feelings of sadness, feelings of worry, fear, and relationship difficulties.” - Glen Moriarty
    3. “Therapists should be seeing people that can't be helped by a volunteer or a family member or a friend. They should be helping people that are in higher levels or more complex levels of distress. And so in the States, part of the challenge is that you can think about it like a pyramid or a triangle. They're at the very top and it's all clogged up there. But if we could take some of the folks that can get help for free or low cost to other folks, then that opens up the channels for more people that really need help to get help by those expert professionals.” - Glen Moriarty
    Read the transcript of this episode
    Subscribe to the ISF Podcast wherever you listen to podcasts
    Connect with us on LinkedIn

    From the Information Security Forum, the leading authority on cyber, information security, and risk management.
    Más Menos
    19 m