Ross Young joins us on Security Confidential to talk about cybersecurity. Ross is the CISO of Caterpillar Financial Services Corporation, a lecturer at Johns Hopkins University, and the Co-Host of the CISO Tradecraft podcast, and the inventor of the OWASP Threat and Safeguard Matrix. Ross is also a veteran of CIA and NSA.
00:00 Introduction 
00:55 How Ross became CISO of Caterpillar Financial Service 
03:04 Scholarship for Service 
04:10 Foreign cyber espionage capabilities 
07:01 The elusive identity online 
07:50 Compliance frameworks = great cybersecurity? 
12:47 Can cybersecurity be used for revenue generation? 
20:30 Learning from vendors selling in cybersecurity place 
22:55 Vulnerability management in the cloud 
27:02 How do you develop a resilient software system 
31:50 OWASP Threat and Safeguard Matrix 
37:58 Accounting for The X-Factor and Zero Day threat in cybersecurity 
41:45 CISO Tradecraft

The videocast for this episode
To learn more about Ross Young 
To learn more about Dark Rhino Security

Ver todos los episodios