ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "S6 E9 Should the CISO work for the CIO?"
Episode Synopsis
#SecurityConfidential #DarkRhinoSecurity
Greg Schaffer joins us on this episode of Security Confidential. Greg founded vCISO services in 2017 to help SMBs. He has over 33 years of experience in IT and security including over 15 years at the CISO level. Greg is the host of the virtual CISO moment podcast and authored information security for small and mid-sized businesses.
00:00 introduction
01:37 How did you get into Cyber?
04:40 What brought you to SMB?
07:00 Equifax Breach
10:30 Defense in Depth
13:05 Doing more than just checking the boxes
19:40 Cyber insurance
24:00 Some ways SMBs get breached
28:00 Ransomware
30:40 SMB: What to do if you don’t have the resources?
36:44 How much money should SMBs spend on cybersecurity?
38:24 Should the CISO work for the CIO?
42:17 Metrics for decision-makers
45:20 Russians and the Chinese
49:00 Meeting Greg
CU Intersect conference is July 18-20. Link https://cuintersect.com/
RETR3AT Link: https://www.montreat.edu/about/events/retr3at/
Greg's podcast: https://virtual-ciso.us/
Gregs Book: https://www.amazon.com/Information-Security-Small-Midsized-Businesses/dp/1733066845/
To learn more about Greg visit https://www.linkedin.com/in/gregoryschaffer/
To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com
SOCIAL MEDIA:
Stay connected with us on our social media pages where we'll give you snippets, alerts for new podcasts, and even behind the scenes of our studio!
Instagram: https://www.instagram.com/securityconfidential/
Facebook: https://m.facebook.com/Dark-Rhino-Security-Inc-105978998396396/
Twitter: https://twitter.com/darkrhinosec
LinkedIn: https://www.linkedin.com/company/dark-rhino-security
Youtube: https://www.youtube.com/channel/UCs6R-jX06_TDlFrnv-uyy0w/videos
Greg Schaffer joins us on this episode of Security Confidential. Greg founded vCISO services in 2017 to help SMBs. He has over 33 years of experience in IT and security including over 15 years at the CISO level. Greg is the host of the virtual CISO moment podcast and authored information security for small and mid-sized businesses.
00:00 introduction
01:37 How did you get into Cyber?
04:40 What brought you to SMB?
07:00 Equifax Breach
10:30 Defense in Depth
13:05 Doing more than just checking the boxes
19:40 Cyber insurance
24:00 Some ways SMBs get breached
28:00 Ransomware
30:40 SMB: What to do if you don’t have the resources?
36:44 How much money should SMBs spend on cybersecurity?
38:24 Should the CISO work for the CIO?
42:17 Metrics for decision-makers
45:20 Russians and the Chinese
49:00 Meeting Greg
CU Intersect conference is July 18-20. Link https://cuintersect.com/
RETR3AT Link: https://www.montreat.edu/about/events/retr3at/
Greg's podcast: https://virtual-ciso.us/
Gregs Book: https://www.amazon.com/Information-Security-Small-Midsized-Businesses/dp/1733066845/
To learn more about Greg visit https://www.linkedin.com/in/gregoryschaffer/
To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com
SOCIAL MEDIA:
Stay connected with us on our social media pages where we'll give you snippets, alerts for new podcasts, and even behind the scenes of our studio!
Instagram: https://www.instagram.com/securityconfidential/
Facebook: https://m.facebook.com/Dark-Rhino-Security-Inc-105978998396396/
Twitter: https://twitter.com/darkrhinosec
LinkedIn: https://www.linkedin.com/company/dark-rhino-security
Youtube: https://www.youtube.com/channel/UCs6R-jX06_TDlFrnv-uyy0w/videos
More episodes of the podcast Security Confidential
S18 E02 (VIDEO) Hackers are using ChatGPT
04/12/2025
S18 E02 Hackers are using ChatGPT
04/12/2025
S18 E01 How Hackers Target National Security
06/11/2025
S18 E0 (VIDEO) Data Poisoning
09/10/2025
S18 E0 Data Poisoning
08/10/2025
S17 E09 (VIDEO) The Hacker's Playbook
11/08/2025
S17 E09 The Hacker’s Playbook
06/08/2025
In God we trust