
On-Demand Episodes
Our full on-demand episode library, available exclusively for teissMembers. To watch, just make an account – it’s free!



Is your remote security awareness programme failing?
- Phishing campaigns up, data breaches down…so are our security awareness programmes working?
- How did security awareness priorities change for 2020’s remote workforce, and how should they change for 2021’s hybrid version?
- Should remote awareness programmes focus on implementing good security related behaviours?
Guests:
Deborah Haworth, Chief Information Security Officer, Penguin Random House
Nick Thimianis, Chief Information Security Officer, Caresocius
Ian Brown, Group Cyber Security Director, Spectris Plc




What is your InfoSec goal? Risk reduction or risk management?
- If the goal of your information security programme is to manage risk, rather than reducing it, how do you demonstrate success?
- How can InfoSec leaders support their organisations in determining a clear risk appetite
- If you are managing risk well, is the additional cost to reduce risk necessary?
Guests:
Allan Alford, CISO/CTO, TrustMAPP
Vicki Gavin, Head of Information Security & Compliance, Kaplan International
Bridget Kenyon, Chief Information Security Officer – EMEA, Thales Digital Identity and Security
Nick Martin, Consulting Director, Iomart



AI: malicious uses and abuses
- Social engineering at scale - how plausible is this scenario, and how can InfoSec Leaders prepare their colleagues?
- Criminal Business Intelligence - how Machine Learning is improving the efficiency of malware-based organisations
- How are cyber criminals using deep fake technology and how can InfoSec leaders protect their people and organisations?
Guests:
Linus Neumann, Hacker and psychologist,
Stephen Spick, Head of Information Security, Cyber Security and Compliance, SHL
Ed Williams, Director, Trustwave SpiderLabs EMEA




Recruitment and retention in information security: energising the talent market or causing a genuine cyber-skills gap?
- Are some skills sets more transferable than others for cyber security careers?
- Moving away from a blame culture to retain your best security staff
- Do we have a misalignment of expectations, rather than a skills shortage?
Guests:
Greg van der Gaast, Head of Information Security, The University of Salford
Bharat Thakrar, Director, Professional Services, Peak Cyber Institute
Nicky Keeley, Head of Cyber Security Oversight, Civil Aviation Authority
Thom Langford, Security Advocate, SentinelOne



Measuring up: how to evaluate your infosec posture
- Are there solutions to the challenge of measuring your 3rd party risk and, if so, what are they? If not, how are you measuring risk?
- Overcoming communication challenges to the Board around measuring your information security posture and 3rd party risk
- Setting a clear structure to measure changes in your information security posture, internally and with vendors
Guests:
Ben Aung, Executive Vice President & Global Chief Information Security Officer, Sage
John Rouffas, Chief Information Security Officer, Pharos Security
Craig McEwen, Chief Information Security Officer, Anglo American




Don’t get board senseless: how to get your message across to the C-suite
- Translating updated C-Suite priorities to your security team in light of new business and working arrangements
- Communicating increased threats and risks of an expanded attack surface upwards to your C-Suite
- Measuring and reporting progress and impact in a volatile climate
Guests:
Denis Onuoha, Chief Information Security Officer, Arqiva
Daniela Somerscales, Chief Information Security Officer, ClearBank®
Tee Patel, vCISO, Iron Oak Security
Dave Sifleet, Cyber Security Specialist, Hytec



How can InfoSec leaders improve diversity and inclusion for their organisations?
- How to maintain inclusivity with a significant proportion of employees working remotely, flexibly or part-time?
- Building, maintaining and enhancing teams and groups in a remote-working environment
- Identifying discrimination within InfoSec as a potential cause of talent loss
Guests:
Naina Bhattacharya, Chief Information Security Officer, Danone
Holly Foxcroft, NeuroDiversity Consultant,
Eliza-May Austin, CEO, th4ts3cur1ty.company



Protecting your remote InfoSec resources: Strategies to identify and avoid Information Security professional burn-out during the day-to-day and during a crisis
- How to recognise burn out in your team remotely, and ways in which we can reduce the stress of individuals
- Building a team culture and values, and how your remote culture can influence honesty and openness
- Remembering the forgotten victims of your data breach
Guests:
Kevin Fielder, Chief Information Security Officer, FNZ Group
Mouhamad Omar, Chief Information Security Officer, TUI France
Sandy Silk, Director – Information Security Education and Consulting, Harvard University



“Shadow-IT” in the Cloud. Should we lead the push-back against non-vetted tools, apps and services?
- Shared responsibility model – is it our usage that brings the greatest risk? What strategies can we follow to avoid the chaos of undefined responsibilities between us and our providers?
- What’s the best way of developing a consistent organisation view of cloud risks to make well-informed decisions about vendors and services?
- Legal, compliance and data protection – How we are asked to protect data might not be how our users actually protect data.
Guests:
Dr Paul Lewis, Senior Director of Cloud Security, Elsevier
Ian Porteous, Technical Director for UKI, Check Point Software Technologies Ltd
Marc Avery, Chief Information Security Officer & Founder, Cyber Chain Alliance



The changing needs of the CISO: Moving from hard technical skills to a soft skills focus
- Which of the various reporting structures and scopes of responsibility best suit the 2021 CISO?
- Overcoming CISO Communication issues and the issue of cybersecurity excuses
- What, and Who, do we need to be in 2021 and beyond?
Guests:
Quentyn Taylor, Director of Information Security – EMEA, Canon
Allan Campbell, Chief Information Security Officer, Withersworldwide
Paul Watts, Chief Information Security Officer, Kantar



GDPR investigations and decisions; What have we learned and what are the expectations in 2021 and beyond
- GDPR investigations and justification behind the decisions on the prominent fines of British Airways and Marriot in 2019
- What is the current level and nature of GDPR-related complaints being received?
- Demonstrating effective, rigorous testing, in the form of simulating a cyber-attack, on your organisation's systems
Guests:
Glen Hymers, Global CISO and Head of Data Protection, Save the Children
Steve Wright, CEO, Privacy Culture
Simon Newman, Head of Cyber and Business Services, Police Crime Prevention Initiatives




Leading enterprise cyber resilience in a post-pandemic world
- Embedding cyber security as part of your 2021 operations, and addressing privacy concerns of customer data
- Ensuring a “security-first” approach to upskilling teams, with on-demand, targeted awareness raising
- Mapping your people’s readiness to the risks your organisation face
Guests:
Sarah Armstrong Smith, Chief Security Advisor, Microsoft
Steve Brown, Cyber Security Director, Mastercard
Ian Parker, Chief Information Security Officer, Menzies Distribution
Ben King, Chief Security Officer – EMEA, Okta



SafetyTech and your expanded attack surface: Complementary approaches to cyber security to protect your people online
- Training colleagues to have increased cyber-situational awareness
- Keeping colleagues psychologically robust, resilient, secure and safe in cyber contexts
- Protecting your people and users from an increased risk of vulnerability
Guests:
Mary Aiken, Professor of Forensic Cyberpsychology, UEL
Ian Stevenson, Chair, Online Safety Tech Industry Association
Julie Dawson, Director of Regulatory & Policy, YOTI



Building a remote security culture: How do you define ‘how security is done here’ if there is no ‘here’?
- What different challenges do organisations face with remote onboarding in a work-from-home world, and what approaches can be used to reduce potential security vulnerabilities?
- Should organisations ensure that the business-as-usual solutions from their 2020 pandemic response become part of their resilience culture?
- How should InfoSec Leaders adapt their communications to build and maintain a cyber secure culture?
Guests:
John Scott, Head of Education | Cyber Security Division, Bank of England
Keil Hubert, Head of Security Awareness & Training, OCC
Marc Avery, Chief Information Security Officer & Founder, Cyber Chain Alliance