mnemonic security podcast

The mnemonic security podcast is a place where IT Security professionals can go to obtain insight into what their peers are working with and thinking about.

 Apple podcasts  Google podcasts  Spotify

Listen on other podcast platforms here: https://mnemonic.buzzsprout.com/

 

Episodes

 

 

Episode 32: Security Assurance
Our podcast guest this week is a veteran in the IT space in the financial sector, and has extensive experience communicating security posture to stakeholders. Erik Blomberg, CISO in the Swedish Handelsbanken, chats with Robby about that management really is wondering about, and how to communicate the value your security team is delivering to the organisazation. Read more here.

   

 

 

Episode 31: When security hits the fan
For this episode, Robby welcomes Morten Weea from mnemonic’s Threat Intelligence team. Morten is a PhD candidate researching decision-making in incident response and an experienced Incident Handler that often works with advanced persistent threats (APTs). Read more here.

   

 

 

Episode 30: Financial Cyber Crime
For this episode, we're happy to have Sebastian Takle from the DNB Financial Cyber Crime Center (FC3) with us to share how one of the largest banks in the Nordics work with Threat Intelligence. Read more here.

   

 

 

Episode 29: Feature velocity > software securtiy?
For this episode, Robby has invited a veteran to the software security game. Nick Murison, Security Practice Lead at Miles. Read more here.

   

 

       

Episode 28: Forensic Readiness | OT miniseries
We're continuing our Operational Technology (OT) miniseries where we look at the security challenges in the OT space. This time around, Robby's invited a fellow security podcaster and former Head of Forensics at Volvo, Rikard Bodforss. Read more here.

   

 

       

Episode 27: Misconceptions of Threat Intelligence
In this episode, Robby talk to the former Director of the national communications and secure agency in the Netherlands, Job Kuijpers, and his colleague and trusted advisor for Threat Intelligence. You'll hear about the most common misconceptions about threat intelligence and how much and what should be automated in threat intelligence - and what shouldn't. Read more here.

   

 

       

Episode 26: OODA Loops with Open Source
This time, Robby has invited his most recent online friendship and the uncrowned king of open source, Simon Simonsen, to the podcast. Simon also happens to have a lot of experience developing and utilising security architecture defense strategies, or as he calls it; utilising your home court advantage. Read more here.

   

 

 

Episode 25: Security validation
How can we prove cybersecurity effectiveness?

With USD 124 billion being spent worldwide on IT security last year alone, it's no wonder this is a question many would like the answer to. However, finding a quantitative metric to evaluate security investments, outside of positive effects like diminishing risks and reducing the amount of bad things happening, is not straight forward. Read more here

   

 

 

Episode 24: A shared responsibility
For this Norwegian episode of the mnemonic security podcast, Robby and co-host for the day, Manager of Governance, Risk & Compliance at mnemonic, Gjermund Vidhammer, are joined by two major actors in the Norwegian cyber landscape: Robin Bakke, Specialist Director for Cyber Security at the Ministry of Justice & Public Security, and Bente Hoff, Director National Cyber Security Center (NCSC) at the Norwegian National Security Authority (NSM). Read more here.

   

 

 

Episode 23: Data science and security visibility
In this episode, Robby is joined by Jeff Barto. He is Chief Security Officer at a large hedge fund in the US, has worked in security for over 20 years and has a lot of experience asking himself the question "how much data is enough?". Read more here.

   

 

 

Episode 22: KPIs vs. Empowerment
In this episode, Robby chats with someone that's had a lot to do with KPIs, both in his position as former Head of government CERT in Denmark (GovCERT), as well as a SOC analyst for more than 10 years. Read more here.

   

 

 

Episode 21: A chat with KraftCERT | OT miniseries
Who better to continue our Operational Technology (OT) miniseries with than KraftCERT, the Norwegian Energy and Control System CERT. Read more here.

   

 

 

Episode 20: Why should you care about PAM?
For this episode, Robby has invited two experts that see privileged access management (PAM) from two different viewpoints. Read more here.

   

 

 

Episode 19: You can't protect what you don't know you have | OT miniseries
In this episode, we continue our Operational Technology (OT) miniseries where we look into the security challenges in the OT space. This time, Robby chats with PhD Andrea Carcano on the importance of visibility in OT environments. Read more here.

   

 

 

Episode 18: Turning users from targets to defenders
In this episode, Robby chats with Erlend Gjære, CO-founder and CEO of Secure Practice, on how to turn an organisation's users into its last line of defense against email threats. Read more here.

   

 

 

Episode 17: OT's role in a CISO's world | OT miniseries
In this episode, Robby wants to know how a CISO handles the challenge of securing both IT and OT environments. Read more here.

   

 

 

Episode 16: Microservices, in theory and practice
In this episode, Robby chats with two people from mnemonic that are highly passionate about microservices; security researcher Andreas Claesson and Head of Development of our Argus security platform, Joakim von Brandis. Read more here.

   

 

 

Episode 15: To SOAR, or not to SOAR? (Part 2)
In the second part of our mini series about SOAR, Robby chats with a gentleman that was referred to as The Godfather of SOAR in the first episode of the series. Read more here.

   

 

 

Episode 14: To SOAR, or not to SOAR? (Part 1)
In this episode, we chat with Tibor Földesi, Security Automation Analyst in Norlys, one of the largest Telco & Energy companies in Denmark. At Norlys, his main motivation is to get more time to enjoy his coffee, which directly correlates with his ability to automate what can be automated. Read more here.

   

 

 

Episode 13: Securing healthcare data while studying COVID-19
In this episode, we chat with people in charge of the healthcare and sensitive data collected in what is amongst the world's largest COVID-19 studies to date. Read more here.

   

 

 

Episode 12: IAM these days
In this episode, we chat with our friends in SailPoint, Equinor and the University of Copenhagen to hear their thoughts about the state of the market regarding Idenitity, Access and Governance. Read more here.

   

 

 

Episode 11: Bug Bounties and Unicorns
In this episode, we speak with a security expert that is actually willing to pay money to "hackers" - the Product Security Director in Visma, Espen Johansen. Read more here.

   

 

 

Episode 10: Hack my (hard-coded) heart
In this episode, we chat with the former Head of the SOC at the Norwegian National CERT, and current member of mnemonic’s Threat Intelligence team. She also happens to have a personal interest in the "Internet of Things" and medical devices. Read more here.

   

 

 

Episode 9: Super CISO! With 300 brand to secure
In this episode we chat with the CISO of consumer goods conglomerate Orkla - Antonio Martiradonna. Read more here.

   

 

 

Episode 8: Securing our financial future
In this episode we pick the brain of a Senior Vice President and CISO for a multinational insurance enterprise – Bjørn Watne of Storebrand. Read more here.

   

 

 

Episode 7: Out of control
In this episode we chat with two of the main contributors to the #OutofControl report, Finn Myrstad, Digital Policy Director for the Norwegian Consumer Council and Tor Bjørstad, Application Security Lead in mnemonic. Read more here.

   

 

 

Episode 6: Cyber Insurance for Y2K
In this episode we chat with a cyber insurance underwriter for one of the largest insurance enterprises in the Nordics - Erlend Hjelle from Gjensidige. Read more here.

   

 

 

Episode 5: Pentesting these days - Crowdsourcing
In this episode we chat with a hacker for hire aka pentester for mnemonic - Harrison Sand. Read more here.

   

 

 

Episode 4: Special Edition: Under the hood of Argus
In this episode we interview one of the founding fathers of the Argus platform - Joakim von Brandis. Read more here.

   

 

 

Episode 3: Cloud security with an angel
In this episode we chat with Angel Alonso, a CISO for hire and team lead for the Governance, Risk and Compliance department in mnemonic. Read more here.

   

 

 

Episode 2: Boss of the SOC
In this interview we interview the boss of the SOC - Stig Nordby in mnemonic. Read more here.

   

 

 

Episode 1: Sharing is caring - Threat Intelligence with ACT
In this episode we chat with PhD candidate, and former CISO for mnemonic - Siri Bromander. Read more here.