ISACA Podcast

Many organizations view risk management as an unpleasant process that has to be done to meet regulatory requirements. But what if risk management were leveraged to add value to organizations and strengthen their security measures? In this podcast, we discuss how to use risk management to improve performance and add value.

A ransomware attack leveraging an unpatched vulnerability affected several government services for the city of Baltimore (Maryland, USA). In this podcast, we discuss how this ransomware attack occurred, the services it affected and lessons learned from this attack.

From mobile payments to the use of artificial intelligence to the introduction of new security risks, technology has had a profound impact on how the financial sector operates. In this 50th Anniversary Series episode of the ISACA Podcast, Ashley Holmes analyzes the past, present and future state of fintech. Holmes notes that banks and others in the financial services sector have to manage a balancing act in embracing innovation and automation while not alienating customers that still expect a certain level of human-to-human service and accessibility.

In an era of data overload, dealing with unstructured data poses distinct challenges to organizations. In this Off Stage and Off Script Series edition of the ISACA Podcast, North America CACS 2019 conference presenter George Khalil provides his perspective on which pitfalls should be avoided when it comes to managing unstructured data.

Most organizations know how to respond to malicious outsiders who may try to steal sensitive data. But what about the insider threat? In this podcast, we discuss ways to protect against the insider threat, and we use the example of a distillery to show the steps you can take to protect your data.

While organizations increasingly understand the value of gender diversity in leadership roles, they don't always know how to make it a reality. In this episode of the ISACA Podcast's SheLeadsTech Series, Kellie McElhaney provides guidance on steps organizations can take to create meaningful inclusion in their leadership ranks.

The old methods of recruiting and retaining qualified IT professionals often disadvantages women and minorities. A new method of finding and keeping diverse candidates is needed. In this podcast recorded at North America CACS, an information security director at Harvard University shares some strategies for attracting and retaining talent with diverse perspectives that make information security stronger.

While social media has helped to reshape the professional networking landscape, some fundamentals of networking remain the same. In this 50th Anniversary series episode of the ISACA Podcast, ISACA member Matthias Kraft discusses what has changed, and what has not, when it comes to professional networking.

Cybersecurity’s role in recent years has grown considerably, but the most common exploits have remained the same over decades. Because of the sophisticated approaches many of these attacks use, people are unable to identify that phishing attacks today are fundamentally similar to the phishing attacks that occurred years ago. In this podcast, we discuss some common security attacks, building a security culture and the role of the C-suite in cybersecurity.

As technology increasingly has become a central driver of business performance, the governance of that technology has become more challenging and more important for organizations. In this ISACA Podcast 50th Anniversary series program, ISACA board director Tichaona Zororo provides his perspective on how technology governance has evolved over the years and the impact that the COBIT framework has made for governance professionals.