‹ All episodes

Resilient Cyber

S5E9: Kevin Greene - The Cyber Journey, AI/ML and Secure SDLC

December 22, 2023 Chris Hughes
Resilient Cyber
S5E9: Kevin Greene - The Cyber Journey, AI/ML and Secure SDLC
Info
Resilient Cyber
S5E9: Kevin Greene - The Cyber Journey, AI/ML and Secure SDLC
Dec 22, 2023
Chris Hughes

- Tell us a bit about your cybersecurity journey, you've held a variety of roles with FFRDC's and industry

- You've been talking a good bit about the latest Secure-by-Design push, what do you make of this push? I know you've raised concerns about needing to do some research to determine the effectiveness of these "secure" SDLC's

- AI and ML are everywhere we turn in the cyber industry discussions. You've been speaking about the role of ML in cyber detection for example going back several years. There's a lot of focus on the risks of AI, but what do you think about the promise of AI and ML to help with defending organizations and agencies?

- I know you've been discussing threat informed defense and even took a swing at NIST 800-53/FedRAMP and its relevance. Can you elaborate on this, and how you think we're getting it wrong as an industry with regard to compliance and security?

- You recently had awesome comments about the risks in public cloud attack surfaces and implications for national security, let's dive into that one, give us some thoughts on this front?

- We're heading into 2024, so let me ask, what are some of your top predictions we may see in cybersecurity over the next year?

Share
Apple Podcasts Spotify Amazon Music Overcast Castro Castbox +
Show Notes

- Tell us a bit about your cybersecurity journey, you've held a variety of roles with FFRDC's and industry

- You've been talking a good bit about the latest Secure-by-Design push, what do you make of this push? I know you've raised concerns about needing to do some research to determine the effectiveness of these "secure" SDLC's

- AI and ML are everywhere we turn in the cyber industry discussions. You've been speaking about the role of ML in cyber detection for example going back several years. There's a lot of focus on the risks of AI, but what do you think about the promise of AI and ML to help with defending organizations and agencies?

- I know you've been discussing threat informed defense and even took a swing at NIST 800-53/FedRAMP and its relevance. Can you elaborate on this, and how you think we're getting it wrong as an industry with regard to compliance and security?

- You recently had awesome comments about the risks in public cloud attack surfaces and implications for national security, let's dive into that one, give us some thoughts on this front?

- We're heading into 2024, so let me ask, what are some of your top predictions we may see in cybersecurity over the next year?