Risk Grustlers
Welcome to 'Risk Grustlers,' where we celebrate the extraordinary journeys of modern-day Risk Leaders who embrace the art of 'Grustle'—a powerful fusion of Grind and Hustle. Our podcast dives into the innovative strategies and bold decisions taken by these risk-takers, shaping the future of cybersecurity and risk management. Join us as we explore their inspiring stories, insightful advice, and cutting-edge technologies that define the alternative GRC landscape.
Risk Grustlers
Back to Basics: A Crash Course for Experts!
There are a bowlful of acronyms that have entered the cybersecurity industry in the last few years, and in this episode, Gary expands on why exactly it is important to identify the most critical things first: the BASICS.
Are you doing the basics correctly? Or are you simply on a barrage of vendors to help you identify the risk areas? Do you have data lying around in a sweet nest bucket for attackers?
Join us as we interview Gary Hunter, the Executive Director and Deputy Information Security Officer of Cybersecurity at The Walt Disney Company where he discusses how to strike a balance between deploying the latest AI systems while maintaining the proper processes in-house. Tune in right now!
About Gary Hunter
Switching fields into cybersecurity can be a whole lot of scary, especially in the current landscape but there’s no better example than Gary Hunter, who joins us in our fourth episode of Risk Grustlers to teach us how to break the imposter syndrome and find your feet in this wild jungle of data security!
Coming from a non-tech background and building his portfolio as a ‘security guy’ from scratch, Gary has accumulated the perfect balance to act as the bridge between complex technical problems and non-technical audiences.
Highlights from the episode
- Translating concepts of business in building applications
- Going back to the basics before implementing the latest AI systems
- Integrating security controls into the tools/applications developers and engineers are using
Quotes
“Start with strong security basics. Prioritize clean security hygiene before advanced measures. Use technology to spot issues, but prioritize, understand, and remediate findings through proper processes.”
“Instead of costly site visits, focus on training. Vendor breaches often stem from email compromise, phishing, ransomware. Training on spotting fake emails matters more than fortress-like data centers.”
About Scrut Automation
Scrut Automation is a risk observability and compliance automation platform built to simplify information security monitoring for cloud-native companies. We help early-stage and growth-stage companies across the globe, establish enterprise-grade information security processes through an easy-to-use GRC platform.
To watch more of our episodes and learn more about us, visit us at https://www.scrut.io/podcasts
About Scrut Automation:
Scrut Automation empowers scaling companies to move Beyond Compliance, focusing on managing digital risk while reducing the friction of audit preparation, evidence collection, and risk monitoring.
Purpose-built for high-growth startups and mid-market businesses, Scrut simplifies the most tedious parts of compliance and risk management, keeping you audit-ready and risk-aware at all times. With seamless integration into your processes, Scrut delivers real-time insights and continuous monitoring, enabling proactive risk management to support sustainable growth. Focus on scaling your business confidently as Scrut automates compliance and strengthens your digital resilience—no more manual work or compliance chaos.
To watch more of our episodes and learn more about us, visit us at :
https://www.scrut.io/podcasts