CyberOXtales
Join Neatsun Ziv, CEO of OX Security, in this bi-weekly, 20-minute video podcast designed for senior-level security professionals. Each episode features one guest and includes 3-5 questions, delving into key areas such as cybersecurity leadership and strategy. Gain insights into the strategic aspects of being a CISO, developing effective cybersecurity policies, building a security-minded culture, and aligning security strategies with business objectives. Stay updated on emerging threats and trends, focusing on the latest cybersecurity threats, trends, and techniques affecting application security. Additionally, explore compliance and regulatory updates, with discussions on the evolving landscape of compliance and regulations impacting application security, including CISA Directives, GDPR, CCPA, and HIPAA. Learn how CISOs can navigate these requirements effectively. Featuring conversations with CISOs, security experts, and thought leaders, this podcast is your go-to source for high-level and strategic communication of risk.
CyberOXtales
Building a Culture of Security: Sam Rehman’s Playbook for Executives
In this episode of CyberOxTales Podcast, host Neatsun Ziv, CEO of OX Security, interviews Sam Rehman, Global CISO at EPAM, about the critical role of password and secrets management in cybersecurity. The discussion covers building a culture of security, fostering collaboration across teams, and the evolving role of CISOs in modern organizations. Sam shares actionable advice on embedding security into organizational workflows and addressing industry-specific challenges.
About Our Guest
Sam Rehman is the Chief Information Security Officer, SVP at EPAM with over 35 years of experience in cybersecurity. Known for his strategic approach, Sam has been instrumental in fostering security culture and aligning security practices with business goals. His expertise spans managing risks, addressing vulnerabilities, and implementing innovative solutions in complex environments.
Connect with Sam: LinkedIn
Key Takeaways
- Passwords should never be hard-coded into code.
- Security awareness starts with developers understanding risks.
- Injecting security champions into projects enhances security culture.
- CISOs are evolving from gatekeepers to collaborative partners.