SecurityMetrics Podcast
The SecurityMetrics Podcast, hosted by Jen Stone (Principal Security Analyst, QSA, CISSP, CISA), will help you understand current data security and compliance trends. Each episode will feature a different security professional offering tips and security best practices.
Episodes
106 episodes
[Webinar] What You Can Expect from a HITRUST Assessment
In this webinar, Matt Halbleib (Director of Assessments) and Lee Pierce (Director of HITRUST Sales) will discuss:How to determine which HITRUST Assessment type to chooseHow to prepare for a HITRUST Validation Assessment
•
40:14
New to PCI Compliance? Get the Support You Need | SecurityMetrics Podcast 106
Learn more about cyber risks for small businesses: Are you a small-medium business owner? Did you just get a message from your bank telling you to call SecurityMetrics? Are you worried about having a bad experience? Do you know wha...
•
Season 5
•
Episode 18
•
44:21
Are you ready for the ecommerce security storm? A buyer’s guide to PCI DSS 11.6.1 and 6.4.3
Join us on this extra long episode as SecurityMetrics experts Jen Stone, Gary Glover, Aaron Willis and Chad Horton dive deep into the evolving landscape of PCI compliance for e-commerce businesses. With the deadline for PCI 4.0 rapidly approach...
•
Season 5
•
Episode 17
•
1:24:59
Cybersecurity for Families: A Parent-Child Guide to Online Safety | SecurityMetrics Podcast 104
Download the guide: https://www.cisecurity.org/insights/white-papers/from-both-sides-a-parental-guide-t...
•
Season 5
•
Episode 16
•
27:27
Building a Resilient Healthcare System: A Cybersecurity Blueprint | SecurityMetrics Podcast Ep 103
Links from the episode:https://405d.hhs.gov/Discover the latest trends and threats in healthcare cybersecurity. This episode explores the real-world impact of cyberattacks on patient care, the vulnerabilities of medical devices, and...
•
Season 5
•
Episode 15
•
38:29
Which SAQ type is right for my business? | SecurityMetrics Podcast Ep 102
Confused about PCI DSS compliance standards? This video breaks down each available SAQ type, including: SAQ-A, SAQ P2PE-HW, SAQ D for Service Providers, and the newly introduced SAQ SPoC for PCI DSS 4.0.Learn which one is right for your ...
•
Season 5
•
Episode 14
•
32:02
Farm to… DevOps?: How anyone can grow into a tech career | SecurityMetrics Podcast Ep 101
Join Jen Stone as she chats with DevOps engineer and Day Two DevOps podcaster Kyler Middleton about her unique journey from a rural upbringing to becoming a DevOps expert. Discover how Kyler's passion for teaching led her to a career in ...
•
Season 5
•
Episode 13
•
36:08
Getting more from Your Penetration Test: Stop Checking Boxes | SecurityMetrics Podcast Ep 99
Is your penetration testing just a compliance formality? This episode of the SecurityMetrics Podcast redefines pen testing as a strategic partnership, empowering you to get the most out of your assessments.Join Jen Stone and James Farnsw...
•
Season 5
•
Episode 11
•
44:59
Level Up Your Healthcare Services: HIPAA Compliance for MSPs | SecurityMetrics Podcast 98
This episode of the SecurityMetrics Podcast is a valuable resource for MSPs who want to learn more about HIPAA compliance and how to better serve their healthcare clients. Join Jen Stone and David Sims to learn more about how Managed Service Pr...
•
Season 5
•
Episode 10
•
37:45
The Future of Security: Leveraging Automation & AI | SecurityMetrics Podcast 97
Struggling to automate security tasks? Feeling overwhelmed by the process?This episode of the SecurityMetrics podcast dives deep into the world of automation with guest Mollie Breen, founder and CEO of Perygee. Mollie, a recognized cybersec...
•
Season 5
•
Episode 9
•
33:00
Data Risk Management: Building a Safer Data-Driven World | SecurityMetrics Podcast 96
There are four key questions to ask about your data: Where is it? What data do you have? Who has access? What risks are associated with how the data is accessed? Tune in this week as Jen Stone sits down with award-winning entrepreneur, Ani Chau...
•
Season 5
•
Episode 8
•
28:23
Hacking Your Career: How to Become a Penetration Tester | SecurityMetrics Podcast 95
Becoming a penetration tester in the world of cybersecurity can be more complex than you'd think, but don't let that spook you. Tune in this week as Jen Stone sits down with James Farnsworth (Team Lead / Senior Penetration Tester at SecurityMet...
•
Season 5
•
Episode 7
•
42:21
Bridging the Cybersecurity Skills Gap | SecurityMetrics Podcast 94
Tune into the SecurityMetrics Podcast this week as host Jen Stone interviews Tillery, Director of Training and Education at Neuvik, to learn about the cybersecurity skills gap and how to bridge it.Listen to learn:H...
•
Season 5
•
Episode 6
•
36:07
How to Communicate Cybersecurity Risk Effectively | SecurityMetrics Podcast 93
Tune in this week as Jen Stone sits down with Ryan Leirvik (founder and CEO of Neuvik) to discuss how to effectively communicate cybersecurity risk to a board of directors.Listen to learn:How to frame cybersecurity...
•
Season 5
•
Episode 5
•
37:46
HHS 405(d) Fundamentals: A Guide for Healthcare Providers and MSPs | SecurityMetrics Podcast 92
Tune in this week as Jen Stone sits down with Donna Grindle (CEO of Kardon) to learn about the Health Industry Cybersecurity Practices (HICP) framework and how the 405(d) initiative and the Health Sector Coordinating Council (HSCC) are working ...
•
Season 5
•
Episode 4
•
41:12
Demystifying the Acquirer's Role in PCI Compliance | SecurityMetrics Podcast 91
Tune in this week as Jen Stone sits down with Candice Pressinger, an award-winning payment security leader, discussing the critical role acquirers play in the PCI ecosystem. This episode is a valuable resource for merchants seeking to understan...
•
Season 5
•
Episode 3
•
19:09
HITRUST Certification: Navigating Challenges & Solutions | SecurityMetrics Podcast 90
HITRUST certification can be a significant undertaking. However, with the right guidance and support, organizations can overcome the challenges and establish a strong foundation for data security. Tune in this week as Jen Stone (MCIS, CISSP, CI...
•
Season 5
•
Episode 2
•
32:52
Securing the CDE: Navigating Multi-Factor Authentication in PCI DSS 4.0 | SecurityMetrics Podcast 89
In this episode of the SecurityMetrics Podcast, Jen Stone chats with Keith O' Looney, an expert in multi-factor authentication (MFA) and PCI DSS compliance. They discuss the new requirements for MFA in PCI DSS 4.0, the challenges organizations ...
•
Season 5
•
Episode 1
•
35:15
PCI Compliance at Scale: Challenges & Solutions with Mars Global Team | SecurityMetrics Podcast 88
In this episode of the SecurityMetrics podcast, Jen Stone chats with Heidi Babi (PCI Security Assurance & Compliance Sr. Lead at Mars Corporation) about managing PCI compliance in a massive, complex organization with hundreds of data flows....
•
Season 4
•
Episode 26
•
20:28
Inside GEAR: How QSAs are Influencing the Future of Payment Security Standards
Join Jen Stone of SecurityMetrics as she sits down with two industry veterans, Gary Glover (VP of Assessments at SecurityMetrics) and Andy Barratt (VP of Assurance Business at Coalfire), for a lively discussion about their careers, the challeng...
•
Season 4
•
Episode 25
•
25:49
Preparing for PCI DSS Version 4.0: Insights from the Community Meeting | SecurityMetrics Podcast 86
In this episode of the SecurityMetrics Podcast, Jeremy King (Regional VP for Europe, Middle East, and Africa at the PCI Security Standards Council) provides an overview of the recent community meeting in Dublin, Ireland, and why it is important...
•
Season 4
•
Episode 24
•
21:32
Updates to the Software Security Framework (SSF) from PA-DSS | SecurityMetrics Podcast 85
This episode of the Security Metrics Podcast discusses the transition from the Payment Application Data Security Standard (PA-DSS) to the Software Security Framework (SSF). The guest speaker, Jake Marcinko, is a Standards Manager at the PCI Sec...
•
Season 4
•
Episode 23
•
27:38
EMVCo and PCI: How These Security Standards Support Each Other | SecurityMetrics Podcast 84
PCI SSC takes great care in working with other key technical bodies, such as EMVCo. Arman Aygen (Master of Science (MSc) in Communication Systems from EPFL (École Polytechnique Fédérale de Lausanne), MSc in Multimedia Communication Systems from...
•
Season 4
•
Episode 22
•
21:20
Data Leakage: How PCI DSS 4.0 Requirements Help | SecurityMetrics Podcast 83
The new PCI 4.0 requirements focused on managing payment page scripts are excellent because they can be used to address data leakage risks with other cybersecurity standards and regulations, such as HIPAA. John Elliott, GRC Consultant with a fo...
•
Season 4
•
Episode 21
•
28:42
Protecting APIs | SecurityMetrics Podcast 82
Application Programming Interfaces (APIs) are critical targets for malicious actors seeking to steal credit card data and other sensitive information. Any organization that uses APIs needs to learn how to protect them.Dan Barahona, Foun...
•
Season 4
•
Episode 20
•
21:42