Cyber Security Professionals Shortage, Burnout & How To Protect Against It | Razorwire Podcast

Welcome to another episode of Razorwire Podcast!

In this episode, our guests are Oliver Rochford of Securonix, whom you’ve met earlier, and Stefania Chaplain, a solutions architect, discussing the skills shortage, burnout in cyber careers, and remote working.

Cybersecurity offers both rewards and challenges simultaneously. Security providers in their early careers struggle to find work, while recruiters struggle to find the proper role and qualification for their security needs as cybersecurity is a multifaceted field.

We discussed how underappreciation of information security professionals leads to burnout and mental exhaustion. We asked our guests what they’ve done to avoid burnout in their careers during our interview. We discuss how working from home has allowed us to spend time with our families, but that permanent remote working has created a distance between our colleagues and us.

This episode is relevant to those new to the infosec field or who have been in it for a long time. Please take a listen to this episode and enjoy it. Listen to this episode on your favourite podcasting platform.

If you are a new listener to Razorwire, we would love to hear from you. For more information about us or if you have any questions you would like us to discuss on the podcast email podcast@razorthorn.com.

In this episode, we covered the following topics:

Our guest’s perspective on the skill shortage in information security
An analysis of the reasons behind the shortage of skills in information security
The cybersecurity recruitment process
An overview of cybersecurity’s layers and aspects
The next generation knowledge gap and mentorship’s role in filling it
Why do infosec professionals burn out
Cybersecurity burnout: how to avoid it
Working from home and building relationships in information security
The benefits of shifting roles to avoid burnout

Check out these other episodes:

Ep 2: The Evolution Of Cyber Security & Trends To Watch For
Ep 3: The Future Of Security For Working From Home
Ep 1: Where Should A CISO Sit Within An Organisation?

Connect with Your host James Rees

Hello, I am James Rees, the host of the Razorwire podcast. This podcast brings you insights from leading cybersecurity professionals who dedicate their careers to making a hacker’s life that much more difficult.

Our guests bring you experience and expertise from a range of disciplines and from different career stages. We give you various viewpoints for improving your cyber security – from seasoned professionals with years of experience, triumphs and lessons learned under their belt, to those in relatively early stages of their careers offering fresh eyes and new insights.

With new episodes every other Wednesday, Razorwire is a podcast for cyber security enthusiasts and professionals providing insights, news and fresh ideas on protecting your organisation from hackers.

Listen to this episode on your favourite podcasting platform and for more information about us or if you have any questions you would like us to discuss on the podcast email podcast@razorthorn.com.

If you need consultation, visit www.razorthorn.com, We give our clients a personalised, integrated approach to information security, driven by our belief in quality and discretion.

Linkedin: Razorthorn Security

Youtube: Razorthorn Security

Twitter: @RazorThornLTD

Website: www.razorthorn.com

This podcast uses the following third-party services for analysis:

Chartable – https://chartable.com/privacy

The Evolution Of Cyber Security & Trends To Watch For | Razorwire Podcast

There is no doubt that the world has gone through massive changes over the past few years. We have faced pandemics, lockdowns, wars, supply chain issues and economic crises.

As the whole world moves online, large-scale innovations have been boosted. To infosec enthusiasts, this raises an interesting question: what is in store for the industry?

So in this episode, we’re joined by Oliver Rochford of Securonix to have a debate on this question. As Oliver said, technology had been around for a while, but the crisis accelerated adoption and scalability.

Security is now not just confined to technology, now we are discussing the concept of the citizen developer.

We discussed how the infosec industry is witnessing a rise in the entry from different skill sets, the struggle of cyber security providers and setting realistic expectations for the level of security that can be delivered.

Tune into this episode to discover our observations about the future of information and cyber security. Listen to this episode on your favourite podcasting platform.

In this episode, we covered the following topics:

What direction is infosec heading in?
Why is cyber security more important than ever since the pandemic?
Why does it seem so hard for businesses to hire a security provider that fits their needs?
Concept of “citizen developers” and the need for better tools in information security
Is there a shortage of skilled and experienced people in infosec?
Who is ultimately responsible for security in an organisation?
Is there a limit to what cyber security can offer an organisation?
A look at the struggles of people in the information security field and the positive aspects
How AI and machine learning can help cybersecurity
What are the benefits of storytelling skills in cyber security?
What is the role of PR in cyber security crisis management?
Our final thoughts on the direction cyber security are heading in.

GUEST BIO-

Oliver Rochford

– has worked in cyber security as a penetration tester, consultant and industry analyst for over 20 years

Oliver has worked in cyber security as a penetration tester, consultant, researcher, and industry analyst for over 20 years. Interviewed, cited, and quoted by media, think tanks, and academia, he has written for SecurityWeek, CSO Online and Dark Reading. While working at Gartner, he co-named the Security Orchestration, Automation and Response (SOAR) market, worked on the SIEM Magic Quadrant, and also covered the European MSSP Market. Prior to joining Securonix, Oliver worked for Qualys, Verizon, Gartner and Tenable. Oliver is a Senior Director and Security Evangelist at Securonix.

Connect with Your host James Rees

With new episodes every other Wednesday, Razorwire is a podcast for cyber security enthusiasts and professionals providing insights, news and fresh ideas on protecting your organisation from hackers.

If you need consultation, visit www.razorthorn.com, We give our clients a personalised, integrated approach to information security, driven by our belief in quality and discretion.

Linkedin: Razorthorn Security

Youtube: Razorthorn Security

Twitter: @RazorThornLTD

Website: www.razorthorn.com

This podcast uses the following third-party services for analysis:

Chartable – https://chartable.com/privacy

Machine Learning, AI & Cyber Security Part 2: Malicious Actors | Razorwire Podcast

Welcome to part two of our episode on Machine Learning, AI and Cyber Security. In part one, we discussed what it will be like for us as security professionals when we have access to AI tools, what we are doing with them now and how we could use them in future.

In part two, we are re-joined by our guests Oliver Rochford of Securonix and Jonathan Care, a mentor of mine who specialises in cyber security and fraud detection.

We continue the conversation but this time we discuss what will happen when malicious actors use the same tools and technologies that we use for security for their own purposes. It’s only a matter of time before they twist AI against us for nefarious ends.

Although the technology is still evolving, and malicious actors are still learning how to manipulate it, we discuss the threats we’re currently facing as organisations along with the best ways to defend against AI tools in the hands of the enemy.

Tune into this episode to join our discussion and let us know what you think.

Listen to this episode on your favourite podcasting platform.

In this episode, we covered the following topics:

What access do malicious actors currently have to AI tools?
What exactly can they use AI technology for?
The case of Oracle poisoning
How AI can be used to improve the precision of a cyber attack
The funding requirements needed to build and manipulate AI technology
How hackers can use AI for making deep fakes to bypass security
Challenges of data labelling to use AI better
Discussion about insider risk
How data collection on hacking targets can be made easier through the use of machine learning
The importance of accelerating defensive innovation in AI

Related Episode

Listen to – Machine Learning, AI & Cyber Security Part 1: Used for Good

GUEST BIO-

Oliver Rochford

Worked in cyber security as a penetration tester, consultant and industry analyst for over 20 years

Oliver has worked in cyber security as a penetration tester, consultant, researcher and industry analyst for over 20 years. Interviewed, cited and quoted by media, think tanks and academia, he has written for SecurityWeek, CSO Online and Dark Reading. While working at Gartner, he co-named the Security Orchestration, Automation and Response (SOAR) market, worked on the SIEM Magic Quadrant and covered the European MSSP Market. Prior to joining Securonix, Oliver worked for Qualys, Verizon, Gartner and Tenable. Oliver is a Senior Director and Security Evangelist at Securonix.

Jonathan Care

An expert in the field of Cyber Security & Fraud Detection

Jonathan Care is a recognised expert in the field of Cyber Security and Fraud Detection. A former top-rated Gartner analyst, Care was responsible for defining the fraud market and leading Gartner’s Insider Threat and Risk research. He regularly advises cyber security industry leaders on strategic growth and has worked with key figures in industry and government across the globe. He is a lead contributor for Dark Reading, an industry-defining publication.

Care has testified in court as an expert witness and forensic investigator and is a Fellow of the British Computer Society. He also fuels his creative passion as a composer of film/TV music.

Connect with Your host James Rees

Hello, I am James Rees, the host of the Razorwire podcast. This podcast brings insights from leading cybersecurity professionals who dedicate their careers to making a hacker’s life more difficult.

Our guests bring you experience and expertise from a range of disciplines and from different career stages. We give you various viewpoints for improving your cyber security; from seasoned professionals with years of experience, triumphs and lessons learned under their belt, to those in relatively early stages of their careers offering fresh eyes and new insights.

With new episodes every other Wednesday, Razorwire is a podcast for cyber security enthusiasts and professionals providing insights, news and fresh ideas on protecting your organisation from hackers.

Listen to this episode on your favourite podcasting platform and for more information about us or if you have any questions you would like us to discuss on the podcast, email podcast@razorthorn.com.

If you require a consultation, visit www.razorthorn.com. We offer our clients a personalised, integrated approach to information security, driven by our belief in quality and discretion.

Linkedin: Razorthorn Security

Youtube: Razorthorn Security

Twitter: @RazorThornLTD

Website: www.razorthorn.com

This podcast uses the following third-party services for analysis:

Chartable – https://chartable.com/privacy

Machine Learning, AI & Cyber Security Part 1: Used for Good | Razorwire Podcast

Welcome to another episode of Razorwire Podcast! We are joined today by Oliver Rochford of Securonix and Jonathan Care, a mentor of mine who specialises in cyber security and fraud detection.

As AI and its application in cyber security are such a big topic, this podcast will be in two parts. We will discuss machine learning and artificial intelligence for information security in the first part of our discussion today.

The second one will be published soon and deals with artificial intelligence, machine learning and its potential dangers.

All of us are fascinated by the world of AI and begin to imagine the scene we’ve seen in the movies. But in this podcast episode, we will do some reality checking on AI. We discussed how far artificial intelligence has advanced, how it can be used for cyber security, its limitations and whether it can replace our jobs.

Find out how AI can be used in cyber security and why we shouldn’t place high expectations on it in this episode. Listen to this episode on your favourite podcasting platform.

In this episode, we covered the following topics:

Where does AI stand in terms of technology, business and governance?
The advancement of artificial intelligence in technology, business and governance: how far has it come?
The role of artificial intelligence in detecting cyber fraud
Differences between using AI for general decision-making and detecting cybercrime
What areas can AI can be applied to in cyber security
An analysis of AI security’s limitations
Will we be able to allow AI to take action without first obtaining human approval?
Are security AI systems capable of replacing cybersecurity providers someday or in the foreseeable future?
In what ways can artificial intelligence and humans work together?
Why AI must not be held to such high expectations

GUEST BIO-

Oliver Rochford

– worked in cyber security as a penetration tester, consultant and industry analyst for over 20 years

Oliver has worked in cyber security as a penetration tester, consultant, researcher, and industry analyst for over 20 years. Interviewed, cited and quoted by media, think tanks and academia, he has written for SecurityWeek, CSO Online and Dark Reading. While working at Gartner, he co-named the Security Orchestration, Automation and Response (SOAR) market, worked on the SIEM Magic Quadrant and also covered the European MSSP Market. Prior to joining Securonix, Oliver worked for Qualys, Verizon, Gartner and Tenable. Oliver is a Senior Director and Security Evangelist at Securonix.

Jonathan Care

– expert in the field of cyber security & fraud detection

Jonathan Care is a recognised expert in the field of cyber security and fraud detection. A former top-rated Gartner analyst, Care was responsible for defining the fraud market and leading Gartner’s Insider Threat and Risk research. He regularly advises cyber security industry leaders on strategic growth and has worked with key figures in industry and government across the globe. He is a lead contributor for Dark Reading, an industry-defining publication.

Care has testified in court as an expert witness and forensic investigator and is a Fellow of the British Computer Society. He also fuels his creative passion as a composer of film/TV music.

Connect with Your host James Rees

Hello, I am James Rees, the host of the Razorwire podcast. This podcast brings insights from leading cybersecurity professionals who dedicate their careers to making a hacker’s life much more difficult.

With new episodes every other Wednesday, Razorwire is a podcast for cyber security enthusiasts and professionals providing insights, news and fresh ideas on protecting your organisation from hackers.

If you need consultation, visit www.razorthorn.com, We give our clients a personalised, integrated approach to information security, driven by our belief in quality and discretion.

Linkedin: Razorthorn Security

Youtube: Razorthorn Security

Twitter: @RazorThornLTD

Website: www.razorthorn.com

This podcast uses the following third-party services for analysis:

Chartable – https://chartable.com/privacy

The Future Of Security For Working From Home | Razorwire Podcast

One legacy of Covid 19 that’s here to stay is working from home. Staff love it as it gives them flexibility, and organisations save on infrastructure costs. Still, the transition into the digital world is not smooth and comes with many vulnerabilities and risks.

Welcome again to the Razorwire podcast. This week I am joined by Andy Johnson of Highside and Aaron Thundercliffe from CyberArk. We sat together and discussed the past, present and future of working from home; where were we years ago? How has it changed recently, and what are the opportunities and risks for remote working in the future?

There is a behavioural divide between two types of organisations: one that is in a rush to re-open their offices and one that is shifting their employee to work from home to save paying for costly office rental. Even though some employees appreciate the flexibility, it’s been found that they also feel isolated regarding social interactions.

We discussed the security implications of working from home and shared our experiences.

This episode is perfect for anyone interested in how the security of remote working will evolve and what we as security professionals need in place to keep on top of developments. Play and listen on your fav podcasting platform.

Listen to this episode on your favourite podcasting platform.

Our guests’ experiences of securing a remote workforce
What does the future look like for secure remote working
The role of technology in work from home
The past and present comparison of remote working
Why work from home is not feasible for certain industries or job roles
The benefits of remote working for clients and employees
The trend in remote working after the pandemic and the implications on security
The issues surrounding monitoring and security that must be addressed
Our final thoughts on what the future looks like work from home

GUEST BIOS –

Aaron Thundercliffe

Based in the UK, Arron forms part of the EMEA DevSecOps SME team in CyberArk’s Solutions Engineering function. Using experience gathered from many years working across Network Security and Cyber Defence, he takes a consultative approach to help organisations secure their software supply chains by reducing the attack surface and security risks associated with embedded secrets. 

Andy Johnson

Andy Johnson is the Co-Founder and Chief Product Officer at HighSide. Andy leads product, engineering and QA teams to deliver HighSide’s world-class cybersecurity products. A software engineer by trade, Andy works closely with other business leaders to plan, architect, build and bring to market impactful features.

Andy has represented HighSide on stage at InfoSecurity Europe, and at various pitching and speaking events across the US and UK. Andy has been a designer and software engineer for over a decade, having previously founded and exited a web company to Tucows (NASDAQ $TCX) in his early career.

Connect with Your host James Rees

With new episodes every other Wednesday, Razorwire is a podcast for cyber security enthusiasts and professionals providing insights, news and fresh ideas on protecting your organisation from hackers.

If you need consultation, visit www.razorthorn.com, We give our clients a personalised, integrated approach to information security, driven by our belief in quality and discretion.

Linkedin: Razorthorn Security

Youtube: Razorthorn Security

Twitter: @RazorThornLTD

Website: www.razorthorn.com

This podcast uses the following third-party services for analysis:

Chartable – https://chartable.com/privacy

Where Should A CISO Sit Within An Organisation? | Razorwire Podcast

Welcome to Razorwire Podcast. In this episode, we’re joined by Claire Davies of Arriva and Keith Christie-Smith of Claroty to discuss where a CISO fits best within an organisation, a bit of the history behind it, where trends have been in recent years, and where we think it’ll going to be in future.

The role of CISO has traditionally been a part of IT and they often report to the CIO. This trend has been steadily changing over recent years, but the question remains: where should the CISO sit within an organisation? With security events increasing in cost and complexity, is it time that the CISO should sit on the board?

Claire, Keith and cyber security consultancy MD James Rees – your host – share their opinions on the subject from the perspective of a CISO currently in the role and with insights from an Accounts Director who deals with CISOs from multiple companies across a wide range of different sectors.

In this episode, we covered the following topics:

Where should the CISO sit within an organisation?
Changing landscape within the role of Chief Security officer
The role of Corporate, government and media in building a security infrastructure
Is having cyber security insurance strategy work nowadays?
What is the need for cyber consultations for SMEs?
The future prospects of being in the field of cybersecurity
The psychological angle of cyber security
Our final thoughts on, where does CSO going as a discipline.

GUEST BIOS

Claire Davies MBE

Director of Group Information Security, Arriva PLC UK

Claire has over 30 years of experience in the field of intelligence and security. She cut her teeth within the UK military where she enjoyed a globe-trotting career identifying, assessing, exploiting and ultimately defeating the threat to the security of assets posed by those engaged in terrorism, espionage, sabotage and subversion.

In more recent times, she leads a team of information security and data protection professionals within Arriva Group. She is particularly passionate about creating momentum around increased awareness of the cyber threat across the industry, mentoring new recruits into the field (so she can retire) and helping to fly the flag in providing a safe and trusted public transport network.

KEITH CHRISTIE-SMITH

Sales director with Claroty

Keith is a sales director with Claroty, covering the Government, Defence and Healthcare verticals. Keith has worked in the cyber security field for both vendors and resellers. He has been in cyber security for over a decade having worked in IT-managed services for almost a decade beforehand.

Connect with Your host James Rees

With new episodes every other Wednesday, Razorwire is a podcast for cyber security enthusiasts and professionals providing insights, news and fresh ideas on protecting your organisation from hackers.

If you need consultation, visit www.razorthorn.com, We give our clients a personalised, integrated approach to information security, driven by our belief in quality and discretion.

Linkedin: Razorthorn Security

Youtube: Razorthorn Security

Twitter: @RazorThornLTD

Website: www.razorthorn.com

This podcast uses the following third-party services for analysis:

Chartable – https://chartable.com/privacy

In this episode, we covered the following topics:

Connect with Your host James Rees

In this episode, we covered the following topics:

GUEST BIO-

Connect with Your host James Rees

GUEST BIOS –

GUEST BIOS

Follow Us