Kopi-O with CISO

Hosted by Sivanathan Subramaniam

TechnologyInterviews guests

Website RSS feed

Episodes

Latest episode

May 2025

Language

About the show

A podcast meant to provide a platform of voice for cyber security professionals, practitioners and entrepreneurs in Malaysia.

Listen to episodes

25 recent

May 6, 2025Episode 16 min

S04E01: Why Should Boards and CEOs Care about Ransomware Resilience?

In this new season 4, I am running a series, "Boards and CEOs Ransomware Resilience"—where I talk about ransomware resilience at leadership levels, but not from the technical angle. This series is for board members, CEOs, and senior leaders who know that cybersecurity is no longer just an IT issue—it’s a business survival issue.---My weekly newsletter: https://sivanathan.substack.com---My new book (available on Amazon): Leadership in the Age of AI: A Handbook of Daily Cybersecurity Leadership Nuggets

November 27, 202429 min

S03E03: Inside BNM's 2024 Risk Management in Technology (RMiT) Exposure Draft

Grab a cup of kopi-o! In this episode of Kopi-O with CISO, I am diving deep into Bank Negara Malaysia’s recently released Exposure Draft on Risk Management in Technology (RMiT ED). This draft sets the tone for how financial institutions, from banks to e-money operators, should approach technology risks in an era of escalating cyber threats, fraud, and innovation. Join me as I break down the key objectives of the ED—resilience, customer protection, and responsible innovation—and what they mean for technology risk management, cybersecurity, and the future of finance in Malaysia. I’ll explore practical requirements, from appointing a strong CISO to adopting secure cloud services, managing third-party risks, and even preparing for quantum computing. Whether you’re in finance, tech, or just someone passionate about cybersecurity, this episode is packed with insights on how these changes could impact you. Plus, I’ll share why your feedback to BNM before January 31, 2025, is vital to shaping these regulations. #KopiOwithCISO #cybersecurity #CISO #infosec #RMiT

August 5, 202453 min

S0302: Cyber Security in Malaysia's Healthcare Sector with Ramana Ramakrishna (KPJ Healthcare)

Grab a cup of kopi-o!Join Ramana Ramakrishna and me as we explore the critical cyber security landscape in Malaysia's healthcare sector. Ramana, the GM of IT Operations with KPJ Healthcare Bhd, one of the leading private hospital chains, shares frontline insights on tackling cyber threats, enhancing resilience, and navigating policy challenges to safeguard patient data in an increasingly digital healthcare environment. Tune in to gain essential perspectives on cyber hygiene, AI use in healthcare, AI-powered cyber security and future-proofing healthcare cyber security strategies.#KopiOwithCISO #CISO #cybersecurity #infosec #healthcare

May 26, 202446 min

S0301: Beyond the Perimeter - Extended Cyber Risk Management with Terence Cheong

Grab a cup of kopi-o! In this brand new season of 'Kopi-O with CISO' Podcast, join me and my special guest Terence Cheong from BitSight as we delve into the world of third-party cyber risk management and cyber supply chain risk management. We'll explore the latest strategies for securing extended digital ecosystems, how to effectively manage and mitigate risks associated with external attack surfaces and discuss the importance of Software Bill of Materials (SBOM). Tune in to gain interesting insights from Terence on strengthening your cybersecurity framework and safeguarding your digital operations against evolving threats. #KopiOwithCISO #CISO #cybersecurity #infosec

March 12, 202446 min

S02E10: Scanning Public Websites: Ethical & Legal Dilemmas (with Tevanraj & Firdaus)

Grab a cup of kopi-o! In this episode of Kopi-O with CISO, I am joined by Tevanraj Elengoe and Firdaus Juhari to delve into the complex world of cybersecurity in Malaysia, particularly focusing on the ethical and legal considerations of scanning public web platforms for security vulnerabilities. Together, we unpack the intricacies of detecting security flaws in an effort to "voluntarily and ethically" enhance digital safety of public websites. Through candid conversations, we explore the fine balance between proactive security measures and respecting legal boundaries, all while navigating the unique challenges and regulations faced within the Malaysian digital landscape. Tune in for an engaging discussion that sheds light on the pressing question: Where do we draw the line in safeguarding our cyber world? #KopiOwithCISO #cybersecurity #infosec

January 30, 202446 min

S0209: Unlocking the True Value of Cybersecurity with Prateek Bhajanka, Field CISO of SentinelOne

Grab a cup of kopi-o! Join me in the latest episode of "Kopi-O with CISO" to dive into the depths of cybersecurity strategy with Prateek, the field CISO from SentinelOne. With a history that includes stints at Gartner, Qualys, and Deloitte, Prateek brings a treasure trove of experience to the table. We'll cut through the noise to uncover the truths behind cybersecurity investments, explore the critical importance of regular health checks for your security systems, and challenge the common myths that might be holding your security posture back. From aligning security objectives with business goals to enhancing your security hygiene, this episode can help strengthen your cyber defenses in a world brimming with cyber threats. We also delve into non-tech elements of cybersecurity; i.e. policies, procedures, and the potent combination of human intellect with machine precision, unraveling the complexities of cybersecurity automation, the importance of breaking down data silos, and the undeniable benefits of technology unification. Sip your kopi-o and tune in! #KopiOwithCISO #cybersecurity #infosec #strategy

December 18, 202343 min

S02E08: Unpacking Malaysia's New Cyber Security Bill with Murugason R. Thangaratnam

Grab a cup of kopi-o! In this final episode of 'Kopi-O with CISO' for this year, Murugason and I delve into the intricacies of Malaysia's long-awaited Cyber Security Bill. Join us as we explore the pivotal components of this crucial legislation and understand what makes it stand out. We discuss the reasons behind its delay and compare Malaysia's progress with that of its neighboring countries in the realm of cyber security. Our conversation begins on a positive note as we highlight the strengths of the Bill, shedding light on how it could significantly enhance Malaysia's cyber resilience. However, no legislation is without its critiques. We analyze areas where the Bill could be improved, pondering over the aspects that may have been overlooked. The episode takes a deeper dive into the practical implications of this Bill, especially focusing on its impact on the cyber security providers' landscape. We discuss how licensing requirements might affect both established players and new entrants in the market. Furthermore, we contemplate the missed opportunities within the Bill, debating on elements that could have made it more comprehensive and robust. A key part of our discussion revolves around the delicate balance between regulation and innovation. How can Malaysia navigate this complex interplay through the proposed Bill? Finally, we address the readiness of Malaysia's cyber security industry for this legislative change. We share insights on what providers and businesses should be doing now to prepare for the upcoming shifts. This episode is a must-listen for cyber security professionals, business leaders, and anyone interested in understanding the future of Malaysia's digital landscape. Tune in to the episode for a deep dive into the proposed Cyber Security Bill and its potential far-reaching implications. #KopiOwithCISO #CISO #cybersecurity #infosec #cyberlaw

December 4, 202334 min

S02E07: AI-Powered Cyber Security - Real Deal or Marketing Fluff with Han Ther

Grab a cup of Kopi-O! Join Han Ther L., the APAC CTO of Ridge Security and me on 'Kopi-O with CISO' Podcast as we explore the dynamic world of AI in cybersecurity. This episode delves into the evolution of AI in the field, the benefits and challenges it brings, and the future trends in AI-powered cybersecurity. Key highlights of the episode: AI's Evolution and Impact in Cybersecurity: Uncover how AI has transformed cybersecurity practices, enhancing technologies and services, particularly in predictive analytics. Challenges and Real-World Applications: Address the limitations of AI in cybersecurity and how businesses can discern genuine AI capabilities from marketing hype. AI's Role in Skill Gaps and Offensive Security: Discuss AI's contribution to bridging the cybersecurity skills gap and its use in simulating real-world cyber attacks. Balancing AI with Human Expertise: Gain insights into the ideal balance between AI automation and human intelligence in cybersecurity. The Future and Automated Penetration Testing: Speculate on the future of AI in cybersecurity and explore the emerging trend of automated vulnerability assessment and penetration testing (VAPT). Tune in for a comprehensive look at AI's role in shaping the future of cybersecurity. #cybersecurity #KopiOwithCISO #AI #infosec #pentest

November 20, 202340 min

S02E06: Running a Local Cyber Security Community Chapter with Zhon Teck

In this episode of Kopi-O with CISO, I sit down with Zhon Teck, the President of the ISC2 Malaysia Chapter, to dive deep into the evolution of cyber security communities in Malaysia. With a rich background in cyber security, Zhon shares his personal journey in the field, discussing how he ventured into this domain and his current role in shaping the future of ISC2 local chapter. Zhon, in his leadership role, sheds light on what it means to lead a community like the ISC2 Malaysia chapter and how this platform is helping cyber security awareness and education. As the chapter President, Zhon reveals his motivations, challenges, and the most gratifying moments of his tenure. We discuss the chapter's future plans, including expanding its reach beyond the Klang Valley to major cities in Malaysia, and how this can strengthen the cyber security movement into the rest of the country. A key focus of our discussion is on community-based information sharing – understanding its current state and potential improvements. We also touch on an often-overlooked aspect in our field - work-life balance, mental health, and burnout, and how ISC2 Malaysia chapter is addressing these vital issues. To wrap up, Zhon shares his insights on managing the intricate balance between his professional responsibilities and personal life. Tune in for an episode that connects the dots between leadership, community, and personal growth in the realm of cyber security. #KopiOwithCISO #cybersecurity #CISO #infosec #ISC2 #CTI

November 1, 202338 min

S02E05: Adapting to Change - How SOCs Stay Relevant in a Rapidly Evolving World with Hon Fun Ping

Welcome to another episode of 'Kopi-O with CISO,' where I spill the beans on all things cyber security! In this episode, Hon Fun Ping and I explore the transformative journey of Security Operations Centers (SOCs) as they adapt to a rapidly evolving threat landscape and technological advancements. With a growing focus on AI, integrated systems, and agile methodologies, SOCs are taking on new dimensions in risk management and security operations. Join us in a comprehensive discussion with a leading expert in the field to delve into how modern SOCs are leveraging technology and processes to remain not just operational but optimal. Don't miss this critical conversation that provides key insights into the future of cyber security operations. So pour yourself a hot cup of Kopi-O, and join us for an episode that promises to be as enlightening as it is entertaining! #KopiOwithCISO #cybersecurity #infosec #SOC #MSSP