The LoJo Show

Welcome to the latest episode of The LoJo Show! On this episode, Katie Arrington returns to discuss recent updates in the cybersecurity landscape, with a special focus on the advancements in CMMC (Cybersecurity Maturity Model Certification) and the growing responsibilities of CISOs across the defense sector and beyond. Key Takeaways CMMC Updates and National Security New Federal Regulations: The 32 CFR, a major component of CMMC, has officially passed into law, marking a critical step for national security. Companies in the defense industrial base must now meet strict cybersecurity standards to continue their work with the DoD. Security as a Baseline: Katie emphasizes that cybersecurity is no longer optional but foundational, especially with rising threats to sensitive data across industries. Challenges for Small and Medium-Sized Businesses Financial Strain of Compliance: Many small businesses struggle with the cost of implementing CMMC compliance, which can hinder competitiveness. Katie calls for better DoD support and funding to help small businesses manage cybersecurity investments. Supply Chain Risks: Cyber risks are no longer isolated; they now extend across supply chains. Prime contractors are increasingly responsible for securing their subcontractors' cyber postures, making collaboration essential. The Role of CISOs in Today’s Landscape Internal and External Security Focus: Katie discusses the expanding responsibilities of CISOs, highlighting that they must not only secure their organization’s network but also ensure compliance within the supply chain. Culture of Security: With remote work on the rise, CISOs face new challenges in promoting a vigilant security culture, as employees often multi-task or work from less secure environments. CMMC’s Global Impact Beyond U.S. Borders: The new CMMC requirements are relevant for international contractors operating in 69 countries with DoD contracts. Katie notes the importance of global cybersecurity standards to ensure protection across borders. Practical Advice for Small Businesses Engage with Primes: Katie encourages small businesses to work closely with prime contractors to address cybersecurity gaps and look into secure tools like the DoD’s SAFE program for handling sensitive data. Seek State-Level Resources: Small businesses can leverage resources like the Manufacturer Extension Partnerships (MEPs) and state-level APEX programs for cybersecurity support and training. Future Trends and the Need for Cyber Insurance Cyber Insurance: Katie predicts an increased demand for cyber insurance audits as more industries implement cybersecurity requirements. Continuous Monitoring and Audits: Industries such as healthcare are implementing robust cybersecurity measures, suggesting a trend toward comprehensive, monitored cyber standards in critical infrastructure sectors. About Our Guest Katie Arrington is a cybersecurity expert with a background as the former CISO at the Department of Defense. Known for her pioneering work with CMMC, Katie has played a significant role in shaping national security protocols and advocating for the defense industry’s cybersecurity posture. She brings over a decade of expertise in federal cybersecurity policies and consults on secure practices for small and large businesses alike. Katie’s work emphasizes the importance of strategic cybersecurity practices to protect organizations at all levels—from small businesses to major defense contractors. Contact Info: Katie's LinkedIn Our LinkedIn If you’re interested in joining us on the show, reach out on social media or email us at officiallojoshow@gmail.com! Stay safe and stay secure!  

Welcome to the latest episode of The LoJo Show! On this episode, we have the honor of hosting Dave DeWalt, the CEO of NightDragon, a seasoned leader with an extensive career in tech and cybersecurity. From his beginnings at Pennsylvania to leading companies like McAfee and FireEye, Dave has been a pioneer in cybersecurity innovation. Key Takeaways: Cybersecurity Evolution Career Highlights: Dave built a significant company at McAfee and later became CEO of FireEye and Mandian. Founded NightDragon, named after a famous cyber attack, focusing on generational cybersecurity investments. NightDragon's Mission and Vision Mission: NightDragon's mission is "securing our world for tomorrow," focusing on investment and advisory in the security tech market. Aims to address the biggest risks and threats across five major domains: land, oceans, air, space, and digital. Cybersecurity Landscape Perfect Cyber Storm: The term describes the increasing attack surface, technological vulnerabilities, and the growing number of bad actors. The fusion of cyber with physical domains, AI, supply chain, and industrial sectors is creating a complex security environment. Leadership and Regulation Cyber Leadership: Cyber leaders must adapt to broader responsibilities, including physical and supply chain security. There is a need for more cybersecurity experts on corporate boards to address evolving threats. Regulatory Landscape: The diversity of global regulations presents challenges for uniform compliance. Emphasis on the importance of public-private partnerships in developing effective cybersecurity frameworks. AI and Quantum Technologies Security Concerns: Rapid AI development has outpaced security measures, creating significant risks. The need for visibility and control over AI usage within organizations is crucial to mitigate potential threats. Opportunities: AI and quantum technologies offer powerful tools for faster detection, response, and security automation. Space and Cybersecurity Space Risks: The exponential growth in satellite launches has introduced new vulnerabilities, including electronic warfare and GPS spoofing. The strategic importance of space assets and the need for robust security measures to protect them. Future Directions Innovation Hubs: Beyond the US and Israel, countries like India are emerging as new centers of cybersecurity innovation. Energy and Cybersecurity: The relationship between energy resources and cybersecurity, particularly in the context of AI and data centers, is becoming increasingly critical. About Our Guest: Dave DeWalt is the CEO of NightDragon, a cybersecurity investment and advisory firm. He has led major companies like McAfee and FireEye, and founded NightDragon to address generational cybersecurity challenges. Dave's extensive experience in the tech industry and his vision for a secure future make him a prominent figure in the cybersecurity community. Contact Info: Dave's LinkedIn NightDragon's Website The LoJo Show's Email: officiallojoshow@gmail.com Stay safe and stay secure!

Welcome to the latest episode of The LoJo Show!  On this episode, Yuri Miloslavsky returns to discuss the changes in the cybersecurity landscape, and the moves that Sharepass is making in response! Key Takeaways:  Data Tracking and Breaches Increase in cybersecurity breaches, particularly state-sponsored and affecting critical infrastructure. Risks linked to mishandled credentials and personal identifiable information, leading to potential social engineering. SharePass Platform Emphasizes controlling the digital footprint by ensuring data does not remain accessible post-use. Integration with technologies like single sign-on and YubiKeys to enhance security and ease of use. Data Storage and Transmission Importance of securely managing and encrypting sensitive data, especially in communication platforms. Scenario: Healthcare Industry SharePass is increasingly utilized in healthcare, focusing on encrypted communication of patient data. The platform facilitates secure data handling without requiring extensive new training for healthcare professionals. Future Developments Plans for introducing a pro version aimed at small businesses and a whistleblowing feature to report issues anonymously within organizations. About Our Guest: Yuri Miloslavsky is the CEO and founder of YMtech, an IT consulting firm he established 13 years ago during his studies at RMIT, Melbourne.  With a Bachelor's degree in Information Technology from RMIT, Yuri possesses a keen expertise in Cybersecurity, Cloud and IT Infrastructure.    His passion for data protection and privacy led him to co-found SharePass three years ago. This innovative platform is a testament to his commitment to guarding user confidentiality in an era of persistent data breaches. Beyond these ventures, Yuri offers his integration, project management consulting, and work automation expertise to major organizations across various industries globally.    Contact Info: Yuri's LinkedIn Our LinkedIn If you want to come on the show, connect with us on our social media or email us officiallojoshow@gmail.com!    Stay safe and stay secure!  

Welcome to the latest episode of The LoJo Show! In today’s episode, LoJo welcomes back Jeff Worthington of CrowdStrike to dive deeper into the ever-important world of cybersecurity, particularly focusing on the veteran community. We explore a variety of topics including the unique advantages veterans bring to cybersecurity roles, the complexities of the field, and strategies for navigating career transitions from military to civilian life. This insightful conversation not only highlights the current cybersecurity landscape but also underscores the valuable contributions of veterans in this vital sector. Join us as we discuss the blend of service and security, and the ongoing efforts to fortify our digital world. Key Points and Timestamps: Introduction Welcome and reintroduction of Jeff Worthington, discussing his focus on helping veterans transition into cybersecurity roles. Timestamp: [00:00:00 - 00:00:51] Main Content Veterans in Cybersecurity: Jeff emphasizes the natural fit of veterans in cybersecurity due to their disciplined background and the critical nature of the role, mirroring national defense. Timestamp: [00:00:52 - 00:01:31] Challenges in the Industry: Insights on the current challenges in cybersecurity, including high-profile breaches and the need for improved security measures across various sectors. Timestamp: [00:02:00 - 00:02:36] Job Transition Advice: Discussion on how veterans can effectively transition into the civilian workforce, focusing on resume building and leveraging personal networks. Timestamp: [00:03:00 - 00:04:59] Networking Importance: The critical role of networking outside the military and in civilian life to enhance career opportunities. Timestamp: [00:05:00 - 00:06:01] The Role of Trust in Cybersecurity: Examining how trust is foundational in cybersecurity, paralleling its importance in military operations. Timestamp: [00:06:55 - 00:07:54] Closing Remarks Recap of key insights shared by Jeff and closing thoughts on the continuous value veterans bring to the cybersecurity field. Timestamp: [00:41:18 - 00:41:50] Our Sponsors: https://www.blackengtech.com/  https://blackmeteormarketing.com/ 

Join LoJo on the latest episode of the CyberEd series from the LoJo Show Podcast! LoJo breaks down the basics of Small Business Cybersecurity.   The LoJo Show is proudly sponsored by www.blackengtech.com  Visit their website and connect with them for their world class cloud services!    You can use these episodes and the infographics from Black Rock for your end user training, cyber education, and educational credits for your certifications!   Let us know what you think on any of our social media pages or email us at: officiallojoshow@gmail.com   **All music is "Free use" & "Creative Commons"

Join LoJo on the latest episode of the CyberEd series from the LoJo Show Podcast! LoJo breaks down the different Types of Cyber Attacks.   The LoJo Show is proudly sponsored by www.blackengtech.com  Visit their website and connect with them for their world class cloud services!    You can use these episodes and the infographics from Black Rock for your end user training, cyber education, and educational credits for your certifications!   Let us know what you think on any of our social media pages or email us at: officiallojoshow@gmail.com   **All music is "Free use" & "Creative Commons"

Join LoJo on the latest episode of the CyberEd series from the LoJo Show Podcast! LoJo breaks down the basics of Cyber Attack Surfaces.   The LoJo Show is proudly sponsored by www.blackengtech.com  Visit their website and connect with them for their world class cloud services!    You can use these episodes and the infographics from Black Rock for your end user training, cyber education, and educational credits for your certifications!   Let us know what you think on any of our social media pages or email us at: officiallojoshow@gmail.com   **All music is "Free use" & "Creative Commons"

Join LoJo on the latest episode of the CyberEd series from the LoJo Show Podcast! LoJo breaks down the basics of Supply Chain Cybersecurity.   The LoJo Show is proudly sponsored by www.blackengtech.com  Visit their website and connect with them for their world class cloud services!    You can use these episodes and the infographics from Black Rock for your end user training, cyber education, and educational credits for your certifications!   Let us know what you think on any of our social media pages or email us at: officiallojoshow@gmail.com   **All music is "Free use" & "Creative Commons"

Welcome to the latest episode of The LoJo Show! In today's episode, LoJo sits down with Robert Oden from Roblox, diving deep into the dynamic world of cybersecurity within the ever-evolving tech industry. Together, they explore a spectrum of topics, from the challenges of data security and privacy in a global platform like Roblox, to the intricate balance between innovation, regulation, and community engagement. This engaging discussion not only uncovers the layers of cybersecurity complexities but also sheds light on Roblox's transformation beyond gaming, embracing creativity and collaboration. Join us as we navigate through the realms of legal regulations, industry transitions, and the future landscape of cybersecurity and innovation!" Key Points and Timestamps: Introduction Introduction to Robert Oden from Roblox and an overview of the episode's focus. Timestamp: [00:00:00 - 00:04:59] Main Content Roblox's Evolution Beyond Gaming: Discussion about Roblox not being just a gaming company but a platform for creators and players to express creativity, including partnerships like the one with Gucci. Timestamp: [00:05:00 - 00:09:59] Challenges in Data Security and Privacy: Insights into the intersection of data security and privacy in Roblox's operation, and the complexities of international data laws and regulations. Timestamp: [00:10:00 - 00:14:59] Adapting to Regulatory Environments: How Roblox navigates the changing landscape of legal and privacy regulations in different countries. Timestamp: [00:15:00 - 00:19:59] Importance of Community and Industry Collaboration: The value of collaborating with industry peers and leveraging community knowledge in cybersecurity. Timestamp: [00:20:00 - 00:24:59] Navigating Industry Transitions and Cybersecurity Evolution: Robert Oden's personal journey and insights into the evolving nature of cybersecurity across various industries. Timestamp: [00:25:00 - 00:29:59] Emerging Challenges in Cybersecurity and Data Sovereignty: Discussion on how Roblox and other tech companies are addressing emerging challenges in cybersecurity, including data sovereignty and global regulatory compliance. Timestamp: [00:30:00 - 00:34:59] The Future of Cybersecurity and Innovation: Exploring the future challenges and opportunities in cybersecurity as technology and innovation continue to advance rapidly. Timestamp: [00:35:00 - 00:39:59] Dynamic Nature of Cybersecurity in the Tech Industry: A look into the fast-paced and ever-changing cybersecurity landscape in the tech industry, and the need for adaptability and rapid response. Timestamp: [00:40:00 - 00:44:59] The Interplay of Cybersecurity, Privacy, and Innovation: Examining the intersection of cybersecurity, privacy, and innovation in the context of modern technological advancements. Timestamp: [00:45:00 - 00:49:59] Resource Allocation and Strategic Planning in Cybersecurity: Discussing the importance of strategic planning and resource allocation in the field of cybersecurity to keep up with technological advancements. Timestamp: [00:50:00 - 00:54:59] Closing Remarks Louverture Jones wraps up the discussion with key takeaways and reflections on the importance of continuous evolution in the cybersecurity field. Timestamp: [00:55:00 - 00:55:32] About Our Guest: Rob Oden is a veteran in the field of cybersecurity, boasting a career that spans over two decades, with a specific focus on Data Security, Data Protection, and Insider Threat management. Currently a Data Security Engineer at Roblox, Rob has played pivotal roles in shaping cybersecurity practices at some of the most recognized organizations in the tech world, including Meta, L3Harris Technologies, and the United States Air Force. Rob's expertise is rooted in his ability to establish robust Data Classification and Handling programs, integrate sophisticated data protection tools, and lead diverse, high-performing teams. His journey from the foundational days of IT security to the forefront of today's complex cybersecurity landscape offers a wealth of knowledge that is both expansive and deeply relevant to the evolving challenges in the field. With a background that combines hands-on technical acumen with strategic oversight, Rob's insights are invaluable for understanding the convergence of Security and Privacy in the tech industry. His approachable style and depth of experience make his perspectives particularly engaging for cybersecurity professionals and enthusiasts, simplifying complex concepts into understandable insights. Rob's narrative is not just about cybersecurity's technical facets but also its human element — emphasizing continuous learning, adaptation, and the importance of diverse viewpoints in advancing the field. His experience is a testament to the dynamic and ever-changing nature of cybersecurity, making him a compelling figure in discussions about current and future trends in the industry.   Contact Info: Rob's LinkedIn Rob's Employer - Roblox Our LinkedIn Our Sponsor - Black Rock Engineering & Technology    If you want to come on the show, connect with us on our social media or email us officiallojoshow@gmail.com!  Stay safe and stay secure!

Welcome to the latest episode of The LoJo Show!  On this episode, LoJo and Jeff Worthington from CrowdStrike discuss a wide range of topics centered around cybersecurity, AI, transitioning service members into the cyber industry, and more!  Key Points and Timestamps: Introduction Discussion about the journey veterans undergo after leaving military service. The role of the cybersecurity industry in aiding this transition. How veterans can make a mark in the cybersecurity domain. Timestamp: [00:00:00 - 00:51:57] Main Content Cheap Route Concerns: The dangers of opting for cheaper solutions in cybersecurity and the risks of things slipping through the cracks. Timestamp: [00:51:58 - 00:52:16] Importance of Training: The need to educate people, especially decision-makers, about the nuances of cybersecurity. Timestamp: [00:52:16 - 00:53:09] Vendor Solutions: The challenge of vendors overselling their solutions and the importance of asking the right questions. Timestamp: [00:53:09 - 00:53:26] Personal Experience: Jeff shares his personal journey from the military to the cybersecurity industry, emphasizing the ever-evolving nature of the field. Timestamp: [00:53:26 - 00:55:00] Identity-Based Attacks: The shift from malware attacks to identity-based attacks and the importance of securing one's identity. Timestamp: [00:56:05 - 00:57:24] Password Management: The challenges of maintaining unique passwords for different services and the risks associated with password breaches. Timestamp: [00:57:56 - 01:00:36] Remote Management Software: The rise in breaches involving remote management software and the importance of being cautious with unknown tech support. Timestamp: [01:01:32 - 01:02:54] Credit Protection: Jeff's advice on freezing one's credit to prevent unauthorized access and potential financial harm. Timestamp: [01:03:51 - 01:04:54] Closing Remarks Timestamp: [01:05:10 - 01:06:05]   About Our Guest: Colonel (Retired) Jeff Worthington, Public Sector Executive Strategist, sits on the Public Sector Industry Business Unit at CrowdStrike where he provides strategic advisory services related to enterprise cybersecurity solutions for Public Sector organizations across Federal, State and Local, Higher Education and Healthcare. Prior to joining CrowdStrike, he served as the Chief Information Officer for the Joint Special Operations Command and Deputy Director of XVIII Airborne Corps’ Project Ridgway. This capped a career of uniformed federal service spanning 30 years installing, operating, maintaining and defending our Nation’s most vital information network across the globe. He has extensive experience leading cyber, IT, network and communications teams at all levels of military service across the DoD and within both conventional and Airborne Special Operations units from the foxhole to the White House. His leadership and executive operational experiences include Information Security, IT governance & strategy, network/systems operations, and implementation/integration of robust enterprise systems and services.   Contact Info: Jeff's LinkedIn Jeff's Employer - CrowdStrike Our LinkedIn Our Sponsor - Black Rock Engineering & Technology    If you want to come on the show, connect with us on our social media or email us officiallojoshow@gmail.com!    Stay safe and stay secure!