Episodes

Security Operations: Learning what works | S2 Ep. 5 with Anton Chuvakin

Episode 24 · October 2, 2023 · 37:54

Meet today's guest: Dr. Anton Chuvakin, an advisor at the Office of the CISO of Google Cloud. Join us to chat about sci-fi movies, technology predictions, security operations, solvin...

Security Architecture and what the structure entails | S2 Ep. 4 with Evgeniy Kharam

Episode 23 · September 25, 2023 · 43:08

Jeffrey Wheatman is joined in this episode by Evgeniy Kharam, a fellow Cyber Evangelist! Today we are discussing learning from your mistakes, Avatar, CGI, New Zealand, firewalls, and...

Why open standards matter for streamlined cybersecurity | S2 Ep. 3 with David Mahdi

Episode 22 · September 18, 2023 · 42:01

This week we have Jeffrey's old friend and colleague: Dave Mahdi, the current CIO (Chief Identity Officer) for Transmit Security. Join us to chat about movies (Natalie Portman's firs...

Prioritizing cybersecurity in the world of CISO burnout | S2 Ep. 2 with Rob Black

Episode 21 · September 11, 2023 · 43:05

In this episode, join Jeffrey and Rob Black, CISSP, the founder and CEO of Fractional CISO. Buckle up to talk about Stephen King, Barbenheimer,  and the main topic of CISO burnout/st...

Cybersecurity in the realm of Higher Education around the world | S2 Ep. 1 with Luqman Kondeth

Episode 20 · September 5, 2023 · 37:06

Welcome to SEASON TWO of Risk and Reels! Get ready to talk about Indian film festivals, Abu Dhabi, cyber security within higher education (with an emphasis on third party cyber risk)...

The Bright Future of Public/Private Partnership in Cybersecurity | SEASON 1 FINALE Ep. 17 with Bailey Bickley

Episode 19 · May 30, 2023 · 35:14

True crime, storytelling, Big Fish, the partnership between private sector and public sector, the new White House cybersecurity policy, power of strong minds in one room, resilience ...

From the Military to IT and Cybersecurity | Ep. 16 with Lewis Heuermann

Episode 18 · May 22, 2023 · 42:33

Charlie and the chocolate factory, Tom Hanks, the Military, culture shifts, precision, training, accountability, the why for the what. Join Jeffrey Wheatman and Lewis Heuermann (curr...

Investing in Cyber and AI in 2023 | Ep. 15 with Rick Grinnell

Episode 17 · May 15, 2023 · 37:57

Comedies, Young Frankenstein, History of the World, artificial intelligence, investments in cybersecurity, AI investors, third party risk, ChatGPT, the future of jobs in cyber. Hear ...

Cybersecurity in Higher Education – over the years and today | Ep. 14 with Gretchen Ruck

Episode 16 · May 8, 2023 · 36:34

80s movies, Animal House, cyber in higher education, university CISOs, managing student data, healthcare within universities, compliance requirements, HECVAT, Educause,  Today's epis...

The People of Cyber: Diversity, Education and Empowerment | Ep. 13 with Juliana Vida

Episode 15 · May 1, 2023 · 47:27

The Admiral, A Christmas Story, new policies, the New White House Cybersecurity Policy, information security importance, DEI, diversity in cyber, government training, empowering the ...

How to use cybersecurity tools properly to meet regulations | Ep. 12 with Larry Whiteside

Episode 14 · April 24, 2023 · 41:41

Crafty hackers, super-smart villains, speaking the business language, GRC tools, risk and regulatory correlations, reg ops, being compliant, meeting regulations, and why vendors can'...

Building a third-party risk program from the ground up | Ep. 11 with Tom Garrubba

Episode 13 · April 17, 2023 · 01:11:05

SPECIAL double-time episode. Hear from Tom Garrubba, the Director of Third-Party Risk Management Services at Echelon Risk + Cyber and he talks through the journey of building a third...

Threat Modeling in STRIDE, the basis for cybersecurity. | Ep. 10 with Matt Stamper

Episode 12 · April 10, 2023 · 38:31

Forrest Gump, threat modeling, animal farm, application weaknesses, business impact analyses, resilience, accountability, and stride. Tune into the latest episode to hear from Matt S...

Productive risk processes = *truly* reducing risk. How has TPRM shifted? | Ep. 9 with Bob Maley

Episode 11 · April 3, 2023 · 33:38

Star Wars, Star Trek, third party risk management, fallen heroes, best practices, triaging risk, cyber posture, the cloud, vendor access, productive risk process, and truly managing ...

Talking with the former Director of Cybersecurity Coordination for the U.S. Dept. of Homeland Security | Ep. 8 with Mike Brown

Episode 10 · March 27, 2023 · 41:13

Jeffrey speaks with the former Director of Cybersecurity Coordination for the U.S. Dept. of Homeland Security, Mike Brown, about strategic, tactical, and operational cybersecurity. 

With a plethora of emerging AI, where does the cybersecurity industry stand? | Ep. 7 with Eric Cowperthwaite

Episode 9 · March 20, 2023 · 46:03

Musicals, emerging AI, and understanding the risk within your third-party ecosystem. Our guest this week is Eric Cowperthwaite, COO at Threathunter.ai by Milton Security. 

Managing the risk you quantify is half the battle | Ep. 6 with David Elfering

Episode 8 · March 13, 2023 · 30:28

Black and white films, photography, risk quantification, FAIR, (ROI), the business case for risk, risk scenarios, sea monsters, and PII. Our guest this week is David Elfering, Sr. VP...

It’s the dog that caught the car - how can security programs properly mature? | Ep. 5 with Dave Lewis

Episode 7 · March 6, 2023 · 39:29

John wick, curiosity, organizational changes over time, security debt, risk appetite, chatGPT, dogs running around, and taking security seriously. Join Jeffrey Wheatman and Dave Lewi...

The anatomy of the 2023 Black Kite Third Party Breach Report | Ep. 4 with Ferhat Dikbiyik

Episode 5 · February 19, 2023 · 35:28

Third party attacks, common ways hackers target companies, Turkish movies, outsmarting the bad guys, and the trajectory of 2023 data breaches. Listen to episode four as Jeffrey Wheat...

“We’ve always done it that way.” Why we *shouldn’t.* | Ep. 3 with Patti Titus

Episode 4 · February 12, 2023 · 36:41

Insurance, resilience, breaking out-of-the-box, new ideas, tech debt, strong female leads, and Downton Abbey. Join Jeffrey Wheatman and guest Patti Titus (Chief Privacy and Informati...

Security starts with people. Process requires purpose. | Ep. 2 with Brian Reed

Episode 3 · February 12, 2023 · 35:24

People, process, tools, tech, Ocean’s Eleven, movie remakes, and a recession. Security is people-centric, and tools cannot exist independently. Learn why we must humanize our problem...

Who's a hacker? | Ep. 1 with Jayson Street

Episode 2 · February 12, 2023 · 47:22

Hackers, curiosity, security, pen-testers, kindness, analogies and Hollywood criminals. Welcome to the first episode of Risk and Reels with Jeffrey Wheatman, featuring Jayson Street ...

Introducing Risk and Reels: A Cybersecurity Podcast

Trailer · February 6, 2023 · 01:05

A podcast for movies. A podcast for cyber talk. A podcast for smart people to say smart things to smart listeners. Hosted by Jeffrey Wheatman, former Gartner Analyst.