Listen Now

Welcome to Episode 4 of the Credio Cloud Cast. This week, I’ll be sharing Part 2 of my interview with Kim Green, Sr. Director of IT Security & Compliance at Rohdan + Fields.  On the last episode, Kim and I discussed the importance of seeing more women in leadership, and why we as women need to be choosy when it comes to joining advisory boards. You can listen to it here!This week, we talk about threat modelling – something many of our listeners may be familiar with when it comes to assessing cyber risk. But how many of you have considered the importance of threat modeling a road trip? Fortunately, Kim has as part of her upcoming adventure touring the country in her R-Pod 202.  Be sure to listen in as we discuss security hardening, escalation of privileges, and even Operational security, all in the context of driving America. I guarantee, you’ll love this episode. 

On the Credio Cloud Cast, Carey Lening interviews Kim Green, Senior Director of IT Security & Compliance and Enterprise Risk Management at Rodan + Fields. Kim has had a long and illustrious career, with past stints as a CISO for Totemic, Zephyr Health, as a data privacy officer for Bosch USA, and as an advisor for numerous tech startups, primarily in the cybersecurity and healthcare sectors. This is Part 1 in a two-part series. In it, we discuss the importance of women in tech -- both bringing them in early, and advancing their careers through leadership and board opportunities. Kim shares some refreshingly blunt (and possibly controversial!) thoughts on why pushing women into STEM isn't always the right choice, as well as her criteria for selecting good advisory roles. We'll be releasing Part 2 next week, where we discuss how to apply threat modeling and risk assessment to the wide world of travelling with a camper! 

On Today’s Cloud Cast, I have the honor to catch up with Colin Anderson, former Chief Information Security Officer for Levi Strauss & Co. I’ve known Colin for years, and always find him to be a wealth of knowledge, and today was no different. We talked about the changing role of the CISO, and Colin shared his insights on why remote working arrangements are likely to stay.  Colin has a long and illustrious track record in information security, including Safeway, where he was CISO from 2009 to 2015, and Levi Strauss, where he elevated the information security function to a C-level role, and where I first had the chance to meet him.  Intro/Outro music: Just Dance, Patrick Patrikios - https://www.youtube.com/watch?v=w9RdrA3t95o 

On today’s Credio Cloud Cast, Carey Lening talks with Mike Peters, an application security consultant here at Credio. Mike holds a Master’s degree in Computer Science and over 10 years of experience working in application security, from scanning websites and vulnerability testing to understanding how AppSec fits into the bigger security picture. Mike and Carey chat about the importance of consistency, why security needs to be baked into your Software Development Lifecycle, vulnerability management, the OWASP Dependency Checker (and why it's so cool), and how all those unmaintained and unloved code libraries may come back to haunt us this year. OWASP Dependency Checker: https://owasp.org/www-project-dependency-check/