What Really Grinds My Gears In Infosec!

Razorwire Cyber Security

12-06-2024 • 53 mins

Unmask the reality of the information security world in this week's episode of Razorwire! Join me, Jim, and my guests, Chris Dawson and Iain Pye, as we talk about our daily frustrations working in infosec and the pressing issues facing cybersecurity professionals. We dissect the gripes, pet peeves and laughable clichés that saturate our industry.

From the hype of award ceremonies to the absurdity of exaggerated credentials on LinkedIn, this conversation is packed with insights and anecdotes that will resonate with every cybersecurity professional. Stay tuned and subscribe for this candid look at the ups and downs of our industry.

Key Talking Points:

1. Real Talk on Compliance and Regulations: Discussing the hype around compliance requirements like GDPR and DORA, we break down the importance of understanding and managing these regulations without falling for marketing gimmicks.

2. Vendor Exaggerations vs. Reality: Discussing the overblown claims around GDPR and DORA compliance and the serious implications for cybersecurity.

3. Grandstanding Egos: The rise of self-proclaimed thought leaders and influencers and their role in fuelling fear, uncertainty and doubt within the infosec community.

Tune in for a frank and entertaining discussion on the gritty realities of information security!

The Struggles of Simplicity:

"Your average user will go out their way to circumnavigate the controls that you've put in place."

Iain Pye


Listen to this episode on your favourite podcasting platform: https://razorwire.captivate.fm/listen


In this episode, we covered the following topics:

- Annoying Infosec Practices: This satirical podcast dives into some of the most irritating practices in the infosec industry.

- Auditor Issues: The frustrations of dealing with auditors. Enough said.

- Integrity at Work: We talk about significance of acting professionally in workplace settings.

- Infosec Vendor Marketing: The creative license taken by vendor marketing departments and how to stay wise to exaggerations.

- Risk Management Complexity: We talk about the overwhelming abundance of acronyms, and the importance of clear communication and documentation.

- Compliance and Regulations: We look into the implications of compliance requirements such as GDPR and the upcoming DORA.

- Exaggerated Professional Profiles: We lament the trend of elaborate and often exaggerated LinkedIn profile titles and qualifications.




Resources Mentioned

- The Cyber Sentinel’s Handbook

- GDPR (General Data Protection Regulation)

- DORA (Digital Operational Resilience Act)

- LinkedIn

- Chat GPT





Other episodes you'll enjoy


Preventing Burnout in Cyber Security

You Might Like

Darknet Diaries
Darknet Diaries
Jack Rhysider
Double Tap
Double Tap
Double Tap Productions Inc.
Acquired
Acquired
Ben Gilbert and David Rosenthal
Hard Fork
Hard Fork
The New York Times
This Week in Retro
This Week in Retro
Neil from RMCretro - The Cave, Chris from 005 AGIMA and Dave
Talkin' Shop
Talkin' Shop
Eclipse Automotive Technology
TechStuff
TechStuff
iHeartPodcasts
The Vergecast
The Vergecast
The Verge
Hacked
Hacked
Hacked
Smashing Security
Smashing Security
Graham Cluley & Carole Theriault
Waveform: The MKBHD Podcast
Waveform: The MKBHD Podcast
Vox Media Podcast Network