Home Coaching Courses Episodes Free Templates LinkedIn Newsletter Podcast Sponsor Store
CISO Tradecraft®

CISO Tradecraft®

Hosted by: G Mark Hardy & Ross Young

You are not years away from accomplishing your career goals, you are skills away. Learn the Tradecraft to Take Your Cybersecurity Skills to the Executive Level. © Copyright 2025, National Security Corporation. ...

All Episodes

Episodes

#123 - Accepted Cyber Strategy (with Branden Newman)

Episode #123

In this episode of "CISO Tradecraft," G Mark Hardy discusses how to build an effective cyber strategy that executives will appreciate. He breaks down the four questions (Who, What, Why, and How) that need to be...
View Episode

#122 - Methodologies for Analysis (with Christopher Crowley)

Episode #122

Sometimes you just need structure to the madness. Christopher Crowley stops by to talk about methodologies that can help security organizations. Come and see why you need them, how we get the scientific method wrong...
View Episode

#121 - Legal Questions (with Evan Wolff)

Episode #121

Have you ever wanted to get a legal perspective on cybersecurity?  On this episode of CISO Tradecraft, Evan Wolff stops by to discuss terms such as legal disclaimers, negligence, due care, and others.  He also...
View Episode

#120 - Negotiating Your Best CISO Package (with Michael Piacente)

Episode #120

Have you ever wondered how to negotiate your best CISO compensation package?  On this episode, we invite Michael Piacente from Hitch Partners to discuss important parts of the compensation packages.  Examples include...
View Episode

#119 - Ethics (with Stephen Northcutt)

Episode #119

One of the most difficult things to do as a manager or leader is to take an ethical stance on something you believe in.  Sometimes ethical stances are clear and you know you are doing what’s right.  Others are blurry,...
View Episode

#118 - Data Engineering (with Gal Shpantzer)

Episode #118

Our systems generate fantastic amounts of information, but do we have a complete understanding of how we collect, analyze, manage, store, and retrieve possibly petabytes a day? Gal Shpantzer has been doing InfoSec for...
View Episode

#117 - Good Governance (with Sameer Sait)

Episode #117

Has bad governance given you trauma, boring committees, and long speeches on irrelevant issues?  Today we are going to overcome that by talking about what good governance looks like.  We bring on the former CISO of...
View Episode

#116 - A European view of CISO responsibilities (with Michael Krausz)

Episode #116

In the US we often focus on SOC-2, NIST Special Pubs, and the Cybersecurity Framework. In Europe (and most of the rest of the world), ISO 27001 is the primary standard. ISO concerns itself with policy, practice, and...
View Episode

#115 - The Business Case for a Global Lead of Field Cybersecurity (with Joye Purser)

Episode #115

How can cyber best help the sales organization?  It's a great thought exercise that we bring on Joye Purser to discuss. Learn from her experience as we go over how cybersecurity is becoming an even closer business...
View Episode

#114 - One Vendor to Secure Them All

Episode #114

Did you ever wonder how much security you can implement with a single vendor?  We did and were surprised by how much you can do using the Australian Top Eight as a template.  We'll bet you can improve your security by...
View Episode

#113 - SAST Security (with John Steven)

Episode #113

This episode provides a deep dive into Static Application Security Testing (SAST) tools.  Learn how they work, why they don't work as well as you think they will in certain use cases, and find some novel ways apply...
View Episode

#112 - Attack Surface Management (with Richard Ford)

Episode #112

How do you defend against automated attacks in an era of ChatGPT-formulated malware, coordinated nation-state actors, and a host of disgruntled laid-off security professionals? Want to find your vulnerabilities faster...
View Episode