The Cyber Security Podcast from PwC UK

Anatomy of a ransomware attack - Lessons from the Irish Health Service Executive (HSE) - S4E4

PwC UK — Fri, 31 Mar 2023 08:59:28 +0000

How prepared are you to respond to a ransomware attack? In this episode our host Chloe Seaton is joined by Fran Thompson from the Irish HSE and Pat Moran from PwC Ireland to discuss key lessons all organisations can learn from the ransomware attack on the Irish HSE in May 2021. The discussion covers crisis response in the heat of a ransomware attack, tackling the challenges of business recovery and bringing systems back online, why organisations need to understand the extent of the dependence of their critical services on technology, and how to boost cyber security preparedness and build ransomware resilience.

CISO Spotlight on John White, Virgin Atlantic - S4E3

PwC UK — Wed, 30 Nov 2022 07:00:00 +0000

In this episode, our host Chloe Seaton is joined by John White, Leader of Information and Cyber Security at Virgin Atlantic. In this episode John talks about how cyber security can support digital transformation, the importance of simplifying IT and getting the basics right, ransomware resilience, tackling the cyber talent gap - and his interesting career journey from personal trainer to CISO.

Why regulators are shining a spotlight on cyber resilience - S4E2

PwC UK — Thu, 04 Aug 2022 13:33:18 +0000

In this episode, our new host Chloe Seaton is joined by Lucie Usher, EMEA Intelligence Officer for FS-ISAC and Luc Manfredi, a Director in our Cyber Security team in the UK to discuss what is driving cyber resilience up the regulatory agenda in sectors such as financial services, energy and utilities; the key cyber risks for organisations in regulated sectors, including supply chain attacks, the growing use of operational technology in industrial operations and geopolitical unrest; how the regulatory landscape is evolving around cyber resilience - nationally and globally; and what organisations in regulated sectors can do to increase cyber resilience and ensure compliance through greater information sharing, rigorous self-assessment and continuous exercising and testing.

How to increase cyber resilience in a heightened state of alert - S4E1

PwC UK — Mon, 23 May 2022 11:23:58 +0000

In this episode, we’re joined by our UK Cyber Security Chair, Richard Horne and UK Cyber Security Director, Laura Duncan to discuss:

What is a heightened state of cyber alert?
How do you assess your vulnerability and respond to different levels of cyber alert?
What scenarios do you need to plan for and what actions should you prioritise?
How do you embed cyber resilience across your organisation and people - and how do you manage security fatigue in a prolonged heightened state of alert?

What’s on the minds of CISOs? New responsibilities, future risks and hiring talent - S3E6

PwC UK — Thu, 17 Jun 2021 10:04:55 +0000

In this episode we’re joined by Kevin Storli and Phil Venables to look at the changing role of the chief information security officer (CISO). We discuss: 1. How they’ve seen the role of the CISO change over their careers. 2. How CISOs can mitigate security risks while enabling their organisation to achieve its goals. 3. Current areas of concern, including supply chain risk and securing the cloud. 4. What they look for when hiring and the skills CISOs need to recruit for over the next few years. Host: Abigail Wilson, Cyber Threat Operations Manager, PwC UK Guest: Kevin Storli, Global CTO and UK Chief Information Security Officer, PwC Guest: Phil Venables, Chief Information Security Officer, Google Cloud

Keeping your operational technology secure - S3E5

PwC UK — Thu, 20 May 2021 16:29:44 +0000

In this episode we’re joined by Sean Sutton and Cara Haffey to discuss how organisations can secure their operational technology (OT). We discuss: 1. How OT security differs from IT security. 2. Threats we’ve seen targeting operational technology, with a focus on the manufacturing sector. 3. Steps you can take to tackle threats and build resilient operations. Host: Abigail Wilson, Cyber Threat Operations Manager, PwC UK Guest: Sean Sutton, Cyber Security Partner, PwC UK Guest: Cara Haffey, UK Industrial Manufacturing Leader, PwC UK

How CEOs can build secure organisations - S3E4

PwC UK — Tue, 06 Apr 2021 09:22:55 +0000

In this episode we’re joined by Richard Horne to discuss how CEOs can reduce complexity and make their organisations more securable.

We discuss: whether CEOs are taking enough of a role in tackling cyber risk; how embracing simplicity can benefit their organisations; how CEOs can embed cyber security into transformation plans.

Host: Abigail Wilson, Cyber Threat Operations Manager, PwC UK
Guest: Richard Horne, UK Cyber Security Chair, PwC UK

Cyber threat imperatives for 2021 - S3E3

PwC UK — Mon, 15 Mar 2021 11:29:58 +0000

In this episode we’re joined by Kris McConkey and Krystle Reid to discuss the latest cyber threats you need to defend against. We cover:
- the key threat trends from last year
- threats we expect to be prominent in 2021, including cyber risk considerations around the hybrid working mode
- how organisations can combat these threats.

SUNBURST and supply chain risks - S3E2

PwC UK — Tue, 23 Feb 2021 12:09:29 +0000

In this episode we’re joined by Gabriel Currie and Will Oram to discuss the SUNBURST hack and the issues identified. We discuss: - analysis of the attack - the risk areas highlighted - how you can defend against supply chain risks Host: Abigail Wilson, Cyber Threat Operations Manager, PwC UK Guest: Gabriel Currie, Cyber Incident Management Lead, PwC UK Guest: Will Oram, Cyber Remediation Lead, PwC UK

Communicating cyber risk to the c-suite - S3E1

PwC UK — Mon, 25 Jan 2021 10:25:05 +0000

In this episode we cover:

why cyber risk reporting is important
common problems facing organisations
how to improve your own cyber security risk reporting.

Why are companies still suffering from breaches? - S2E6

PwC UK — Sat, 09 Feb 2019 16:00:00 +0000

Abigail Wilson is joined by Kris McConkey and Hamish Cameron to answer the question "why are companies still suffering form cyber breaches?".

The threat landscape - S2E5

PwC UK — Thu, 31 Jan 2019 12:30:00 +0000

Abigail Wilson is joined by Louise Taggart and Rachel Mullan from our cyber threat intelligence team to discuss what they are anticipating in the future threat landscape.

Getting the basics right - S2E4

PwC UK — Wed, 16 Jan 2019 17:30:00 +0000

We're joined by Dr Richard Horne and Laura Duncan to talk about the basics of cyber security and discuss the challenges organisations face in getting these right.

Untrusted applications - S2E3

PwC UK — Mon, 17 Dec 2018 16:00:00 +0000

Abigail Wilson is joined by Will Semple and Stephen Morrow to chat about untrusted applications and discuss the issue of how big a risk third party software is to your business.

Research and development - S2E2

PwC UK — Tue, 11 Dec 2018 17:30:00 +0000

Abigail Wilson is joined by Matt Wixey and Holly Rostill to chat about the importance of research and development in cyber security and why it is key to building a secure digital society.

Authenticating people - S2E1

PwC UK — Tue, 04 Dec 2018 14:33:00 +0000

Our new host Abigail Wilson is joined by Derek Gordon and Daisy McCartney to chat about both the technological and cultural sides of authentication, and why it is passwords and not people that are the weakest link in the security chain.

Are you ready for a new world of cyber threats? - S1E7

PwC UK — Mon, 07 Aug 2017 09:30:00 +0000

Louise Taggart chats to Matt Wixey, threat and vulnerability consultant at PwC UK, about his cutting-edge research into emerging cyber threats to organisations. Find out more about the latest techniques being used by hackers to bypass security mechanisms, involving light and sound.

The changing world of cyber threats - S1E6

PwC UK — Mon, 12 Jun 2017 09:30:00 +0000

We're joined by Louise Taggart, PwC threat intelligence analyst, to look at the threats companies face from individuals, groups and even states who are sponsoring and funding cyber attacks. We discuss this rapidly growing area of concern and how it's being impacted by the global political landscape.

CISO's of the future - S1E5

PwC UK — Mon, 05 Jun 2017 09:30:00 +0000

In our fifth episode, we're joined by Christian Arndt, cyber security director at PwC, to look at the role of the chief information security officer. The CISO is often a senior level executive who is responsible for multiple areas of an organisation’s security strategy, resilience and vision. What will the future CISO look like? What characteristics should organisations expect of someone in this role?

The importance of identity and access management - S1E4

PwC UK — Mon, 29 May 2017 09:30:00 +0000

Ian is joined by Richard Mardling, director of access governance at PwC to discuss the importance of identity and access management. In this podcast Richard discusses the key risks to contemporary organisations through his personal journey of securing local intranets to the current challenge of BYOD and remote access. Richard highlights the story of a French trader who was jailed for three years after the 2008 Société Générale trading loss, which cost the bank nearly €5bn, due to unauthorised use of the bank's computers.

Digital crime scene forensics - S1E3

PwC UK — Mon, 22 May 2017 09:30:00 +0000

In episode three we're joined by Kris McConkey, cyber security partner at PwC, to talk about digital crime scene forensics. From tracking the bad guys and setting up online traps to undertaking digital crime scene investigations, we discuss ways that organisations can improve their cyber resilience.

The future of cyber security law - S1E2

PwC UK — Mon, 15 May 2017 09:30:00 +0000

In the second episode of the new realities of cyber security, Ian is joined by former detective and cyber crime expert, Charlie McMurdie. Charlie discusses the challenges the police face in combating crime online and the work they are doing to help protect both companies and individuals.

Understanding Europe's privacy future - The GDPR - S1E1

PwC UK — Wed, 03 May 2017 09:30:00 +0000

Ian Todd, cyber security consultant, is joined by Jane Wainwright, privacy and data protection director, to discuss the General Data Protection Regulation (GDPR). Coming into effect in May 2018, this is the largest data protection change in a generation. With one year left to go, organisations are trying to understand data flows, consent mechanisms, binding corporate rules and how to assess their current level of readiness.