CISO Resources

  • How to CISO, Volume 1: The First 91 Days

    How to CISO, Volume 1: The First 91 Days

    Just want to download the eBook? Head over to How to CISO, Volume 1: The First 91 Days! It seems to be a rite of passage for all CISOs to, at some point in their career, write down their advice for other CISOs starting a new job, whether they are a first-time or veteran CISO.…

    Read more…


Security Talks

  • This talk delves into the intersection between security–helping make wiser risk choices–and leadership–getting more done with a lower energy cost. It draws on the lessons of the Six Leadership Disciplines and Humans are Awesome at Risk Management talks, providing a handful of examples of specific leadership skills to practice. The 24 skills in the matrix…


  • Summary Everybody sells, right? Wrong. Unless you’re taking an order and retiring your quota, you don’t sell – instead, you market. If you’re selling to a CISO, you need to understand the organizational dynamics that surround a CISO’s decision-making process. This talk walks through nine critical questions that CISOs need to understand the answers to…


  • The Untold Story of Fantastical Social Engineering. Hidden inside the story of Harry Potter is a most subtle of social engineering attacks. Explore how J.K. Rowling hid the world’s greatest villain in plain sight. This talk explores the world of Harry Potter from a different angle: that of the villain. In this talk, given in…


  • How do you know what to invest in next, or whether the time and energy that you’re spending on a security technology or program is a good investment?  Learn how veteran CSOs think about security investments, and develop your own rubric for evaluating where to best make your next security improvement.


  • How do you design defenses against DDoS? And how do you think about them from a policy perspective?


  • How do humans make risk decisions, and are they good, bad, or something else?


  • How do the grand challenges of the future look like the grand challenges of the past?


  • What does a Zero Trust journey look like? Explore how we migrated Akamai to a zero trust network access model, before that was even a phrase people knew.



Security Panels

  • Investing in Solutions for Tomorrow’s Attacks

    Potential investors in the cybersecurity sector need a deep understanding of what the pinch points are for cybersecurity practitioners. Andy Ellis, a 20-year CSO at Akamai who is now an operating partner at YL Ventures, discusses what cybersecurity sectors are attracting investment – and why.


  • Scaling Security Programs in High Growth Companies

    This webinar discusses the challenges of scaling security programs in high-growth companies, featuring insights from security experts from HashiCorp and Robinhood.



Security Blog


Security Podcasts

  • Cloud Security Reinvented: Deneen DeFiore
    Cloud Security Reinvented: Deneen DeFiore

    https://orca.security/resources/podcast/?wchannelid=v7ih6xfqse&wmediaid=071tif2v4p Regardless of the industry, most people agree that the cloud era has taken business processes to a whole new level. However, not all industries, including the airline industry, take advantage of cloud technologies as they should.In today’s episode of Cloud Security Reinvented, it is our pleasure to welcome Deneen DeFiore. Deneen is the VP…

  • CISO Series: A Quick Way to Tell Which Vendors You Should Avoid
    CISO Series: A Quick Way to Tell Which Vendors You Should Avoid

    https://cisoseries.com/a-quick-way-to-tell-which-vendors-you-should-avoid/ Do you really need to ask hundreds of questions to know if you want to work with a vendor? On this week’s CISO Series CISO/Security Vendor Relationship Podcast, David Spark and I welcome guest Nick Selby, CSO, Paxos Trust Company to discuss: – How do you suss out security vendors to make sure they’re…

  • CISO Series: What’s the ROI of Nothing Happening?
    CISO Series: What’s the ROI of Nothing Happening?

    https://cisoseries.com/whats-the-roi-of-nothing-happening/ On this week’s CISO Series CISO/Security Vendor Relationship Podcast, David Spark and I welcome my colleague Ryan Gurney, CISO-in-residence, YL Ventures to discuss: – What’s a better sign than “nothing happened” to indicate you did a good job in cybersecurity?– What happens when your company wants to use a really insecure SaaS product?– What…