Kopi-O with CISO

S04E01: Why Should Boards and CEOs Care about Ransomware Resilience?

In this new season 4, I am running a series, "Boards and CEOs Ransomware Resilience"—where I talk about ransomware resilience at leadership levels, but not from the technical angle. This series is for board members, CEOs, and senior leaders who know that cybersecurity is no longer just an IT issue—it’s a business survival issue. --- My weekly newsletter: https://sivanathan.substack.com --- My new book (available on Amazon): Leadership in the Age of AI: A Handbook of Daily Cybersecurity Leadership Nuggets [https://www.amazon.com/Leadership-Age-AI-Cybersecurity-Transform/dp/B0DZ2PGP7Q/ref=mp_s_a_1_1?crid=C9SXW95OA10&dib=eyJ2IjoiMSJ9.LY-X4GTOZW-xVCctgsOg6g.qAf9jin2e9pQj_5kf5jjcRZrj2ogmg5FtxN3nJC3t6M&dib_tag=se&keywords=leadership+in+the+age+of+ai%3A+a+handbook+of+daily+cybersecurity+leadership+nuggets&qid=1741235392&sprefix=%2Caps%2C313&sr=8-1]

S03E03: Inside BNM's 2024 Risk Management in Technology (RMiT) Exposure Draft

Grab a cup of kopi-o! In this episode of Kopi-O with CISO, I am diving deep into Bank Negara Malaysia’s recently released Exposure Draft on Risk Management in Technology (RMiT ED). This draft sets the tone for how financial institutions, from banks to e-money operators, should approach technology risks in an era of escalating cyber threats, fraud, and innovation. Join me as I break down the key objectives of the ED—resilience, customer protection, and responsible innovation—and what they mean for technology risk management, cybersecurity, and the future of finance in Malaysia. I’ll explore practical requirements, from appointing a strong CISO to adopting secure cloud services, managing third-party risks, and even preparing for quantum computing. Whether you’re in finance, tech, or just someone passionate about cybersecurity, this episode is packed with insights on how these changes could impact you. Plus, I’ll share why your feedback to BNM before January 31, 2025, is vital to shaping these regulations. #KopiOwithCISO #cybersecurity #CISO #infosec #RMiT

S0302: Cyber Security in Malaysia's Healthcare Sector with Ramana Ramakrishna (KPJ Healthcare)

Grab a cup of kopi-o! Join Ramana Ramakrishna [https://www.linkedin.com/in/rramana/] and me as we explore the critical cyber security landscape in Malaysia's healthcare sector. Ramana, the GM of IT Operations with KPJ Healthcare Bhd, one of the leading private hospital chains, shares frontline insights on tackling cyber threats, enhancing resilience, and navigating policy challenges to safeguard patient data in an increasingly digital healthcare environment. Tune in to gain essential perspectives on cyber hygiene, AI use in healthcare, AI-powered cyber security and future-proofing healthcare cyber security strategies. #KopiOwithCISO #CISO #cybersecurity #infosec #healthcare

S0301: Beyond the Perimeter - Extended Cyber Risk Management with Terence Cheong

Grab a cup of kopi-o! In this brand new season of 'Kopi-O with CISO' Podcast, join me and my special guest Terence Cheong [https://www.linkedin.com/in/terence-cheong/] from BitSight as we delve into the world of third-party cyber risk management and cyber supply chain risk management. We'll explore the latest strategies for securing extended digital ecosystems, how to effectively manage and mitigate risks associated with external attack surfaces and discuss the importance of Software Bill of Materials (SBOM). Tune in to gain interesting insights from Terence on strengthening your cybersecurity framework and safeguarding your digital operations against evolving threats. #KopiOwithCISO #CISO #cybersecurity #infosec

S02E10: Scanning Public Websites: Ethical & Legal Dilemmas (with Tevanraj & Firdaus)

Grab a cup of kopi-o! In this episode of Kopi-O with CISO, I am joined by Tevanraj Elengoe and Firdaus Juhari to delve into the complex world of cybersecurity in Malaysia, particularly focusing on the ethical and legal considerations of scanning public web platforms for security vulnerabilities. Together, we unpack the intricacies of detecting security flaws in an effort to "voluntarily and ethically" enhance digital safety of public websites. Through candid conversations, we explore the fine balance between proactive security measures and respecting legal boundaries, all while navigating the unique challenges and regulations faced within the Malaysian digital landscape. Tune in for an engaging discussion that sheds light on the pressing question: Where do we draw the line in safeguarding our cyber world? #KopiOwithCISO #cybersecurity #infosec