Podchaser Logo
Home
Cloud Security TodayEpisode from the podcastCloud Security Today
Next Episode
Security is a process

Security is a process

Released Friday, 16th February 2024
Good episode? Give it some love!
Security is a process

Security is a process

Security is a process

Security is a process

Friday, 16th February 2024
Good episode? Give it some love!
Rate Episode
About
InsightsPodchaser Pro
Reviews
Credits
Lists
Transcript

Send us a Text Message.

Episode Summary

On this episode, Co-Founder and CTO of Gutsy, John Morello, joins Matt to talk about Process Mining in Cybersecurity. Before co-founding Gutsy, John served as the CTO of Twistlock and VP of Product for Prisma Cloud.

John holds multiple cybersecurity patents and is an author of NIST SP 800-190, the Container Security Guide. Before Twistlock, he was the CISO of an S&P 500 global chemical company. Before that, he spent 14 years at Microsoft, working on security technologies in Windows and Azure and consulting on security projects across the DoD, intelligence community, and at the White House. 

John graduated summa cum laude from LSU and lives in Baton Rouge with his wife and two sons. A lifelong outdoorsman and NAUI Master Diver and Rescue Diver, he's the former board chair of the Coalition to Restore Coastal Louisiana and a current Coastal Conservation Association board member.

Today, John talks about governance challenges in cybersecurity, the importance of security as a process, and how to apply process mining. How is process mining useful in cybersecurity? Hear about process mining human actions and unstructured sources, and how John manages to stay sharp.

 

Timestamp Segments

·       [02:20] John’s cybersecurity journey.

·       [07:43] Pivotal moments in John’s career.

·       [10:23] The most pressing governance challenges.

·       [14:07] What is process mining?

·       [19:03] How process mining can benefit certain functions.

·       [21:09] Security as a process, not a product.

·       [25:37] Why there’s not more focus on process.

·       [32:03] Applying process mining.

·       [38:07] Filling in the gaps.

·       [42:03] How John stays sharp.

 

Notable Quotes

·       “Security is a process, not a product.”

·       “In security, inefficiency and inconsistency are highly correlated with risk.”

·       “Almost everything in security is about process.”

 

Relevant Links

Website:          gutsy.com.

LinkedIn:         www.linkedin.com/in/john-morello.

Secure applications from code to cloud.
Prisma Cloud, the most complete cloud-native application protection platform (CNAPP).

Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.

Show More
Rate
Get this podcast via API

From The Podcast

Cloud Security Today

The Cloud Security Today podcast features expert commentary and personal stories on the “how” side of cloud security. This is not a news program but rather a podcast that focuses on the practical side of how to launch a cloud security program, how to implement DevSecOps as well as understanding the threats most impacting cloud today.

Join Podchaser to...

  • Rate podcasts and episodes
  • Follow podcasts and creators
  • Create podcast and episode lists
  • & much more

Episode Tags

Do you host or manage this podcast?
Claim and edit this page to your liking.
,

Unlock more with Podchaser Pro

  • Audience Insights
  • Contact Information
  • Demographics
  • Charts
  • Sponsor History
  • and More!
Pro Features
Podchaser Logo

Podchaser is the ultimate destination for podcast data, search, and discovery. Learn More