You're listening to the CyberWire Network, powered by N2K.

Today's episode is sponsored by SRM, your first call for cybersecurity and

investigations. Threats today are evolving faster than ever before and since 2005 SRM has pioneered

tailored security solutions for global corporations and their executives.

Whether it's defending against cyber attacks with their award-winning team of ethical hackers and incident response specialists,

or navigating the murky waters of compliance and ESG challenges,

SRMs, Insight and Straight straightforward advice will help you navigate complex risks

and emerge more resilient.

Their secret, a culture that nurtures the sharpest minds, giving them access to the newest technologies and the freedom

to solve problems in new ways, enabling them to craft simple effective solutions for your

unique cyber challenges.

Search your first call to discover how SRM can help your business. Hello everyone and welcome to the CyberWire's research Saturday.

I'm Dave Bitner and this is our weekly conversation with researchers and analysts tracking down the threats and vulnerabilities,

solving some of the hard problems of protecting ourselves in a rapidly evolving cyberspace.

Thanks for joining us. What we started doing a couple of years ago is examining not just what everyone is doing because there are plenty

of benchmark reports out there. But what I really wanted to find out is what appears to work in

security and that's hard to track down.

That's Wendy Nather. She's head of advisory Sissos at Cisco. The research we're

discussing today is titled

Cracking the Code to Security Resilience,

lessons from the latest Cisco Security Outcomes Report. But thanks to the work that we have been doing with the Sciente Institute and some pretty rigorous data analysis, we think we're getting

closer to some answers on what appears to correlate between certain types of practices and the outcomes that we want in a security program.

...