What does materiality mean exactly?

CyberWire Daily

N2K Networks, Inc.

Daily News, Tech News, News, Technology

4.6 • 1K Ratings

🗓️ 12 August 2024

⏱️ 11 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Rick Howard, N2K CyberWire’s Chief Analyst and Senior Fellow, discusses the meaning of cybersecurity materiality. References: Amy Howe, 2024. Supreme Court strikes down Chevron, curtailing power of federal agencies [Blog] Cydney Posner, 2023. SEC Adopts Final Rules on Cybersecurity Disclosure [Explainer]. The Harvard Law School Forum on Corporate Governance. Cynthia Brumfield, 2022. 5 years after NotPetya: Lessons learned Analysis]. CSO Online. Eleanor Dallaway, 2023. Closed for Business: The Organisations That Suffered Fatal Cyber Attacks that Shut Their Doors For Good [News]. Assured. Gary Cohen, 2021. Throwback Attack: Chinese hackers steal plans for the F-35 fighter in a supply chain heist [Explainer]. Industrial Cybersecurity Pulse. James Pearson, 2022. Russia downed satellite internet in Ukraine [News]. Reuters. Katz, D., 2021. Corporate Governance Update: “Materiality” in America and Abroad [Essay]. The Harvard Law School Forum on Corporate Governance. Kim Zetter, 2014. Countdown to Zero Day: Stuxnet and the Launch of the World’s First Digital Weapon [Cybersecurity Canon Hall of Fame Book]. Goodreads. Lizárraga, C.J., 2023. Improving the Quality of Cybersecurity Risk Management Disclosures [Essay]. U.S. Securities and Exchange Commission. MATTHEW DALY, 2024. Supreme Court Chevron decision: What it means for federal regulations [WWW Document]. AP News. Rick Howard. Countdown to Zero Day: Stuxnet and the Launch of the World’s First Digital Weapon [Book Review]. Cybersecurity Canon Project. Rick Howard, 2021. Using cyber sand tables to study the DNC hack of 2016. [Podcast]. The CyberWire. Rick Howard, 2022. Cyber sand table series: OPM. [Podcast and Essay]. The CyberWire. Staff, 2020. Qasem Soleimani: US strike on Iran general was unlawful, UN expert says [Explainer]. BBC News. Staff, 2023. Final Rule: Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure [Government Guidance]. U.S. Securities and Exchange Commission. Staff, 2024. Number of Public Companies v. Private: U.S. [Website]. Advisorpedia. Learn more about your ad choices. Visit megaphone.fm/adchoices

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the Cyber manage environments that you controlled.
0:20.0	Then came new technologies and new ways to work. Now employees, apps, and networks are everywhere.
0:27.0	This means poor visibility, security gaps, and added risk.
0:31.0	That's why Cloudflare created the first ever connectivity cloud.
0:35.6	Visit Cloud.com to protect your business everywhere you do business. The idea of cybersecurity materiality is tough to get your hands around.
0:51.5	I'm part of a Cardigan- a Carnegie Mellon University team, CMU,
0:55.4	that contributes to a six-month-long chief information security officer
0:59.4	certificate program.
1:01.1	It targets existing CSOs who want to sharpen their skills and other
1:05.3	security professionals looking to get into the CSO game. CMU brings in 18
1:10.7	cybersecurity luminaries like Cybersecurity Ken and Hall of Fame authors Jack Jones,
1:16.4	co-author of measuring and managing information risk.
1:19.7	He's the inventor of the Fair model.
1:22.0	Randy Treziac, co-author of the cert guide to insider threats, and
1:26.3	Doug Hubbard, co-author of how to measure anything in cybersecurity risk.
1:31.3	Don't ask me how I got on the list. Clearly CMU was
1:34.7	misinformed about what the word luminary means. I was misinformed. For my
1:42.2	piece twice a year I facilitate a five-hour session that covers and updates the
1:46.4	subjects in my book, Cybersecurity First Principles, a reboot of Strategy and Tactics.
1:52.1	Each time we do it, there is a subset of students
1:55.0	consisting of senior government people
1:57.0	looking to make the transition to the commercial world
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.