Navigating Cyber Risk
Cyber risk resilience for executives. Hackers are winning and lawmakers are taking action with new cyber risk mandates. In an increasingly internet delivered world, new cyberlaws and regulations with steep sanctions have been levied against leaders unable to prove their reasonable governance of the data privacy and cybersecurity problems. With cyber threats evolving at an alarming pace, cyber risk awareness and governance is needed as compliance alone is no longer enough for all businesses. Gone are the days of dry, technical jargon. At Navigating Cyber Risk, we understand the importance of making cybersecurity governance relevant to the executive suite and the board, as they can be held personally responsible for when hackers succeed. Our podcast combines expert insights with captivating storytelling, ensuring each episode is both educational and entertaining. From intriguing case studies and methods to monetize cyber risks to deep dives into emerging technologies and governance regul...
Episodes

25 minutes ago
25 minutes ago
Aside from saving lives, one of the most important priorities of the healthcare industry is safeguarding patients’ most confidential information about their medical conditions. Without the right cybersecurity measures in place, their records will always be at risk from potential cyberattacks. Board-certified psychiatrist Muhamad Aly Rifai is here to discuss how hospitals and clinics should navigate cybersecurity to keep their electronic record systems away from data breach and leakages. He also discusses how scammers and cyber terrorists trick people into doing something they do not want by playing around with their personality types and using AI tools in the most cunning ways possible.

Thursday Jul 10, 2025
Thursday Jul 10, 2025
Navigating the wild west of Artificial Intelligence and how data privacy plays into the game is a hot topic for all, from solopreneurs to large enterprises. In this episode, John Riley and Valerie Cobb dive deep into the world of AI policies and data security, exploring the nuances of modern AI usage, its risks, and its exciting potentials. They discuss everything from ChatGPT's data retention to how your company's information might be unwittingly shared, plus hilarious AI jokes and the importance of cybersecurity policies. Join us as they unpack practical steps for protecting your data, especially as the tech landscape rapidly evolves, and get ready for some Gen X perspective on the digital age! Valerie and John also touch on the fascinating intersection of AI and cybersecurity, including the concept of "hiring hackers," making this a must-listen for anyone keen on staying ahead of the curve in tech, business, and yes, even corny jokes.

Thursday Jun 26, 2025
Thursday Jun 26, 2025
In today's rapidly evolving digital landscape, understanding the difference between cybersecurity and cyber risk is crucial for executives aiming to protect their organizations. Join host John Riley in this insightful episode as he dives deep into this critical distinction with special guest Ashwin Rangan, CEO of DoubleCheck. Ashwin, a published author and seasoned expert with decades of experience in internet technology and cloud infrastructure, shares his unique perspectives on prioritizing cyber threats in the age of AI, navigating the financial implications of security investments with CFOs, and emerging trends that will profoundly impact cybersecurity in the near future. This episode is packed with actionable advice, real-world examples, and even some humorous anecdotes, providing listeners with a comprehensive understanding of cyber risk management and how to stay ahead of evolving threats. Tune in for expert insights and practical tips to safeguard your business and personal data.

Friday Jun 20, 2025
Friday Jun 20, 2025
Navigating cyber risk in today's rapidly evolving tech landscape requires more than just "whiz-bang" gadgets; it demands a strategic, aerial view, and that's precisely what we dive into with our special guest, Domingo Guerra, a patented outdoorsman, cybersecurity company founder, and early-stage investor! In this episode, John Riley and Domingo peel back the layers of cyber threats and risk transference, exploring the differences between cybersecurity "trench warfare" and the bigger-picture strategic thinking required for executives. Domingo, with his unique blend of technical know-how, go-to-market expertise, and investor insights, shares his experiences from building and selling his mobile security company and his current focus on helping other founders in the space. We discuss the most significant cybersecurity threats facing companies today, including the AI revolution, quantum computing's potential impact, and how startups can prioritize security without breaking the bank, plus some great insights on his love of skiing (Black Diamonds included). If you're looking for actionable advice on reducing cyber risk and understanding the future of security, you won't want to miss this dynamic conversation!

Friday Jun 13, 2025
Friday Jun 13, 2025
Understanding and achieving CMMC (Cybersecurity Maturity Model Certification) is vital for businesses working with the Department of Defense, and it's not as simple as saying, "Trust me, we're secure." In this episode, John Riley sits down with the passionate and insightful Valerie Cobb, a CMMC expert with Omnistruct, to dissect the complexities and necessities of CMMC. Valerie doesn't hold back, addressing common misconceptions like "we're too small" or "Congress will change it," with a direct, no-nonsense approach that matches her zeal for protecting critical data. Together, they dive into why CMMC is crucial now more than ever, contrasting it with the limitations of FedRAMP and highlighting the shift from self-attestation to third-party and DOD audits. Valerie emphasizes that compliance is not just a cost, but an opportunity for businesses to stand out, encouraging proactive steps towards certification and leveraging it as a strategic advantage in securing government contracts. If you're looking to understand CMMC and how it can transform your business's security posture and growth potential, this episode is a must-listen!

Friday May 23, 2025
Friday May 23, 2025
The Trump administration’s deregulation effort is causing underlying risks for the cybersecurity space. With compliance rules getting blurry across states, how can you protect your data from hackers and keep them private? John Riley and Valerie Cobb discuss how businesses can deal with data breaches, information processing, and confidential data management as deregulation is being rolled out. They also emphasize why compliance should be seen not just as a goal to be accomplished but as a never-ending journey of keeping up with the rapid pace of technology.

Thursday May 02, 2024
Thursday May 02, 2024
In today’s digital landscape, organizations need to build a secure foundation to protect their data. Yasir Ali is the Founder and CEO of PolymerHQ DLP, a company that offers a unique approach to data loss prevention designed for SaaS applications. He brings valuable insights about protecting your organization’s data and his approach to data loss prevention. He also shares emerging trends impacting the future. Yasir also draws the curtain to show how PolymerHQ DLP started. Join us in this conversation about protecting your organization’s data.

Thursday Mar 28, 2024
Thursday Mar 28, 2024
Artificial intelligence is sweeping every aspect of the digital space right now, and it always finds its way into our personal lives in more ways than one. Despite its many benefits, concerns regarding data privacy arise. Caroline McCaffery of ClearOPS is here to discuss the state of data privacy laws and regulations as AI becomes more ubiquitous. Joining John Riley and George Usi, she discusses how to ensure data protection and prepare ample cybersecurity budgets amid the ever-evolving AI landscape. Caroline also explains the right way to handle a cyber crisis without having to delete all of your data.

Thursday Feb 01, 2024
Thursday Feb 01, 2024
Cybersecurity incidents usually stem from human-enabled actions. But to err is human; it is only by learning from those mistakes that we can improve. In this episode, John Riley and George Usi sit down with Wendy Epley, Principal Analyst and Information Security expert at the University of Arizona. As a seasoned professional with over 15 years of experience in regulatory trade compliance, Wendy discusses the critical importance of understanding cybersecurity contracts. She emphasizes the need for organizations to carefully review and negotiate terms, ensuring robust security clauses to protect against potential threats. Wendy shares insights into the evolving landscape of cyber risk management, shedding light on the emergence of NIST Special Publication 800-171 as a pivotal framework. Tune in to learn about Wendy's exciting project, "CyBoRG," an internal resource at the University fostering knowledge sharing and aligning security practices. Don't miss this episode full of practical advice for building a resilient cybersecurity posture.

Thursday Dec 28, 2023
Thursday Dec 28, 2023
Effective cybersecurity isn't just a checkbox – it's an ongoing investment in resilience. It starts from the top, where collaboration between IT and leadership paves the way for a secure digital future. In this episode, we have Seth Guntharp to shed light on the challenges and triumphs of achieving CMMC (Cybersecurity Maturity Model Certification). Seth spares no details— he discusses CMMC's evolution, the changing landscape of compliance regulations, the crucial roles of CEOs, and more. Tune in and learn how to be ready to tackle cybersecurity challenges head-on!