KBKAST

• Episode 319 Deep Dive: Paul O'Rourke | The New Function Of A CRO And What This Actually Means

  In this episode, we sit down with Paul O’Rourke, Chief Risk Officer at TabCorp, as he explores the evolving function of the Chief Risk Officer (CRO) and what it means for organizations today. Paul highlights the growing necessity for CROs to possess deep technology and cyber risk skills, emphasizing that these competencies are rapidly becoming non-negotiable in tech-reliant industries. He reflects on the historical divide between business and tech risk functions, the importance of alignment and integrated approaches such as fusion centers, and how risk professionals must now balance traditional domains with new challenges like cybercrime, AI, and rapidly emerging threats. Paul O’Rourke commenced as Chief Risk Officer in June 2024. Paul brings a great depth of experience in risk management, including with respect to cybersecurity and technology risk management. Prior to joining Tabcorp, Paul was Managing Director and Partner of Boston Consulting Group where he led their Global Cyber and Digital Risk practice, and was also the Australian Risk Leader. He was previously the Global and Asia Pacific Cybersecurity Leader at PwC, and was Chief Information Security Officer of ANZ Bank Limited. Paul holds a Bachelor of Commerce (Economics) and is a Graduate Member of AICD.

  --------  

  33:22

  --------

  33:22
• Episode 318 Deep Dive: Chuck Herrin | Staying Ahead of Surging API Attacks

  In this episode, we sit down with Chuck Herrin, Field CISO and Customer Advocate at F5, as he unpacks the evolving threat landscape around APIs and AI in today’s organizations. Chuck explores how APIs have transformed from simple plumbing into the primary attack surface, often outpacing defenders due to historic silos between security and development teams. He highlights the acceleration of vulnerabilities and the widening gap created by tech debt, skill shortages, and the relentless push for innovation. Chuck also discusses the enormous pressure businesses face to adopt AI rapidly, often at the expense of security, and emphasizes the importance of leadership, board-level engagement, and foundational policy shifts to balance speed and safety. Chuck Herrin is the Field CISO of F5. Prior to F5, Chuck was the CTO of Wib, an API security firm that created the second generation of API security solutions designed from the ground up to provide end to end visibility, testing, and context to discover, test, and secure all APIs across a customer ecosystem. Prior to Wib, Chuck spent 19+ years as a CISO in financial services and banking, including SVP and Head of IT Security, Risk, and Compliance for all of AIG’s consumer-facing divisions and EVP and CISO of Texas Capital Bank prior to being named “Most Trusted Bank in America” by Newsweek in 2022. A lifelong learner, Chuck holds a litany of industry certifications gathered over the last 25 years, as well as a bachelor’s degree in biology from Lenoir Rhyne University. When not traveling to events and customer locations, Chuck is based out of his ranch in North Dallas.

  --------  

  39:23

  --------

  39:23
• Episode 314 Deep Dive: Imran Husain | Cybersecurity Threats in the Manufacturing World

  In this episode, we sit down with Imran Husain, Chief Information Security Officer at MillerKnoll, as he discusses the evolving landscape of cybersecurity threats in the manufacturing sector. Imran explores the challenges that arise as manufacturing increasingly integrates with online technologies and IoT, highlighting the unique vulnerabilities posed by legacy systems and operational technology (OT). He shares insights on high-profile incidents like the Norsk Hydro ransomware attack, emphasizing the importance of cyber resilience, data backup, and incident recovery. Imran also offers a candid look at why critical tasks like backing up data are often neglected, the complexities of securing aging infrastructure, and the need for creative solutions such as network segmentation and IT/OT convergence. A dedicated and trusted senior Cyber security professional, Imran Husain has over 22 years of Fortune 1000 experience that covers a broad array of domains which includes risk management, cloud security, SecDevOps, AI Security and OT Cyber practices. A critical, action-oriented leader Imran brings strategic and technical expertise with a proven ability to build cyber program to be proactive in their threat detection, identifying and engaging in critical areas to the business while upholding their security posture. He specializes in Manufacturing and Supply Chain Distribution focusing on how to best use security controls and processes to maximize coverage and reduce risk in a complex multi-faceted environment. A skilled communicator and change agent with bias to action who cultivates an environment of learning and creative thinking, Imran champions open communication and collaboration to empower and inspire teams to exceed in their respective cyber commitments. He is currently the Global Chief Information Security Officer (CISO) at MillerKnoll, a publicly traded American company that produces office furniture, equipment, and home furnishings.

  --------  

  41:35

  --------

  41:35
• Episode 313 Deep Dive: Rose Alvarado & Jenna Eagle | Security Data Pipeline and the Future of SOC

  In this episode, we sit down with Rose Alvarado, Regional Sales Manager, and Jenna Eagle, Solutions Engineer Lead, from Cribl as they unpack the evolving role of the security data pipeline and the future of the SOC. Rose and Jenna discuss the increasing demand for flexibility and control over data management, highlighting how organizations are moving away from vendor lock-in to gain better cost efficiencies and visibility. They examine the challenges of managing explosive data growth, the shift from traditional SIEM solutions to data pipelines for pre-processing, and the importance of routing high-value data to appropriate platforms. Rose Alvarado is an accomplished security specialist with more than eleven years of experience in the Australian Enterprise IT industry who partners with CISOs, CIOs and IT Managers to provide them with the best IT security and data solutions that meet their needs. Currently, she is the Regional Sales Manager for NSW at Cribl, helping organisations adopt a better data management strategy, improving their security and observability operations while reducing their cost of ownership. She is passionate about cybersecurity and data management, she constantly seeks to expand her professional skills and learn from industry experts. Jenna’s cyber journey began at Accenture Federal Services, where she collaborated with U.S. federal agencies on mission-critical projects. She then transitioned to Splunk as a Public Sector Solutions Engineer, specializing in compliance, automation, and IT and security modernisation. Now, as a Solutions Engineering Manager for ANZ at Cribl, she helps organisations take control of data growth through optimisation, data tiering, and breaking vendor lock-in. When she’s not “Cribbling,” you’ll find her exploring her new home in Australia or spending time with her American Bulldog.

  --------  

  40:48

  --------

  40:48
• From AUSCERT Cyber Security Conference – KB On The Go | Ivano Bongiovanni

  In this episode, we sit down with Ivano Bongiovanni, General Manager at AUSCERT, as he unpacks the evolving landscape of the cybersecurity profession. Ivano discusses the shift towards developing complementary skills beyond technical expertise, emphasizing the value of communication, stakeholder management, and project leadership alongside core technical abilities. He explores the concept of T-shaped professionals and advocates for hands-on, experiential learning to build these diverse skill sets. The conversation delves into the ongoing debate around the professionalization of cybersecurity, with Ivano highlighting the pros and cons of structuring the industry with formal certifications versus a more open, experience-based approach. He stresses the importance of open, constructive dialogue within the community to address these issues, ultimately focusing on the shared goal of strengthening cybersecurity and fostering a more mature, collaborative industry. Ivano is a researcher, consultant, author, and speaker whose work focuses on the managerial and business implications of Cybersecurity. He is the General Manager of AUSCERT, a not-for-profit organisation affiliated with UQ that delivers cybersecurity services to public and private sector organisations across Australia and New Zealand. Ivano is also a Senior Lecturer in Cybersecurity Management with the UQ Business School and a member of UQ Cyber. Ivano helps business leaders and executives make evidence-based decisions in cybersecurity. With a professional background in risk and security management, Ivano’s work bridges the gap between technical cybersecurity and its repercussions across organisations. He has advised ministers, policy-makers, board members, and senior executives on strategies, governance structures, policies, and training programs for effective cybersecurity management. Ivano is also an experienced facilitator in the fields of Design Thinking and Design-Led innovation, having run since 2015 more than 50 design-led workshops and longer projects for public and private sector organisations. Prior to AUSCERT and UQ, Ivano worked as a Research Fellow with the Adam Smith Business School (University of Glasgow) and a Postdoctoral Fellow with the PwC Chair in Digital Economy (QUT). In this role, he worked with public and private sector organisations in projects aimed at facilitate their transition into the Digital Age. Ivano obtained his PhD from QUT in 2016, with a thesis on safety and security management in Australian airports. His academic career includes stints with Bocconi University and SDA Bocconi School of Management (Milan), where he worked as a faculty member and consultant for three years. He also worked as a Deputy Venue Security Manager at the XX Winter Olympic Games – Turin 2006 and as a Police Officer for the Italian Ministry of Interior. He has a double MSc in Management of Public Administrations and International Institutions (Bocconi University, Milan) and International Security (Sciences Po, Paris). A father of one and an eager snowboarder, Ivano loves soccer, American football, and writing novels and poems.

  --------  

  20:33

  --------

  20:33

More Business podcasts

Trending Business podcasts

About KBKAST

KBKAST: Podcasts in Family