Cyber Risk Quantification
October 13, 2023
In this episode of the Safe House Initiative, host Jeff Edwards welcomes Craig Bowman, Vice President at Trellix and the co-founder of the Redwood Project. Their conversation dives deep into the urgent need for a federal cyber enterprise that seamlessly integrates public and private sector efforts to fortify national cybersecurity.
Craig shares his unique journey, from his early days in business and computers to pivotal roles within the Department of Defense, Adobe, Verizon, VMware, and now Trellix. His extensive background in both offensive and defensive cyber operations has shaped his profound understanding of the industry’s collaborative needs.
Discover the origin story of the Redwood Project, born from the recognized gap in government-private sector cyber collaboration, particularly post-Snowden. Craig unveils the project’s five key workstreams, designed to bridge this divide: expanding the Special Government Employee Program, creating proactive disruption strategies, fostering voluntary partnerships through “Operation Dynamo,” introducing vital legal protections, and bolstering cybersecurity for smaller companies.
The discussion also explores navigating legislative challenges, the current administration’s approach to deregulation and AI in cybersecurity, and the critical role of Information Sharing and Analysis Centers (ISACs). Craig emphasizes empowering small and medium businesses, advocating for democratized access to cybersecurity resources through grants and incentives.
This episode offers invaluable insights into creating a more resilient cybersecurity landscape for the United States, highlighting the power of collaboration and strategic foresight.
Key Takeaways:
🔹 The essential role of a unified federal cyber enterprise.
🔹 Challenges and strategies for enhancing public-private cybersecurity collaboration.
🔹 The Redwood Project’s five key initiatives for national cyber security.
🔹 The impact of legislative changes and the current administration’s focus on AI.
🔹 How to empower small and medium businesses in national security efforts.
Tune in now to understand how leaders like Craig Bowman are shaping the future of cybersecurity collaboration and protecting our digital infrastructure!
Don’t forget to like, subscribe, and follow the Safe House Initiative for more critical discussions on national security and cyber defense!
#SafeHouseInitiative #Cybersecurity #NationalSecurity #RedwoodProject #CraigBowman #Trellix #PublicPrivatePartnership #CyberDefense #CyberThreats #Podcast #JeffEdwards
Keith Gologorsky, Head of Public Sector at Hack the Box, shares his personal journey from computer science graduate to government analyst, recounting pivotal moments in military operations, threat analysis, and international collaboration. The discussion explores the limitations of traditional certifications, the importance of hands-on training, and the need for regularly updated, gamified learning experiences. Keith also addresses the cybersecurity skills gap, the evolving role of AI, and offers actionable advice for organizations of all sizes: prioritize cross-training and real-world practice to build resilient teams.
Sarah Flukes, CTO at Admeritia, explains cyber decision diagrams that capture how OT/ICS environments actually operate. This podcast covers origins in water utilities, why function modeling beats asset lists, cognitive effectiveness, and how these diagrams power risk assessments, incident response, and security-by-design.
Cyber & AI authority Chuck Brooks joins Jeff Edwards to give SMBs a no-nonsense playbook. Learn how agentic AI turbocharges phishing, why unmanaged IoT/OT opens doors, and the exact first steps—MFA, segmentation, backups, IR plan—that raise your resilience fast. We also cover using NIST and CMMC as practical roadmaps and when to rely on an MSP.
Erik Cernak of the Hanover Insurance Group, breaks down the myths, the market, and the must-dos of why only 4% of SMBs carry standalone cyber insurance.
Our Cyber Insurance Summer Series wraps with the biggest lessons learned, surprising insights, and actionable advice from our expert guests. This episode ties everything together for the SMB with concrete steps that can be taken today to protect your business.
Ted Brown provides an expert legal perspective on cyber claims, discussing how they are far more complex than traditional insurance claims due to a multitude of moving pieces. He highlights common coverage disputes, such as late reporting and application issues, and stresses that cyber insurance is meant to bring a business back to where it was, not to “make them better.” Ted advises that the single most important step for any business is to work with their insurer and legal counsel as soon as an incident occurs, as this can prevent massive headaches and ensure a smooth recovery.
