Cyber Risk Quantification
October 13, 2023
In this episode of the Safe House Initiative, host Jeff Edwards welcomes Craig Bowman, Vice President at Trellix and the co-founder of the Redwood Project. Their conversation dives deep into the urgent need for a federal cyber enterprise that seamlessly integrates public and private sector efforts to fortify national cybersecurity.
Craig shares his unique journey, from his early days in business and computers to pivotal roles within the Department of Defense, Adobe, Verizon, VMware, and now Trellix. His extensive background in both offensive and defensive cyber operations has shaped his profound understanding of the industry’s collaborative needs.
Discover the origin story of the Redwood Project, born from the recognized gap in government-private sector cyber collaboration, particularly post-Snowden. Craig unveils the project’s five key workstreams, designed to bridge this divide: expanding the Special Government Employee Program, creating proactive disruption strategies, fostering voluntary partnerships through “Operation Dynamo,” introducing vital legal protections, and bolstering cybersecurity for smaller companies.
The discussion also explores navigating legislative challenges, the current administration’s approach to deregulation and AI in cybersecurity, and the critical role of Information Sharing and Analysis Centers (ISACs). Craig emphasizes empowering small and medium businesses, advocating for democratized access to cybersecurity resources through grants and incentives.
This episode offers invaluable insights into creating a more resilient cybersecurity landscape for the United States, highlighting the power of collaboration and strategic foresight.
Key Takeaways:
🔹 The essential role of a unified federal cyber enterprise.
🔹 Challenges and strategies for enhancing public-private cybersecurity collaboration.
🔹 The Redwood Project’s five key initiatives for national cyber security.
🔹 The impact of legislative changes and the current administration’s focus on AI.
🔹 How to empower small and medium businesses in national security efforts.
Tune in now to understand how leaders like Craig Bowman are shaping the future of cybersecurity collaboration and protecting our digital infrastructure!
Don’t forget to like, subscribe, and follow the Safe House Initiative for more critical discussions on national security and cyber defense!
#SafeHouseInitiative #Cybersecurity #NationalSecurity #RedwoodProject #CraigBowman #Trellix #PublicPrivatePartnership #CyberDefense #CyberThreats #Podcast #JeffEdwards
In this SafeHouse episode, Jeff Edwards and Alan Gin break down what actually happens when a cyber incident hits and what you should do next.
This conversation is based on a real-world, three-part series designed for everyday people who suddenly find themselves dealing with a hacked account, fraud, or a suspicious alert.
If you’ve ever wondered what you would actually do in that moment, this episode walks you through it step by step.
Kurt Suhs, Founder and CEO of Concierge Cyber, unpacks why cyber insurance adoption remains low and what businesses are actually doing instead.
Learn how businesses think about risk when they don’t have coverage and why complexity and policy structure are major barriers.
Cyber risk management is often framed as a choice between prevention and insurance. In reality, the most resilient organizations combine both.
In this episode of The SafeHouse, Jeff Edwards speaks with Michael Phillips, Global Head of Cyber at Coalition, about how insurers evaluate cyber risk and why mitigation and insurance must work together.
Building on a previous discussion about the elements of risk management, the conversation explores how underwriters think about cyber exposure, what signals insurers look for when assessing organizations, and why operational resilience is becoming central to modern cyber insurance.
The result is a practical discussion about how businesses should approach cyber risk today.
Cyber risk management is often discussed in technical language. But at its core, risk is financial.
In this episode of The SafeHouse Podcast, Jeff Edwards interviews Davis Hake of Venable to break down how cyber risk should be measured, communicated, and quantified inside organizations.
For CISOs, risk managers, brokers, underwriters, and resilience professionals, this episode provides a practical framework for thinking about cyber exposure beyond compliance checklists.
If you want to understand cyber risk in terms that boards and CFOs actually respond to, this conversation is essential listening.
Federal cybersecurity responsibility has shifted to the states. What happens next?
In this episode of The SafeHouse Podcast, Jeff Edwards welcomes James Saunders, Chief Information Security Officer for the State of Maryland, for a deep conversation on state-level cybersecurity, resilience, and leadership.
James walks through his path from early technical support roles to federal cybersecurity leadership and now to protecting Maryland’s digital ecosystem. He explains Maryland’s IT Master Plan, the state’s five-pillar cybersecurity strategy, and how partnerships, talent, and resilience come together in practice.
This episode offers a behind-the-scenes look at how cybersecurity decisions are made at scale, how states collaborate with one another, and why taking care of people matters as much as taking care of systems.
Kirsten Bay, CEO and co-founder of Cysurance, explains why warranties are becoming a critical layer in cyber risk management. Bay explains how AI-driven cyber certification can help organizations predict where risk is most likely to surface, prevent disruption before it becomes a claim, and protect both insureds and carriers by creating clear, defensible signals of cyber maturity.
