Secure Talk Podcast | The ROI of Security Tested: What a new paper reveals about security value | Secure Talk with Minh Nguyen and Thi Tran

Why do most cybersecurity investments feel impossible to justify? Because the measurement tools are broken — built on gut instinct, not research.

Researchers Minh Nguyen (Florida Atlantic University) and Thi Tran (Binghamton University) set out to fix that. In this episode, they break down their landmark paper "Effects of Cybersecurity Readiness on Firm Performance: Evidence from Conference Calls" — the first study to systematically measure cybersecurity readiness at the firm level and link it directly to financial performance.

What they found will change how you think about security budgets:

→ Outsider mentions of cybersecurity in earnings calls are 100x more predictive of firm performance than insider mentions

→ Even a single co-occurrence of security-related language drives measurable returns on assets the following year

→ Companies that act proactively - not reactively - earn greater market trust

This is the episode for CISOs who need real data to justify investment, security leaders tired of folklore-based decision-making, and anyone curious about how AI, NLP, and causal inference are reshaping the business case for cybersecurity.

Chapters

00:00 Introduction to the Guests and Their Backgrounds

02:34 The Intersection of AI, Business, and Cybersecurity

05:32 Understanding Cybersecurity Readiness

08:31 The Importance of Measurement in Cybersecurity

11:16 Developing a Cybersecurity Dictionary

14:16 The Impact of Outsider Perspectives on Firm Performance

16:51 The Role of Transparency in Cybersecurity

19:40 Future Research Directions in Cybersecurity

22:37 Conclusion and Final Thoughts

🔗 Paper: "Effects of Cybersecurity Readiness on Firm Performance: Evidence from Conference Calls" https://scholarspace.manoa.hawaii.edu/server/api/core/bitstreams/b098c310-db83-42cc-8932-852ef7ebcc86/content

#Cybersecurity #CyberROI #CISO #FirmPerformance #CybersecurityResearch #NLP #CausalInference #InfoSec #SecurityLeadership #ConferenceCall``

What is Secure Talk Podcast?

Secure Talk reviews the latest threats, tips, and trends on security, innovation, and compliance.

Host Justin Beals interviews leading privacy, security and technology executives to discuss best practices related to IT security, data protection and compliance. Based in Seattle, he previously served as the CTO of NextStep and Koru, which won the 2018 Most Impactful Startup award from Wharton People Analytics. He is the creator of the patented Training, Tracking & Placement System and the author of “Aligning curriculum and evidencing learning effectiveness using semantic mapping of learning assets,” published in the International Journal of Emerging Technologies in Learning (iJet). Justin earned a BA from Fort Lewis College.