In Episode 14 of the Professional CISO Podcast, host David Malicoat welcomes security leader Justin Somaini, a partner at YL Ventures. This episode explores Somaini's journey from military upbringing to penetration testing, and his current venture into cybersecurity venture capital. Key topics include the need to professionalize the CISO role, risk quantification, and the requirement for standardized cybersecurity measures for companies. The episode also delves into the future of the CISO role, the importance of community involvement, and practical advice for CISOs facing increased scrutiny. Somaini concludes with his perspectives on life after being a CISO and tips for career advancement.
00:00 Introduction to the Professional CISO Podcast
00:31 Interview with a Venture Capital Security Leader
01:36 Digital Fight Club Announcement
03:29 Guest Introduction: Justin Somaini
04:03 The Journey of Justin Somaini in Tech
05:14 Professionalizing the Role of the CISO
12:39 The Future of Risk Quantification
18:35 The Evolution of the CISO Role
22:30 Increased Scrutiny in Cybersecurity
23:29 Changing the 'I've Got It Covered' Mentality
25:30 Simplifying Security with NIST CSF
27:01 Exploring Career Paths for CISOs
28:42 Building Relationships in the Security Industry
32:06 The Importance of Innovation
34:14 Real Advice for Aspiring CISOs
36:42 Rapid-Fire Questions with Justin Somaini
39:55 Conclusion and Final Thoughts