好的,我现在需要帮用户总结一篇文章的内容,控制在100字以内,而且不需要特定的开头。用户给的原文看起来像是几篇播客或采访的摘要,涉及网络安全的不同主题。 首先,我得快速浏览一下原文。第一部分是关于Helen Patton的新书《Switching to Cyber》,是关于如何在职业生涯中期转向网络安全的指南。第二部分是Lenny Zeltzer作为CISO的经验分享,讨论了安全领导力的不同角色。第三部分是Alexandre Sieira关于第三方网络风险管理(TPCRM)的讨论,提到他们如何通过内部数据改善风险管理,并介绍了Tenchi Security。 接下来,我需要将这些信息浓缩到100字以内。要确保涵盖三个主要点:Helen的新书、Lenny的CISO经验、Alexandre的TPCRM创新。 可能的结构是:先介绍Helen的书,然后提到Lenny的经验分享,最后点出Alexandre在TPCRM方面的突破。同时,要使用简洁的语言,避免冗长。 检查一下字数是否在限制内,并确保信息准确无误。最后,确保没有使用任何开头词如“这篇文章总结了...”之类的。 </think> 文章介绍了三场访谈:Helen Patton的新书《Switching to Cyber》,为职业中期转向网络安全提供指南;Lenny Zeltzer分享作为CISO的经验与领导力见解;Alexandre Sieira探讨第三方网络风险管理(TPCRM)的创新解决方案。 2026-3-30 09:0:0 Author: sites.libsyn.com(查看原文) 阅读量:3 收藏
Mar 30, 2026
Interview with Helen Patton about her new book, Switching to Cyber
Helen joins us to discuss her second book, "Switching to Cyber." Her first book discussed strategies for handling various stages of the cybersecurity career, while this one, co-written with Josiah Dykstra, provides a guide for switching to cyber mid-career.
Check out her book, Switching to Cyber: The Mid-Career Guide to Launching a Cybersecurity Career:
- on Amazon
- on Barnes & Noble
- and on the publisher's website
Interview with Lenny Zeltzer: Reflections on Being a CISO
After a cybersecurity career in various roles, doing everything from product management to malware analysis training, Lenny spent 6 years in the CISO seat at Axonius, from near the inception of the company through its growth from its modest Series A stage in 2019 to the present, with nearly a billion in funding today.
Lenny's CISO Essays:
- What Being a CISO Taught Me About Security Leadership
- As a CISO, Are You a Builder, Fixer, or Scale Operator?
- The Chief Insecurity Officer
Interview with Alexandre Sieira: The state of TPCRM is shifting
The gold standard for third party cyber risk management has long been the humble questionnaire. While we've seen security rating services companies generate scores by scanning a company's external resources. Both approaches are widely considered inaccurate for either creating trust relationships or determining the true risk of doing business with a third party.
Every analysis of this problem comes to the same conclusion: without internal data about the state of systems and the security program, TPCRM can't improve substantially. Most this believe this to be an impossible problem: third parties would never share data this sensitive with a customer and first parties assume the same.
What if they did?
That's exactly the premise behind Tenchi Security, and Alexandre joins us to talk about how they've accomplished the 'impossible' in Brazil and aim to expand their success to the US.
Resources:
- Thoughts from a panel discussion at a recent FS-ISAC event, shared on LinkedIn
- Predicts 2026: Third-Party Cybersecurity Risk Management Evolves for the AI Era (Gartner Subscribers only, sorry)
Visit https://www.securityweekly.com/esw for all the latest episodes!
Show Notes: https://securityweekly.com/esw-452
如有侵权请联系:admin#unsafe.sh