Attributive Security

Martin Hopkins, Maurice Smit

English Business Society & Culture Technology

Apple Podcasts Website RSS

Episodes 15

Avg. Duration 40m

Activity Highly Active

Since Aug 2020

Latest Episode Feb 2026

Publishing Details

Schedule

Every 2 Months

Format

Episodic

Hosting

feeds.captivate.fm

About This Podcast

There is often a lot happening in the world of cyber security: new threats, new exploits and new products. Don’t get us wrong, there is a lot of cool technology, and we appreciate that. But, at least on the surface, a lot of the defensive advances look to be very bottom up and technology focused. It is easy to lose sight of the context, what matters to us that we want to protect, and yes even enable. Join us as we get together for unscripted conversations about a broad range of topics and relate them to cyber security. We’ll draw on various disciplines, and our own experiences, as we discuss ideas and practical approaches to tailored information security. We won’t be afraid to challenge one size fits all and best practice norms, or the misapprehension that bespoke security frameworks are infeasible for all but the biggest of enterprises. Be prepared to reimagine what an effective cyber security program can look like when it is engaged with and aligned to the business.

Podcasting 2.0 Features

episode medium

Explore Statistics

English Podcasts Report Business Report Society & Culture Report Technology Report English Business Report

Recent Episodes

#15 Enterprise (Security)? Architecture

Feb 25, 2026 1h 11m

Enterprise Architecture (EA) and Enterprise Security Architecture (ESA) are viewed as distinct functions with different predominant tools, frameworks and methodologies. ESA is maybe less consistently…

#14 Is Vertical Systemic Risk a One-Way Street?

Oct 01, 2022 39m

If you've studied SABSA to foundation level, you may recall how systemic risk navigates the domain model. If a risk materialises in a domain, the impact it has can act on the superdomain causing a…

#13 Blindsided by an Unknown Unknown

Nov 08, 2021 36m

With hindsight, declaring a risk an unknown unknown is often no more than an admission of a lack of foresight, a lack of imagination. How many risks that are actually realised were really…

#12 The World is in Flux, Are You Ready to Adapt?

Sep 21, 2021 39m

The last two years have seen changes that few were prepared for. In the aftermath we can argue whether it was a black swan, grey rhino, or octarine unicorn event but ultimately once the overture is…

#11 Risk Management is a Game of Snakes AND Ladders

Jul 02, 2021 38m

Is your risk management one-sided, designed to minimise the likelihood and negative impacts of uncertain events. How is the uncertainty of events with positive business impacts managed? Not by the…

#10 Supply Chain Risk (with Vincent Thiele)

May 13, 2021 47m

News of business impacts from the realisation of cyber risks is all around us. Many of the largest breaches in recent years have involved one or more suppliers in some way. Few will be unaware of…

#9 Privacy: Security's New Clothes?

Apr 06, 2021 39m

The desire for privacy is nothing new, but societal expectations have certainly come a long way since the middle ages. Over the last two decades many have seen additional rights enshrined in law.…

#8 Certifications - Value or Vanity

Feb 22, 2021 35m

The information security field is awash with certifications. To an outsider many job adverts, in what is increasingly a sellers market, are full of impenetrable acronyms. But who do all these…

#7 Risk & Risk Appetite (with Jaco Jacobs)

Dec 21, 2020 41m

Enlightened risk management frameworks say we should manage risks to the business within the risk appetite. But what is the risk appetite? Can anyone in the organisation articulate it beyond vague…

#6 Zero Trust - Revolutionary, Evolutionary or Snake Oil? (with Chris Blunt)

Nov 26, 2020 45m

Do you trust your network? Did you resist the lure of cloud services and network virtualisation, content with your on premise network security, only to suffer from attackers or malware able to move…

#5 SWOT - Context, Capability, Challenge & Course

Oct 29, 2020 32m

What threats does your project, or business, face? What opportunities have you identified that you could pursue? What strengths do you have that you can leverage to achieve your goals? What…

#4 Business Risk & Risk Ownership (with Bill Schultz)

Sep 27, 2020 40m

Does the CISO own all cyber related risks to the business? It depends, but in many businesses that is the default position. Who is responsible for risk identification and analysis; identification,…

#3 Compliance

Sep 09, 2020 29m

In our previous episode we referenced not being in business to be compliant. Of course, that doesn't mean that compliance is never important; in some instances, it is critical to maintaining a…

#2 Ransomware

Aug 27, 2020 46m

Ransomware does not appear to have fallen victim to the pandemic. On the contrary, successful attacks appear to have increased and the impacts are escalating too. Hardly a day goes by without news of…

#1 Trust

Aug 17, 2020 47m

In the light of recurring instances of security issues in foundational components of modern IT and software stacks, and the superfast world our businesses are operating in, Maurice and Martin talk…

Frequently Asked Questions

How many episodes does Attributive Security have?

Attributive Security has published 15 episodes since August 2020, covering topics in Business, Society & Culture.

Is Attributive Security still active?

Attributive Security is currently highly active with new episodes every 2 months. Average episode length is 40m.