FS-ISAC
FinCyber Today
FinCyber Today is a podcast from FS-ISAC that covers the latest developments in cybersecurity, contemporary risks, financial sector resilience and threat intelligence. Our host Elizabeth Heathfield leads interesting and challenging discussions with our special guests, who bring practical ideas on how to deal with the cyber challenges in the financial sector, improve your cybersecurity response and build resilience in business.
Where to listen?
Podcasts in the app Replaio Radio Coming soonPodcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts
Episodes
Dana Turner: Small Firms, Same Targets: Proactive Security for Community Institutions 02.06.2026 27:47
Smaller financial institutions face the same threats as their larger peers but have far fewer resources. Yet Dana Turner, the CISO at Nebraska’s Union Bank and Trust, has designed enterprise-grade resilience without enterprise-scale assets, such as multinational cyber range exercises involving 14 infrastructure industries, and an IT inventory of every person, place, and thing in the bank. His appr...
Valerie Abend: Where Trust Meets Action: FS-ISAC's Strategic Evolution 20.03.2026 17:22
FS-ISAC has been at the forefront of the sector’s collective security and resilience for over 25 years. But the threat environment across the financial services ecosystem is changing at an unprecedented rate – and our operating model is evolving in response. Our CEO, Valerie Abend, outlines how our core services are a necessary response to the threat landscape, details our call to collaborative e...
Patrick Sullivan: Powerful but Unpredictable – What Leaders Should Know About GenAI 17.02.2026 22:41
GenAI offers outsized opportunity from faster development and broader security coverage, says Patrick Sullivan, VP and CTO at Akamai. It also introduces novel risks by breaking traditional assurance models and opening new attack surfaces. The creative, non-deterministic nature of GenAI forces tough choices between creativity, predictability, and security – but Sullivan says a bedrock of first prin...
Romano Stasi: Collaboration is the Key to Fighting Cyber Fraud in Italy 30.01.2026 11:45
Fraud is changing, says Romano Stasi, Managing Director, ABI Labs. More and more, fraudsters don’t break into systems – they trick customers into giving the threat actor access to their data and accounts. Italian banks are responding with investments in customer education, cybersecurity, and AI tools – even funny commercials aimed at potential victims. Still, Stasi believes collaboration within ba...
Fadwa Rachi: Mastercard’s Well-Oiled Resilience Machine 20.01.2026 22:37
MasterCard’s definition of resilience is to prepare for – and deliver despite – any local, regional, or global crisis that might arise, says Fadwa Rachi, Director, Head of MasterCard's European Cyber Resilience Centre. Mastercard can execute on that definition because leaders drive an exceptionally proactive culture and because its highly organized response teams – uniting over 30 different d...
Grant Bourzikas: How to Think About the Future of the Internet 07.01.2026 31:15
As LLMs become the gateway to the internet, agentic AI grows ubiquitous, and the threat landscape evolves faster, CISOs may need to think about security modernization in a new way. Everything from endpoint access to fraud strategies to data localization will be affected, says Grant Bourzikas, Chief Security Officer, Cloudflare. Still, he believes that despite these critical shifts in the financial...
Devinder Singh: Building a Culture of Cyber Intel Sharing in APAC 25.11.2025 23:39
In APAC, cyber defenders are likelier to share tactical threat intel rather than strategic information, often out of fear of suggesting they were breached, says Devinder Singh, Maybank’s CISO. But getting intel out fast – and across borders – is key to the sector's defense. To encourage a culture of trust and collaboration, Singh says APAC cyber teams need to share information on successful...
Jaime Gomez: Prep for Quantum Like It’s Basic Cyber Hygiene – Because It Is 06.11.2025 27:28
Quantum computing’s threat to cryptography makes many cyber experts in the financial services sector nervous. But Jaime Gomez Garcia, Global Head of Santander's Quantum Threat Program and Chair of Europol's Quantum Safe Financial Forum, thinks stoking anxiety around quantum is the wrong approach. He says cyber leaders should pose quantum resilience as “basic cybersecurity hygiene” — beca...
Susan Koski: How to Manage the Move to the Post-Password Cyber Landscape 10.06.2025 15:43
Fraud is one of the sector's biggest concerns, but passwords aren’t much of an obstacle to today’s innovative cybercriminals. Biometrics are the next frontier, but how do you get customers to accept the pivot? Susan Koski, Chief Information Security Officer, PNC, has been examining the challenge and recommends managing by facts and known risks, understanding fraud prevention as a cross-secto...
Meg Anderson: Lessons in Cyber Leadership From a Trailblazing CISO 10.06.2025 20:48
The goal of information security is to not react to the change. It's to learn about change in advance. That’s one of the many lessons Meg Anderson, former CISO, Principal Financial Group, has learned after 40 years in cybersecurity. It’s a lesson she’s instilled in her teams, along with the power of saying no, the vital importance of developing a pipeline, and why cyber leaders need business...
Debbie Janeczek: How to Prepare for the Quantum Revolution 10.06.2025 12:32
The quantum revolution is coming to the financial sector. Debbie Janeczek, Global Chief Information Security Officer, ING, is preparing for it and says the rest of the sector should, too. She suggests starting with building leadership’s awareness of quantum risks, inventorying algorithms, and developing the skill sets needed for post quantum cryptography. Those moves, among others, will help finan...
Ariel Weintraub: Ensure Your Supply Chain Continuity – Even Under Pressure 10.06.2025 16:30
Cybersecurity threats to an institution are no longer limited to the organization themselves, as threat actors launch attacks across the entire supply chain in hopes of disrupting the financial services sector. Managing supply chain risk is top of mind for Ariel Weintraub, Chief Information Security Officer, Aon, who emphasizes that cybersecurity is not a competition, but an opportunity to share b...
Jochen Friedemann: The Fun Side of Financial Services Cybersecurity 09.06.2025 16:14
Financial services cybersecurity has its challenges – but it’s also interesting, varied, and just plain fun, says Jochen Friedemann, Chief Information Security Officer at Talanx, the Hanover-based insurance/re-insurance firm. Cybersecurity is also more impactful than it’s ever been, thanks to cyber’s importance to senior management, with more educational and career opportunities than ever before....
Matt Harper: The Convergence of Business and Cyber: Risk Management Through a Bigger Lens 20.03.2025 19:14
Where cybersecurity and operations converge – as they increasingly do -- financial services firms must view cyber risks as operational risks. That integration is a sign of cyber maturity, says Matt Harper, Aflac’s Vice President and Global Practice Lead, Product Security, and Program Strategy , but it affects the practice of risk management. He advises financial services cybersecurity leaders to l...
Claus Norup: Governance - What a CISO Needs to Succeed 20.03.2025 24:34
Identifying and managing risk is fundamental to good governance, says Claus Norup, Managing Director and Group CISO, Euroclear , but that’s only part of the job. Success in a CISO role depends on leadership’s buy-in, the ability to translate information to its audience, and the degree to which the function is embedded in overall governance, among other factors. Still, Norup says that in the end, s...
Karl Schimmeck: Data Security in a Demanding Regulatory Environment 20.03.2025 24:24
Data security regulation is accelerating many firms’ data protection processes, says Karl Schimmeck, Executive Vice President and CISO of Northern Trust . However, complying with multiple jurisdictions’ reporting regimes around privacy, incident disclosures, and decision process documentation can be tough. Rigorous incident management plans and structures simplify things but it’s important to reme...
Olivier Nautet: Infobesity - How Much Data is Too Much? 20.03.2025 20:52
Many financial services firms have such vast hoards of data – much of it unclassified legacy data – that owning it causes more data governance challenges than the information is worth. Olivier Nautet, Group CISO at BNP Paribas , says that firms suffering “infobesity” must approach the challenge cross-functionally, with a view to operational resilience and compliance. Here’s what he says about slim...
Carsten Fischer: The Need for Speed in Threat Mitigation 31.10.2024 16:02
There used to be weeks between the announcement of a zero-day vulnerability and the next exploit. Now we have days or hours to patch the vulnerability, says Carsten Fischer, Deputy Chief Security Officer at Deutsche Bank. Sometimes threat actors are in the machine even as the patch is being tested. With such a small window of reaction time, mitigation must be faster. Prevention vs. Detection We...
Stephen Sparkes: The Evolution of the CISO Role 20.09.2024 18:57
Stephen Sparkes has over 30 years of experience in leadership roles across the financial services tech spectrum and is currently Scotiabank’s EVP, Chief Information Security Officer and Enterprise Platforms, and member of the FS-ISAC Board of Directors. Over the years, he says, cyber has become the dominant operational risk, giving CISOs a more prominent leadership role. That role – and the skills...
Lindsey Bateman: Keep Your Eyes on the Horizon for Emerging Threats – and New Solutions 18.07.2024 20:19
A financial services CISO’s job is to secure the organization of today and tomorrow. Lindsey Bateman, Chief Information Security Officer at M&G plc, a UK Savings and Investments company, recommends instituting a Security by Default culture to reduce the risks and increase the resilience of financial services institutions today, while keeping an eye on the horizon for emerging threats – and qua...
Burim Bivolaku: Financial Sector Collaboration is Key to Third-Party Risk Management 14.05.2024 18:48
Third-party providers are often crucial to financial service operations – and a serious cyber risk. For that reason, EU regulators are taking a close look at the digital supply chain. Here, BISO (Business Information Security Officer) at ICE Trading and Clearing, and Chair of FS-ISAC’s UK Strategic Subsidiary Board, Burim Bivolaku talks about the biggest challenges in third-party risk management,...
Beate Zwijnenberg: Can Cyber Risks be Quantified? 05.03.2024 17:14
It’s difficult to quantify risk – some CISOs say it can’t be done – but there is a business case to be made for cybersecurity measures and controls (information sharing helps). Beate Zwijnenberg, ING CISO and member of FS-ISAC’s Global and European Boards, explains her approach to quantifying risk and communicating metrics relevant to senior management priorities. And she explains why DORA’s pilla...
Josh Magri: The CRI Profile - A Simplified Approach to Better Assessment 20.02.2024 32:38
The Cyber Risk Institute has developed a cybersecurity framework for the financial sector that is based on globally recognized standards. Josh Magri, CRI President & CEO, talks about the genesis of this framework and how it can help bridge the gap between self-assessment and regulatory compliance, even for financial firms that have operations around the globe. Notes from our Discussion with Jo...
Ann Barron-DiCamillo: AI in Cybersecurity - Balancing Speed and Control 21.11.2023 27:51
Generative AI (GenAI) is changing the cybersecurity landscape at a phenomenal pace, creating both new challenges and opportunities. As cyber attacks become increasingly sophisticated, preventing them requires information sharing. Ann Barron-DiCamillo, Managing Director and Global Head of Cyber Operations at Citi, talks about the difference between traditional attacks and AI-powered threats. Ann, a...
Jayaraj Puthanveedu: Protecting Customer Trust in a World Full of Fraud 24.10.2023 38:06
Episode Notes Jayaraj Puthanveedu - MD, Global Head of Resilience, Cyber, and Digital Fraud of BNP Paribas - dives into fraud, what the landscape looks like for financial firms, its impact on customer trust, tips on customer awareness, and much more. Notes from Our Discussion with Jayaraj Fraud Landscape for the Customer Fraud is of utmost importance for the financial sector. It is increasing in b...
Similar podcasts
Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.