Mike Mackintosh
Plan-B Security
Things don't always go according to plan, but they also don't have to go perfect. Having a Plan B is all about being prepared for the unexpected and know how to stay cool under pressure. The Plan B Security Podcast is here to keep you thinking about the unexpected things in security, giving you perspective from the technology side, the business side and the backside. DISCLAIMER: Views are my own and not that of my employer.
Author
Mike Mackintosh
Category
Podcast website
Latest episode
Feb 8, 2026
Where to listen?
Podcasts in the app Replaio Radio Coming soonPodcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts
Episodes
Ep. 13 - The Scary Truth of Information Security 29.10.2023 14:42
Being in information security is not all flowers and sunshine. Often, then things go wrong, there's a dollar amount associated with it, and reducing your liability leads to finger pointing and a hot-potato version of the blame game. Learn how the Okta breach was exacerbated by the inaction of the customers who were affected, and learn how to prevent it from happing to you in the future.
Ep. 11 - 5 Love Languages of Security 23.10.2023 18:15
This is a fun way of taking an existing framework for resolving conflict and building relationships and growing your security program. The 5 Love Languages is a concept that's been around a long time thanks to Gary Chapman, the original creator. Using the 5 languages of Quality Time, Words of Affirmation, Physical Touch, Gift Giving and Acts of Service, we'll practice translating these to...
Ep. 10 - Selling Security Through Storytelling 15.10.2023 25:25
We talk about how personal events in our lives don't hold us back but give us skills to use in unexpected ways. My own experiences taught me how to turn data into a story, and remove emotion from defending my ego and move the emotion to the response of the listener. In security, everything is a battle - storytelling allows you to connect risk, threats, facts and the unknown with your audience...
Ep. 9 - The Harder Part of Leading 08.10.2023 20:59
Continued from last week's Security Leadership Strategy and Tactics conversation where we learn how to take the strategy and add it up to the sum of the bigger picture. We learn how Key Results are the journey to your goal, and how commanders intent keeps the organization focused, with or without you. This is one of my favorite yet!
Ep. 8 - Security Leadership Strategy and Tactics 01.10.2023 22:56
Leading a team is hard, and it's even harder in the face of changing economical conditions, where money may not be flowing to where a business needs to stay secure, but instead where they can use it to make more money. Learn a few ways using the CITER risk-scenario model to justify investment and cost, and how to turn it into Objectives and Key Results.
Ep. 7 - Device (anti)-Trust 23.09.2023 22:58
Dig in to the details around Device Trust, where it's good and where it's bad. We walk through the fundamentals a program needs to have in place to start building on the device authorization and device attestation stories, which combined provide the device trust principles. There's a few ways to thwart device trust, and a few attack vectors it's not able to solve either. So join us...
Ep. 6 - MFA-for-ALL 19.09.2023 21:20
Multi-factor Authentication is the the best way to protect your online life, keeping your data safe, secure and private. However, not all MFA is created equal. Let's listen to a few ways of thinking about the MFA problem and what the future of account security looks like. I'll also touch on the MGM, Caesars and Retool announcements as they relate to MFA and what we can learn and do differe...
Ep. 5 - The Principle of Most Private 11.09.2023 21:47
The principle of most private is something I have been noodling on for a long time. It's not perfect, and will definitely see changes in the future, but it was a great way again to change the mindset. Least privilege is often a blocker to productivity, and a huge friction point for companies. Most private supports least privilege by adding intent and context into the conversation, allowing sec...
Ep. 4 - The 4 C's of Cyber Security 03.09.2023 18:30
The 4 C's of cyber security are more of a philosophical pillar around building a security culture. Learn how Consistency, Clarity, Collaboration and Creativity play into sharing the security vision, working with others to make security a priority, and solving road blocks in a positive and effective manner.
Ep. 3 - Solutioning Through Scenarios 27.08.2023 39:19
Risk and Threat modeling (yes, they are different) are two effective ways to start building out the requirements for your security program. Solutioning through scenarios is like that, with a little more table top exercise sprinkled in. Also, learn how an old model from my Telecom days, the FCAPS model, plays a vital role in how I approach problems and come up with solutions.
Ep. 2 - Phases of a Security Program 20.08.2023 24:19
Companies go through different rates of growth and have different information security needs as a result. Learn about a few common stages of growth, signs that your company might be in it, and what you might be able to accomplish. When the business doesn't want security to get in the way of getting a product launched, focus on the corporate side. Once you've made impact, start building com...
Ep. 1 - Back to School 13.08.2023 23:58
Right off the heels of BlackHat, DEFCON31 and BSidesLV, also known as Hacker Summercamp, hear about an impromptu conversation at dinner with a stranger around how to become more "Security" minded using the FTC's Start with Security guidance, making the jump from IT to Security a real possibility!
Similar podcasts
Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.