The Cyber Canon, ditching the SOC 2, and the weekly enterprise news - Helen Patton - ESW #416

Segment 1 - Interview with Helen Patton: Introducing the Cybersecurity Canon

Did you know that there’s a hall-of-fame for cybersecurity books? Over the past decade, the Cybersecurity Canon has published reviews on dozens of cybersecurity books and established a hall of fame. Hall of fame books are defined as titles that all cybersecurity professionals should read - a great short list for those new to the field and overwhelmed by choices.

Helen Patton, co-founder and Chief of Staff for the Cybersecurity Canon joins us to tell us all about the Canon, how it came to be, and its transformation into a more visible and active organization.

We’ll also discuss Helen’s own book, “Navigating the Cybersecurity Career Path”, and an upcoming second book she’s working on as well!

Segment Resources:

Helen's personal website The Cybersecurity Canon website Segment 2 - Topic: Does the SOC 2 need to die?

AJ Yawn thinks so.

The TL;DR is that he thinks industry-specific frameworks are more appropriate and effective.

You can check out some more of his thoughts on LinkedIn, or on the Alice in Supply Chains podcast.

Ayman recommends checking out https://mvsp.dev/ as a potential alternative (or as a complementary process to actually get secure) Segment 3 - This Week's Enterprise Security News

And finally, in the enterprise security news,

a bit of funding with a side of layoffs McDonald’s applicants are not lovin’ it a WILD story about a vulnerability in the US train system Meta still on the hook for $8B in privacy violations What is Agentic Misalignment? Using AI when coding is… slower? Auth Omnibus Pop some popcorn - AI acquisitions are getting crazy

All that and more, on this episode of Enterprise Security Weekly.

Show Notes: https://securityweekly.com/esw-416