Translating Cyber Risk for a Chaotic World with Tarah Wheeler | 14

In this episode, Ciaran and James sit down with Tarah Wheeler, scholar, campaigner and entrepreneur, to discuss risk, safety and security in an increasingly unstable digital world. Tarah shares her expertise on protecting the most vulnerable, navigating legal grey zones in cybersecurity research, and translating complex technical issues into action for policymakers and small businesses alike.

Guest Bio:

Tarah Wheeler is an information security executive, AI researcher specializing in natural language processing, social data scientist in international conflict, author, and poker player. She is CEO of the cybersecurity compliance company Red Queen Dynamics and serves as the Senior Fellow for Global Cyber Policy at Council on Foreign Relations and was elected to Life Membership at CFR in 2023. She is the author of the best-selling Women In Tech: Take Your Career to The Next Level With Practical Advice And Inspiring Stories.

Highlights:

Overview of Tarah’s achievements and engagements

A leading voice in cybersecurity, Tarah brings experience from academia, industry, and government to her analysis of cyber threats and resilience.

• Council on Foreign Relations | Fulbright Published with cybersecurity luminary Bruce Schneier, including Hacked drones and busted logistics are the cyber future of warfare | When Corporate Interests and International Cyber Agreements Collide 
• Scheduled keynote at CyCon
• Book: Women in Tech: Take Your Career to the Next Level | Red Queen Dynamics

Legal Grey Zones in Computer Security

How legislation struggles to keep up with the realities of digital security.

• The Computer Fraud and Abuse Act (CFAA) | Department of Justice Announces New Policy for Charging Cases under the Computer Fraud and Abuse Act
• Origins of CFAA: fears like Kevin Mitnick supposedly whistling nuclear codes into a phone
• Similar to the UK’s Computer Misuse Act

Cyber War: Tactics, Impact, and Ethics

Cyber warfare is a real and present tool in global conflicts, with growing consequences for civilians.

• What Is Cyberwar? The Complete WIRED Guide
• Wannacry: Everything you still need to know because there were so many unanswered Qs | NHS cyber-attacks could delay life-saving care and cost millions
• Wendy Nather: Cyber poverty line
• Federal rollback: CISA services for state and local orgs now decentralised
• Russia’s 2016 cyberattack disabled heating systems in Kyiv during winter
• What Is Volt Typhoon? A Cybersecurity Expert Explains The Chinese Hackers Targeting US Critical Infrastructure

Small Businesses, Security Researchers, and Systemic Vulnerability

Despite their economic importance, small businesses and independent researchers face considerable cybersecurity risks with minimal support.

• 7% of U.S. businesses are small; they make up 44% of GDP
• 60 Percent of Small Businesses Fold Within 6 Months of a Cyber Attack. Here's How to Protect Yourself
• The Cybersecurity Crisis: Companies Can’t Fill Roles, Workers Shut Out | 2024 ISC2 Cybersecurity Workforce Study
• WannaCry kill-switch hero Marcus Hutchins collared by FBI on way home from DEF CON | The security community crowdfunds his defense | Marcus Hutchins spared US jail sentence over malware charges

Cyber Risk, Corporate Governance, and Regulation

Cybersecurity is finally a board-level issue but with that comes complexity and personal risk for security leaders.

• SEC regulations now mandate reporting of cyber risks in 8-K filings https://www.darkreading.com/cybersecurity-operations/new-regulations-make-d-o-insurance-a-must-for-cisos

Women in Tech: Representation and Realities

The situation for women in cyber is statistically getting worse, not better

• THE 2023 STATE OF INCLUSION BENCHMARK IN CYBERSECURITY | WiCyS | Women in tech statistics: The hard truths of an uphill battle

Additional Resources

• WARGAMES Trailer
• Sneakers Trailer
• Typhoons in Cyberspace | Should ransomware payments be banned?

Subscribe & Follow:

• Subscribe to the podcast on Apple Podcasts, Spotify, or your favorite podcast platform.
• Follow us on Twitter, Facebook, and LinkedIn for updates.

Contact:

• Have questions or comments? Email us at cyberleaderspodcast@sans.org