The Brick House

As more and more headline-making threats come from otherwise trusted sources, conversations naturally turn to questions like “Who should we actually trust?” The answer–according to Zero Trust principles–is inherently no one. Watch our candid conversation on the threats brought about by Zero Trust.

The Brick House is a monthly panel discussion with GuidePoint Security’s CISO, Gary Brickhouse, and his expert guests examining the hottest topics in cybersecurity.

There are no talking heads here, just honest conversations examining the problems we all face in cybersecurity. Gain insights from security practitioners who have current, real-world experience solving the most complex cybersecurity challenges.

Watch our candid conversation on What Security Trends to Look for in the Coming Year. The last 12 months have brought monumental shifts in the cybersecurity landscape, both in the ways we’re attacked and types of attacks we all worry about and the ways we structure and defend our organizations. To kick off the new year, Gary and his panel of experts will break down how they think the security landscape is shifting and where those changes will lead us over the next year.

The Brick House is a monthly panel discussion with GuidePoint Security’s CISO, Gary Brickhouse, and his expert guests examining the hottest topics in cybersecurity.

There are no talking heads here, just honest conversations examining the problems we all face in cybersecurity. Gain insights from security practitioners who have current, real-world experience solving the most complex cybersecurity challenges.

Recent events have pushed supply chain attacks to the forefront of cybersecurity conversations around the globe. Tune in to a conversation about the risks third parties pose to your organization and ways to mitigate those dangers. Watch our candid conversation on preparing your environment for the threat of supply chain risks.

The Brick House is a monthly panel discussion with GuidePoint Security’s CISO, Gary Brickhouse, and his expert guests examining the hottest topics in cybersecurity. Watch this month’s on-demand.

There are no talking heads here, just honest conversations examining the problems we all face in cybersecurity. Gain insights from security practitioners who have current, real-world experience solving the most complex cybersecurity challenges.

Watch our candid conversation on M&A Due Diligence. This month in The Brick House, CISO and VP, GRC at GuidePoint Security, Gary Brickhouse, reviews the proper steps and due diligence needed for any merger or acquisition. Other GuidePoint Security practitioners bring their experience and expertise to the table to cover the most critical points of any M&A discussion.

The Brick House is a monthly panel discussion with GuidePoint Security’s CISO, Gary Brickhouse, and his expert guests examining the hottest topics in cybersecurity.

There are no talking heads here, just honest conversations examining the problems we all face in cybersecurity. Gain insights from security practitioners who have current, real-world experience solving the most complex cybersecurity challenges.

Watch our candid conversation on Evolution of Identity within Your Security Stack. With the risk landscape continuing to grow, do you ever wake up at night wondering if you have all the right defenses in place? While Identity has always played (or at least, always should have played) a vital role in cybersecurity, recent changes to the ways we structure our organizations, networks, and offices have amplified the importance of Identity across the board. This month, CISO & VP, GRC Services at GuidePoint Security, Gary Brickhouse, and his guests are discussing the changes that have already occurred, and how to prepare for the changes that are certainly coming in the future.

The Brick House is a monthly panel discussion with GuidePoint Security’s CISO, Gary Brickhouse, and his expert guests examining the hottest topics in cybersecurity.

There are no talking heads here, just honest conversations examining the problems we all face in cybersecurity. Gain insights from security practitioners who have current, real-world experience solving the most complex cybersecurity challenges.

It’s hard to build a good security program on a shaky foundation. They’re called the fundamentals for a reason, so watch The Brick House to see a talk with other experts about the basics of building solid security foundations.

The Brick House is a monthly panel discussion with CISO + VP, GRC Services at GuidePoint Security, Gary Brickhouse, and his expert guests examining the hottest topics in cybersecurity.

There are no talking heads here, just honest conversations examining the problems we all face in cybersecurity. Gain insights from security practitioners who have current, real-world experience solving the most complex cybersecurity challenges.

With the risk landscape continuing to grow, do you ever wake up at night wondering if you have all the right defenses in place? Maybe thinking there is a portion of your infrastructure you have left unprotected or not protected well enough? In this Brick House webinar, Gary and his guests will discuss the key elements that should be part of every organization’s security architecture and how best to prioritize and operationalize them.

The Brick House is a monthly panel discussion with GuidePoint Security’s CISO, Gary Brickhouse, and his expert guests examining the hottest topics in cybersecurity.

There are no talking heads here, just honest conversations examining the problems we all face in cybersecurity. Gain insights from security practitioners who have current, real-world experience solving the most complex cybersecurity challenges.

The continued growth of cloud technologies and capabilities comes with an equally growing set of questions to answer. Where do we find ourselves from a security perspective? How do we hire, train, and retain the staff needed in the ongoing personnel shortage? Can technology and tools provide the solutions? Is the industry keeping up with the rapid expansion, or are we falling behind? How is cloud security adapting to multi-cloud, zero trust, governance, and overall modernization directives?

In this presentation, Gary and his guests will answer these questions and more as they discuss the evolving, complex state of cloud security.

The continued growth of cloud technologies and capabilities comes with an equally growing set of questions to answer. Where do we find ourselves from a security perspective? How do we hire, train, and retain the staff needed in the ongoing personnel shortage? Can technology and tools provide the solutions? Is the industry keeping up with the rapid expansion, or are we falling behind? How is cloud security adapting to multi-cloud, zero trust, governance, and overall modernization directives?

In this presentation, Gary and his guests will answer these questions and more as they discuss the evolving, complex state of cloud security.

With the risk landscape continuing to grow, do you ever wake up at night wondering if you have all the right defenses in place? Maybe thinking there is a portion of your infrastructure you have left unprotected or not protected well enough? In this Brick House webinar, Gary and his guests will discuss the key elements that should be part of every organization’s security architecture and how best to prioritize and operationalize them.

The Brick House is a monthly panel discussion with GuidePoint Security’s CISO, Gary Brickhouse, and his expert guests examining the hottest topics in cybersecurity.

There are no talking heads here, just honest conversations examining the problems we all face in cybersecurity. Gain insights from security practitioners who have current, real-world experience solving the most complex cybersecurity challenges.

It seems like almost every webinar, whitepaper, and sales pitch mentions the global cybersecurity personnel shortage at least once. So if we all know the problem is there, how do we solve it? How do you find people with strong pattern recognition, game theory, or data analysis skills? How do you attract those people, onboard them properly, and most importantly retain them? GuidePoint Security's Gary Brickhouse and his guests Brian Orme, Principal, Information Assurance; Kevin Woods, Director, GuidePoint Security University; and Meghan Herman, VP, Human Resources talk about expanding the search for personnel outside the traditional lateral limits to find people who have the skill sets we need, if not the background.

GuidePoint Security’s CISO, Gary Brickhouse, and his guests Drew Schmitt, Managing Security Consultant; Terry Cordes, Attack Simulation Architect; and Tony Cook, Sr Director, GRIT & DFIR Operations in this August 2022 presentation as they discuss how Threat Intelligence can bolster your defenses and how to implement successful Threat Intel programs.

Watch our candid conversation on IR Fundamentals: Revamping Your IR Response (Cyber Liability, Resiliency, Tabletops). As the pace and severity of attacks and threats ramp up, regularly revisiting and improving your Incident Response process to ensure it meets the current landscape is crucial. A plan that met liability requirements last year may no longer be up to snuff, and strategies for how to get back on your feet after an incident might fall short in the face of new attacks.

GuidePoint Security’s CISO, Gary Brickhouse, and his guests Mark Lance, VP, DFIR & Threat Intelligence; Ron Brown, Practice Director, Business Resilience; Stephen Brzozowski, Managing Security Consultant talked about how to go back to the fundamentals of your IR program and make sure you’re always prepared for the threats you face.

A tale as old as time: the bad guy makes an email with a flashy button, the user gets an email, and the user clicks a button. In support of Cybersecurity Awareness Month, GuidePoint Security’s Joe Leonard, and his guests Brian Betterton, Practice Director; Nick Fryer, Security Consultant; and Steve Rosenkranz, Director, Corporate Information Security looked at some of their more interesting experiences with employees, users, and company executives and the parts they play in overall company cybersecurity.

Changes to breach notification and disclosure guidelines have shifted the requirements for what type of incident requires notification and how long organizations have to report qualifying events. These changes can mean updating your incident response plans, creating new processes, and potentially making changes to staffing to account for new operational needs. This month, Gary Brickhouse, GuidePoint Security’s CISO and his guests discussed the impacts these changes can have on organizations and how to go about addressing them.

In 2022, cybercriminals were busier than ever. So, how do you prepare for 2023?
Watch our candid conversation with Gary Brickhouse, CISO & VP GRC Services, and other GuidePoint Security experts as they share their views on potential challenges and opportunities in ’23.

Panelists:
• Kyle Rohan, Vice President of Engineering, North Central
• Mitchem Boles, Senior Security Advisor, Heartland
• Tony Ozlanski, Senior Security Architect, Southwest

About The Brick House:
The Brick House is a monthly panel discussion with Gary Brickhouse, CISO & VP GRC Services, and his expert guests examining the hottest topics in cybersecurity. There are no talking heads here, just honest conversations examining the problems we all face in cybersecurity. Gain insights from security practitioners who have current, real-world experience solving the most complex cybersecurity challenges.

Operational Technology (OT) environments have continued to converge with traditional IT environments. As previously siloed OT environments have been connected to the larger corporate network, new attack surfaces have been created that must be identified, secured, and monitored.

Watch our candid conversation with Gary Brickhouse, CISO & VP GRC Services, and his guests as they discuss OT/Industrial Control System (ICS) cybersecurity landscape, common OT/ICS security risks and challenges, and why it should be a top priority for company leadership.

Panel Participants:
• Chris Warner, Sr Security Consultant, Professional Services
• Jason Fox, VP, Security Architecture, Mid-Atlantic
• Scott Darkow, Practice Lead, Security Consulting, Mid-Atlantic
• Pascal Ackerman, Sr. Security Consultant, Operational Technology

Managing threat detection and response effectively can be an overwhelming task that involves selecting suitable tools, determining which threat feeds to integrate, identifying areas where resources should be concentrated, prioritizing alerts, and addressing numerous other concerns.

Watch our candid conversation with Gary Brickhouse, CISO, and his panelists explored strategies to help you tackle the complexities of detection and response, adopt optimal practices, and construct a durable detection and response capacity that can overcome modern security threats, cater to your enterprise’s needs, and remain adaptable in response to evolving threat environments.

In today’s rapidly changing digital landscape, it’s more important than ever to ensure that only authorized users have access to sensitive data and systems. Join us for an enlightening roundtable discussion on IAM to gain new perspectives on the latest trends, implementation strategies, compliance best practices, and multi-platform management techniques for this critical aspect of cybersecurity.

Bryan Orme, Principal & Partner (Guest Host)
Brian Cap, Practice Lead, IGA
James Hauswirth, Practice Lead, PAM
Roger Raymond, Principal Security Architect, North Central
Micheal Smith, Practice Lead, Access Management

Hybrid environments aren’t new anymore. Chances are you already have one. The operational advantages that come with hybrid environments are amazing, but like any change to organizational infrastructure, it also brings new risks and challenges to address. In this episode of The Brick House, Gary Brickhouse, CISO & VP GRC, and his guests will address the unique challenges hybrid environments present and how to implement comprehensive security strategies that account for traditional and cloud-specific controls.

GuidePoint Security Panelists: Felix Simmons, Principal Security Architect, Heartland Region; Jonathan Villa, Practice Director, Cloud Security; Patrick Gillespie, Managing Security Consultant, Professional Services; & Trace Hollifield, Managing Security Architect, Southeast

Managing threat detection and response effectively can be an overwhelming task that involves selecting suitable tools, determining which threat feeds to integrate, identifying areas where resources should be concentrated, prioritizing alerts, and addressing numerous other concerns.

Watch our candid conversation with Gary Brickhouse, CISO, and his panelists explored strategies to help you tackle the complexities of detection and response, adopt optimal practices, and construct a durable detection and response capacity that can overcome modern security threats, cater to your enterprise’s needs, and remain adaptable in response to evolving threat environments.

Recent years have brought massive shifts in the threats faced by organizations. Those changes have forced the role of the CISO to continually evolve. Get to know the modern CISO. Watch our candid conversation with Gary Brickhouse, CISO & VP GRC Services, and his guests as they discuss risk-based and distributed decision-making, leveraging threat intel, and considerations when deciding on their organization’s security strategy.

With the speed of artificial intelligence development compounding almost daily, it’s crucial that we start thinking ahead to the potential vulnerabilities that arise alongside these technological advancements. For every capability and promise of an easier future that AI offers, there are important considerations regarding the protection of sensitive information, privacy, and the potential misuse of this technology.

Join us for this important roundtable discussion diving into the growing concerns of an expanding application security market. Gain practical knowledge and valuable insights to enhance your organization’s security posture. Explore API security, open-source vulnerabilities, AppSec maturity, and compliance with OSS/SCA and SBOM requirements.

Learn how to effectively manage the risks associated with third-party relationships, enhancing your overall security posture.

Join us for an engaging and insightful roundtable discussion with host, Gary Brickhouse, CISO at GuidePoint Security and his panelists who will discuss key aspects of vendor risk management that include matching internal expectations to the realities of due diligence, balancing the drive for speed with keeping your organization secure, regulatory compliance and more.

Explore the intricate aftermath of a ransomware incident, where a myriad of choices awaits. Engaging with hackers, assessing the compromised data’s value, weighing ransom payment pros and cons, and the legality of such payments emerge as pivotal considerations. As ransomware groups escalate coercive tactics, urgency heightens around these determinations.

Panelists:
Drew Schmitt, GRIT Lead Analyst
Grayson North, Senior Threat Intelligence Consultant
Jason Baker, Threat Intelligence Consultant
Nic Finn, Senior Threat Intelligence Consultant

Software as a Service (SaaS) applications deliver undeniable benefits—affordability, reliability, productivity enhancements, and scalability. Yet, as SaaS adoption skyrockets across global organizations, a constellation of security challenges arises. The rapid proliferation of SaaS can add complexity and create visibility barriers for security and IT teams. Are you ready to tackle the challenges of SaaS Security?

The cyber threat landscape underwent significant changes in 2023, ushering in an era where organizations must fortify their defenses against an even wider array of sophisticated threats for 2024. These include the rise of AI-generated deepfakes, sophisticated phishing scams, novel extortion techniques, and increasingly frequent attacks on cloud infrastructure and supply chains, along with the ever-present danger of zero-day exploits. To navigate this complex environment, it is critical to bolster security protocols, elevate employee security consciousness, and establish robust incident response frameworks.

As organizations navigate the murky waters of cyber threats amplified by AI sophistication and quantum leaps in computing, they face the paradox of innovation and vulnerability. With every stride in technology, a shadow looms, challenging the encryption that once guarded our secrets. We are now at a point in time where the keystones of data privacy are no longer set in stone but in constant flux.

Get expert strategies to safeguard your organization’s data in the Brick House roundtable discussion, hosted by Gary Brickhouse, CISO, GuidePoint Security, who has assembled a panel of Data Governance and Privacy practitioners to shed light on effective strategies for safeguarding organizational data. Together, they’ll unveil insights and strategies to fortify your data against advancements in technology, organizational challenges, and cyber-attacks with practical experience in a lively discussion on the delicate balance between data access, privacy, and security.

This illuminating roundtable lays a path forward for responsible and innovative Identity and Access Management, full of practical experience and innovations, guiding organizations to a future fortified against the unknowns of Identity Management. Our conversation will walk you through the business value of IDAM, Zero Standing Privilege (ZSP) and automation. Hosted by Gary Brickhouse, CISO and a panel of seasoned GuidePoint Security IAM practitioners, sharing pivotal insights for today’s Identity professionals.

This Brick House roundtable discussion focuses on the multifaceted challenge of securing the Internet of Things (IoT). With the increasing prevalence of internet-enabled devices across all industries including municipalities, healthcare and finance, the imperative to safeguard this interconnected ecosystem intensifies.

Gary Brickhouse, CISO at GuidePoint Security, along with a panel of Operational Technology (OT) and Threat & Attack Simulation (TAS) practitioners will discuss the most pressing issues in IoT security from navigating threats, pinpointing vulnerabilities and developing robust security measures for critical infrastructure and edge computing.

As digital threats are becoming more sophisticated and more pervasive, the concept of cyber resilience has emerged as a cornerstone for those at the forefront of information technology, cybersecurity and risk management.

This roundtable discussions with experienced compliance professionals will focus on building successful compliance programs, identifying and addressing governance gaps and preparing for upcoming regulatory changes. It’s an essential discussion for cybersecurity professionals responsible for data security management and regulatory compliance.

Promote responsible AI use by equipping yourself with best practices for securing AI-driven systems, managing risks and preparing for the future of AI in cybersecurity. Register now to secure your spot and gain invaluable insights into the future of AI in cybersecurity.

Watch this roundtable discussion on penetration testing strategies that go beyond traditional vulnerability checks. Our GuidePoint Security panel of TAS and AppSec practitioners focus on advanced methods for testing the weakest points of your organization’s cybersecurity.

Enhancing your cybersecurity measures involves more than just setting up defenses—it's about continuously evolving them. Join Gary Brickhouse, CISO, for a roundtable discussion on maturing your cybersecurity programs to meet and exceed industry standards. Our experienced panel will provide their perspectives on basic security protocols to sophisticated cybersecurity frameworks and discuss growing and adapting security frameworks to maintain a competitive edge.

With GuidePoint Security Panelists:
Chris Peltz, Practice Lead
Lance Fischer, Senior Security Architect
Russ Thomas, Principal Security Consultant
Zachary Sheaffer, Managing Security Consultant, IA

The latest Brick House presentation focused on building a strong cybersecurity culture through a proactive and inclusive approach. Key topics included the importance of strong passwords, multi-factor authentication, phishing awareness and regular software updates. The expert panel—featuring GuidePoint Security's Ed Dunnahoe, Vice President, IA, Andy Lux, Vice President Engineering, Heartland, Steve Rosenkranz, Senior Director Corporate Information Security and Andre Rosario, Security Consultant —discussed integrating security into everyday business operations, fostering a culture of trust and leveraging AI to enhance security awareness.

They emphasized the value of tailored training, practical exercises, and leadership alignment to promote better security practices across the organization. Notable statistics included a 68% breach rate due to human error and the increasing use of AI in social engineering attacks. The panel offered practical advice, such as verifying suspicious requests, using AI with caution and maintaining strong situational awareness.

Watch the full episode for more actionable insights to strengthen your organization's security culture.

As cloud environments grow more complex, the need to effectively manage access and secure applications has become more urgent than ever. Cloud security is no longer just about protecting infrastructure—it’s about ensuring that the right people have access to the right resources and that applications themselves are fortified against evolving threats.

Watch this discussion on how integrating Identity and Access Management (IAM) and Application Security (AppSec) can strengthen your cloud security posture. They will discuss key strategies for securing user access across multi-cloud environments, addressing vulnerabilities in cloud-native applications and building a unified defense strategy. Whether you are dealing with multi-cloud environments, hybrid infrastructures, or cloud-native applications, this discussion will provide actionable insights to protect your organization’s most valuable assets.

Panelists:
Kevin Converse, Vice President, Identity and Access Management
Jonathan Villa, Practice Director, Cloud Security
Robert Darwin, Senior Director of Security Engineering