New Episode of The Cyber Show: #047 | S5 | In The Chair | What is the SASIG?

In this episode of The Cyber Show, Andy and Helen welcome Martin Smith MBE, a cybersecurity expert with an impressive career in Air Force intelligence and the founder of SASIG (Security Awareness Special Interest Group). Martin shares his fascinating journey, from his beginnings in cybersecurity in 1981 to the creation of SASIG in 2004. SASIG, although non-commercial in its primary objectives, aims to promote information sharing and highlight the human layer as the largest attack surface in cybersecurity. Martin explains that SASIG was born out of a need to raise awareness about computer security at a time when computers and networks barely existed. He recounts how, in 1981, he wrote the first computer security training for the British Army, marking the beginning of his commitment to this field. SASIG has evolved into a community of several thousand members, with a particular focus on creating a safe environment for CISOs (Chief Information Security Officers) and their teams, where they can discuss issues without being solicited by vendors. One of the unique aspects of SASIG is its vendor-free environment, where members can interact freely without commercial pressure. Martin emphasizes the importance of this approach, as it allows for building trusting relationships between CISOs and suppliers. He also mentions how SASIG has managed to maintain this dynamic through a strict charter that supporters must sign, ensuring respectful behavior from vendors. The podcast also addresses current cybersecurity challenges, including the importance of the human layer and the threats posed by social engineering attacks. Martin and the hosts discuss the evolution of technologies and how they can be used to enhance security, but also the risks associated with excessive reliance on technology. They emphasize the importance of education and awareness from a young age to create a more robust cybersecurity culture. Another crucial point discussed is mental health in the cybersecurity sector. Martin shares poignant anecdotes about how SASIG has helped its members through webinars and open discussions on sensitive topics like suicide and romance fraud. He stresses the importance of creating an environment where people feel safe to share their experiences and seek help. Finally, Martin expresses his optimism about the future of cybersecurity and SASIG. He sees a positive evolution in how CISOs and suppliers interact, with greater recognition of the importance of trusting relationships. He hopes that the SASIG model can be adopted globally, providing a platform for more personal and specialized interactions in the field of cybersecurity. To learn more about this exciting episode and Martin Smith's insights, visit https://cybershow.uk/episodes.php?id=47.