Jason Loomis: Seeing risk from all sides- holistic vulnerability management

In this episode, we speak with Jason Loomis, CISO of Freshworks. Jason has been in tech for over 20 years, working with various companies in fashion, health, finance, and banking. He is passionate about leadership and team-building, which influences how he approaches vulnerability risk management. Hear him discuss why people and the process are at the root of vulnerability risks and how configurations can help address them, plus more.

Other topics discussed:

• How system shortcomings from 20 years ago are still creating problems and challenges
• Understanding that patches are only one solution to preventing exploitation
• How not to get distracted by “celebrity vulnerabilities” and stay focused on the risks that are causing the big problems
• Methods to calculate your metrics to determine accountability and ownership of risks
• What it means to be mature or immature in corporate policies, processes, and reporting
• The importance of CISOs physically talking to people and avoiding screen-only interacting
• How to make the best of your tools and understand how they work (or don’t work)