Preview Mode Links will not work in preview mode

Defense in Depth

Mar 3, 2022

All links and images for this episode can be found on CISO Series

Offensive security or "hacking back" has always been seen as either unethical or illegal. But now, we're seeing a resurgence in offensive security solutions. Are we redefining the term, or are companies now "hacking back?"

Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Steve Zalewski. Our guest is Eric Hussey, CISO, Aptiv.

Thanks to our podcast sponsor, Varonis

Thanks to our podcast sponsor, Varonis

On average, an employee can access 17 million files on day one. Varonis will show you where critical data is vulnerable, detect anomalies, and automatically right-size privileges to get you to “Zero Trust.” Their data security platform can test your ransomware readiness and show you where you stack up. Learn more at

In this episode:

  • Has the definition of offensive security changed?
  • Can we truly fight back without legal repercussions?
  • How does it apply when hackers hide behind proxies?
  • Is hacking back even worth it?