Thales Security Sessions

Thales Group

Welcome to the Thales Security Sessions podcast, hosted by Neira Jones, business advisor on all things fintech, regtech, cybercrime, information security, regulations and digital innovation. This podcast series explores the technologies, people, and processes behind information security. We’ll delve into topics like data security, remote access and digital transformation, as well as the people and technologies that make it all work behind the scenes. We’ll speak to Thales and industry experts to bring you fresh perspectives on how to navigate the world of cloud security.

All Episodes

The payments ecosystem has evolved tremendously over the past few years, raising the question: where will digital payment technologies take us in the future, and how does this affect retailers and financial services organizations? In this episode, Neira Jones is joined by Scott Abrahams, Senior Vice President Business Development & FinTech, United Kingdom and Ireland, International Markets at Mastercard and Simon Keates, Head of Strategy and Payment Security at Thales to discuss the major challenges retailers and other financial services organizations are facing.

Nov 23

32 min

The COVID-19 pandemic has accelerated what has been a long-term broad adoption of cloud environments, including multicloud and hybrid deployments. Organizations need to extend and adapt their capabilities to take more control of their security efficiently and effectively in these new, dispersed environments, according to the 2021 Thales Cloud Security Study. The study is comprised of analysis from 451 Research, part of S&P Global Market Intelligence, and based on a survey commissioned by Thales of more than 2,600 security professionals worldwide. In this episode, Sol Cates, Principal Technologist at Thales, and regular host Neira Jones break down some of the key findings and statistics in the report. Download the full 2021 Thales Cloud Security Study Report.

Nov 12

24 min 32 sec

Mapping data flow is a fundamental part of the enterprise data process. There's no way an organization can understand their data cycle without knowing where their data is located. Despite this, findings from the 2021 Data Threat Report by Thales reveals that only 24% of companies have complete knowledge of where their data is stored. With such strong ties between the two data operations, the numbers just aren't adding up - why? How to Approach the Enterprise Data Process In this podcast, Dr Eric Cole, Founder and CEO of Secure Anchor Consulting, and Todd Moore, Global Head of Encryption Solutions at Thales, look at the relationship between data flows, data discovery, automation, and understanding the data process. In his exploration, Todd draws on Thales's report on data security in the era of accelerated cloud transformation and remote work, alongside the company's stance on 'discover, protect and control' based on their CipherTrust Data Security Platform. The question of how organizations should approach the data process and bridge gaps in their knowledge remains the overarching focal point of the conversation.

Nov 1

24 min 10 sec

The rapid adoption of digital technologies and remote or hybrid working is now an accepted part of society. The pandemic forced companies to adapt swiftly and many have turned to the cloud to help their digital acceleration. According to McKinsey cloud adoption has been accelerated by three years compared to pre-pandemic adoption rates. Gartner is also estimating that spending on public cloud services will exceed $480 billion next year. In this episode, Sebastian Cano of Thales and Sunil Potti of Google join host Neira Jones to discuss the key challenges of more workloads and data being moved to the cloud in our new hybrid world, and how Thales and Google Cloud are working together to enable customers to fulfill their part of the shared responsibility model for cloud security.

Oct 12

33 min 52 sec

The shift to remote working and the acceleration of cloud-based services have put a strain on identity and access management infrastructure. As remote access becomes the norm rather than the exception, many organisations need to evolve their security approaches in a world where there is no longer a defined perimeter, according to the 2021 Thales Access Management Index. In this first Thales Security Sessions episode of series 2, François Lasnier, VP Authentication and Access Management Products at Thales, joins regular host, Neira Jones, to talk through the key findings of the report. They will discuss how COVID has introduced new security concerns around remote working, and explore some of the key challenges of trusted access in a cloud-first world. Download the full 2021 Thales Access Management Index. https://cpl.thalesgroup.com/access-management-index

Oct 1

31 min 39 sec

Bitcoin and other cryptocurrencies have exploded in value—making them an ever-more attractive target for scammers and hackers. So is cryptocurrency secure? How can businesses and individuals make sure they protect their digital investments? And what are the key security measures that should be implemented to secure the cryptocurrency backend? In this episode, we’ll be exploring the current cryptocurrency landscape, and how we can make a trusted world for crypto payments. Joining our regular host Neira Jones for this episode, we have Nitin Gaur, Director, IBM Financial Sciences and Digital Assets and Krishna Ksheerabdhi, VP Product Marketing, Thales.

Sep 10

31 min 48 sec

Shared security, also known as shared responsibility, is a cloud security management model that describes the distribution of enterprise data security management and accountability between a company and its cloud service provider(s). The framework essentially enables improved productivity and unparalleled agility, so why isn't every organization adopting it? In this episode, introduced by Neira Jones, Dr. Eric Cole, Founder and CEO of Secure Anchor Consulting,, explores adopting shared security as best practice. Dr. Eric speaks with Chris Martin, IAM Presales Solution Architect for EMEA at Thales. The podcast delves into the main areas of organizational risk concerning cloud migration and vendor native decisions before shedding light on the limitations of a single service provider. The guests then discuss the shared security model - its benefits and the implementation process. Final thoughts centre on what organizations need to understand about control over all users and effectively build a best practice shared security strategy You can also learn more about this topic in our new whitepaper, Owning Your Own Access Security. Dr Eric Cole Dr. Eric Cole is an industry-recognized expert with over 20 years of hands-on experience, founder and an executive leader at Secure Anchor Consulting where he provides leading-edge cybersecurity consulting services, expert witness work, and R&D initiatives to advance our field. Dr. Cole has experience in information technology with a focus on helping customers focus on the right areas of security by building out a dynamic defense. Dr. Cole has a master's degree in computer science from NYIT and a doctorate from Pace University with a concentration in information security. He served as CTO of McAfee and Chief Scientist for Lockheed Martin. Dr. Cole is the author of several books, including Advanced Persistent Threat, Hackers Beware, Hiding in Plain Sight, Network Security Bible 2nd Edition, and Insider Threat. You can connect with Dr Cole on LinkedIn. Chris Martin Chris Martin is the lead EMEA Pre-Sales Solution Architect at Thales. With over 20 years expertise in the IAM space, Chris’ extensive background includes Enterprise SSO, PAM, IDaaS and Identity Governance that enables him to bring a holistic approach to enterprise IAM. Within Thales, Chris works alongside our customers to help them define, develop and execute their IAM strategies, either aligning Thales solutions to an existing IAM architecture or building from the ground up. Prior to joining Thales, Chris honed his IAM skills with Sentillion, Centrify, OneLogin, Omada and MicroFocus. You can connect with Chris on LinkedIn.

Aug 27

27 min 40 sec

Network security encompasses the security tools, policies, and techniques used to monitor, prevent, and respond to unauthorised network access. Having such a broad definition and, therefore, challenging approach, it is important that businesses know what key areas to focus on and what enterprise tech solutions they should look to to ensure appropriate, airtight protection. Forming part of an exclusive three-part cybersecurity podcast series featuring Thales and host Dr. Eric Cole, Founder and CEO of Secure Anchor Consulting, this episode looks at data in motion and future-proofing from a quantum perspective. Dr. Eric speaks with Julian Fay, CTO at Senetas, a global partner of Thales. The pair explore the primary concerns of network security within the realm of data in motion with the help of key findings from our latest global survey on the encryption of public/private networks. You can also learn more about this topic in our new whitepaper, Security Weaknesses in Data in Motion Identified in Cybersecurity Survey.

Aug 13

31 min 55 sec

The threat and arrival of quantum computers is ever-present with physics breakthroughs, more Qubits, quantum “supremacy”, and cloud service providers designing quantum computers, but what does it really mean to data protection? Is it really the end of encryption as we know it? In Episode 11 of the Thales Security Sessions, host Neira Jones is joined by Mike Brown, CTO at Isara, and Michael Gardiner, Solution Architect at Thales, to discuss the ways in which quantum computing will change the technology landscape, and how organizations can deal with the potential security threats that quantum brings.

Jul 30

25 min 14 sec

Organizations have only just begun discovering and benefiting from the opportunities provided by the Internet of Things. The ability to capture and analyze data from distributed connected devices offers the potential to optimize processes, create new revenue streams, and improve customer service. However, the IoT also exposes organizations to new security vulnerabilities introduced by increased network connectivity and devices that are not secured by design. And advanced attackers have demonstrated the ability to pivot to other systems by leveraging vulnerabilities in IoT devices. For this episode, host Neira Jones is joined by Ellen Boehm, VP, IoT Strategy and Operations at Keyfactor, and Paul Hampton, Senior Product Manager at Thales.

Jul 2

37 min 38 sec

The shift to remote work and the acceleration of the shift to cloud-based infrastructure have profoundly impacted security teams. With the security risks and threats that these changes pose, most organizations have some work to do to improve their security posture, according to the new 2021 Thales Data Threat Report. Many organizations were unprepared for the unexpected security challenges they faced in 2020. In fact, according to the report only 20% of IT professionals said their security infrastructure was very prepared for the effects of the pandemic In this episode, Neira Jones is joined by Todd Moore, VP Encryption Products at Thales, to talk through the key findings of the report. They’ll take a look back at the key trends seen in 2020 and the impacts of the pandemic that have carried over into 2021. Todd Moore Todd Moore is a respected cybersecurity professional, with over 28 years' experience in helping organizations protect their most sensitive data. In his role as Vice President of Encryption Solutions, Todd drives strategy for the company's data encryption portfolio – bringing together a set of well-known security brands (SafeNet, Vormetric and Thales eSecurity) together, into a single data protection business line that addresses existing and new customer needs. Todd joined Thales through a series of acquisitions from his prior roles; these predominantly entailed product leadership positions for both SafeNet and then Gemalto. He had already gained deep understanding of security challenges and technologies within the defence industry, having spent almost two decades with Harris Corporation. Over his career, Todd has a proven track record of developing business cases and market analysis for new security products and delivering them to market. He routinely develops strategies for new product development and execution, as well as negotiating strategic relationships and alliances. With a rich combination of technology, product and customer understanding, Todd has frequently offered insights and commentary to media on topics such as hybrid cloud, encryption and cryptographic agility. Recent media contributions include the likes of IoT Now, Finextra and BankInfo Security. You can connect with Todd on LinkedIn.

Jun 18

24 min 5 sec

Passwordless and FIDO authentication is one of the hottest topics on the radar of identity and access management professionals. While passwordless authentication offers convenience for end users, not all methods offer the same level of protection. In this special bonus edition podcast, Garrett Bekker, principal cybersecurity analyst at from 451 Research and Asaf Lerner, Director of Product Management at Thales discuss the merits and various angles of moving to passwordless. Garrett Bekker Garrett Bekker is a Senior Research Analyst in the Information Security Channel at 451 Research, a part of S&P Global Market Intelligence. He has viewed enterprise security from a variety of perspectives over the past 20 years. Garrett started his career in security as an equity research analyst at several investment banking firms, most recently Merrill Lynch, where he covered information security, infrastructure software and networking companies. Garrett has also worked with early stage enterprise security vendors in sales and marketing role, including Bat Blue (acquired by OPAQ Networks). Prior to joining 451 Research, he also worked at a boutique investment bank focused on M&A and fundraising for small-to-midsized technology companies. Garrett has focused on a wide variety of subsectors within enterprise security during his career, and is now focusing primarily on identity and access management (IAM), cloud security and data security. Garrett is also a member of 451 Research's Center of Excellence for Quantum Technologies. You can connect with Garrett on LinkedIn. Asaf Lerner Asaf Lerner brings with him over 20 years of swimming in the high IAM seas, serving in different positions in the industry, from R&D management to PKI and Authentication Product Management and various market-facing roles. Located in Austin, TX, Asaf is in charge of the IAM solutions market for the Americas at Thales. Under his responsibility is creating market awareness of Thales’s IAM solutions, enhancing market partnerships, and creating healthy channel workstreams. You can connect with Asaf on LinkedIn.

May 14

25 min 40 sec

5G connectivity promises to break traditional paradigms of data delivery by providing network connectivity virtually everywhere. To accommodate this new paradigm in diverse data delivery, the building out of 5G infrastructures is underway. It is expected that in two years’ time 5G will reach 25 billion connected devices globally and this number will triple to 75 Billion by 2025. For enterprises and subscribers, it will enable exciting new low latency, high performance and reliable connectivity that will create new business opportunities. For mobile network operators it will unlock significant new revenue-generating opportunities. 5G poised to change how digital technology-based solutions delivered and consumed across different industry verticals by connecting people and devices using high quality services whenever wherever. Our economy, and our national security had so many participants, each reliant on the other and none of which have the final responsibility for enterprise /subscriber data security. Some believe that consumers should be given the tools which can make informed decisions. The concept of shared responsibility model between cloud service providers and enterprises will be extended to these Telco edge and cloud edge sites. In this episode Neira is joined by Prashant Deo, Senior Information Security Consultant at Tata Consultancy Services and Chen Arbel, Vice President Business Development, 5G & Cloud Security and Thales. Prashant Deo Prashant is currently Senior Information Security Consultant at Tata Consultancy Services, a global leader in IT services, consulting & business solutions with a large network of innovation & delivery centers. He has over 20 years experience in lead roles in Cyber Security Consulting and Cyber Defense Operations. Prashant is currently Service Delivery Lead for Security Solutions and Services at TCS, managing end to end project delivery for Infrastructure Security Solutions and Identity & Access Management Solutions, Security Operations Management and Management of Information Security for all client deliverables. You can connect with Prashant on LinkedIn. Chen Arbel With over 20 years of information security, Chen has served in key development roles leading to uniquely powerful innovations that effectively align data security technology with real-life business objectives. Playing a leading role in the implementation of security solutions within some of the world’s largest organizations, Chen has worked in all major industries on strategic initiatives that deliver clear business advantages through unmatched technology. Chen held a government classified technology position in North America and served as Captain for the Defense Force where he gained extensive information security experience. You can connect with Chen on LinkedIn.

Apr 23

29 min 58 sec

More digital will mean more cloud. Now in the second year, the Covid-19 coronavirus pandemic has prompted an acceleration in the adoption of cloud technologies by IT leaders worldwide, which looks set to continue for the foreseeable future. Previously organisations have primarily looked at new application development and deployment for cloud, taking a ‘cloud first’ approach. However many have now pivoted towards a ‘cloud now’ approach. In this two-part episode Neira talks to Chris Harris, EMEA Technical Director at Thales and Vaughn Stewart, VP of Technology Alliance Partners, Pure Storage. Vaughn Stewart, VP of Technology Alliance Partners, Pure Storage Vaughn helps organisations capitalise on what’s possible when pairing memory-based storage technologies with tradiditional and next-generation applications. Prior to joining Pure, he spent 13 years in various leadership roles at NetAPll and has been awarded a U.S. patent. Vaughn strives to simplify the technically complex and advocates thinking outside the box. You can find his perspective online at vaughnstewart.com and in print; he has co-authored multiple books including “Virtualisation Changes Everything: Storage Strategies for VMware vSphere & Cloud Computing. You can connect with Vaughn on Linked in or Twitter Chris Harris, EMEA Technical Director at Thales Chris has over twenty-five years' experience in IT Security with a strong track record providing expert consultancy, pre-sales support and technical assistance to customers across EMEA, in addition to developing and leading a large pan-EMEA team of Pre-Sales Consultants and Sales Engineers. With a strong technical focus on data and information protection solutions, Chris can talk very knowledgably on a vast range of Cybersecurity, Identity Management, Cloud Encryption & Security as well as Cloud Security and Security-as-a-Service offerings. He plays a key role in managing customer and partner relationships across the region, as well as scaling the team, ensuring it has the structure and skills in place to solve problems for customers and respond to market needs. Having joined Thales through its recent acquisition of Gemalto, Chris previously managed the cyber-security pre-sales organisation across EMEA. He has over 20 years’ experience in the group through various company acquisitions that has seen his EMEA Pre-Sales role evolve as the product portfolio grew significantly. With a passion for technology, he keeps acquainting himself with the technical detail, often feeding back the field experience to product management to help advance offerings. He has been pivotal in developing a strong pre-sales technical team across EMEA all equally as passionate for customer excellence. He brings with him a wealth of experience spanning: Hardware Security Modules (HSM), PKI & Digital Certificates, Smart Cards, Tokens, Network Encryption, Database Encryption, Storage Security/Encryption, Cryptographic Hardware and Software. Chris holds a Bachelor of Science degree from the University of Herfordshire. You can connect with Chris on LinkedIn and Twitter.

Mar 26

23 min 46 sec

More digital will mean more cloud. Now in the second year, the Covid-19 coronavirus pandemic has prompted an acceleration in the adoption of cloud technologies by IT leaders worldwide, which looks set to continue for the foreseeable future. Previously organisations have primarily looked at new application development and deployment for cloud, taking a ‘cloud first’ approach. However many have now pivoted towards a ‘cloud now’ approach. In this two-part episode Neira talks to Chris Harris, EMEA Technical Director at Thales and Vaughn Stewart, VP of Technology Alliance Partners, Pure Storage. Vaughn Stewart, VP of Technology Alliance Partners, Pure Storage Vaughn helps organisations capitalise on what’s possible when pairing memory-based storage technologies with tradiditional and next-generation applications. Prior to joining Pure, he spent 13 years in various leadership roles at NetAPll and has been awarded a U.S. patent. Vaughn strives to simplify the technically complex and advocates thinking outside the box. You can find his perspective online at vaughnstewart.com and in print; he has co-authored multiple books including “Virtualisation Changes Everything: Storage Strategies for VMware vSphere & Cloud Computing. You can connect with Vaughn on Linked in or Twitter Chris Harris, EMEA Technical Director at Thales Chris has over twenty-five years' experience in IT Security with a strong track record providing expert consultancy, pre-sales support and technical assistance to customers across EMEA, in addition to developing and leading a large pan-EMEA team of Pre-Sales Consultants and Sales Engineers. With a strong technical focus on data and information protection solutions, Chris can talk very knowledgably on a vast range of Cybersecurity, Identity Management, Cloud Encryption & Security as well as Cloud Security and Security-as-a-Service offerings. He plays a key role in managing customer and partner relationships across the region, as well as scaling the team, ensuring it has the structure and skills in place to solve problems for customers and respond to market needs. Having joined Thales through its recent acquisition of Gemalto, Chris previously managed the cyber-security pre-sales organisation across EMEA. He has over 20 years’ experience in the group through various company acquisitions that has seen his EMEA Pre-Sales role evolve as the product portfolio grew significantly. With a passion for technology, he keeps acquainting himself with the technical detail, often feeding back the field experience to product management to help advance offerings. He has been pivotal in developing a strong pre-sales technical team across EMEA all equally as passionate for customer excellence. He brings with him a wealth of experience spanning: Hardware Security Modules (HSM), PKI & Digital Certificates, Smart Cards, Tokens, Network Encryption, Database Encryption, Storage Security/Encryption, Cryptographic Hardware and Software. Chris holds a Bachelor of Science degree from the University of Herfordshire. You can connect with Chris on LinkedIn and Twitter.

Mar 19

22 min 5 sec

Are the current rules and regulations for securing information and maintaining privacy fit for purpose when you think about the future? Do you think work and lifestyle changes brought about by Covid-19 will have a regulatory impact that we need to plan for? Neira discusses these questions with Enza Iannopollo, Senior Analyst at Forrester and Thales’ own Mukesh Chandak, Business Development Director.

Feb 19

35 min 16 sec

Many businesses have been forced to accelerate their digital transformation strategies due to the pandemic and doing it successfully has become a major challenge. What do organisations do to transform their infrastructure to where it needs to be from a technology standpoint? The new threats are here to stay – so what is the best DX practice from a technology point of view? How do you focus on the technology process and preservation of your infrastructure? In this episode Neira talks to CJ Cullen, Software Engineer at Google and Sol Cates, Principal Technologist at Thales Cloud Protection & Licensing to get their take on this very topical issue.

Feb 1

28 min 23 sec

In this episode we are looking ahead at what we can expect in 2021 and reviewing how 2020’s remote working, separation from family and teams have changed us. Have a listen to some of the interesting insights from Neira’s guests, Troels Oerting, Chairman of the Board of the World Economic Forum’s Centre for Cybersecurity (C4C) and Ashvin Kamaraju, CTO and Vice President Engineering at Thales Cloud Protection & Licensing.

Jan 13

36 min 34 sec

More digital also means more interactions where the various parties are interacting without knowing each other. This is linked to the much needed focus on digital identity, IAM, CIAM, authentication, behavioural analytics. Has the pandemic forced people’s perception of digital identity to change as they have been forced to accept the digital transformation in their own lives? Our host Neira Jones discussed this topic with guests Sundaram Lakshmanan and Francois Lasnier.

Dec 2020

37 min 18 sec

More digital, means more ecommerce, more digital payments, more financial fraud and cybercrime and ultimately more risk. Many organisations within the payment sector are being pushed into digitisation more quickly as they move to operate online to keep cash flow – without doing necessary due diligence on the best solution or vendor and with security not really on their agenda. These are some of the issues we are exploring with guests Arthur van der Merwe and Simon Keates.

Nov 2020

34 min 58 sec

More remote, more digital, more risk: what do we do about that? Are businesses being forced into digital transformation too quickly and therefore cutting corners? In this Episode, hosted by Neira Jones, business advisor on all things fintech, regtech, cybercrime, information security, regulations and digital innovation, we are joined by Todd Moore, Head of Encryption Products at Thales, and Rick Robinson, Principal and Trusted Advisor at Goldbug Technology Consulting. They will be discussing how businesses adapt to the changing threat vectors as more valuable data gets pushed further out into the infrastructure due to remote working etc.

Nov 2020

28 min 46 sec