EpisodesRecipesMedia KitPricingReserve a Table
CyberSynapse
The CyberNest
Whyze Labs
Close
Home
/
Episode Details

What's Hot from This Kitchen?

Guest Image
Ep
07
Leadership

Oklahoma Onion Burger with Esmond Kane and Orca Security

Watch Now
Episode Guest Icon
Esmond Kane

Episode Summary

Esmond Kane didn't set out to be a CISO. He set out to build an internet company in Ireland in the early 90s, until local backers told him the internet was a fad. What followed was three decades of learning security the hard way: organically, without a codified discipline, responding to threats in real time and figuring it out as he went.

That origin story matters. Because Esmond's approach to security leadership wasn't learned in a classroom. Triage first, outcomes always, no security theater. It was built in the field.

Now in his third CISO stint at Advarra, a clinical trials and research management company, Esmond works at the intersection of healthcare and security. It's an industry that is chronically under-resourced, running outdated equipment, and facing its own digital transformation under duress. A doctor once told him mid-tabletop exercise that he had patients sitting in dirty linen and a kitchen without milk. Cybersecurity could wait. That's the environment he operates in, and that's exactly why he thinks about security the way he does.

Just like the Oklahoma Onion Burger stretches limited meat with a mountain of onions, a Depression-era trick for doing more with less, Esmond's security philosophy is built for environments where you can't have everything. You work with what you have, you stretch it smart, and you stay ready for when things get hot.

Which, in this episode, they literally did. The smoke alarm went off mid-cook. What happened next was the best live incident response demonstration the show has ever filmed.

What You'll Learn

  • Contain, eradicate, recover: Esmond’s three-step incident response model, demonstrated in real time when the smoke alarm went off mid-episode.
  • The “patient addicted to risk” analogy: what it looks like when an organization only shows up to security when they’re already in crisis, and why the ER model is never a strategy.
  • The cyber apple a day: his framework for proactive security hygiene.
  • Security theater vs. outcomes: why overselling fear to the board destroys credibility, and how the best security leaders speak loss, not profit, without losing the room.
  • What authentic vendor relationships look like: why Esmond chose Orca Security.

Links for More Delicious Bits

SUBSCRIBE to our YOUTUBE channel here

Reserve a table on Cooking with CISOs

Check out our media kit for more sponsorship information

Watch why security leaders LOVE this experience more than other formats

Follow behind-the-apron moments on Instagram

Key Moments in This Episode

  • 04:00
    From Internet Startup Founder to Accidental CISO
  • 08:36
    Why Healthcare Security Is a Different Conversation
  • 14:30
    Security Theater, Loss-Facing Leaders, and the Spider-Man Principle
  • 17:27
    The Smoke Alarm Goes Off — Live Incident Response
  • 20:56
    The Cyber Apple a Day: What Proactive Security Actually Looks Like