In this special episode of Cybersecurity Sense, host Mark Burnette is joined by Greg Schaffer, Senior vCISO and Project Manager for a boutique information security risk management firm specializing in virtual CISO and information security consulting services. Together, they explore how today's cybersecurity leaders are shifting the conversation — from tactical controls and technical jargon — to viewing security as a core business risk that demands executive understanding and informed decision-making.

Greg shares his personal journey into the cybersecurity field, emphasizing the importance of empathy, communication, and risk-based thinking in modern leadership. The discussion unpacks complex topics like encryption, API security, and prioritizing high-impact risks, while underscoring the need for security professionals to help business leaders see the full picture of cyber risk.

What's everyone still talking about from the 2025 PCI Community Meeting?

In this episode of Cybersecurity Sense, LBMC's PCI QSA team take you behind the scenes of one of the industry's most talked-about events sharing expert insights on vendor risk, AI's role in compliance, and what your org should be thinking about now.

Don't miss practical tips, key takeaways, and what's coming in 2026.

📌 Download our PCI 4.0 Maintenance Checklist: https://www.lbmc.com/wp-content/uploads/2025/10/PCI-4-0-Recurring-Task-Checklist.pdf

📌 Download our Six Questions to Take Charge of Your TPSPs card: https://www.lbmc.com/wp-content/uploads/2025/10/Six-Questions-to-Take-Charge-of-Your-TPSPs.pdf

LBMC's Mark Burnette and Bill Dean talk about some of the most common technical security issues that are discovered in penetration testing, as well as some tactics for improving cyber defenses.