Podcast Episode: Enterprise Security Threats & Protecting Your Organization
Pairaphrase Founder & CTO Rick Woyde appeared on Podcast Detroit with Alok Sharma, Founder & Fractional CIO at Sharma Analytics. In this podcast episode they talk cybersecurity, discussing common enterprise security threats and how your organization can protect itself.
Transcription (first 10 minutes)
You’re listening to the Podcast Detroit Network, visit www.podcastdetroit.com for more information.
My name is Rick Woyde and I am the CTO and one of the founders of Pairaphrase. And I’m here in the studio with my friend Alok Sharma of Sharma Analytics. And I will let Alok explain what his business does.
Hey, how’s it going, Rick? Rick, thanks for inviting me out. It’s good to talk, but yeah, you know, I’m the founder of Sharma Analytics. We’ve done some work together in the past. We are outsourced chief information officers. We work with lower middle market companies. So a little bit bigger than what you would consider a small business, but you know of the size where maybe they don’t want to have a full time chief information officer.
So we fit that bill for a number of companies and, you know, manufacturing. Some are software companies, we do it for dental chains. It’s a wide gamut of companies who need a part time chief information officer.
Very cool. That’s a really important role, too. And a lot of companies don’t have the budget to have a full time chief information officer, but they still need that service.
Yeah, you know, I think the way we look at it is, you know, everybody needs technology advice, right? I mean, everybody, regardless of the organization or the business you’re in and, you know, the question is what sort of advice are you getting? And if you’re not getting great advice, it can be very, very costly. And so the way we look at it is that everybody should have access to an experienced chief information officer who’s aware of best practices, who has done it before and who can, you know, quickly kind of help you make decisions about what your organization should be spending money on in terms of technology.
If people want to get a hold of you, how do they get a hold of you?
They can hit us on our website, SharmaAnalytics.com. They can reach us at info at Sharma Analytics dot com and they can also, you know, find us on LinkedIn. Alok Sharma. I think it’s /SharmaAl is my handle on LinkedIn. And that’s another great way to hit me. If you messaged me on any of those, we’ll get back to you.
Sounds good. So let’s dive right into it. Security, online security. It’s a big deal. It really is a big deal today.
It is. You know, it’s funny. We’re talking to a client today and it was almost all about security today. That was the whole conversation.
And this this executive, you know, he said to me a couple of times. That’s what keeps him up at night, right, even during this whole, you know, covid situation where they shut down a bunch of their offices for two and a half months. Completely shut down. Could not could not run anything out of their offices. And even during that, security was his top concern for a variety of reasons. He had he had been part of an organization that had been hit with, you know, with a cyber incident in the past.
And he knew how awful it is to kind of recover from that. That was a big part of it. But it’s funny to, you know, the number of executives who say that to me now that cyber security is kind of the thing that they worry about.
Well, I think that’s even more true today with everybody working remotely, because that opens up a whole new can of worms that you’ve got to worry about.
Yeah, I think, you know, one of the things that was always difficult to secure was someone else’s device. Right. And almost everybody is in a BYOD or bring your own device environment. Almost everybody’s using their personal cell phone to answer business emails.
And we’re working on our personal networks now, too.
Yeah, yeah. So take the BYODm, your personal device, that was kind of a sticky wicket to deal with already.
And then, yeah, now in some cases, people are checking email on personal personal laptops, personal tablets, and like you said, on their personal networks or maybe at their Airbnb’s network. And and so you’ve taken all those issues and we’ve just added another layer of complexity to another layer of things that we have to worry about.
One more thing to keep them awake at night.
Seriously, one more thing to keep them awake at night. And, you know, I think you can get a handle on these things.
That’s not to say that, you know, an organization can be completely bulletproof and nothing will ever happen to them.
It’s impossible. Absolutely impossible.
Anybody that tells you that, run.
Yeah, absolutely. The moment someone says something like that…
…you’re talking to the wrong person.
Yeah, right. It’s really about how do we control incidents and how do we capture them before they become serious.
How do you mitigate risk.
You got it. Yeah. I mean, you know, that’s really what you’re shooting for. How much can we contain it? How quickly can we be alerted if something happens? That’s that’s almost the most important thing.
Well, I want to talk about the number one threat out there, because I do talk to a lot of risk managers and IT security people. You know, Pairaphrase, as a SaaS, we have to go through a very rigorous security check before these companies will sign up for our software. And without a doubt, every single risk manager or IT person I speak with, their biggest thing that they’re worried about is phishing.
Yep. It’s the easiest way into an organization if you’re someone malicious, easiest way in is to try to phish somebody.
Well, I don’t think people know how easy it is that you can just basically take someone’s logo off their website and stick it into your own email. You know, I get emails not only from like vendors or software that I’ve signed up for, but I get ones from banks that I don’t even have a bank account with.
And I know someone’s clicking on it. Fortunately not me most of the time, but somebody is.
You know, I got a Bank of America email came through and pass through my spam filter. It came into my inbox and I called them, I called Bank of America because it looked that real. And the phone number that they had listed on there when I Googled it, it was the Bank of America customer support line.
And sure enough you know, then I spoke to someone and they have to have a control code on their email so they can trace it and they can tell you pretty quickly if it was their email or not.
But, you know, I was looking at this thing over and over again, and I’m like, this might be a real email. This might really be from Bank of America.
Right, and you’re in this field. I mean, this is something you do every day. So what it looks that authentic to you. You can imagine what it looks like to somebody who’s just doing their job.
And this isn’t something that they think about all day long. Yeah, I know. You know, we just saw an email from that came from allegedly came from the CEO of a client. To the comptroller to wire a bunch of money to some accounts.
It’s a common, you know, activity request.
It is because either, you know, they can scrape the names of everybody, either from your website, the about us section, or they can grab it off of LinkedIn.
So it’s not too tough to figure out who the comptroller who is an executive there and then who might be controlling the purse strings.
Well, and there’s another black hole, too, and that is, you know, all the online shopping that we do. We don’t know what kind of security they have in place. And we don’t know if they’ve ever been hacked, you know, especially some of these guys that try to post themselves and do silly stuff like that.
It’s true. And but, yeah, you know, the phishing is absolutely the easiest way in. And, you know, what I say to people is that there’s a handful of things that you can do, very inexpensive. And I think every organization should do it. I don’t care if you’re three people or 30 people or three hundred.
And one of them is phishing training. It’s phishing simulation is sometimes what it’s called in the industry. And what it is, is it’s fake simulated phishing emails that are sent out to your team, to your employees or whoever has e-mail, and see who clicks. And if they click on an email, they weren’t supposed to, usually they will be sent to a web-based training that explains to them why you shouldn’t have clicked on that email. Here are the signs that this was a, you know, a phishing email.
Well, I think one of the most important things to is, is before you click on that email or link or, you know, an attachment is to hover over that email address and confirm and look at, you know, where that email address really did come from, because there’s a nickname usually on the email. And that’s not really the actual email address.
Absolutely. Yeah. You know, this one that came from the CEO, sure enough, had his full name on it. And then you hover over it and, you know, sure enough, it looked like it was a Russian-based domain.
Well, a lot of them do seem to come from strange places, that’s for sure.
But phishing simulation is generally not super expensive. And you see you see some really good results very quickly. Right. Usually, you know, you look at how many people clicked on this simulated email in month one. You see how many people have done it in month two, by month three people have gotten pretty good and it’s not usually very expensive. It’s pretty easy to implement. And the benefits are fantastic.
Well compared to a phishing incident. I mean, it’s way cheaper. It’s not even close.
Listen to the Full Podcast Episode
How to Translate a Google Doc Most Efficiently 
Want to translate Google Doc text? Learn why you should use Pairaphrase as your Google Docs translator.
Best English to Polish Document Translation Software 
Looking for English to Polish translation software, but not sure what features you need? Access this buying guide.
Translation Services 101: Your Guide to the Basics
Need translation services? First, learn the basics! This way, you can make an informed decision. Explore this guide to translation services.
Best Redokun Alternative for Enterprises (2023)
Want a secure enterprise alternative to Redokun? Learn why Pairaphrase is the best Redokun alternative for enterprises here »
Localization 101: Your Guide to the Basics
Curious about localization? Learn about localization vs translation, what it is, how it works, benefits & more in this guide to the basics!
Best Memsource Alternative for Enterprises (2023)
Want a secure enterprise alternative to Memsource? Learn why Pairaphrase is the best Memsource alternative for enterprises here »
How to Translate Entire Google Sheets (All Cells) 2023
Want to translate entire Google Sheets? Learn why you should use Pairaphrase as your Google Sheets translator.
How to Translate Entire Google Slides Presentation 
Want to translate Google Slides presentation text, notes & charts? Learn why you should use Pairaphrase as your Google Slides translator.
Fast Turnaround Translation: How to Get it
While fast translation turnaround and linguistic quality is a delicate balance, this post will tell you how to best use Pairaphrase to get fast translations.
Best English to Arabic Document Translation Software (2023)
Looking for English to Arabic translation software, but not sure what features you need? Access this buying guide.
Best OnlineDocTranslator.com Alternative (2023)
Considering an alternative to OnlineDocTranslator.com? Explore why Pairaphrase is the best OnlineDocTranslator.com alternative for enterprises.
How to Translate an IEP Document
Need to translate an IEP document? Learn how to translate IEP documents in the most efficient and secure way possible.
Machine Translation (MT): Your 2023 Guide to the Basics
Curious about Machine Translation (MT)? Learn about machine translation, how it works, benefits of machine translation & more.
How to Translate PDF Document Text to Another Language (2023)
Learn common issues involved with translating PDF documents and discover why Pairaphrase is the best PDF document translator.
How to Translate XML Files Online (2023)
Need to translate XML files online? Learn about the best features to use when translating XML files.
Best English to Italian Document Translation Software (2023)
Want the best English to Italian document translation software for business? Read about the 10 best English-Italian translator app features.
Learn all about terminology management in this comprehensive guide.
Smartling Alternative for Enterprises in 2023
Want a Smartling alternative? Explore 10 possible reasons you need one, and why Pairaphrase might be your best alternative.
How to Translate XLIFF Files Online Successfully (2023)
Need to translate XLIFF files online? Learn why Pairaphrase is the best way to translate an XLIFF file.
Best Japanese to English Document Translation Software (2023)
Looking for Japanese to English translation software, but not sure what features you need? Access this buying guide.
How to Translate SRT Files Effectively in 2023
Learn how to translate SRT files in 2022! Explore the reasons Pairaphrase is the best way to translate an SRT file effectively.
Best English to Japanese Document Translation Software (2023)
Looking for English to Japanese translation software, but not sure what features you need? Access this buying guide.
Brochure Translation Software Features to Look for
Need brochure translation? Look for these 10 top brochure translator features (before you buy).
Best Way to Translate Articulate Course Files
Need to translate Articulate course files? Learn why Pairaphrase is the best way to translate Articulate files (XLIFF 2.0).
Best Way to Translate Multiple Files Simultaneously Online
Need to translate multiple files simultaneously online? Learn why Pairaphrase is best for batch translation.
Using Pairaphrase Translation Software with Amazon Translate
Curious about translating with Amazon Translate (AWS)? Learn about using Amazon’s machine translation engine with Pairaphrase.
Best English to Hindi Document Translation Software (2023)
Looking for English to Hindi translation software, but not sure what features you need? Access this buying guide.
How to Translate Large Files with Ease
Need to translate large files? Learn about the best tools to use when translating large PDF’s, documents & more (10MB+).
Catalog Translation Software Features to Look for
Need catalog translation? Look for these 10 top catalog translator features (before you buy).
Best English to Vietnamese Document Translation Software (2023)
Looking for English to Vietnamese translation software, but not sure what features you need? Access this buying guide.
How to Create Effective Termbase Glossaries for Machine Translation
Need to create a termbase glossary? Get our top 5 tips for creating effective termbase glossaries for machine translation.
Best English to Korean Document Translation Software (2023)
Looking for English to Korean translation software, but not sure what features you need? Access this buying guide.
DeepL Alternative for Enterprises (2023)
Explore various DeepL drawbacks and user-specific needs you might identify with. This way, you can conclude whether alternatives to DeepL could fill these gaps.
Most Accurate Translator: How to Get it
While a 100% accurate translator does not yet exist, this post will tell you how to get the most accurate translator tailored to your company’s words and phrases.
Top 10 Translation Industry Trends in 2022
Explore 2022 translation industry trends! Learn about 10 translation industry trends 2022 will bring, according to our predictions »
Secure Transcription Software That Translates Languages
Need secure transcription software that translates languages? Learn what features to look for and how Pairaphrase will benefit you.
Best English to Portuguese Document Translation Software (2023)
Looking for English to Portuguese translation software, but not sure what features you need? Access this buying guide.
Translation KPIs for Translation Management Success
Establishing translation KPIs (Key Performance Indicators)? Here are the 5 Most Important KPIs for translation management success.
5 Things Pairaphrase Cannot Do For You
Pairaphrase is a powerful tool, but it is not a replacement for the human translation and post-editing review process. Read this before you buy.
Subscribe to our Blog
Get expert translation tips straight to your inbox, and get more from Pairaphrase. Subscribe to the Pairaphrase Blog today.