All links and images can be found on CISO Series. In this episode, Raj Patil , CTO at enQase , explains how enQase's full-stack platform helps enterprises implement quantum-safe security through a structured, integrated approach. This covers everything from cryptographic asset discovery and governance to out-of-band key generation for network appliances, without requiring organizations to rip and replace existing infrastructure. Joining him are Ross Young , co-host at CISO Tradecraft , and Adam ...
Mar 16, 2026•18 min
Feb 23, 2026•19 min
All links and images can be found on CISO Series. In this episode, Jamie Zajac , Chief Product Officer at Recorded Future , explains how autonomous threat operations can close this gap by automatically deploying intelligence across security controls at machine speed. Joining him are Dan Holden , CISO at Commerce , and Arvin Bansal , CISO at C&S Wholesale Grocers . Want to know: Why do organizations still struggle to operationalize threat intelligence despite massive investments? How does thr...
Feb 09, 2026•21 min
All links and images can be found on CISO Series. In this episode, Alastair Paterson , CEO and co-founder at Harmonic Security , explains how Harmonic Protect addresses these challenges by securing workforce AI adoption through browser-based visibility, endpoint agents, and MCP gateways. Joining him are Ross Young, co-host at CISO Tradecraft , and Johna Till Johnson , CEO and founder at Nemertes. Want to know: Why are enterprises still struggling with AI governance despite years of motivation to...
Feb 02, 2026•22 min
In this episode, Peter Worth , founder, president, and CEO at Athena Security , explains how their security operations platform addresses these challenges through unified detection and response. Joining him are Jason Taule , CISO at Luminous Health , and Will Gregorian , head of security at Galileo Medical . Want to know: Why are security teams still struggling with alert fatigue despite decades of awareness? How does security product fragmentation create blind spots in enterprise defense? What'...
Jan 26, 2026•22 min
In this episode, Franz Fiorim , field CTO at Trend Micro , explains how Trend Vision One consolidates multiple cloud security tools across AWS, GCP, Azure, Oracle Cloud, and Alibaba Cloud to streamline management, automate controls, and reduce integration overhead. Joining him are Nick Espinosa , host of the Deep Dive Radio Show , and Jason Shockey , CSO at Cenlar FSB . Want to know: Why do organizations still struggle with cloud visibility despite years of cloud adoption? How does Trend Micro r...
Jan 12, 2026•18 min
All links and images can be found on CISO Series. In this episode, Benny Lakunishok , co-founder and CEO at Zero Networks , explains how their automated approach to microsegmentation addresses these challenges by putting a network bubble around every asset, from clients and servers to OT devices and cloud resources, without requiring agents or breaking existing environments. Joining him are Shaun Marion , vp and CSO at Xcel Energy , and Doug Mayer , vp and CSO at WCG . Want to know: Why does com...
Jan 05, 2026•17 min
All links and images can be found on CISO Series. Traditional identity systems authenticate credentials and devices, but they can't verify who's actually behind them. Attackers use AI-generated IDs and deepfake videos to pass background checks, then clone voices to reset MFAs at the help desk. Identity has become the primary attack surface, and existing IAM platforms still trust the human layer far too easily. In this episode, Fernanda Sottil , Senior Director of Strategy at Incode Technologies ...
Dec 01, 2025•20 min
All links and images can be found on CISO Series . Modern application security has become a tangled mess of VPNs, proxies, DLP, CASBs, and remote browser tools—all creating friction for users and security teams alike. The root issue? Browsers were built for consumers, not enterprise security, forcing organizations to pile on complexity that undermines both protection and performance. In this episode, Braden Rogers, chief customer officer at Island, explains how their enterprise browser platform ...
Nov 17, 2025•16 min
Watch our demo with Imprivata on our site. In this episode, Chip Hughes , chief product officer at Imprivata , explains how the company addresses shared access management challenges with specialized solutions that prioritize both security and user experience. Joining him are Kathleen Mullin , former CISO at MyCareGorithm, and Howard Holton , CEO at GigaOm . Want to know: Why does shared access management remain such a persistent challenge across industries? What does Imprivata's solution actuall...
Nov 03, 2025•18 min
All links and images can be found on CISO Series. Identity has become the Gordian knot of cybersecurity. Threat actors no longer need to break in. They log in. As organizations manage increasingly complex ecosystems spanning cloud, on-premises, and hybrid environments, the challenge isn't just understanding who has access to what. It's about understanding how an attacker could chain together seemingly innocent permissions to escalate from an initially compromised user to full environment control...
Oct 27, 2025•15 min
All links and images can be found on CISO Series. Earning and maintaining customer trust has become increasingly complex as organizations struggle with manual, repetitive security review processes that frustrate customers and slow revenue cycles. Despite decades of talking about customer trust in security, companies still rely on outdated approaches like sending spreadsheets back and forth for questionnaires. The challenge isn't just about having strong security programs. It's how do you enable ...
Oct 20, 2025•20 min
All links and images can be found on CISO Series. Misconfigurations represent one of cybersecurity's most persistent and damaging vulnerabilities. Organizations often fall into the trap of deploying tools with overly permissive "permit everything" default settings, only to struggle with the operational overhead required to lock them down properly. Every configuration change away from these permissive defaults requires extensive testing and validation, creating what amounts to a prohibitive tax o...
Oct 06, 2025•16 min
All links and images can be found on CISO Series. Organizations excel at generating massive volumes of unstructured data through recorded meetings. The struggle lies in extracting value from it. The reality is that most of this data is never touch again after its created. The temporal nature of voice communication creates unique challenges. These conversations capture real-time insights and concerns that are highly valuable for immediate decision-making. But traditional data management approache...
Sep 29, 2025•17 min
All links and images can be found on CISO Series. In this episode, Rob Allen , chief product officer at ThreatLocker , explains how their Storage Control solution addresses these challenges by implementing program-level access restrictions that work alongside traditional user permissions. Joining him are Jonathan Waldrop , CISO-at-large, and Nick Ryan , former CISO at RSM. The conversation explores how ThreatLocker's endpoint-focused approach applies default-deny principles not just to what prog...
Sep 22, 2025•17 min
All links and images can be found on CISO Series. Asset visibility remains a persistent challenges in cybersecurity. Despite working on this challenge for decades, CISOs continue to struggle with knowing what assets exist in their environments, where they're located, and what risks they present. The problem has only intensified with dynamic cloud resources spinning up and down in seconds, APIs proliferating across environments, and third-party integrations creating complex dependency chain. Trad...
Sep 15, 2025•17 min
All links and images can be found on CISO Series. Most data breaches don't happen because attackers are geniuses. They happen because organizations give too much access to too many people for far too long. Despite decades of security frameworks and best practices, enforcing least privilege remains one of cybersecurity's most persistent challenges. The culprit isn't technology: it's politics. In this episode, Mokhtar Bacha , CEO of Formal, discusses how their granular privilege access management ...
Sep 08, 2025•19 min
All links and images can be found on CISO Series. In this episode, Simone Rapizzi , CSO at RedCarbon , explains how their AI-powered platform uses specialized models to automate threat detection and response while learning from each customer's unique environment. Joining him are Jonathan Waldrop , former CISO, and John Scrimsher , CISO at Kontoor Brands . Huge thanks to our sponsor, RedCarbon RedCarbon platform enables AI SOC: automates threat detection, incident analysis, and intelligence monit...
Aug 25, 2025•15 min
In this episode, Matt Hillary , CISO at Drata , explains how their AI-native trust management platform addresses these challenges by automating evidence collection from integrated systems and reducing manual effort by over 90%. Joining him are Mike Lockhart , CISO at EagleView , and Johna Till Johnson , CEO at Nemertes . We talk about how Drata's platform bridges the policy-execution gap through hundreds of out-of-the-box integrations, AI-assisted questionnaire responses that handle 90% of vendo...
Aug 18, 2025•20 min
SIEM costs are spiraling out of control for organizations. Increasing log volumes, longer compliance-driven retention requirements, and the habit of collecting everything "just in case," the list goes on. Traditional SIEM architecture forces painful choices between cost control and security visibility, with teams constantly fighting to keep log volumes down while still maintaining adequate coverage for investigations. In this episode, Cliff Crosland , co-founder and CEO of Scanner , explains how...
Aug 11, 2025•13 min
All links and images can be found on CISO Series Security awareness is critical to cultivate in your organization. But security awareness training can often miss the mark. Traditional training is slow and reactive. As deepfakes and LLM-enhanced attacks become common, organizations need training solutions that can adapt and provide relevant training. In this episode, Brian Long , CEO of Adaptive Security , explains how their platform provides engaging training that can be customized in a matter o...
Aug 04, 2025•17 min
All links and images can be found on CISO Series . Wire fraud and payment security remain persistent challenges for organizations, with the FBI reporting a 33% increase in BEC losses between 2023 and 2024. The complexity of B2B payment processes creates multiple attack vectors that traditional email security solutions can't fully address. In this episode, Shai Gabay , co-founder and CEO of Trustmi , explains how their platform connects the dots across the entire payment ecosystem to prevent frau...
Jul 28, 2025•16 min
Implmenting new technologies for the business is already a daunting task. Cloud and SaaS have made some of the implementation easier, but it also makes it easier to not fully comprehend the risks you're taking on. All it can take is a company credit card. Organizations struggle with shadow IT, misconfigurations, and unauthorized access across multiple cloud environments, often lacking visibility into their actual cloud assets. In this episode, Tyson Garrett , CTO of TrustOnCloud , explains how t...
Jul 21, 2025•16 min
Security orchestration sounds great in theory, but in practice, coordinating between different security tools remains a headache. As workflows need to move faster to keep pace with AI-driven attacks, security professionals find themselves overwhelmed with manual "muck work" rather than focusing on business enablement. In this episode, Matt Muller , field CISO at Tines , explains how their no-code workflow automation platform helps security teams eliminate manual work that bogs them down. Joining...
Jul 14, 2025•15 min
All links and information can be found on CISO Series. DLP can be a bit of a four-letter word in cybersecurity. False positives are a major problem with any traditional DLP solution because setting the right policy for your organization's needs is always a moving target. In this episode, Nitay Milner , co-founder and CEO of Orion Security , explains how they provide a "zero-policy" approach to DLP that brings in the missing piece of context to the category. Joining him are Steve Knight , former ...
Jul 07, 2025•19 min
Managing risk is the name of the game for a CISO. Quantification is a major part of that job, but it doesn't end there. Without a means of communicating that quantification to the rest of the business, quantification just adds to the noise. In this episode, UJ Desai , Senior Director of Product Management, Partner Programs at Qualys explains how they provide a comprehensive solution for the Risk Operations Center, with comprehensive ways to ingest data from your applications, make sense of the d...
Jun 30, 2025•16 min
Security teams today are expected to manage two fronts—building and maintaining proactive defenses, and staying ready to respond at any moment to threats that slip through. But unless someone actively watches those alerts 24/7, your detection tools are expensive noise generators. In this episode, Rob Allen , chief product officer at ThreatLocker , lays out why their Cyber Hero® MDR offering is built not as a standalone security strategy, but as a complement to a deny-by-default, proactively hard...
Jun 02, 2025•18 min
Large language models are most useful to your business when they have access to your data. But these models also overshare by default, providing need-to-know information without sophisticated access controls. But organizations that try to limit the data accessed by an LLM risk undersharing within their organization, not giving the information users need to do their jobs more efficiently. In this episode, Sounil Yu, CTO at Knostic, explains how they address internal knowledge segmentation, offer ...
May 28, 2025•17 min
Unauthorized site access remains a significant security concern for organizations. But why does this issue persist, and how can it be effectively addressed? In this episode, Rob Allen , chief product officer at ThreatLocker , discusses the core functionality of ThreatLocker's Web Control solution: blocking access to unauthorized sites without meddling with DNS servers—a common pitfall among other tools. Rob explains that the simplicity of defining where employees can and cannot access is pivotal...
May 19, 2025•15 min
Linux is the backbone of critical infrastructure, yet it often flies under the radar when it comes to endpoint monitoring. From legacy servers to embedded systems, Linux devices are frequently unprotected, either due to operational risk, overlooked assets, or the false assumption that Linux is "secure by default." In this episode, Craig Rowland , founder and CEO of Sandfly Security , introduces an agentless approach to EDR purpose-built for Linux systems. By operating over SSH and running rapid,...
May 12, 2025•18 min
