In our latest episode of the Future of Threat Intelligence podcast, David chats with Rafal Los, Head of Services Strategy & GTM at ExtraHop and the creative force behind the Down the Security Rabbithole podcast. Rafal discusses his journey from curiosity-driven exploration to a professional career in cybersecurity and the lessons he’s learned along the way. Rafal shares his extensive experience in cybersecurity, offering insights on transitioning from technical roles to strategic...

In our latest special episode of the Future of Threat Intelligence podcast, David chats with cybersecurity expert Jeff Man at the Black Hat conference. Jeff is the Sr. Information Security Consultant at Online Business Systems, and he shares his extensive insights on the evolving landscape of cybersecurity and the importance of fundamental security practices to protect sensitive data.  Jeff emphasizes the role of security evangelists in educating organizations and fostering a culture of...

In our latest special episode of the Future of Threat Intelligence podcast, Wade Wells, Cybersecurity Threat Detection Engineer & Expert at a Fortune 50 company, shares his insights from the Black Hat conference. He highlights the promising advancements in blue team technologies, particularly in AI applications and deception strategies.  Wade also discusses the importance of community networking for aspiring cybersecurity professionals and reflects on the lessons learned from recent...

In our latest episode of the Future of Threat Intelligence podcast, Krista Case, Research Director of Cybersecurity at The Futurum Group. Krista shares insights from recent research revealing that 50% of organizations plan to adopt new cybersecurity vendors in 2024, highlighting the evolving threat landscape and the expanding attack surface that organizations face today.  Krista also emphasizes the importance of resilience and strategic thinking for CISOs, providing valuable guidance on how...

In our latest special episode of the Future of Threat Intelligence podcast, Brett Stone-Gross, Senior Director of Threat Intelligence at Zscaler, joins us at the Black Hat conference. He shares their uncovering of the largest ransomware payment in history — $75 million — made by a Fortune 50 company to the Dark Angels group.  Brett explains the group’s unique approach, which involves stealing vast amounts of data without encrypting files, and their preference for low-volume, high-impact...

In our latest special episode of the Future of Threat Intelligence podcast, recorded at the Black Hat conference, we caught up with Jeffrey Wheatman, SVP, Cyber Risk Strategist at Black Kite. Jeffrey highlights the importance of aligning cybersecurity strategies with business objectives and understanding risk appetite.  He emphasizes the need for scenario planning to help decision-makers visualize potential risks and their impacts. Jeffrey also discusses the evolving landscape of cyber risk...

In our latest special episode of the Future of Threat Intelligence podcast, David catches Christopher Steffen, VP of Research, Information Security at Enterprise Management Associates, at the Black Hat conference. They discuss the current landscape of cybersecurity, emphasizing the need for CISOs to focus on foundational technologies rather than getting caught up in the hype of AI.  Chris highlights the value of open-source solutions in addressing real-world challenges like API and data...

In our latest episode of the Future of Threat Intelligence podcast, we speak with Drew Simonis, Chief Information Security Officer at Juniper Networks. Drew shares his insights into the evolving landscape of cybersecurity, emphasizing the crucial role of empathy and humility in effective leadership.  He also explores the transformative potential of AI in cybersecurity and offers practical advice on aligning security efforts with business objectives. Drew provides actionable insights, making...

In our latest episode of the Future of Threat Intelligence podcast, Andrew Gontarczyk, CISO at Pure Storage, dives into the world of cybersecurity leadership. Andrew shares his invaluable insights on the importance of blending technical expertise with a strong understanding of business priorities.  He recounts his professional journey, highlighting key lessons he’s learned along the way. Andrew offers unique value by addressing common industry pitfalls, the significance of effective...

In our latest episode of the Future of Threat Intelligence podcast, Joe Mariscal, Director of Cybersecurity and Compliance at Ryerson, shares his expertise in building hybrid cybersecurity teams and managing metals-industry-specific cyber risks. Joe shares invaluable insights from his extensive career, offering a unique look at the challenges and strategies within the metals industry.  He discusses the importance of specialized outside services, common oversights in cybersecurity practices,...

In our latest episode of the Future of Threat Intelligence podcast, Rick DeLoach, Deputy CISO at ADT, explores the transformative impact of AI on cybersecurity. Rick dives into the intricacies of how AI can simulate attack paths and bolster layered defense strategies, while also addressing the challenges of ensuring the accuracy and reliability of AI-generated data.  Additionally, Rick shares invaluable advice on the essential technical skills and soft skills, such as effective...

In our latest episode of the Future of Threat Intelligence podcast, Brian Palmer, Director of IT Security and Infrastructure at Ventas, Inc. highlights the critical importance of translating cyber risk into business language, making it comprehensible and actionable for executives and board members.  Brian shares his unique insights on balancing technical oversight with broader business objectives and the evolving challenges in cybersecurity, especially within the real estate sector. He also...

In our latest episode of the Future of Threat Intelligence podcast, Mikko Hypponen, Chief Research Officer at WithSecure, explores the transformative role of AI in cybersecurity. Mikko shares his expert insights on how automation is revolutionizing detection and response strategies, such as being able to detect, craft a response, test it, implement, and share the response across the globe in mere minutes.    He also discusses the ethical considerations surrounding AI, such as the...

In our latest episode of the Future of Threat Intelligence podcast, Matthew Bull, CTO and CISO at Elanco, shares insights on the unique challenges and opportunities of the life sciences industry, as well as those Elanco faced following its separation from Eli Lilly. He emphasizes the importance of practical application and hands-on experience in cybersecurity.  Matthew also talks about the necessity for proactive measures to tackle evolving threats. This includes using generative AI and...

In our latest episode of the Future of Threat Intelligence podcast, Cody Florek, Director of Information Security Operations at Sentry, offers his insights into the intricacies of building robust cybersecurity programs run by robust teams. He shares his unique journey from high school tech enthusiast to a seasoned security professional, giving excellent advice on balancing technology with human factors.  Cody also touches on understanding and managing cyber risk, and the necessity of...

In our recent episode of the Future of Threat Intelligence podcast, we talk with expert João Pedro Gonçalves, Global Chief Information Security Officer at EQT Group, about risk-based cybersecurity approaches, building security departments from the ground up, and the critical role of cybersecurity steering committees.  Pedro also talks about his journey in cybersecurity leadership and shares his insights on how security practitioners should aim to work with organizations that prioritize...

Welcome to the Future of Threat Intelligence, formerly known as the Future of Cyber Risk Podcast. As we evolve our focus towards proactive threat management, we’re excited to bring you more insightful content into the dynamic world of cybersecurity. In our latest episode, Noah Davis, VP & Chief Information Security Officer at Ingersoll Rand, shared his insights on the importance of business acumen in cybersecurity. He discussed his experience in various leadership and security roles,...

In this week’s episode of the Future of Cyber Risk podcast, David speaks with Joshua Brown, VP and Global CISO at H&R Block, who explains the importance of not being alarmist when raising risk concerns and avoiding leading a conversation with ”no.”  Joshua also discusses why storytelling is such a huge part of his role and shares some advice for cybersecurity professionals, including a reminder that technology is the enforcement mechanism for our solutions, not the solution...

In this week’s episode of the Future of Cyber Risk podcast, David speaks with David Lingenfelter, Chief Information Security Officer at PENN Entertainment. They discuss the challenge of securing assets that you did not create yourself and how evolving regulations have affected the gaming industry’s risk appetite.  David also offers his insight on the critical skills a successful security practitioner should have. He also explains his approach to educating employees on security when they...

In this week’s episode of the Future of Cyber Risk podcast, David speaks to Chris Copeland, Associate Professor & Director of the Institute of Homeland Security and Cybercrime at Tarleton State University, about the misconceptions of cybersecurity and how he prepares his students for a full career of learning.  Chris also predicts the trends of cybercrimes that will likely be around for good, for example how fraud has evolved into the data breaches and cryptocurrency scams of today. He...

In this week’s episode of the Future of Cyber Risk podcast, David speaks to Eric Adams, CEO/CISO at Federal Cyber Defense Solutions. They discuss what FedRAMP and FISMA are, how to use NIST as a roadmap to federal compliance, and what controls you need to implement for those requirements. They also talk about the need for vulnerability context and continuous monitoring, the importance of having leadership support behind your compliance efforts, and how AI will impact the future of security —...

In this week's episode of the Future of Cyber Risk podcast, David speaks to Nat Prakongpan, VP of Product at Cyberbit (formerly of IBM at the time of recording). They discuss the need for business resiliency in security programs, and why you shouldn't just focus on preventing an attack but on recovery after an attack as well. They also talk about why security teams need to practice their incident response so it becomes muscle memory, the importance of making backups quantum-safe, and the...

In this week's episode of the Future of Cyber Risk podcast, David speaks to Alexander Seger, Head of Cybercrime Division at the Council of Europe. They discuss how the Council of Europe is building capacity worldwide around cybercrime awareness, legislation, and enforcement, and how they're doing that through increased training. They also talk about new provisions making cybercrime prosecution easier, the nuances of the Budapest Convention, and advice learned from a career in...

In this week's episode of the Future of Cyber Risk podcast, David speaks to Joshua Scott, Head of Information Security & IT at Postman. They discuss the importance of security as more companies use APIs, and how better security improves reputation and trust with customers. They also talk about how practitioners can communicate more simply when dealing with other teams, why inventory is the biggest challenge to API security today, and the role of AI in the future of cyber risk.   Topics...