Down the Security Rabbithole Podcast - Archive

TL;DR: THANK YOU. I can't believe I'm dropping episode 700. It's been a journey since September 2011 - so many amazing and unbelievable guests, conversations, and life lessons. So much incredible content that ages like fine wine, thank you to my friends James Jardine and Jim Tiller for doing this thing. Thank you to all of YOU for listening, sharing, and rating us. This is the industry's premier podcast for all things related to our profession. Here's to another 700. YouTube video: ...

TL;DR: As I continue to post content recorded in Orlando at Zero Trust World 2026, I bring you a live recorded episode with Marcus Hutchins. It's an interesting discussion that is no doubt polarizing, but no less interesting. Enjoy! We are ONE EPISODE away from 700, thanks for being along for the ride! YouTube Video: (coming shortly) Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...

TL;DR: This week's guest is Alex Hutton - who has been leading security teams in high-stakes organizations for years and is bringing his experience to you. We discuss leadership, risk, and several leadership topics you'll want to take notes on. YouTube video: https://youtube.com/live/FRBbnWVyO_Q Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-...

TL;DR: On this episode of the pod, G. Mark Hardy joins Jim, James, and Rafal to talk about the precarious evolution of the role of the CISO. We even delve into the definition and purpose of risk, and find some there, there. YouTube video: https://youtube.com/live/_gpV4XilToc Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= YouTube home: ...

TL;DR: This week's podcast is live'ish from Zero Trust World 2026, put on by ThreatLocker. It's a lively conversation with their CPO Rob Allen who can't help himself but mess with my recording equipment. Shenanigans ensue. You'll love it. YouTube video: https://youtu.be/aOP6IT8OiDI Have something to say? Let's hear it. Show Sponsor: ThreatLockerAllow what you need, block everything else... Including ransomware.Disclaimer: This post contains affiliate links. If you make a purchas...

TL;DR: Is cybersecurity headed for a market meltdown? Are we watching the bubble pop? Patrick Dennis joins Rafal to give some observations, analyze and provide guidance on what's happening, and what's to come. Buckle that chin strap, it's going to get crazy. YouTube video: https://youtube.com/live/bhtvOSv48Jc Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...

TL;DR: We've all experienced it - either you're the one, or you know someone, who works themselves to death. Whether it's "part of the job" or part of the job - it always leads to the same end. Rebekah Wilke and Ryan Halstead join James and I to talk through a very timely and critically important topic from a leadership perspective. Big thanks to my guy Josh Jones for the excellent connection. YouTube Video: https://youtube.com/live/Adpyja9KIkU Have something to say? Let's hear it. Suppo...

TL;DR: This is one of the most relevant AI conversations, in the moment. Gadi Evron joins me to talk about how AI is not just changing everything, but how it's actually going to impact what you're doing - from security to everything else. Tune in, this is a critical conversation. YouTube: https://youtube.com/live/t48sX54QCwI Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...

TL;DR: What's it like to be an entrepreneur your entire career? Always trying something new, always doing something different? Ask Ran Nahmias, someone who's been around long enough to have done it all, and he's not done yet. YouTube Video: https://youtube.com/live/qngve0dmd7M Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= YouTube home...

TL;DR: Today, Julian Brownlow Davies rejoins the pod (Ep 688) to continue the conversation about 3rd party external security testing. It's strong opinions and tales of woe all around. Episode 688: https://dtsr.buzzsprout.com/2153215/episodes/18498795-dtsr-episode-688-looking-for-meaning-in-the-signal YouTube video: https://youtube.com/live/6ZCPNXR_5u0 Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=...

TL;DR: This week's guest is Matt Carothers who works at a major Internet provider. We talk about defending, strategy, and some of the interesting topics that come with the job. If you have Internet at home, or at the office, or on the go - this episode is for you. There will probably be a part 2. YouTube: https://youtube.com/live/tJcjtgn759g Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-...

TL;DR: Social media is corrupting our kids, radicalizing your neighbors, and being basically evil with no checks. This episode is an "off the rails" discussion on a not-so-clearly Cyber Security topic, with us diving deep and getting a little angry. Thanks to Kevin Thompson for joining us and sharing his qualified opinion as a dad and experienced Scout Master. YouTube: https://youtube.com/live/RXzAVG98T6s Have something to say? Let's hear it. Support the show >>> Please consider...

TL;DR: Grab your favorite note-taking thing, this week's pod features Julian Brownlow Davies of BugCrowd and it's chock full of things you'll want to look up. We tackle how red teaming and external 3rd party testing fits into a current security strategy, and how finding signal in the noise is just the beginning. YouTube video: https://youtube.com/live/aNz-qPmWf7g1 Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the sh...

TL;DR: This week's episode is a special one. I (Rafal) revisit episode 100 with the one and only Dan Geer. Some shows are "in the moment", some are timeless. This show is timeless. Dan's wisdom and insights are as applicable today as they were 12 years ago. Crazy, right? Fun story - I ran into Dan at Black Hat conference a few years ago and asked him what he would say is 'different' since we recorded that episode... his response? "My beard is longer". Solid GOLD. Listen in. Take notes. H...

TL;DR: On today's pod, Rob Allen of ThreatLocker makes his triumphant return to derail us straight into a conversation about legacy systems and why he's still supporting WindowsXP. Right, you read that right. A great conversation ensued, and I'm glad we were able to record this one. Enjoy. From us to you, thank you for following along this year, and we wish you a happy new year, and all the best in 2026! YouTube video: https://youtube.com/live/dFO1NTo1MGc Have something to say? Let's hea...

TL;DR: In part 1 of 2, Gadi Evron joins the show and chats with Jim and Rafal on the topic of the "AI Cataclysm". What does that even mean? Listen in - but it's part to do with how AI is changing the attacker model (level of effort, expertise required, timeline) and what defenders should start to think about. Part 2 is coming soon, standby. YouTube Video: https://youtube.com/live/izX0jOUpKJM Have something to say? Let's hear it. Support the show >>> Please consider clicking the ...

TL;DR: This week's show features Aaron Costello, and is all about an analog from real-world attacks on humans, applied to AI "agents". I know what you're thinking - computers are supposed to be more difficult to trick, right? Right... no. Attacks such as this where computers try to be "helpful" (just like humans) are probably more common than we'd like to think. Give this a listen, it's a hoot. YouTube video: https://youtube.com/live/fM88jSkamDQ Have something to say? Let's hear it. Su...

TL;DR: On this episode, it's just Jim and Rafal talking about how sometimes you just need to take a big step back from your day job and touch some grass. Our chosen profession is, demanding, to say the least. So let's take a minute to acknowledge what we're really thinking. Unfiltered, raw, and straight from our heads to your ears, enjoy. YouTube video: https://youtube.com/live/ULTq1pzckFg Have something to say? Let's hear it. Support the show >>> Please consider clicking the li...

TL;DR: This week's pod features a conversation with the Jay Jacobs, whom had previously been on the show talking about this very topic (vulnerability ranking/scoring) many, many years ago. If you missed Episode 297 check it out, it's crazy how far (or not) we've come since that conversation. YouTube Video: https://youtube.com/live/cpL9ZYbwkes Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-...

TL;DR: John Rafal & Jim as we welcome Dustin Lehr to talk about the state of AppSec and how we got here. We discuss vulnerabilities, accountability, culture, and a host of other things. It's a caffein-fueled episode, so buckle in! Youtube video: https://youtube.com/live/yoBIQ_sIawI Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= YouTube ...

TL;DR: We heard RSnake's take on CVSS and CVEs and such, now let's hear Brian "Jericho" Martin's take. The gloves are off, and the opinions go native when we take this episode live. Brian doesn't pull any punches, and apparently I'm the only one without a pocket full of $2 bills? Sorry for the explicit rating, that's Brian's fault. YouTube Video: https://youtube.com/live/2-3Jzks5myc?feature=share Have something to say? Let's hear it. Support the show >>> Please consider clicking...

TL;DR: Patching. Your least favorite thing. Well, it turns out that most of the work we have been doing in the last 20+ years has been for nothing. Robert "RSnake" Hansen's theory, backed by a lot of data, seems to point to a much bigger problem in cyber, and it's time we talk about it. Rob's Closing Keynote that started this conversation: https://youtu.be/80ZtAsuC4v4?si=-liUcLX4adz092yP YouTube Video: https://youtube.com/live/k4kvKWZVh78 Have something to say? Let's hear it. Support the...

TL;DR: This week's pod features your favorite hosts reflecting on how security has lost its way. When everything is a catastrophe, nothing is. When every breach is world-ending, none of them matter. Have we completely lost the plot? Prepare to have a good think. YouTube Video: <coming soon> Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...

TL;DR: On this week's pod - Sean Scranton and Shawn Tuma make a return appearance to talk about Cyber (Security) Insurance. Some see it as the answer to cyber's problems, while others see it as just another question. Which is it? Is it just a matter of perspective? Listen in and find out! YouTube Video: https://youtube.com/live/GiuheFiFO78 Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-...

TL;DR: This week's pod is all about healthcare-related data that is bought and sold the world over - and how you this data can be utilized while still preserving privacy. In this mind-blowing segment, John Kuhn of Integral joins Jim and I to talk about the vast quantities of data that's bought, sold, and aggregated for healthcare research - and how it can be used for good, while still preserving people's privacy (or what's left of it - debate ensues). YouTube Video: https://youtube.com/l...

TL;DR: If you've ever wondered what goes through the mind of a top-tier CISO, wonder no longer. This week's episode features Trey Ford talking a little nostalgia, and a little of what's on his mind as a CISO. Fantastic episode, shout out to BugCrowd for the episode. Youtube video: https://youtube.com/live/uFl45Tb93gY?feature=share Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...

TL;DR: Let's talk, err, lament, Third Party Risk programs. Who has time for these, and is there any real value in identifying 3rd party risks? Or is it just all theater for the lawyers? Paul Farley joins Jim, James and Rafal to chop it up. Dive in with us, and see what you think. YouTube Video: https://youtube.com/live/Le23nkaybfE Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-...

TL;DR: This week's episode is what happens when I go on vacation and have a little time to think. So here we go - let's talk about this Jaguar Land Rover was compromised and ransomware spread. The damage has been 'extensive' to the point where they stopped everything... are there any lessons here? Links https://www.theguardian.com/business/2025/sep/20/jaguar-land-rover-hack-factories-cybersecurity-jlrhttps://www.theguardian.com/business/2025/sep/20/jaguar-land-rover-hack-factories-...

TL;DR: This podcast features our friend Bo Birdwell who sits down with us to explain the ins and outs of the new DFARS CMMS update. Jim and Bo cover a lot of ground, and James and I are along for the ride asking questions. Great episode if you're in the space, worrying about what this latest update means to you. YouTube Video: https://youtube.com/live/0cl1S4f3g8E Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=...

TL;DR: This week's returning guest is Doug Cavit, but this time he's here to talk about the Internet apocalypse. Partly driven by AI, but mostly we discuss automated content generation, bots, and consumption as we reach the conclusion that it's all coming crashing down... sooner than we'd like. YouTube Video: https://youtube.com/live/tUJgdrh3ws8 Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-...

TL;DR: Michael Reichstein joins the pod this week to talk about "rock star CISOs" and those who trade equity for their souls. It's an interesting discussion but this one comes with a warning label: If you're easily offended, do not listen to this. Michael's post that started this conversation: https://www.linkedin.com/posts/mreichstein_cybersecurity-leadership-businessethics-activity-7361753110983135233-YSct YouTube video: https://youtube.com/live/N1mD_HLYDxU Have something to say? Let's he...

TL;DR: This week's pod features our favorite former analyst Anton Chuvakin, and an AppSec OG Jeff Williams as we tackle the subject of AppSec's favorite new acronym - ADR. What is it? Why is it? Should it be? We answer all these questions and more, and laugh along the way a bit too. YouTube Video: https://youtube.com/live/69xeGDoDYbU Links Contrast's latest threat report (referenced in the show)An in-depth ADR Explainer (helpful!)Run-Time Security Explained (for those wanting to learn more)Ha...

TL;DR: This week's returning guest is the man, the myth, the Alpaca farmer, Philippe Humeau of CrowdSec. Life comes at you fast, threats come at you faster. The good news is - defenses can keep up. Listen in, then go check out CrowdSec! YouTube video: https://youtube.com/live/7Xc99bXCfwQ Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Y...

TL;DR: This week's guest is Dr Sam Liles - who's been CISO'ing since most of us have been in the industry. Sam gets it, and he has some perspective on what's going on with all this market consolidation. What is it good for? He's got some things to say, and he's not shy about it. YouTube: https://youtube.com/live/ROEA6z5Q-sk Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...

TL;DR: This week's show is a testament to surviving a week of Hacker Summer Camp out in Las Vegas. I have an interview with Ray Canzanese, Jr. (again, because y'all love him) and a bit of my take-away / rant from the week I spent out in the desert. Enjoy, I hope you made it home safe and learned something. Good God it was hot. YouTube Video: ( standby, waiting on me to edit ) Thanks again to my friends at Netskope! Have something to say? Let's hear it. Support the

** Early release, due to Black Hat Conference and RaffCon XVIII. TL;DR: This episode is all about #RaffCon. Ever wanted to know what the heck it is? Well, Raffael Marty and I break it down, give you a little history, and reminisce. As we got into Black Hat week, this is the perfect precursor to #RaffCon XVIII. YouTube video: https://youtube.com/live/jwArV_EwuZc Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the sho...

TL;DR: This is one of the most important episodes we've done on this podcast. The CISO and CIO have a complicated, dynamic, and often ugly relationship - but what should it be like? How can the two work together and evolve their roles together, for the benefit of everyone in the business? Larry Whiteside, Jr. ( Co-Founder and President at Confide) and Dennis McDonald ( Chief Information & Security Officer at Jack Henry ) lay down a conversation that's worth a repeated listen. YouTube...

TL;DR: This week's conversation is all about the Customer Success team featuring Nick Puetz and Steve Dakhe. These guys have significant seat time building, operating, and perfecting the CSM role - and we're here to talk about it. What is a CSM? Why do they exist? And what is their role in customer engagement? Listen in, find out! YouTube: https://youtube.com/live/lCen-1Vt_K8 Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to su...

TL;DR: This week we took a sit-down with serial entrepreneur, Will Gragido. Will has been a part of several innovative start-ups, and is now onto his next one. He's a product innovator with a pragmatic sense of what customers need, and he's here to give you the run-down of what drives him, what got him here, and things you should think about if you're thinking of setting off on your own. YouTube video: https://youtube.com/live/qkAi6Nj8kII Have something to say? Let's hear it. Show Sponso...

TL;DR: Did you miss us? Yes, we're back with Sam Masiello and we're talking about whatever is on his mind. Well ...there's geopolitics and Iranian hackers and frankly we need to talk about what it means for your security program. Thanks for joining us, Sam! YouTube Video: https://youtube.com/live/H-4ZktBIUDE Have something to say? Let's hear it. Show Sponsor: ThreatLockerAllow what you need, block everything else... Including ransomware.Disclaimer: This post contains affiliate links. If ...

TL;DR: This week's episode came from my (Rafal) brain. I've been reading far too much LinkedIn, and the "influencer" postings have been making me crazy. So, here we are. We talk through some of these posts, many of which are AI generated I think, and have a little fun with it. Call it...therapy. YouTube Video: https://youtube.com/live/uZVfkge8bQE Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=...

TL;DR: On this episode, part 4 of our AI series, we are once again joined by Raja Mukerji, Jeff Collins, and John Dickson to discuss what it means to think about security for AI. Is it something completely different? Is it something same-'ol? Or - is it a bit of both. And what aren't we thinking about when it comes to securing AI? YouTube video: https://youtube.com/live/vUJIOrX0kHc Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above...

TL;DR: This week I bring John Dickson back to join Jeff Collins and Raja Mukerji as we talk through the following: What can AI do, for cyber security, that we can't do with current tools?What is the model for incorporating AI into cybersecurity - are we replacing people? augmenting people? both? neither?Where is AI the strongest in these use-cases today, and where is the promise for 12 - 36 months out?What are the LIMITATIONS for AI in cybersecurity? Are these short-term limitations, or long-...

TL;DR: This week John Dickson returns to go deeper down the AI rabbit hole with special guest Erik Bloch as we dive into a more technical explanation of AI, how this innovation differs from other similar concepts, previous tech innovations, and some of the commercial vs consumer use-cases where AI is best suited. It's a deeper discussion, and we will for sure have a part 3, and likely 4 coming soon. YouTube video: https://youtube.com/live/QXi6ed2NKhc Have something to say? Let's hear it. Supp...

TL;DR: So - Artificial Intelligence (AI)...incomprehensible good, or catastrophic evil? Both? And what does that depend on? This episode is the start of a series wherein we explore the potential good or bad of AI, what the dependencies are. and what kinds of branches of discussion there could be. Join us as we discuss a generational topic, with some of our best guests starting with John Dickson. Required listening: Episode 654 w/Sounil Yu ( https://dtsr.buzzsprout.com/2153215/episod...

TL;DR: This week's episode asks the question - is it possible to give AI "discretion" (which feels like a uniquely human concept)? And if so - what would that look like, and how can this help a society that's hurling headlong into an AI future from destroying secrecy as we know it? Sounil Yu from Knostic joins Rafal & James to think through the problem - complete with visuals! If that sounds a little dramatic, you'll enjoy the episode, because this problem is very real and those outside s...

TL;DR: On this "live on the scene" episode from Zero Trust World 2025 sponsored by Threat Locker - I have the distinct pleasure to speak with Rich Latayan about his career leading big-company security programs as CISO and his current endeavor. YouTube: <coming soon> Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= YouTube home: https://...

TL;DR: As per the usual, this year's RSA Conference 2025 wrap-up is with my friend Ray Canzanese, Jr. We sit in the beautiful sunshine atop the Moscone Center (gardens) and have an interesting, conversation about a number of interesting topics not the least of which is the puppies and baby goats at this year's event (well played, vendors, well played). YouTube Video: https://youtu.be/LSdEMlKRZmw Have something to say? Let's hear it. Support the show >>> Please consider clicking the l...

TL;DR: Sometimes LinkedIn gives us an opportunity to record something meaningful - and in this episode we find a conversation with Ross Hosman's perspective on how to address the strained relationship between buyer and seller, CISO and vendor - in a meaningful way that you'll hopefully benefit from. Sales people, take notes. CISOs ... you too. YouTube video: https://youtube.com/live/e_SbcB2ZsD8 Have something to say? Let's hear it. Support the show >>> Please consider clicking the ...

TL;DR: This episode is a follow-up on two episodes, building up to this conversation. On episode 629 Hed Kovetz introduced us to "Identity Security" (https://dtsr.buzzsprout.com/2153215/episodes/16174464-dtsr-episode-629-what-the-hell-is-identity-security) and then on episode 646 Ward Pyles started the conversation about how security tools really aren't set up to protect from the identity perspective (https://dtsr.buzzsprout.com/2153215/episodes/16854549-dtsr-episode-646-ward-pyles-on-hu...

TL;DR: This week's guest is BugCrowd's founder Casey Ellis. Casey's a pioneer in the security space and has some tremendous insights on how he started his business and what the future holds. Casey explains why it's important to think like a criminal, and why the 'locksmith' version of a hacker (versus 'burglar') is so important to today's security programs. YouTube video: https://youtube.com/live/8BLGfUqbOKQ Have something to say? Let's hear it. Support the show >>> Please consi...

TL;DR: This week we're joined by the one and only Mike Privette - to talk about the market forces pushing and pulling cyber security's momentum. Whether you're into startups a la VC funding, or looking to refurbish companies a la Private Equity - this conversation is an analysis of the market from someone who knows a thing or two about the whole game. Oh yeah, and Mike writes this Return on Security newsletter you need to subscribe to. YouTube video: https://youtube.com/live/wq0KlteA1bU Have ...

TL;DR: If you're deciding whether to listen to this episode - let me help you - YES. This episode is about the application of AI to one of the most difficult problems facing security teams - what and where is my most sensitive information? Face it, you have no idea - and maybe, just maybe, AI is part of the answer. Shiran Bareli joins Jim and Rafal to talk it over, and it's a doozy. YouTube Video: https://youtube.com/live/nhn6Q75syjk Don't forget to check out the after-show segment,...

TL;DR: This week Ward Pyles joins Jim Tiller and myself to talk about a relatively unremarkable topic - people-centric security. We've talked about it a bunch but it's not until this episode that something finally clicked in my brain. When Ward talks about the data that security needs - see if you can pick it up too. Also - I'm trying some new bonus content - the "After Show" which is a 2-5 minute post-show bit where we post what's said after the recording (usually) stops. I hope yo...

TL;DR: This week's episode is a sit-down in person at Zero Trust World 2025 (sponsored by ThreatLocker) with Ryan Benner. Ryan's the caretaker of "anything that powers up", as he puts it, which means this small organization's security is also his responsibility. So how do you do it with next to no staff, and on a small budget? And how do you even begin to "Zero Trust" your network? Listen in. YouTube Video: https://youtu.be/JUMcWFNsVaA Have something to say? Let's hear it. Support the show ...

TL;DR: This week's episode shifts the focus from leadership in the enterprise, to leadership in the vendor space. Building security products that innovate, inspire, and meet market and customer demand is far from trivial. Meet two of the best in the business - Arash Marzban and Bryan Lares - and hear what makes the job exciting, and how they make it great. YouTube video: https://youtube.com/live/wA9-vgusyI0 Have something to say? Let's hear it. Support the show >>> Please...

TL;DR: This week's podcast features the wisdom and wit of Merlin Namuth - currently serving as the CISO for the city & county of Denver. Merlin provides insights into how he views the first 90 days of a CISO's role with a new organization, frameworks and processes he goes through to get his bearings and start a successful residency. YouTube Video: https://youtube.com/live/8y7bsKlBBXE?feature=share Have something to say? Let's hear it. Support the show >>> Please consider clicking...

TL;DR: This episode was recorded live from Zero Trust World 2025 in Orlando, FL sponsored by ThreatLocker. Chase Cunningham joins after finishing an epic keynote where he eviscerates security dogma and the repeated stupidity of the Cyber sector. Chase & Rafal discuss Zero Trust, implications, implementation, and value. YouTube: Big thanks to ThreatLocker for hosting Zero Trust World 2025 - can't wait to get back next year! Have something to say? Let's hear it. Support the show ...

TL;DR: On this episodes we welcome Kevin Fielder, CISO @ NatWest Boxed & Mettle, Advisor, investor, Coach, and speaker to talk about building guard rails and principles to minimize security's negative impact on business and technology while raising the bar for attackers. YouTube Video: https://youtube.com/live/xYPdHkUW0TQ Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...

TL;DR: This week is a real treat! Eva Georgieva - a seasoned cybersecurity automation engineer - joins me, James, and Jim to talk about automation in cyber. We talk about challenges, what to automate first, good versus bad automation, and even get a little practical. YouTube: https://youtube.com/live/lA20Mgl3AxE Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=...

TL;DR: This week's episode features a long-time-coming discussion with Richard Bird discussing his book "Famous with 12 people", and the "influencer culture" in cybersecurity. It's an interesting discussion on how our industry works, and who makes it really turn. YouTube: https://youtube.com/live/hk42GbjzDZQ?feature=share Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-...

TL;DR: This week's episode is all about a growing issue in CyberSecurity (and I'm sure it's there in other disciplines as well) - "specialization" or more to the point "over-specialization". Why is it a problem? Matt Shufeldt, a returning guest and friend of the pod, joins us to talk about it and suggests some ways we can avoid the giant iceberg we're careening into. YouTube: https://youtube.com/live/q_3uYcdYaw4 Have something to say? Let's hear it. Support the show >>> Please consi...

TL;DR: On this episode Amanda Berlin, Senior Product manager at Blumira, joins Jim and Rafal to talk about her career, the second edition of her book, and building products for SMBs that "don't suck". The unfortunate fact is that there aren't a lot of products designed for the unique challenges of companies that can't afford an army of security analysts, or consultants. YouTube Video: https://youtube.com/live/rvXqjBU5M4k Have something to say? Let's hear it. Support the show >>&gt...

TL;DR: Kayla Williams, CISO of Devo, joins Rafal & James on this episode to talk about her career path, the importance of the "financial perspective" and the need for well-rounded security leaders who understand business first and foremost. A wonderful episode for leaders and those who want to be. YouTube Video: https://youtube.com/live/axl8V-ayMjU Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-...

TL;DR: Oh boy. Welcome to 2025, and the first podcast of the year is off to a flyer. Robert "RSnake" Hansen & Patrick Dennis join Jim and I to talk about "trust" - and we touch on everything from AI to politics and everything in between. What state is trust in, and why is it really bad? And ... now what?! Required background reading: Patrick's original post: https://www.extrahop.com/blog/how-brittle-is-trust-in-an-era-of-continuous-compromiseMy hot-take on current state of trust: ht...

TL;DR: On this lengthy and very informal episode of the podcast, James, Jim and I close out the year with James Robinson (CISO of Netskope) and Rock Lambros (Founder of Rock Cyber, and Author) as we discuss a wide range of topics you're going to have to listen in to get the details of. Wrap up 2024 by joining us for the EOY episode, and spread the new year cheer. YouTube Video: https://youtube.com/live/kT3FmXKsz5E Have something to say? Let's hear it. Support the show >>> ...

TL;DR: On this Christmas episode of the podcast, I (Rafal) get together with two of my team from back in the Optiv days - Mark Arnold & MacKenzie Brown - to talk about some of the things we accomplished, and the need to perhaps resurrect some of our work. We have a little fun along the way, too. YouTube Video: https://youtube.com/live/Y5NHMo69T1E Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=...

TL;DR: This week is a special show - where Raja Mukerji (Co-Founder, Chief Scientists at ExtraHop), Paul Farley (Field CTO, TrustedSec), and Anton Chuvakin (Security Advisor at Office of the CISO, Google Cloud) join Rafal, James, and Jim to talk about the honest politics of "the operations part of security". Whether you call it SOC, Security Operations, Cyber Defense Center, or whatever - what it does, how it functions, and how it's measured matter. We discuss and debate. YouTube Video:...

TL;DR: If you've ever wondered what kind of skill, scale, and engineering goes into building carrier-grade (and bigger) infrastructure this episode is for you. Joe DePalo (Executive Vice President & Chief Platform Officer at Netskope) joins Jim & Rafal to talk about his time building some networks that just blow our minds. You'll enjoy this episode if you're into networking. YouTube Video: https://youtube.com/live/U2UwSYdX1UM?feature=share Have something to say? Let's hear it. Suppor...

TL;DR: Our guest this week is Marcus Carey, who wrote a piece (with one heck of a clickbait title, as he admitted) that calls out the biases we see in algorithmic (or "AI") processes. The panel including Rock Lambros and Jeff Collins discusses where the trouble lies, how it manifests, what can be done about it, and what's next. YouTube Video: https://youtube.com/live/dopwV5Z2VdM?feature=share Marcus's original post: https://www.linkedin.com/posts/marcuscarey_artificial-intelligenc...

TL;DR: New intro alert! On this episode, we welcome Hed Kovetz from SILVERFORT - a company in the "identity security" space. If you're scratching your head and asking "what the hell is identity security?" - this episode is for you. We asked the same question, and Hed walked us through it. A wonderful primer on Identity Security for security professionals. YouTube Video: https://youtube.com/live/6r0fCs_me9I Have something to say? Let's hear it. Support the show >>> Plea...

TL;DR: Join us on an adventurous conversation in the wild and wacky world of endpoint security. At a time where evolution seems to have come to a standstill, there are things going on you may not be aware of. Endpoint security doesn't have to suck - this conversation with Rob Allen (Chief Product Officer at ThreatLocker) may give you some new hope, or at least make you chuckle at Rob's "emotional support microphone". YouTube video: https://youtube.com/live/yXAbCM_YgU4 Have something to say? ...

TL;DR: On this spicy episode where returning guest Erik Bloch joins us, we host Lee Kushner to talk about the talent gap. Is there a talent gap? Who's to blame for the mess we're in right now? And of course, what to do next? For anyone who's job hunting, trying to understand the cyber job market, or trying to hire... this episode and conversation is for you. Sorry about the intermittent audio issue, I think it was a weird echo I couldn't quite pin down. YouTube Video: https://youtube.com/liv...

TL;DR: Today, the podcast takes a meeting in the finance department with Patrick Dennis - current CEO of Avaya and friend of the podcast. Patrick has extensive experience in investments in both tech and beyond, and he's here to dispense some wisdom, caution, and insights. --> This podcast is packed with information that you can't afford to miss. YouTube Video: https://youtube.com/live/J3FQrTuY7KU?feature=share Have something to say? Let's hear it. Support the show >>> ...

TL;DR: On this week's episode, Jim, James, and I sit down to a Halloween "scary story" episode. You know the feeling... that sinking feeling of dread when you can't quite put your finger on what's wrong but something is definitely wrong. Something scary, and nefarious is happening... and usually it's coming from inside the house! YouTube Video: https://youtube.com/live/BHRX0hi5CHQ?feature=share Have something to say? Let's hear it. Support the show >>> Please consider clicking ...

TL;DR: This week on the pod, Kevin Clark joins James and I to talk about his career, how his walked his journey to a successful security leader (spoiler alert, it's another roundabout path), and what we generally think of "security awareness month". Great conversation and I think you'll agree, we need Kevin back again soon. YouTube Video: https://youtube.com/live/0KiUwC0RzRQ Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to su...

TL;DR: Erik Bloch and Anton Chuvakin join James, Jim, and myself to talk about why security metrics in the SOC ....suck. It's an interesting predicament, and one I'm sure Anton has been ranting about since he first got his 486/DX2 66. Or maybe not. It's an interesting topic because if we're measuring crap, that means something. Or does it even matter? Link to Erik's epic post: https://www.linkedin.com/posts/erikbloch_tinkertribe-secops-soc-activity-7245132473355919360-5v_B?lipi=urn%3Ali...

TL;DR: This week's episode is a special one. I've been a fan of Security Onion for a long, long time and this week Jim Tiller and I welcome Doug Burks its creator to the show. Doug gives us his story of how he started the iconic security platform and where it's going next. Don't miss this sit-down that's been far overdue. Congrats to Doug and his team on the longevity and continuing to push the envelope. YouTube video: https://youtube.com/live/25ahe0k58N4 Have something to say? Let's hear it...

TL;DR: This is part 2 of the two-part episode with Jason Clark and Nathan Smolenski on data protection. In this episode we tackle the options and solutions to the problem we face - and why (just this one time) AI may be the only way forward. Interesting possibilities, and some real solutions. Don't miss our thee for episode 2 - "Hawaiian shirt day", on the video stream. Jim Tiller and I host this one, we hope you enjoy it. YouTube Video: https://youtube.com/live/SA53S0OpnZ4 Have someth...

TL;DR: This week Jason Clark and Nathan Smolenski join Jim Tiller and I on part 1 of a 2-part series on data security. It's a topic whose time has come, and we're going to start in part 1 with fully analyzing the problem, how we got here, and just how ugly the beast is. YouTube vide: https://youtube.com/live/Qps-4NSEI-4 Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-...

TL;DR: This week's episode features Aaron Bray, CEO of Phylum. We use this episode as a complete primer on SBOM (Software Bill of Materials). We cover the typical "lot of ground" but try to answer the question of what SBOMs are, how they're useful, and what you as practitioners can do now that you have them. YouTube video: https://youtube.com/live/KHiDJt8SnZ0 Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! ...

TL;DR: This week's episode sees the return of Mr Jeff Collins (of WanAware fame) as we talk over the long-prophesied death of vulnerability scanning. Maybe. What does the cloud have to do with the demise of vulnerability scanning? Listen and find out... I think you may find this relevant. This time, YouTube Video, is required viewing...trust me on this. YouTube Video: https://youtube.com/live/U3BsGXRV0L4 Have something to say? Let's hear it. Support the show >>> Please conside...

TL;DR: This week, part 2 of the SAP ("Critical Enterprise Apps") discussion where Tom Venables & Jay Thoden van Velzen get a little more in-depth on what it takes to secure SAP and ensure that there's more than just a firewall between imminent disaster and your business. Jim TIller guest-hosts this in-depth episode, and we invite you to grab a notepad, and take some notes! Part 1 is here, listen to it first. YouTube Video: https://youtube.com/live/iH_mg4Hu0tc Have something to say?...

TL;DR: This episode is a "walk-around" episode, where I walked around Black Hat 2024 and ran into some friends to talk about what we're seeing, anything that caught their attention, and some other interesting insights in short-form recordings. I hope you enjoy listening to Lamont Orange, Aaron Bray, Alex Humphrey, and Rick Holland as much as I enjoyed the conversations. No video for this episode. Have something to say? Let's hear it. Support the show >>> Please consider clicking the...

TL;DR: Have you ever wondered what it would be like to be responsible for security for an entire county? That job encompasses a massive amount of responsibility - but I'll let Doug Cavit, the CISO of Snohomish County, Washington tell us about it. What a resume, and what an incredible job Doug has. YouTube Video: https://youtube.com/live/selNfh5gQAU Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-...

TL;DR: This episode was one of our awesome LinkedIn Live episodes - if you missed it, join us on LinkedIn and never miss another! On this one, James Robinson (CISO at Netskope) talks with Rafal and James with guest-host Jim TIller about the possibilities we have with SaaS, data protection, and the whole mess we've made over the last 20+ years of "data everywhere". Big thanks to Netskope for providing the excellent James Robinson onto the show! YouTube Video (if you prefer YouTube): http...

TL;DR: Today's episode is all about how we can build better software and systems - from a supply chain perspective. Tim Miller joins us, and it starts as a general conversation but we quickly dive into the world of software development. There's a lot to talk about here, starting with this XKCD that explains it perfectly: https://xkcd.com/2347/ YouTube video: https://youtube.com/live/XOMl_Hp8q_Q Have something to say? Let's hear it. Support the show >>> Please consider clicking the l...

TL;DR: I bet you don't generally think about the software that actually runs the business when you're thinking security. In this episode, we tackle the security of SAP systems - the most popular business software on the planet - from some experts who tell us what we're missing. There's a lot to unpack here, and I bet you're not thinking about much of this, if any... I know my team wasn't. This is vital information. YouTube video: https://youtube.com/live/q8j6pkFXxeM Have something to sa...

TL;DR: This week's episode features someone you've probably known for a while, without actually knowing him. Bob Brandon talks about his journey through publishing the wildly successful CSO Magazine (now an online publication) and being close the the CISO world for a long time. He has a great story to tell, so listen in, and enjoy. YouTube video: https://youtube.com/live/WafXp6xPpBY Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to...

TL;DR: This week's guest is here to talk about Zero Trust... in a practical way. We're talking with Rob Allen of ThreatLocker about zero trust from a way you may have not thought about before. It's an interesting conversation and a piece of a much larger puzzle ... but from a practical standpoint, this may be the best actual place to start. Do you agree? YouTube Video: https://youtube.com/live/cgADamn2oQQ Have something to say? Let's hear it. Support the show >>> Please consider cli...

TL;DR: This week on the pod, Jonathan Rau joins to talk about SIEM. The thing we all lover to hate on, that thing that's been declared dead, and yet it's on its umpteenth incarnation. What does the future hold? Why is it still an investment organizations make? What makes it a good versus bad use-case? Tune in, find out. YouTube video: https://youtube.com/live/FtCjMo_gDDc Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the...

TL;DR: Friend of the pod, Karim Hijazi of Vigilocity, joins Rafal this week to talk about the state of ransomware, its "families", proliferation and motivations. It's a dark picture that's getting darker as it all evolves. Karim also provides some data-driven insights you can even investigate for yourself, check this show out on the video stream for more complete insights. YouTube Video: https://youtube.com/live/wgUzYp-bl90 Have something to say? Let's hear it. Support the show >>> ...

TL;DR: This week is part 2 of the 2-part series on "Outsourcing your security" with Paul Farley. Paul's expertise in this space means you should be taking notes! On this second part, we dive into how you can pick an effective model for your use-case (we talk through a few of the available models out there), how to effectively implement an MSSP, and then how to measure success. Guest host Jim TIller joins us again, too. YouTube video: https://youtube.com/live/FkyJPmZikmc Have something to say...

TL;DR: James and I spent a few minutes dissecting the high-level of a GAO report (Government Accountability Office) ...perhaps ironically named... that is awful in so, so many ways it's ridiculous. Listen in, comment with your thoughts. YouTube Video: (TBD) Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= YouTube home: https://youtube...

TL;DR: This week Paul Farley, Deputy CISO of NCR Voyix joins myself, James, and Jim TIller to discuss outsourcing security in a modern company. We talk through a bit of history, some requirements for a good MSP, and the good and bad of the last couple of decades of MSPs. YouTube video: https://youtube.com/live/QzQFXyVcDSo Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-...

TL;DR: Justin Foster is back (and James is out) with guest co-host Jim Tiller as we talk through network-based access control from the "old days" through today's modern approaches. What worked, what didn't, what we tried, and how far we've come. Give it a listen! Also ... if there's any episode you watch the video of - it has to be this show for that beginning piece...wow Jim really nailed it. YouTube video (a must-see): https://youtube.com/live/EuUUeOzH_nE Have something to say? Let's hear ...

TL;DR: This week's episode is part 1 of ... (I'm not sure) in a series of conversations about that old, boring, yet remarkably relevant topic of "Access Control". We pull in Justin Foster and guest co-host Jim Tiller to talk through the topic and set up a few follow-up episodes. Maybe more than a few, who knows? YouTube video: https://youtube.com/live/m-4lJHQDaZQ Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above to support the show! -...

TL;DR: Sitting atop the Moscone Center North, I met up with Mark Simos and we talked through his impressions and our overall analysis of RSA Conference 2024. Some interesting observations, particularly about the "3 conferences" Mark observed. Sorry, no video this time, but you do get the eloquent "caw!" of a crow that sat overhead and yelled at us for about half the show. Enjoy! Have something to say? Let's hear it. Support the show >>> Please consider clicking the link above ...

TL;DR: This episode is a recap (my recap) of RSA Conference 2024. I wrote up a brief post on LinkedIn on my way out of town (linked here: https://www.linkedin.com/feed/update/urn:li:activity:7194698322790547456/ ), and now I'm doing a full episode of thoughts and interviews from the show. You get some commentary, and then interviews with Adam Cullin, Kristin Demoranville, Ray Canzanese, and Aaron Bray. Enjoy the episode, and cheers! (No video with this one, sorry...maybe next year) Have...

TL;DR: -> 2hr party-line episode This feels surreal, as I write this, that DtSR is pushing episode 600 out to your ears right now. I couldn't possibly have imagined when I started 14 years ago, that this would be real. This episode is the culmination of a lot of hard work, so many amazing guests throughout the years, and YOU, my listeners! Without you all, I wouldn't keep publishing these every week. A big thank you to the one and only James Jardine for being my co-host t...