The Security Podcast of Silicon Valley

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

YSecurity embeds a team of security engineers with backgrounds from Apple, Uber, Microsoft, Robinhood, and Brex directly into your company. No full-time hire, no bloated retainer. You set a monthly cap and we handle everything.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

93. The Conversation Nobody’s Having About AI (with Jacob Andra and Stephen Karafiath)

Tue, 21 Apr 2026 09:46:31 -0700

The biggest AI mistake companies make isn't picking the wrong tool, it's not understanding the dependencies underneath it. Jacob and Stephen from Talbot West share how they map entire organizations to find the right AI entry point, why LLMs are overhyped, and what technologies are actually underrated right now.

Jacob: www.linkedin.com/in/jacobandra
Stephen: www.linkedin.com/in/stephenkarafiath
Talbot West: www.talbotwest.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

92: The Real Problem Isn't Deepfakes. It's Identity (with Jasson Casey)

Tue, 07 Apr 2026 08:35:58 -0700

You can have perfect infrastructure—and still be talking to the wrong person.

In this episode, Jasson Casey (Beyond Identity) breaks down why identity—not infrastructure—is the real security boundary, how passwords created today’s vulnerabilities, and what a future without “moving secrets” looks like. If you’re building or scaling a company, this is a shift you can’t ignore. Listen now.

Jasson: www.linkedin.com/in/jassoncasey
Beyond Identity: www.beyondidentity.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

91. Why Asking Developers To Fix Everything Is... A Bad Idea (with Neatsun Ziv)

Tue, 24 Mar 2026 10:13:50 -0700

Is your security team drowning in noise while your developers struggle to keep up? Neatsun Ziv, CEO of Ox Security, explains why traditional "Shift Left" strategies have failed and how applying business context can help your team focus on the vulnerabilities that actually matter. Listen to the full episode to learn how to turn security into a competitive advantage.

Neatsun: https://www.linkedin.com/in/neatsun-ziv-ab7394/

Ox Security: http://www.ox.security/

Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich

YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

90. How Two Marines Cracked the Defense Tech Industry (Reveal Technologies)

Tue, 10 Mar 2026 11:25:12 -0700

Most security decisions fail when the people doing the work don’t have the information they need. Garrett Smith, Founder and CEO of Reveal Technology and a Marine Corps Reserve Lieutenant Colonel, explains how bottom-up product design changes defense outcomes—and what business leaders can learn about building technology people actually adopt. Listen to learn how compliance, procurement, and mission pressure shape what ships and what stalls.

Garrett: https://www.linkedin.com/in/wgarrettsmith/

Reveal Technology: https://www.revealtech.ai

Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich

YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

89. AI Agents Will Delete Your Database. And Then Lie About It (with Graham Neray)

Tue, 24 Feb 2026 10:56:02 -0800

AI agents can delete your production database and tell you everything is fine. Graham Neray, Co-Founder and CEO of Oso, breaks down why AI agents introduce a new level of risk for growing SaaS companies. If you’re adding AI to your product, moving upmarket, or selling into regulated industries, your authorization model is no longer a backend detail—it’s a growth dependency. Listen in to learn how automating least privilege protects your product, your customers, and your revenue.

Graham: https://www.linkedin.com/in/grahamneray/

Oso: http://www.osohq.com

Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich

YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

88. How Illumio Stops Hackers When the “Front Door” Fails (with Andrew Rubin)

Tue, 10 Feb 2026 08:29:41 -0800

The perimeter will fail. What matters is whether your business turns one incident into a disaster. Andrew Rubin, Founder and CEO of Illumio, explains how breach containment reduces blast radius, why category timing is “luck,” and what leaders must do as AI speeds up attackers and defenders. Listen for a founder-level playbook on building security that scales with growth.

Andrew: https://www.linkedin.com/in/andrewsrubin

Illumio: https://www.illumio.com

Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich

YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

87. Escape the Ticket Trap: How AI Agents Are Replacing Manual DevOps

Tue, 27 Jan 2026 08:39:19 -0800

AI won’t save your startup. Unless it can ship changes safely. Venkat Thiruvengadam breaks down why the real value isn’t the model, it’s the orchestration: guardrails, permissions, context, and human-in-the-loop workflows that let agents do more than “read-only.” Tune in for a practical conversation on scaling DevOps, security, and compliance without slowing the business.

Venkat: www.linkedin.com/in/venkat-thiruvengadam

DuploCloud: www.duplocloud.com

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

86. Ex-FBI Agent: The Biggest Security Threat is the Human Behind the Keyboard

Tue, 13 Jan 2026 08:00:00 -0800

Trevor Hilligoss, Head of Security Research at SpyCloud and former FBI agent, joins the show to discuss why humans remain the biggest security risk facing organizations today. From reused credentials to commoditized cybercrime tools, Trevor breaks down how attackers actually gain access — and why focusing on real-world human behavior is more effective than worrying about sophisticated nation-state threats.

Trevor: www.linkedin.com/in/thilligoss/

SpyCloud: spycloud.com

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

85. How Companies Lose $197 Million in Seconds (with Channi Greenwall, Olympix)

Tue, 30 Dec 2025 09:07:29 -0800

What if 90% of “secured” smart contracts were still exploitable? That’s the reality Olympix founder and CEO Channi Greenwall is seeing on-chain today. She breaks down why traditional audits are failing Web3 teams, why the attack surface is bigger than most founders realize, and how automated security is starting to close the gap.

You’ll learn:

Why Web3 security is closer to medical devices and aviation than typical SaaS risk
How one exploit can wipe out years of startup effort in seconds
The hidden overlap between Web2 and Web3 attack surfaces that founders underestimate
What it actually looks like to automate 60–80% of what human auditors do today

Listen to the full episode on your favorite platform.

Channi: www.linkedin.com/in/channi-greenwall
Olympix: www.olympix.security/
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

84. What gets missed when nobody reviews the code (with Jack Cable, Corridor)

Tue, 16 Dec 2025 09:37:46 -0800

Code ships faster than anyone can review it. Jack Cable, CEO and Co-Founder of Corridor, explains what actually gets missed when teams stop reviewing every pull request, why most security tools surface noise instead of risk, and how Corridor approaches secure-by-design when speed is non-negotiable.
Jack: https://www.linkedin.com/in/jackcable
Corridor: https://www.corridor.dev
Jon: https://www.linkedin.com/in/jon-mclachlan
Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

83. How small companies can make their security doable (with Phil Howie)

Tue, 02 Dec 2025 08:19:38 -0800

What if your first security hire wasn’t a person, but a simple, guided program that made sense to everyone in your company? In this conversation, Sidekick founder and CEO Phil Howie breaks down how SMBs can build a security and privacy practice from the ground up—long before they can afford a full internal team. We cover the reality of compliance vs real security, working with MSPs, the role of design in security tools, and how founders should think about AI, governance, and future regulation. If you’re a founder trying to grow in regulated markets, this one’s for you.

Phil: https://www.linkedin.com/in/philhowie

Sidekick: https://www.sidekick.co

Jon: https://www.linkedin.com/in/jon-mclachlan/

Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich/

YSecurity: https://www.ysecurity.io/

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

82. Automating app security for modern dev teams (with Rejah Rehim)

Tue, 18 Nov 2025 08:22:03 -0800

Most companies still test security long after code is shipped. That delay creates blind spots.

In this episode, Rejah Rehim, Co-Founder & CEO of Beagle Security, explains how automated penetration testing gives teams a clearer picture of their real exposure—while keeping the process simple enough for developers to run themselves.

Rejah: https://www.linkedin.com/in/rejah/

Beagle Security: https://beaglesecurity.com/

Jon: https://www.linkedin.com/in/jon-mclachlan/

Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich/

YSecurity: https://www.ysecurity.io/

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

81. How to put AI agents safely into production (with Eric Olden)

Tue, 04 Nov 2025 08:19:35 -0800

AI agents can burn through budgets and trust in minutes. Eric Olden, Co-Founder and CEO of Strata Identity, breaks down the control plane founders need: policy-driven guardrails, intent/context/outcome audit, and lifecycle governance—so you can move from sandbox to production with confidence.

Eric: https://www.linkedin.com/in/boughtnotsold

Strata Identity: https://www.strata.io

Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich

YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

80. Think Like a Hacker: Why Curiosity Drives Innovation and Security (with Ted Harrington)

Tue, 21 Oct 2025 10:11:04 -0700

Most people think hackers exploit systems. The best hackers improve them. In this episode, Ted Harrington explains how to unlock your “inner hacker”—the mindset that turns obstacles into innovation. From breaking outdated rules to building smarter, safer companies, this conversation reframes what it means to lead with curiosity.

Ted: https://www.linkedin.com/in/securityted/
Ted’s website: https://www.tedharrington.com/
Jon: https://www.linkedin.com/in/jon-mclachlan
Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

79. AI at Brinks Home: Lower costs, better customer support (with Veronica Moturi)

Tue, 07 Oct 2025 08:29:09 -0700

Cutting support costs usually tanks experience—unless you redesign the system. Veronica Moturi shares how Brinks built an AI “first line,” kept humans for nuance, and improved accuracy by unifying data, verification, and troubleshooting. If you’re scaling support, this is your roadmap to trust, speed, and measurable unit economics. Veronica: www.linkedin.com/in/veronica-moturi Brinks Home: brinkshome.com Jon: www.linkedin.com/in/jon-mclachlan   Sasha: www.linkedin.com/in/aliaksandr-sinkevich YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

78. Invisible Security: The Future of Authentication and Trust (with Deepak Dutt)

Tue, 23 Sep 2025 08:41:54 -0700

Deepak Dutt, founder of Zighra, reveals how continuous behavioral authentication is changing the game—from stopping $200M fraud schemes to securing military operations.

Deepak: https://www.linkedin.com/in/deepakdutt/
Zighra: https://zighra.com/
Jon: https://www.linkedin.com/in/jon-mclachlan
Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

77. Inside Augment Code: Why security starts at line one (with Dirk Meister)

Tue, 09 Sep 2025 17:53:36 -0700

What if your first lines of code determined your startup’s ability to scale? Dirk Meister, founding engineer at Augment Code, walks us through the intentional security architecture decisions they made on day one—and why trust isn't something you can bolt on later.

Dirk Meister: https://www.linkedin.com/in/meisterdirk/

Augment Code: https://www.augmentcode.com/

Jon McLachlan: https://www.linkedin.com/in/jon-mclachlan/

Sasha Sinkevich: https://www.linkedin.com/in/aliaksandr-sinkevich/

YSecurity: https://www.ysecurity.io/

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

76. The Critical Security Stage Every Startup Skips (With Michael Nov)

Tue, 26 Aug 2025 08:15:04 -0700

Michael Nov, Co-Founder and CEO of Prime Security, reveals how ignoring the design stage creates costly security gaps later. He shares hard-won lessons from building at OwnBackup and launching a startup during crisis.

Michael: https://www.linkedin.com/in/michael-nov
Prime Security: https://www.primesec.ai
Jon: https://www.linkedin.com/in/jon-mclachlan
Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

75. How to Use AI Without Giving Up Your Data (with Jonathan Mortensen)

Tue, 12 Aug 2025 08:08:33 -0700

Contracts aren’t controls. Jonathan Mortensen, CEO of Confident Security, lays out a practical path to provably private AI—confidential compute, attestation, and encrypted weights—so you can swap your OpenAI-compatible endpoint, keep crown-jewel data out of vendor training, and still close enterprise deals. Listen to learn how founders can pass security reviews, avoid GPU sprawl, and turn privacy into a sales advantage.

Jonathan: https://www.linkedin.com/in/jonathanmortensen

Confident Security: https://www.confident.security

Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich

YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

74. Augment Code: AI Agents, Engineered to Ship (with Scott Dietzen)

Tue, 29 Jul 2025 09:57:56 -0700

AI isn’t just writing code—it’s joining the team. Scott Dietzen, Board Member at Augment Code, explains how Augment’s AI agents are changing the way enterprise software is built, secured, and scaled. These aren’t copilots for toy projects—they’re context-aware agents designed for real-world codebases and real production work.

Scott: https://www.linkedin.com/in/scottdietzen
Augment Code: https://www.augmentcode.com
Jon: https://www.linkedin.com/in/jon-mclachlan
Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: https://www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

73. How Free AI Tools Become Expensive Mistakes (with Michael Moore, VP & Head of Legal at Glean)

Tue, 15 Jul 2025 08:34:20 -0700

Free AI tools promise speed—but they can quietly kill enterprise deals. In this episode, Michael Moore, VP and Head of Legal at Glean, unpacks the legal, privacy, and trust pitfalls that most AI startups overlook. He explains how to design AI products that survive legal scrutiny, earn buyer trust, and actually close. Michael: www.linkedin.com/in/michaeltimmoore Glean: www.glean.com  Jon: www.linkedin.com/in/jon-mclachlan   Sasha: www.linkedin.com/in/aliaksandr-sinkevich YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

72. The Security Risk No One Sees Coming with AI Agents (TraceForce.ai Special)

Tue, 01 Jul 2025 08:23:23 -0700

AI agents can do more than access your data—they can act. TraceForce.ai founders Xia Hua and Glenn Mulvaney reveal the next big security risk: autonomous agents that operate beyond permission boundaries. From startup execution to securing the agent economy, this special episode covers it all.

Xia: www.linkedin.com/in/xia-hua-ph-d
Glenn: www.linkedin.com/in/glennanthonymulvaney
TraceForce: www.traceforce.ai
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

71. How Startups Can Fight AI Deepfake Fraud (with Ben Colman)

Tue, 17 Jun 2025 08:01:52 -0700

AI-generated fraud is now mainstream—and your team probably can’t tell the difference.
Ben Colman shares hard-earned insights on fighting deepfakes, building detection tech that actually works, and how to stay ahead in the AI arms race.

Ben: www.linkedin.com/in/benpcolman

Reality Defender: www.realitydefender.com

Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

70. The AI Governance Expert: 3 Things Every Business Needs to Trust AI

Tue, 03 Jun 2025 11:23:38 -0700

Your data is moving—through APIs, AI agents, and services—and most businesses have no idea how. Abhi Sharma, CEO and Co-Founder of Relyance AI, joins us to explain how companies are getting AI governance wrong and what to fix. He reveals the 3 elements that define trust in AI—and why missing just one breaks everything.

Abhi: https://www.linkedin.com/in/abhisharmab/
Relyance AI: https://www.relyance.ai
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

69. Cryptography and Web3 Expert: Security vs. Speed Is a False Choice

Thu, 22 May 2025 08:23:26 -0700

Most founders think you have to choose between security and usability. Riad Wahby disagrees—and built Cubist to prove it. In this episode, he breaks down how startups can achieve secure key management without sacrificing speed or flexibility.

Riad: www.linkedin.com/in/kwantam
Cubist: www.cubist.dev
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

68. From Netflix to Startup CEO: Travis McPeak Is Redesigning Security for Developers

Tue, 06 May 2025 10:56:49 -0700

What if security wasn’t something developers had to think about at all? That’s the vision Travis McPeak—former Netflix and Databricks security leader—is building at Resourcely. In this episode, he breaks down why most security tools fail, how trust between security and engineering got broken, and what it really takes to fix cloud misconfigurations before they hit production. Travis also shares what compliance is getting wrong, why developer experience is non-negotiable, and what he learned going from big tech to startup CEO.

Travis: www.linkedin.com/in/travismcpeak
Resourcely: www.resourcely.io
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

67. Gadi Bashvitz: How Bright Security Is Redefining AppSec for Developers

Tue, 22 Apr 2025 08:35:57 -0700

What if your security tools are actually slowing you down? Bright Security co-founder and CEO Gadi Bashvitz shares how their team went from AI fuzzing to reshaping the way developers tackle vulnerabilities—without drowning in false positives or compliance theater.

Why AppSec hasn’t kept up with how engineering works today
The 60x cost of fixing bugs in production
What dev-first security actually looks like in the real world
How Bright is helping teams fix the right issues—faster

Listen to learn how Bright Security is shifting security left—without slowing teams down.

Gadi: www.linkedin.com/in/bashvitz
Bright Security: www.brightsec.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

66. AI Expert Michal Pechoucek: How AI Is Targeting Your Mind Now

Tue, 08 Apr 2025 08:30:06 -0700

AI is no longer just writing code or generating images—it’s shaping how we think.

In this episode, we sit down with AI researcher, professor, and investor Michal Pechoucek to explore how artificial intelligence is shifting from targeting systems to targeting human cognition. Michal outlines four emerging threats that are redefining AI security and explains why deepfakes, behavioral data, and black-box models are putting trust itself at risk.

We also discuss the growing gap between AI innovation and AI safety, how China is approaching behavioral data, and what this shift means for founders, defenders, and the future of digital trust.

Michal: www.linkedin.com/in/pechoucek
Evolution Equity: www.evolutionequity.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

65. Yaron Singer, Cisco: The hard truth about deploying AI today

Wed, 26 Mar 2025 08:52:31 -0700

Everyone’s building AI. Few know how to deploy it safely. Yaron Singer, co-founder of Robust Intelligence (acquired by Cisco), reveals what’s really blocking AI from scaling—and why trust, not tech, is the biggest barrier. A must-listen for any founder navigating the AI wave.

Yaron Singer: www.linkedin.com/in/yaron-singer-76ab6317
Robust Intelligence: www.robustintelligence.com
Jon McLachlan: www.linkedin.com/in/jon-mclachlan
Sasha Sinkevich: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

64. Building a Billion-Dollar Security Company: Lessons from Drata’s Co-Founder and CTO

Tue, 11 Mar 2025 07:32:25 -0700

What happens when a seasoned entrepreneur tackles one of the biggest security challenges for startups? Daniel Marashlian, Co-Founder and CTO of Drata, built a billion-dollar company by automating security audits. In this episode, he breaks down compliance headaches, AI’s role in security, and why automation is the future.

Daniel Marashlian: www.linkedin.com/in/danielzev Drata: www.drata.com Jon McLachlan: www.linkedin.com/in/jon-mclachlan
Sasha Sinkevich: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

63. Buying more security tools? You might be making things worse

Tue, 25 Feb 2025 10:30:09 -0800

Too many startups fall into the “more tools = more security” trap. Instead of better protection, they end up with data silos, integration nightmares, and security teams buried in alerts—while real threats slip through the cracks.

Kabir Mathur, CEO of Lean, breaks down why adding more security tools might be your biggest mistake, the hidden costs of tool sprawl, and how to actually build a security stack that works.

Kabir Mathur: www.linkedin.com/in/mathurkabir
Leen: www.leen.dev
Jon McLachlan: www.linkedin.com/in/jon-mclachlan
Sasha Sinkevich: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

62. The 4-Hour AI Scam: Hackers steal millions—and no one sees it happening

Tue, 11 Feb 2025 11:44:50 -0800

Imagine waking up to thousands of customers scammed—using your brand’s name. The website looked real. The emails were flawless. No one saw it coming. This is the new reality of AI-powered fraud. Cybercriminals don’t need weeks to set up a scam anymore—they need just 4 hours.

Rod Schultz, CEO of Bolster AI, exposes the rise of automated phishing, brand impersonation, and large-scale fraud, plus the strategies businesses need to stop attacks before they escalate.

Rod: www.linkedin.com/in/rodschultz
Bolster AI: www.bolster.ai
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

61. The Father of SSL: Passwords are holding us back

Thu, 23 Jan 2025 09:01:16 -0800

What if the way you secure your company is all wrong? Taher Elgamal, the ‘Father of SSL,’ reveals why passwords are failing us, what smarter security looks like, and how businesses can thrive with it.
Taher: www.linkedin.com/in/taherelgamal
Evolution Equity: evolutionequity.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

60. Damon Fleury, CPO at SpyCloud, on Navigating the Darknet to Combat Cybercrime

Mon, 06 Jan 2025 16:27:35 -0800

What does it take to stop a trillion-dollar criminal enterprise? Damon Fleury, Chief Product Officer of SpyCloud, dives into the murky world of cybercrime and the economy driving it. Fleury shares his journey from code and network stacks to facing off against an elaborate cybercrime ecosystem — one that’s as organized as a traditional business but designed purely to exploit and harm.
Damon: www.linkedin.com/in/damonfleury
SpyCloud: spycloud.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

59. Neil Serebryany, Founder & CEO of CalypsoAI: Securing AI's Future and Tackling Tomorrow's Risks

Wed, 04 Dec 2024 13:23:55 -0800

Neil Serebryany, Founder and CEO of CalypsoAI, shares his fascinating journey from the National Geospatial-Intelligence Agency to leading a cutting-edge AI security company. We dive into the evolving landscape of AI risks, data protection, and regulatory challenges while exploring the future of AI as it transforms industries and society. Learn how CalypsoAI is paving the way for secure AI adoption and what it means for the future of business and innovation.

Neil: www.linkedin.com/in/neil-serebryany
CalypsoAI: calypsoai.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

58. Jacob Berry, Field CISO at Clumio, On Balancing Security with Business Growth in the Cloud

Sun, 17 Nov 2024 10:16:05 -0800

Jacob Berry, Field CISO at Clumio, sits down with Jon and Sasha, YSecurity.io, to explore the intricate balance between security and business growth. Jacob shares his journey from a “punk hacker” to leading security for a cutting-edge cloud data protection company. We delve into the evolving role of the CISO, the complexities of managing security for cloud-based services, and the importance of balancing confidentiality, integrity, and availability. Jacob also discusses the human side of security, from customer conversations to the challenges and opportunities in the fast-paced world of startups.

Jacob: www.linkedin.com/in/jacobiberry
Clumio: clumio.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

57. Vijay Balasubramaniyan, Co-Founder and CEO of Pindrop Security: The Voice Behind Cutting-Edge Security

Wed, 30 Oct 2024 05:00:00 -0700

From his roots in voice technology at giants like Google and IBM to pioneering security innovations at Pindrop, Vijay Balasubramaniyan shares his unique journey of merging voice and security. Discover how Pindrop is leading the charge against deepfake fraud, revolutionizing voice authentication, and even protecting democracy.

Vijay: www.linkedin.com/in/vijayab
Pindrop: www.pindrop.com

Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

56. Kayne McGladrey, Field CISO at Hyperproof, SEC 10-K and Cybersecurity Leaders

Mon, 14 Oct 2024 22:08:02 -0700

Join us in this episode of the Security Podcast in Silicon Valley, where host Jon McLachlan sits down with Kayne McGladrey, Field CISO at Hyperproof. Kayne shares his unique journey from theater to cybersecurity, offering insights into risk management, regulatory compliance, and the evolving landscape of cyber threats. Discover how his background in improv and theater has shaped his approach to cybersecurity, the importance of SEC 10-K disclosures, and practical advice for startups and security professionals. Don't miss this engaging and informative conversation!

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

55. Haseeb Awan, Founder and CEO of Efani, Revolutionizing Mobile Security for the Digital Age

Tue, 01 Oct 2024 09:28:35 -0700

In this episode of The Security Podcast of Silicon Valley, host Jon McLachlan sits down with Haseeb Awan, the visionary Founder and CEO of Efani Secure Mobile. Join us as Haseeb shares his inspiring journey from co-founding BitAccess to creating a bulletproof mobile service designed to protect against the rising threat of SIM swapping and digital identity theft. Haseeb opens up about his personal experiences with security breaches, the challenges he faced, and the innovative solutions Efani offers to ensure top-notch security for its users. Tune in for an engaging conversation filled with insights, resilience, and a commitment to making the digital world a safer place.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

54. Simon Wijckmans, Founder and CEO of cside.dev, Revolutionizing Client-Side Security

Tue, 17 Sep 2024 04:57:00 -0700

In this episode of the Security Podcast of Silicon Valley, a YSecurity production, hosts Jon McLachlan and Sasha Sinkevich dive into an engaging conversation with Simon Wijckmans, Founder and CEO of cside.dev. Simon shares his journey from working at Hydra, Vercel, and Cloudflare to founding cside.dev, a security startup focused on client-side security. He discusses the evolution of web security, the unique challenges of client-side attacks, and how cside.dev is pioneering solutions to make web security more accessible. Simon's insights into the dynamic landscape of cybersecurity and his passion for innovative solutions make this episode a must-listen. Join us as we explore the future of web security with one of the industry's brightest minds.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

53. Lorenzo Thione, Co-Founder and Chairman of StartOut, on AI's Role in Security and the Power of Diverse Investment

Sun, 01 Sep 2024 10:00:00 -0700

In this episode of The Security Podcast of Silicon Valley, a YSecurity production, Host Jon McLachlan talks with Lorenzo Thione, a philanthropist, LGBTQ advocate, and investor. As the co-founder and chairman of StartOut, the only LGBTQ incubator, and managing director of Gaingels, Lorenzo shares his unique insights into the intersection of AI and security. They explore the ethical implications of advanced AI technologies, the importance of diversity in the tech industry, and how inclusive investment strategies can drive innovation. Tune in for a thought-provoking conversation on shaping a more equitable future in tech.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

52. Suha Can, CISO at Grammarly: Safeguarding User Data in Enterprise AI Systems

Thu, 15 Aug 2024 05:20:00 -0700

In this episode of the Security Podcast of Silicon Valley, a YSecurity production, Hosts Jon and Sasha dive deep with Suha Can, the Chief Information Security Officer at Grammarly, who oversees the security of over 30 million users and 70,000 enterprise teams worldwide. Suha shares his journey from discovering the internet in a small Turkish café to leading security at major tech giants like Amazon and Microsoft. We explore how he’s pioneering responsible AI at Grammarly, balancing product security with innovation, and preparing for the future of AI and cybersecurity. Tune in for an enlightening conversation on building trust, tackling zero-day exploits, and the evolving role of the CISO in today’s AI-driven world.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

51. Tony Thai, Founder and CEO of HyperDraft, Revolutionizing Legal Tech with Engineering Precision

Fri, 02 Aug 2024 13:58:27 -0700

Join us on YSecurity Production as Jon McLachlan welcomes Tony Thai, the innovative Founder and CEO of HyperDraft. Discover how Tony’s journey from software engineering to a prominent law firm attorney inspired him to create groundbreaking legal tech solutions. In this episode, Tony shares insights into the intersection of cybersecurity and legal fields, the importance of client communication, and the impact of AI in legal services. Tune in for a deep dive into how HyperDraft transforms document generation and digital workflows, making legal services more efficient and secure.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

50. Alan Braithwaite, Co-Founder and CTO at RunReveal: SIEM doesn't have to suck

Thu, 18 Jul 2024 22:13:01 -0700

Alan Braithwaite, Co-Founder and CTO of RunReveal, shares his journey from Cloudflare to co-founding RunReveal, discussing how his company is revolutionizing the security landscape by making threat detection faster and easier.
Alan: www.linkedin.com/in/alan-braithwaite
RunReveal: runreveal.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

49. Vivek Ramachandran, Founder and CEO of SquareX, Pioneering Browser-Based Security Solutions

Sat, 13 Jul 2024 14:15:03 -0700

Vivek Ramachandran, Founder and CEO of SquareX, shares his inspiring journey into the cybersecurity field, sparked by his fascination with the power of individual hackers and their impact on massive websites. He discusses the evolution of the security landscape over the past 25 years, emphasizing the shift from lone warriors to collaborative team efforts against sophisticated cyber threats.

Vivek: www.linkedin.com/in/vivekramachandran
SquareX: www.sqrx.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

48. Dr. Georgianna, Chief Technologist at Foundation for Defensive Democracies, Advancing National Cybersecurity Through Innovation and Policy.

Sat, 29 Jun 2024 12:05:38 -0700

In this episode of The Security Podcast of Silicon Valley, host Jon McLachlan sits down with Dr. Georgianna Shea, the Chief Engineer at MITRE and Chief Technologist at the Foundation for Defense of Democracies. Dr. Shea shares her extensive experience in cybersecurity, from her work with the Department of Defense to her current role in influencing national security policy. Discover her insights on the importance of resilience in cybersecurity, the significance of Software Bill of Materials (SBOM), and how AI and quantum computing are shaping the future of cyber defense. Tune in for an inspiring conversation with one of the industry's leading experts.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

47. Clea Ostendorf, CISO of Code42, Securing the Unseen: on the Frontlines of Data Protection

Mon, 17 Jun 2024 07:11:04 -0700

Welcome to a new episode of the Security Podcast in Silicon Valley, a YSecurity production, where we delve into the ever-evolving landscape of cybersecurity, with Clea Ostendorf, Field CISO at Code42, as our distinguished guest. Clea's journey from an aspiring diplomat to a front-runner in cybersecurity offers profound insights into her unique approach that is reshaping the realm of data protection. Join us as our host Jon McLachlan, a seasoned expert in the field, engages Clea in a deep dive into how she merges traditional security methods with the pressing challenges of today’s digital world. Discover how Clea advocates for a collaborative security community and navigates the complex balance of work-life harmony in a demanding field. Tune in to uncover Clea’s strategies for fostering a culture of security that supports growth and innovation while protecting against insider threats. This episode is a must-listen for anyone interested in the intersections of technology, security, and corporate culture.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

46. Polina Morozov, Security Recruiter at Grammarly on Navigating Careers and Culture in Cybersecurity

Thu, 06 Jun 2024 16:05:08 -0700

Host Jon McLachlan, welcomes Polina Morozov, a distinguished Security Recruiter from Grammarly (and formerly Robinhood) onto Security Podcast of Silicon Valley, a YSecurity.io production. As we peel back the layers of security and recruiting, Polina shares her remarkable journey from aspiring diplomat to a key player in tech hiring, highlighting the crucial role communication plays in connecting talent with opportunity. Discover how Grammarly's cutting-edge tools not only enhance written communication but also serve as a catalyst for Polina's career. Through candid conversations, this episode offers a unique lens on the challenges and triumphs of recruiting in the security tech world, emphasizing the importance of pushing boundaries, fostering trust, and the undeniable impact of cultural and global influences on business practices. Tune in for an engaging exploration of what it takes to secure top talent in the ever-evolving landscape of cybersecurity, or, land your next huge opportunity and accelerate your own career in cybersecurity.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

45. Craig Goodwin, Co-Founder and CEO of Bleach Cyber: Imagine Cybersecurity, but not Complicated

Sun, 26 May 2024 16:48:59 -0700

Host Jon McLachlan sits down with Craig Goodwin, Co-Founder and CEO of Bleach Cyber. Craig shares his remarkable journey from military intelligence in the UK to leading cybersecurity roles at major corporations like Monster Worldwide, CDK Global, and Fujitsu, ultimately founding Bleach Cyber. Discover how Bleach Cyber aims to simplify cybersecurity for small businesses, making top-tier security accessible and manageable. Craig also dives into the human element of cybersecurity, the challenges of startup life, and the importance of resilience and simplicity in both business and life. Tune in for a compelling conversation filled with insights, practical advice, and Craig's vision for the future of cybersecurity.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

44. Benoit Chevallier-Mames, VP Privacy Preserving Cloud and ML at Zama, Unlocking the Potential of Privacy with Fully Homomorphic Encryption

Mon, 20 May 2024 05:30:00 -0700

Host Jon McLachlan sits down with Benoit Chevallier-Mames, VP of Privacy Preserving Cloud and Machine Learning at Zama, as our first returning guest after , The Security Podcast in Silicon Valley, a YSecurity production. Dive into the transformative world of Fully Homomorphic Encryption (FHE), a technology that promises to revolutionize data privacy in AI applications. As an expert at RSA in SF in 2024, Benoit shares insights from his journey, from pioneering efforts at Apple to pushing the boundaries of privacy tech at Zama. Discover how Zama's cutting-edge advancements set the stage for a new era where data privacy and machine learning coexist seamlessly. Please tune in to learn about the practical applications of FHE in various industries and how it's shaping the future of secure data processing.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

43. Evan Driscoll & Dion Almaer Unleash Augment's Software Engineering Revolution with Secure AI

Wed, 08 May 2024 07:00:00 -0700

Dive into the intersection of AI and security with Augment Computing's leaders, Evan Driscoll, VP of Engineering(formerly Pure Storage, General Magic) and Dion Almaer, VP of Product(formerly Shopify, Google, Walmart.com, Mozilla), to uncover how Augment's groundbreaking SaaS platform is revolutionizing the developer experience with AI. This thrilling episode of The Security Podcast of Silicon Valley, brought to you by YSecurity, is hosted by Jon McLachlan and Sasha Sinkevich.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

42. Avery Pennarun, Co-Founder and CEO of Tailscale, the Anti-Google: Rebuilding a Secure Internet from the Bottom-Up

Wed, 01 May 2024 07:18:45 -0700

Don't miss this blend of technology, ambition, and forward-thinking only of The Security Podcast of Silicon Valley, a YSecurity.io production, as we dive into Avery Pennarun's journey, the Co-Founder and CEO of Tailscale, from starting his first company in college to selling it to IBM, taking a detour at Google, and eventually creating what's known as the anti-Google of cyber startups, Tailscale. Avery gives us a candid look at the evolution of a billion-dollar valuation company. Discover how Tailscale became the first security infrastructure product adopted bottom-up by individual engineers rather than imposed from the top down. Join us as we explore the fine line between security and connectivity and how Avery's vision for Tailscale's is reshaping the future of the Internet.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

41. Michael Moore, Chief Privacy Officer at Lacework, Securing Tomorrow: Navigating the Cyber Frontier

Sun, 14 Apr 2024 10:42:00 -0700

Dive into the heart of cybersecurity innovation with host Jon McLachlan and guest Michael Moore, the visionary Chief Privacy Officer at Lacework, and previously Pure Storage, on this episode of The Security Podcast of Silicon Valley, a YSecurity.io production. In this compelling episode, Michael shares his path from engineer to legal expert to cybersecurity trailblazer. Michael reveals his unique insights into the critical intersection of technology, privacy, and law, illuminating how these elements are essential in shaping the security landscape. Get this exclusive inside look at Lacework's advanced strategies for combating digital threats and safeguarding the digital future, straight from the expert leading the charge. This episode is an essential listen for anyone intrigued by the balance between cutting-edge cybersecurity measures and the imperative of safeguarding personal privacy in an increasingly vulnerable digital age.

Links referenced during the show:

Don't Let Your Company Reputation Be Held Ransom - By Michael Moore, Lea Kissner, Merritt Baer, 05 March, 2024

Product Privacy Done Right By Michael Moore, Lea Kissner, Alan Mulvaney, 04 March, 2024

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

40. Jose Arrieta, Imagineer, Former Chief Information Officer and Chief Data Officer at US Health and Human Services

Mon, 01 Apr 2024 06:00:00 -0700

Jon McLachlan hosts the visionary Jose Arrieta, the former CIO and Chief Data Officer at the US Department of Health and Human Services, in this enthralling episode of The Security Podcast of Silicon Valley, a YSecurity production. In this revealing conversation, Jose shares insights from his dynamic career spanning government, academia, and the intersection of cybersecurity and healthcare innovation. Discover how his unique approach to challenges and opportunities is shaping the future of secure solutions in critical sectors. From tackling potential nation-state cyber threats during the pandemic to reimagining the EHR space and advocating for data ownership, Jose's journey is a testament to the power of imagination, innovation, and going all in on the things that matter. Join us for a session packed with invaluable lessons on leadership, resilience, and the transformative potential of technology in our lives and society.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

39. Steve Orrin, Federal CTO at Intel, on Tech, Trust, and Transformation

Sat, 09 Mar 2024 10:14:39 -0800

In this captivating episode of a YSecurity.io production, we delve into the mind of Steve Orrin, the Federal CTO at Intel, who provides valuable insights into various topics, including AI, Trusted Execution Environments, Cloud Computing, Team Building, Mergers and Acquisitions, and Entrepreneurship. Steve began his career as an entrepreneur, but after Intel acquired his company, he took his career to the next level and has been with Intel for over 18 years. As the Federal CTO at Intel, he leads Intel’s efforts in the DoD and Federal Government verticals. Throughout the interview, Steve shares personal anecdotes and life lessons, discussing how he transitioned from a background in biology to a successful career in technology and private industry.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

38. Nick Sullivan on Cryptography, Cloudflare, and Building a Better Internet

Sat, 09 Mar 2024 02:14:01 -0800

In this enlightening episode of The Security Podcast of Silicon Valley, a YSecurity.io production with your host Jon McLachlan, we are honored to host Nick Sullivan, a trailblazer in the realm of cryptography and security. Formerly the Head of Cryptography at Cloudflare and now a pivotal figure in startup advisory and angel investing, Nick shares his journey from delving into pure mathematics at Waterloo to shaping the security landscape of the internet. He reflects on his early career, from researching cryptography to his impactful roles at Symantec, Apple, and eventually Cloudflare, where he spent over a decade innovating and advising on next-gen security protocols.

Nick offers an insider's view on the challenges and triumphs of developing Cloudflare's robust security infrastructure, emphasizing the importance of privacy, research, and the collective effort to safeguard the web. He discusses groundbreaking work on global data insights, the evolution of internet security practices, and his advisory role in nurturing startups toward solving today's most pressing security dilemmas.

Join us as Nick Sullivan imparts wisdom on the significance of curiosity, the power of collaboration, and the unyielding pursuit of building a better, more secure Internet. This episode is a must-listen for anyone passionate about the future of technology, privacy, and the endless possibilities that cryptography offers in securing our digital world.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

37. Founder's Guide to Compliance: The Introduction SOC2, ISO, NIST, HITRUST, PCI-DSS, FIPS, and more

Sun, 25 Feb 2024 09:28:24 -0800

Welcome to "The Founder's Guide to Compliance," a YSecurity.io production, hosted by Jon McLachlan and Sasha Sinkevich. We tear down the complexity surrounding compliance standards like SOC2, NIST, FIPS, PCI-DSS, HITRUST and the myriad facets of cybersecurity. Whether you're a startup founder knee-deep in the trenches or a seasoned executive navigating the ever-evolving landscape of digital security, this podcast is your no-BS zone for getting to the essence of what these standards mean for you and your business.

Jon, a Minnesota native and security enthusiast, brings his rich background from Apple and various startups to the table, sharing insights born from a life that embraces risk for greatness. With a passion for security that's as undeniable as his love for motorcycles, Jon's journey is about leading by example, turning challenges into stepping stones for success.

Sasha, starting his cybersecurity journey in Silicon Valley, has been shaped by the brilliant minds around him. His experience spans working with heavily regulated industries, creating security solutions for global financial institutions, and navigating the startup world from the ground up. Sasha's story is one of transformation, leveraging complex compliance requirements into simple, actionable strategies.

Together, Jon and Sasha aim to demystify compliance, making it accessible and understandable. They're here to show you how navigating these standards isn't just about ticking boxes but seizing opportunities to elevate your business.

"The Founder's Guide to Compliance" is empowers you with the knowledge and tools to not only meet but exceed the expectations of your customers and investors. Dive into a world where compliance becomes your competitive edge, enabling your startup to thrive in the digital age. Join Jon and Sasha as they guide you through the what, why, when, and how of compliance, turning potential hurdles into launchpads for success.

Welcome to the podcast where compliance meets clarity, and where your startup's security journey begins.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

36. Feross Aboukhadijeh, Founder and CEO of Socket.dev, a startup improving security and privacy on the web

Thu, 01 Feb 2024 11:02:24 -0800

In this episode of The Security Podcast of Silicon Valley, host Jon McLachlan of YSecurity.io invites Feross Aboukhadijeh, Founder and CEO of Socket.dev, a supply-chain cybersecurity company, to share his compelling journey as he tackles some of the most pressing challenges in software development security. Feross, a Stanford graduate and former intern at Intel, Facebook, and Quora, shares his journey from developing PeerCDN, a pioneering peer-to-peer content network, to his current venture, Socket.dev. Discover how Socket.dev is addressing critical software supply chain vulnerabilities by utilizing innovative technologies, including heuristic analysis and the latest LLMs. This episode offers valuable insights into the evolving cybersecurity landscape and Feross's unique approach to tackling some of the most pressing challenges in software development security. Join us for a captivating discussion that's a must-listen for anyone interested in the future of cybersecurity.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

35. Aviv Grafi, Founder and Innovator at Votiro: from IDF 8200 to Cybersecurity Visionary

Sun, 07 Jan 2024 22:19:57 -0800

In this episode of The Security Podcast of Silicon Valley, your host Jon McLachlan of YSecurity.io welcomes Aviv Grafi, founder and Innovator of Votiro, who shares his journey from the IDF's prestigious 8200 unit to revolutionizing cybersecurity. Aviv's passion for hacking and reverse engineering in his youth led to his success in both military and civilian sectors. He discusses the inception of Votiro, a company that stands out for its unique approach to document security, prioritizing the extraction of safe content over traditional threat detection methods. Aviv emphasizes the importance of proactive and enabling security solutions in the digital era, particularly in response to the new challenges posed by widespread digital transformation. Offering insights into the entrepreneurial mindset, Aviv highlights the balance between embracing the highs and lows of the journey and maintaining a positive, enabling approach to security. Join us for an episode filled with invaluable experiences and forward-thinking perspectives in cybersecurity.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

34. Ganesh Krishnan, Co-Founder and CEO of Anzenna - on Cyber Security Awareness Training

Fri, 01 Dec 2023 08:24:50 -0800

In this compelling YSecurity.io podcast series, Ganesh Krishnan recounts his incredible 25+ year journey in security and shares why he Co-Founded Anzenna, a Cyber Security Engagement and Collaboration Platform.

Employees are key to maintaining overall security. Their actions can make a big difference. Cybersecurity teams handle monitoring and updating protocols, but employees must stay aware of trends and follow best practices. Prioritize cybersecurity by investing in security measures, providing training, and encouraging participation. When employees take responsibility for protecting data and systems, security becomes a collective effort. This is Anzenna.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

33. Elizabeth Nammour, Co-Founder and CEO of Teleskope, Navigating Data Security Frontiers

Wed, 01 Nov 2023 13:21:29 -0700

Join us on a journey into the forefront of data security innovation in this captivating episode of a YSecurity.io production, featuring Elizabeth Nammour, Co-Founder and CEO of Teleskope. Elizabeth, or Lizzy as she's known, brings a wealth of experience and a deep passion for data security, honed during her time at Airbnb. There, she played a pivotal role in developing strategies to protect personally identifiable information (PII), ensuring compliance with GDPR, CCPA, and other critical data security regulations.

Teleskope stands as a testament to Lizzy's commitment to advancing data security, leveraging artificial intelligence to offer protection by default. Through her leadership, Teleskope is redefining how businesses secure their most sensitive information, offering innovative solutions that meet the evolving challenges of the digital age.

But this episode is more than a deep dive into the mechanics of data security. Lizzy shares personal stories that have shaped her journey, from her initial forays into the tech world to the founding of Teleskope. Her reflections offer invaluable insights for entrepreneurs and security professionals alike, highlighting how personal experiences and professional challenges can forge a path to innovation and success.

Listeners will be inspired by Lizzy's perspective on the intersection of technology, security, and entrepreneurship. Her stories illuminate the challenges and triumphs of building a startup focused on one of the most critical issues facing businesses today: data security.

Tune in to this YSecurity.io production for an engaging and enlightening conversation with Elizabeth Nammour. Whether you're an entrepreneur, a security enthusiast, or someone passionate about leveraging technology for a safer digital world, this episode promises a wealth of knowledge and inspiration, showcasing the power of AI in transforming data security and the journey of a visionary leader shaping the future of the industry.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

32. Kevin Kane, Founder and CEO of American Binary, on Cryptography and Quantum Computers

Fri, 01 Sep 2023 10:06:31 -0700

In this episode of a YSecurity.io production we feature, Kevin Kane, the Co-Founder and CEO of Ambit, Inc. dba American Binary, a startup specializing in protecting businesses against current and next-generation cyber threats. With expertise in post-quantum cryptography and high-performance network infrastructure, catch a glimpse into the future of quantum computing and its devastating impact on RSA and EC public key cryptography, potentially halting secure communications across the Internet and globalization as we know it. In this episode, Kevin shares vulnerable moments and thoughtful insights on religion, philosophy, self-improvement, psychology, and how security plays a crucial role in today's interconnected and globalized world. Don't miss out on this insightful and engaging conversation.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

31. Sergey Stelmakh, Head of Security Engineering at Yugabyte, on Innovation vs Security in Startups

Thu, 03 Aug 2023 12:21:23 -0700

Explore the delicate dance between innovation and security in this enlightening episode of a YSecurity.io production, featuring Sergey Stelmakh. With a rich background that traverses the realms of mathematics and security architecture, Sergey delves into the crucial question of how to foster innovation while ensuring rigorous security. His journey, from an Assistant Professor of Mathematics at Belarusian State University to Head of Security at Yugabyte, MuleSoft (now part of Salesforce), and Symphony Communications, illustrates the deep interconnection between analytical thinking and practical security solutions.

Throughout the conversation, Sergey shares his insights on building effective teams that can navigate the complexities of engineering-driven companies. He emphasizes the importance of striking a balance between embracing risk for innovation and implementing robust security measures to protect against potential threats. His experiences highlight the challenges and rewards of creating environments where innovation and security coexist harmoniously.

Listeners will be treated to a thought-provoking discussion that not only covers the technical aspects of security engineering but also touches on the philosophical underpinnings of risk and protection in the digital age. Sergey's perspective sheds light on the essential role that security plays in enabling innovation, rather than stifling it, and how a strong foundation in theoretical disciplines like mathematics can provide a unique lens through which to approach these challenges.

Tune into this YSecurity.io production for a deep dive into the world of security engineering with Sergey Stelmakh. Whether you're a security professional, a tech enthusiast, or someone intrigued by the intersection of innovation and risk mitigation, this episode offers a compelling exploration of the principles and practices that guide the safeguarding of our digital future.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

30. Dominik Schürmann, Co-Founder and CEO of heylogin

Mon, 03 Jul 2023 11:22:59 -0700

In this episode of a YSecurity.io production, we sit down with Dominik Schürmann, the Co-Founder and CEO of heylogin, who shares an incredible journey from childhood, and research, toward more usable security. How are usable security values different from "formal" or "provable" security? Why does it matter? How does that change where you spend your time and energy? And how can we integrate with human nature and our organic tendencies to build more secure software? These questions, and many more, guide Dominik to start heylogin, as he shares his outside-the-box vision for a better and more secure future.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

29. Rod Schultz, VP of Product at Dust Identity

Fri, 02 Jun 2023 19:47:59 -0700

Rod Schultz reflects on his childhood experiences and heroes, how he got into security, how that led him to Apple's DRM FairPlay team, Zoom's Head of Product Security and Privacy, and now DUST Identity's VP of Product.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

28. David Carpe - How to Network, and The Myth of The Great Silent Resignation

Thu, 18 May 2023 18:19:27 -0700

In this enlightening episode of a YSecurity.io production, David Carpe, Founder of Carpe Search Partners, shares deep insights on the professional value of networking (connecting with and offering service to the people around us) in the security community. We explore how to network effectively, offer a give, and how networking differs from charity, philanthropy, and everyday friends. Davides some profoundly personal views on the supposedly Great Silent Resignation, which may surprise you. We end with some gre. Youvice, you don't want to miss it.

David breaks down the art of effective networking, highlighting the distinction between simply expanding one's contact list and genuinely offering value to those we connect with. He elucidates on the nuanced differences between networking, charity, philanthropy, and maintaining everyday friendships, offering listeners a comprehensive understanding of how meaningful connections can be forged and nurtured.

Furthermore, David shares his provocative perspectives on the so-called Great Silent Resignation, challenging common perceptions and inviting listeners to consider deeper, more personal implications of this phenomenon. His views not only provoke thought but also encourage a reevaluation of the ways in which we engage with our professional journeys and the communities we are part of.

The episode concludes with David offering invaluable advice that transcends the conventional wisdom on networking and career development. This guidance is not just practical but grounded in the real-life experiences and successes of someone who has mastered the delicate balance of professional growth and personal fulfillment.

Tune into this YSecurity.io production for a session filled with profound insights and actionable advice from David Carpe. Whether you're deeply embedded in the security community, navigating the complexities of professional networking, or simply looking for ways to enrich your professional and personal life, this episode is packed with wisdom you won't want to miss. Join us as we explore the depths of networking, service, and community, guided by one of the most insightful minds in the industry.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

27. Colin Bitterfield - Head of Security (Acting CISO) People Data Labs

Mon, 16 Jan 2023 11:34:07 -0800

In this episode of a YSecurity.io production, Colin Bitterfield, a key figure at People Data Labs, offers a compelling narrative on how intertwining growth with security through standardization and meticulous documentation can propel a business forward. Colin unveils his strategic blueprint for constructing and sustaining a business-first security team, where the emphasis on people ensures a win-win scenario for all stakeholders involved.

Delving into the essence of his approach, Colin articulates the significance of aligning security measures with the overarching goals of the organization. By championing standardization and proper documentation, he underscores how these practices not only enhance security postures but also streamline operations, making security an enabler rather than a bottleneck for growth.

Throughout the conversation, Colin emphasizes the importance of prioritizing people—both within the team and the broader organization. He shares insights into how a security team, when built with a business-first mindset, can foster an environment of trust, collaboration, and mutual respect. This approach not only elevates the security function but also integrates it seamlessly into the fabric of the company, ensuring that security considerations are woven into the decision-making process at every level.

Listeners will gain a wealth of knowledge on tactics for building a resilient, agile security team that is deeply attuned to the business's needs. Colin's strategies for engaging team members and stakeholders alike highlight the critical role of communication, empathy, and shared objectives in achieving security that supports and drives business outcomes.

Join us on this YSecurity.io production for an insightful discussion with Colin Bitterfield. Whether you're a security professional looking to elevate your team's impact, a business leader seeking to integrate security more effectively, or simply interested in the nexus of security and business growth, this episode offers valuable lessons on creating a security culture where everyone truly wins.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

26. Andrew Spangler, Head of Security and Compliance at Harness, on Building Trust in Security

Thu, 01 Dec 2022 12:41:35 -0800

In this enriching episode of a YSecurity.io production, Andrew Spangler, the esteemed Head of Security and Compliance at Harness, invites us into the world of security through his experiences, offering a blend of light-hearted banter and profound insights. Andrew's journey in the security field, marked by both humility and vast expertise, serves as the backdrop for a discussion that delves into the core of building trust, leading effectively, and nurturing career growth within the security community.

Andrew shares candidly about the art of building trust—not just within teams but also in the broader context of the organization and its stakeholders. He offers personal anecdotes and strategies for leading teams with integrity, fostering an environment where transparency and accountability are paramount. His approach to interviewing strangers, a task often fraught with challenges, reveals the nuances of establishing rapport and assessing compatibility beyond technical skills.

The conversation also covers the critical aspects of overcoming security challenges and celebrating victories. Andrew emphasizes the importance of acknowledging the hard work and successes of security teams, recognizing that these moments of celebration are crucial for morale and team cohesion. This balanced perspective on addressing challenges and valuing achievements provides listeners with a holistic view of what it means to lead in the ever-evolving landscape of security.

Career development is another key theme of this episode. Andrew offers guidance and encouragement for professionals navigating their paths in the security field, highlighting the importance of continuous learning, mentorship, and community engagement. His reflections on career development are not just advice but a call to action for individuals at all stages of their security careers to pursue growth with purpose and passion.

Tune in to this YSecurity.io production for a conversation with Andrew Spangler that is as engaging as it is enlightening. Whether you're a seasoned security professional, someone just starting out, or simply interested in the human aspects of the security field, this episode offers valuable insights into the dynamics of trust, leadership, and career progression. Join us for a journey into the heart of security, led by one of the most thoughtful voices in the community.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

25. David Gurle - Founder and Executive Chairman at Hive, on Empathy, Innovation, and Disruption

Wed, 16 Nov 2022 14:25:49 -0800

In this heartfelt episode of a YSecurity.io production, we sit down with David Gurle, a visionary serial entrepreneur whose influence spans across some of the most transformative companies in secure communication and collaboration. From his early days at Thomson Reuters, Skype, Microsoft, Perzo, and Symphony Communications, and now as the Founder and Executive Chairman of Hive, David has consistently been at the forefront of driving positive change in how we connect and collaborate securely.

David's journey is deeply rooted in his formative years in Beirut, Lebanon, amid the backdrop of a civil war. He shares touching personal stories that highlight how these experiences instilled in him a profound understanding of the value of empathy and diversity. These principles have not only shaped his approach to technology and business but have also fueled his ambition to innovate and disrupt traditional paradigms.

At Hive, David is challenging the costly, error-prone, and insecure centralized compute and storage models by introducing a distributed cloud computing and storage platform. His insights into the genesis and mission of Hive offer a fascinating glimpse into the future of technology, where security, efficiency, and accessibility are paramount.

Throughout the episode, David reflects on the lessons learned throughout his career and the role of empathy in fostering innovation and driving change. His stories are a testament to the power of diverse experiences and perspectives in creating solutions that address some of today's most pressing challenges in communication and data security.

Join us on this YSecurity.io production for an inspiring conversation with David Gurle. Whether you're an entrepreneur, a tech enthusiast, or someone interested in the intersection of technology and human values, this episode offers a unique blend of personal narrative and professional insight that is sure to resonate. Discover the journey of a man who has made it his life's work to redefine the boundaries of secure collaboration and communication, driven by a commitment to empathy, diversity, and innovation.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

24. Aman LaChapelle, Early Engineer at Modular AI, on Redefining AI Infrastructure

Tue, 01 Nov 2022 09:48:47 -0700

In this episode of a YSecurity.io production, we delve into the innovative world of Aman LaChapelle, whose fresh engineering perspective is shaping the future of security, privacy, AI, big data, and scalable compute infrastructure. As a key figure at Modular, Aman is at the helm of a transformative project aimed at rebuilding AI infrastructure to make it accessible and privacy-conscious for all.

Aman shares his insights into the complexities of balancing the need for robust data privacy with the demands of building scalable AI systems. His approach, deeply rooted in a nuanced understanding of both the technical and ethical dimensions of AI, highlights the critical importance of privacy in the age of big data.

The conversation takes an exciting turn as we explore what Aman perceives as the missing elements in the current tech ecosystem. His observations challenge conventional wisdom and spark a lively discussion on the gaps and opportunities for innovation in AI infrastructure. The revelations shared by Aman are not only thought-provoking but also underscore the urgency of addressing these shortcomings to advance the field.

Listeners will be captivated by Aman's vision for a future where AI infrastructure is democratized, ensuring that advancements in technology are leveraged responsibly and inclusively. His passion for integrating privacy considerations into the fabric of AI development is a powerful reminder of the need for a holistic approach to technological innovation.

Tune into this YSecurity.io production for an enlightening conversation with Aman LaChapelle. Whether you're an engineer, a tech enthusiast, or someone interested in the intersections of AI, privacy, and infrastructure, this episode offers a fresh perspective on the challenges and possibilities that lie ahead. Join us as we uncover the missing pieces in the tech ecosystem and explore Aman's groundbreaking work at Modular.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

23. David M’Raihi: CPSO at Rivian, on Cryptography, Cars, and the Craft of Security

Wed, 19 Oct 2022 11:07:14 -0700

In this episode of a YSecurity.io production, we dive deep into the world of cryptography and software security with David M'Raihi, the Chief Product Security Officer at Rivian. With a wealth of experience in the field, David shares his insights on the multifaceted challenges and opportunities in protecting innovative technologies in the automotive industry.

David and host Jon McLachlan engage in a fascinating discussion on the essentials of building a robust security team, the intricacies of cryptographic systems, and the potential vulnerabilities that could lead to breaking RSA encryption. Beyond the technicalities, David offers a glimpse into his philosophy on leading an intentional and deliberate life, both within and outside the realm of cybersecurity.

Listeners will gain a rare look into the strategic thinking and technical prowess required to safeguard the future of mobility at Rivian, where cutting-edge vehicles and sustainable technology meet. David's approach to product security encompasses not only the protection of sophisticated software and hardware but also a commitment to fostering a culture of security awareness and resilience within the organization.

This episode is a must-listen for anyone interested in the crossroads of cryptography, automotive innovation, and personal growth. David M'Raihi's journey and reflections provide valuable lessons on leadership, the importance of a proactive security posture, and the pursuit of excellence in one's professional and personal life.

Tune into this YSecurity.io production for an enlightening conversation with David M'Raihi. Whether you're a cybersecurity professional, a technology enthusiast, or someone curious about the intersection of innovation and security in the automotive industry, this episode offers a unique blend of expertise, wisdom, and inspiration. Join us as we explore the complexities of securing the future of transportation and the deliberate choices that shape a meaningful life.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

22. Michael Crandell, CEO at Bitwarden Inc., on Open Source Security

Sat, 01 Oct 2022 12:53:14 -0700

In this inspiring episode of a YSecurity.io production, we are joined by Michael Crandell, CEO of Bitwarden Inc., who shares the vision, journey, and the profound wisdom behind Bitwarden's success. Bitwarden stands at the forefront of enhancing collaboration, bolstering security, and amplifying productivity through the synergy of open source and community engagement, offering an intuitive solution for securing passwords and sensitive information.

Michael delves into the ethos of Bitwarden, emphasizing how the open-source model not only fosters innovation and transparency but also cultivates a sense of belonging and contribution among its users. He reflects on the journey of Bitwarden, from its inception to becoming a pivotal tool for individuals and organizations worldwide in managing their digital security.

Listeners will be captivated by Michael's insights into the challenges and triumphs of building a security platform that prioritizes ease of use without compromising on robustness. The conversation sheds light on the unique advantages of leveraging community feedback and collaboration to refine and evolve security solutions, underscoring the critical role of open-source principles in the dynamic landscape of cybersecurity.

This episode is a testament to the power of community-driven development and the potential of open source to revolutionize how we think about and implement security in our digital lives. Michael's vision for Bitwarden and his deep understanding of the interplay between technology, security, and community engagement offer invaluable perspectives for anyone interested in the future of cybersecurity.

Tune into this YSecurity.io production for an engaging and enlightening conversation with Michael Crandell. Whether you're deeply involved in the tech industry, passionate about open-source projects, or simply looking for effective ways to secure your digital footprint, this episode provides a compelling look at the impact of community and open source on advancing security and productivity. Join us as we explore the inspirational journey of Bitwarden and the vision that drives its mission to make the digital world a safer place for everyone.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

21. Sergej Dechand, Co-Founder and CEO of Code Intelligence, on Fuzzing the Future

Fri, 09 Sep 2022 10:37:34 -0700

Sergej Dechand shares his security journey from usable security research to Co-Founding Code Intelligence, where he is CEO. Code Intelligence delivers open-source static analysis-guided fuzz testing that enables developers to simplify software security testing without modifying their code.

In this episode of a YSecurity.io production, we dive into the compelling world of software security with Sergej Dechand, Co-Founder and CEO of Code Intelligence. Sergej takes us through his fascinating journey from conducting usable security research to leading a company that's revolutionizing the way developers approach software security testing through open-source static analysis-guided fuzz testing.

Sergej explains how Code Intelligence is making sophisticated security testing accessible and efficient for developers, enabling them to detect vulnerabilities without the need to modify their existing code. By leveraging the power of fuzz testing, Code Intelligence empowers developers to build safer applications, highlighting Sergej's commitment to improving software security from the ground up.

Throughout the conversation, Sergej shares insights into the challenges and opportunities in the field of software security, emphasizing the importance of making security tools both powerful and user-friendly. He discusses the inspiration behind Code Intelligence, the impact of open-source contributions, and the future of security testing in an increasingly digital world.

Listeners will gain a deeper understanding of the critical role of security testing in software development and the innovative approaches being developed to tackle these challenges. Sergej's journey from a researcher to a tech entrepreneur provides a unique perspective on the intersection of usability and security, showcasing the potential for technology to create safer digital environments.

Join us on this YSecurity.io production for an enlightening conversation with Sergej Dechand. Whether you're a developer, a security professional, or someone interested in the evolving landscape of software development and security, this episode offers valuable insights into the cutting-edge of security testing technology. Tune in as we explore how Code Intelligence is simplifying and strengthening software security, one fuzz test at a time.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

20. Benoit Chevallier-Mames, Team Lead of Machine Learning at Zama, On Open Source Homomorphic Encryption

Fri, 02 Sep 2022 12:37:17 -0700

Dive into the world of cryptography with Benoit Chevallier-Mames in this episode of a YSecurity.io production, where he shares his remarkable journey through the realms of encryption, engineering, and leadership. From making significant contributions at Apple to his current role at Zama, Benoit's work has profoundly impacted data security for billions of users worldwide, all while maintaining a humble demeanor.

Benoit opens up about the valuable lessons learned during his tenure at Apple, offering insights into the challenges and breakthroughs that come with working on security for one of the most influential tech companies in the world. His transition to Zama marks a new chapter in his mission to enhance data protection, focusing on pioneering work in Fully Homomorphic Encryption (FHE) tailored for Machine Learning applications. Zama's open-source SDK represents a leap forward in making advanced cryptographic techniques accessible and practical for developers, underscoring Benoit's commitment to democratizing data security.

Throughout the conversation, Benoit delves into the technical intricacies behind Zama's approach to FHE, shedding light on how this cutting-edge technology can revolutionize privacy and security in the age of AI and big data. His explanations demystify complex concepts, making them understandable for both cryptography experts and enthusiasts alike.

The episode culminates in Benoit sharing profound words of wisdom, reflecting on his experiences and the philosophical underpinnings of his work. His perspective not only inspires but also offers guidance to those navigating the ever-evolving landscape of technology and security.

Join us in this YSecurity.io production for an enlightening discussion with Benoit Chevallier-Mames. Whether you're deeply embedded in the field of cryptography, fascinated by the intersection of security and technology, or seeking inspiration from those who've made a silent yet indelible impact on our digital lives, this episode promises a wealth of knowledge, insight, and inspiration.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

19. Aaron Painter, Founder and CEO of Nametag, On Redefining Authentication

Thu, 04 Aug 2022 19:39:40 -0700

In this engaging episode of a YSecurity.io production, we sit down with Aaron Painter, CEO of Nametag Inc, to explore the cutting-edge future of authentication. As we delve into the concept of "Sign in with ID," Aaron shares his vision for a world where traditional passwords and device-based authentication methods are replaced with a more secure, trusted, and user-friendly alternative.

Aaron provides a deep dive into how Nametag Inc is leading the charge in revolutionizing the way we think about securing our digital identities. Through the innovative "Sign in with ID" approach, Aaron discusses the potential to enhance privacy, reduce fraud, and streamline user experiences across the digital landscape.

Listeners will gain insights into the challenges and opportunities presented by current authentication methods and how Nametag's solutions aim to address these issues head-on. Aaron's expertise and passion for improving digital security shine through as he outlines the technical and societal implications of adopting ID-based authentication systems.

This conversation is not just about the future of authentication; it's a glimpse into the potential for technology to create more secure and efficient interactions in our increasingly digital world. Aaron's thoughtful analysis and forward-looking ideas offer valuable perspectives for anyone interested in the future of digital security, privacy, and user experience.

Tune into this YSecurity.io production for an enlightening conversation with Aaron Painter. Whether you're a tech enthusiast, a security professional, or someone curious about the next generation of authentication technologies, this episode offers a compelling look at how "Sign in with ID" could transform the way we access and protect our online presence.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

18. Anders Eknert, Developer Advocate at Styra, On Evolved Authorization

Sun, 03 Jul 2022 14:55:58 -0700

In this enlightening episode of a YSecurity.io production, we delve into the transformative world of authorization with Anders Eknert, whose journey to Styra is marked by deep insights and vast experience. Anders guides us through the evolution of authorization, addressing the pivotal question, "What are you allowed to do?" and illustrating how the landscape is shifting away from the chaotic "wild-wild-west" towards more structured, secure, and efficient frameworks.

Anders shares his journey, highlighting key experiences that have shaped his understanding and approach to authorization. With a focus on best practices, he explores the complexities of managing permissions and access in today's digital environments. Through his work at Styra, Anders is at the forefront of developing solutions that not only enhance security but also improve operational agility and compliance.

Listeners will gain a comprehensive understanding of the challenges and advancements in authorization technology. Anders' expertise illuminates the path toward more sophisticated and user-centric authorization models, emphasizing the importance of clear policies, automation, and the role of open-source projects like Open Policy Agent (OPA) in driving the industry forward.

This episode offers a unique opportunity to learn from one of the leading voices in the field of authorization. Whether you're a security professional, a developer navigating access control in your applications, or simply interested in the future of digital security and governance, Anders' insights provide valuable perspectives on the evolution of authorization practices.

Join us in this YSecurity.io production for a fascinating conversation with Anders Eknert. For those interested in reaching out or learning more about Styra's approach to authorization, Anders can be contacted at anders@styra.com. This episode is a must-listen for anyone looking to stay ahead in the rapidly evolving world of digital security and authorization.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

17. Sean Cassidy: Head of Security at Asana, Crafting Security Excellence

Fri, 03 Jun 2022 07:23:05 -0700

In this episode of a YSecurity.io production, we're privileged to have Sean Cassidy, the Head of Security at Asana, share the wealth of knowledge and experience he's accumulated in building leading security teams and developing impactful security products. Sean takes us on a journey through his career, offering an insider's view on the challenges and triumphs of establishing a culture of security excellence within an organization.

Listeners will be treated to Sean's stories from the trenches—lessons learned from both successes and setbacks. He delves into the strategies that have enabled him to assemble outstanding security teams, emphasizing the importance of diversity, continuous learning, and fostering an environment where innovation thrives.

Beyond team building, Sean discusses the intricacies of creating security products that not only protect but also enhance user experience. He shares insights into the balance between security and usability, the role of security in product design, and how Asana approaches these challenges to deliver solutions that businesses trust.

This episode offers valuable lessons for anyone interested in the art and science of security leadership and product development. Whether you're a budding security professional, a seasoned expert, or simply fascinated by the behind-the-scenes work that goes into protecting digital spaces, Sean's experiences provide a roadmap for excellence in the security domain.

Join us on this YSecurity.io production for an engaging and enlightening conversation with Sean Cassidy. Explore the journey of building security teams that make a difference and the process of crafting products that stand the test of today's security challenges.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

16. Will Butler, Red Team at Robinhood and Co-Founder of TruffleSecurity, From Hacking Airports to Leading Red Teams

Sun, 01 May 2022 06:58:21 -0700

In this thrilling episode of a YSecurity.io production, we sit down with Will Butler, a seasoned security expert whose journey into the world of red teaming began with an audacious hack of airport security systems in his youth. This pivotal moment not only sparked Will's passion for security but also set him on a path to becoming a formidable figure in the field of penetration testing and red teaming.

Will shares his fascinating transition from a curious youngster with a knack for finding security loopholes to a professional dedicated to safeguarding organizations against cyber threats. He delves into the various facets of red teaming, explaining the different types of red teams and the unique value they bring to businesses through penetration testing. Listeners will gain an insider's perspective on what constitutes a successful attack and the creative, unconventional thinking required to unearth vulnerabilities.

The conversation also touches on the critical importance of diversity within red teams. Will argues that a broad range of perspectives and experiences is crucial for success in this field, enhancing the team's ability to think outside the box and anticipate the myriad ways an attacker might breach security defenses.

Moreover, Will addresses the ethical and moral dilemmas that penetration testers often face. He discusses the fine line between hacking for security enhancement and the potential for misuse of skills, emphasizing the importance of ethical guidelines and professional integrity in the practice of red teaming.

This episode is a treasure trove for anyone intrigued by the art and science of cybersecurity, offering deep insights into the challenges, strategies, and ethical considerations of red teaming and penetration testing. Whether you're an aspiring security professional, a seasoned expert, or simply fascinated by the world of cybersecurity, join us for an engaging and enlightening conversation with Will Butler.

Tune into this YSecurity.io production to explore the captivating journey of a red team leader who transformed a youthful curiosity into a career dedicated to advancing security practices and protecting organizations from cyber threats.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

15. Salesforce Security Engineer, Benjamin Schmoker Scott, Navigating the Cyber Security Landscape

Fri, 01 Apr 2022 18:03:57 -0700

In this enlightening episode of a YSecurity.io production, we're joined by Ben, a versatile software engineer with a rich background in computer security. Having navigated a diverse career path that spans startups, major tech companies, research labs, and intelligence agencies, Ben brings a unique perspective to the table. He shares his journey into the world of security, recounting the experiences, challenges, and milestones that have shaped his career.

Ben delves into how he discovered his passion for security and the pivotal moments that guided his path through the industry's various sectors. His insights into the evolution of his roles offer listeners a glimpse into the dynamic and multifaceted nature of working in cyber security and threat intelligence.

Throughout the conversation, Ben discusses the obstacles he's encountered, both technical and personal, and how overcoming these has informed his approach to security. His stories highlight the importance of adaptability, continuous learning, and the value of diverse experiences in forging a successful career in cyber security.

Looking to the future, Ben shares his thoughts on the direction of Threat Intelligence and Cyber Security. He discusses emerging trends, the increasing significance of proactive defense mechanisms, and how the industry can evolve to address the growing sophistication of cyber threats.

Listeners will come away with a deeper understanding of the cyber security field from someone who has witnessed its evolution firsthand and contributed to its development. Ben's experiences underscore the importance of diversity in thought and background in enriching the security domain and driving innovation.

Tune into this YSecurity.io production for a compelling journey through the cyber security landscape with Ben. Whether you're an aspiring security professional, a seasoned expert, or simply intrigued by the complexities of protecting digital assets in an ever-changing threat environment, this episode promises valuable insights into the challenges and opportunities that lie ahead in the realm of cyber security and threat intelligence.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

14. Biff Clark, Cybersecurity Specialist and Owner of Coefficient Technologies, Frontiers of Cyber Security

Tue, 01 Mar 2022 08:28:59 -0800

In this episode of a YSecurity.io production, we have the pleasure of speaking with Biff W. Clark, the Managing Partner and Cyber Security Consultant of Coefficient Technologies LLC. With an impressive career spanning over 25 years in sales and sales leadership, including 15 years dedicated to consulting on information technology and cyber security solutions, Biff brings a wealth of knowledge and experience to the conversation.

Biff shares his journey from obtaining a BA in Business Management from Midland University to earning an MS in Cyber Security, Cyber Operations from Utica College. His passion for cyber security is matched only by his commitment to community and education, as evidenced by his roles with The Hidden Genius Project, Mindblown Labs, and Telescopic Ventures. Biff discusses the importance of mentoring the next generation, particularly black male youth, in technology, leadership, and entrepreneurship.

Listeners will gain insights into the evolving landscape of cyber security, the challenges businesses face in protecting their digital assets, and the innovative solutions that can help mitigate these risks. Biff's experience in selling and consulting provides a unique perspective on how companies can navigate the complex world of information security.

In addition to his professional achievements, Biff's involvement in non-profits and advisory roles highlights the intersection of technology, education, and social impact. He speaks on the significance of financial education through gamification and the potential of emerging technologies to transform industries and societies.

Join us in this YSecurity.io production for an inspiring and informative discussion with Biff W. Clark. Whether you're a cyber security professional, a technology enthusiast, or someone interested in the broader implications of digital security on society, this episode offers a comprehensive look at the challenges and opportunities in the field, underscored by Biff's dedication to making a difference both within and beyond the cyber security community.

Listeners interested in learning more about Biff's work or reaching out for consulting services can contact him at bwclark@coefficient.us. This episode is a must-listen for anyone looking to deepen their understanding of cyber security's current state and future directions, all through the lens of a seasoned expert and community leader.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

13. Paul Nguyen, Co-Founder and Co-CEO of Permiso Security, On Innovating Security Postures

Thu, 03 Feb 2022 07:51:20 -0800

Join us for an engaging episode of a YSecurity.io production featuring Paul Nguyen, the Co-Founder and Co-CEO of Permiso Security. Paul brings a wealth of knowledge and innovative insights from his journey in the cybersecurity industry, particularly in enhancing security posture and protecting against evolving threats.

In this conversation, Paul shares the story behind founding Permiso Security, highlighting the challenges and opportunities that led to the creation of a company dedicated to redefining how businesses approach their cybersecurity strategies. With a focus on leveraging cutting-edge technologies and methodologies, Paul discusses Permiso Security's mission to empower organizations with comprehensive insights and controls to navigate the complex digital landscape securely.

Listeners will dive into the nuances of building a cybersecurity startup, from identifying market needs to developing solutions that address the sophisticated tactics employed by modern threat actors. Paul also sheds light on the importance of fostering a culture of security awareness and resilience, emphasizing the role of leadership in cultivating environments where security is prioritized and integrated into every aspect of business operations.

Moreover, Paul offers his perspective on the future of cybersecurity, including emerging trends and how companies can stay ahead of threats by adopting proactive and intelligence-driven security measures. His insights provide valuable guidance for businesses of all sizes looking to enhance their security posture in an increasingly interconnected world.

Tune into this YSecurity.io production for a fascinating discussion with Paul Nguyen. Whether you're a cybersecurity professional, business leader, or tech enthusiast, this episode offers a deep dive into the strategies and innovations shaping the future of security. Join us as we explore the journey of Permiso Security and the vision driving its mission to protect and empower the digital enterprise.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

12. Founder Dan Sherry and Co-Founder Grace Chi deep dive into Pulsedive, Demystifying Threat Intelligence

Thu, 20 Jan 2022 15:59:15 -0800

In this insightful episode of a YSecurity.io production, we're joined by Dan Sherry, Founder and CEO, and Grace Chi, Co-Founder and COO, of Pulsedive, for an in-depth discussion on the pivotal role of Threat Intelligence in today's cybersecurity landscape. Dan and Grace share their journey of building Pulsedive, a platform dedicated to simplifying complex data problems in security and the instrumental role of community feedback in shaping their solutions.

The conversation kicks off with Dan and Grace explaining the genesis of Pulsedive and their mission to make Threat Intelligence accessible and actionable for organizations of all sizes. They delve into the challenges businesses face in understanding and leveraging threat data, emphasizing how Pulsedive's innovative approach transforms overwhelming data streams into clear, concise insights.

Listeners will gain an understanding of the nuances of Threat Intelligence, including how it can proactively protect against emerging threats and inform strategic security decisions. Dan and Grace highlight the importance of community-driven development, sharing how user feedback and collaboration have been crucial in refining Pulsedive's offerings to meet the evolving needs of the cybersecurity community.

Moreover, the discussion explores the balance between automation and human expertise in analyzing threat data, the significance of a dynamic and adaptive security posture, and how Pulsedive is contributing to a more secure digital ecosystem through education and empowerment.

Join us on this YSecurity.io production for a compelling conversation with Dan Sherry and Grace Chi. Whether you're a cybersecurity professional seeking to enhance your organization's defense mechanisms, a technology enthusiast curious about the latest trends in Threat Intelligence, or someone interested in the intersection of community collaboration and security innovation, this episode provides valuable insights into making complex data problems simple and the critical role of community feedback in achieving security success.

Tune in to explore how Pulsedive is leading the charge in demystifying Threat Intelligence and shaping the future of cybersecurity through community-driven innovation.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

11. Robert Rounsavall, Co-Founder of Trapezoid Inc., Firmware to Frontlines

Tue, 28 Dec 2021 09:11:19 -0800

Dive into the intersection of cybersecurity, military discipline, and endurance sports in this episode of a YSecurity.io production featuring Robert Rounsavall, Co-Founder and President of Trapezoid Inc. Robert's journey from a childhood fascination with security, through a distinguished military career, to leading innovation in firmware security, provides a compelling narrative of resilience, innovation, and leadership.

In this interview, Robert shares pivotal experiences from his youth that sparked his interest in security, laying the foundation for a career that spans both the high-stakes worlds of military operations and cutting-edge technology. His insights into the challenges and rewards of working in security architecture, particularly within large datacenter and cloud provider spaces, highlight the complexities of protecting digital infrastructure at scale.

Robert's military background as a Navy Crypto-Linguist Chief Petty Officer, combined with his leadership in incident response for enterprise and federal government organizations, showcases the depth of his expertise and the breadth of his impact on national security. His contributions extend beyond operations, as evidenced by his patent for a large-scale network security system, authorship in the Computer and Information Security Handbook, and involvement in key industry initiatives like the Open Data Center Alliance.

Drawing an intriguing parallel between the perseverance required in startups, security, and Ultramarathon running, Robert offers a unique perspective on the endurance, determination, and strategic thinking that define success in each of these domains. This comparison not only sheds light on his personal philosophy but also serves as inspiration for professionals navigating the long-distance challenges of the cybersecurity field.

Listeners will gain not only an appreciation for the technical intricacies of firmware security and cloud computing but also a deeper understanding of the leadership qualities that drive innovation and resilience in the face of evolving threats.

Join us for an engaging and insightful conversation with Robert Rounsavall. Whether you're a cybersecurity enthusiast, a veteran, an aspiring leader, or someone intrigued by the parallels between physical and cyber endurance, this episode offers a rich exploration of the skills and mindset required to excel in both the digital and physical arenas.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

10. Michael Malone, Founder and CEO of SmallStep, Certificates, Identity, X.509, and Authentication

Mon, 15 Nov 2021 09:27:21 -0800

In this compelling episode of a YSecurity.io production, Michael Malone, the visionary Founder and CEO of SmallStep, takes us on a deep dive into the critical realms of Identity, Certificates, X.509, and Authentication. Michael unfolds the journey of SmallStep, from its initial focus on Authorization to its strategic pivot towards Authentication, highlighting the evolutionary path of the company and its contribution to enhancing digital security.

Michael recounts the origins of SmallStep, sharing the story of its humble beginnings and the pivotal moments that led to its reorientation towards Authentication. This shift underscores the dynamic nature of the cybersecurity landscape and SmallStep's agile response to emerging needs and challenges.

Beyond the technicalities of digital security, Michael delves into his underlying philosophy of hiring, work ethics, and business development. He emphasizes the importance of assembling a team that not only possesses the requisite technical skills but also shares a common vision and commitment to advancing cybersecurity solutions. Michael's pragmatic approach to building a business is rooted in a clear understanding of the market, customer needs, and the continuous pursuit of innovation.

Listeners will gain insights into the complexities of managing digital identities and the critical role of certificates and authentication mechanisms in securing online interactions. Michael's expertise sheds light on the significance of robust authentication processes and the ways in which SmallStep is contributing to a more secure digital future, one small step at a time.

Join us for an engaging and enlightening conversation with Michael Malone. Whether you're a cybersecurity professional, a technology enthusiast, or someone interested in the intricacies of digital identity management, this episode offers a comprehensive look into the challenges and solutions at the forefront of securing the digital landscape.

Tune in to explore how SmallStep is navigating the cybersecurity ecosystem, the philosophical and practical considerations behind building a tech company, and the steps being taken toward realizing a more secure future for digital identities and transactions.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

9. Dylan Ayrey, Founder and CEO of Truffle Security, How Open-Source Makes the World More Secure

Tue, 07 Sep 2021 12:59:37 -0700

In this thought-provoking episode of a YSecurity.io production, we're joined by Dylan Ayrey, the Founder and CEO of Truffle Secure, for a deep dive into the transformative power of open-source projects in cybersecurity. Dylan, the brain behind the renowned open-source tool Truffle Hog, shares insights on leveraging open-source projects to forge a more secure, resilient, and transparent digital future.

Dylan begins by addressing the critical task of uncovering secrets hidden within GitHub repositories, including the Git history, and the role of tools like Truffle Hog in mitigating potential security risks. This conversation not only highlights the practical aspects of security in software development but also underscores the broader implications of sensitive data exposure.

Skeptics of open-source projects often question their viability for building real companies or securing software. Dylan challenges this skepticism by illustrating the tangible benefits and successes achieved through open-source initiatives. He delves into the distinction between Community and Open Source, elucidating why these concepts, while overlapping, cater to different aspects of the software development ecosystem.

The discussion then turns to the importance of open-source projects for engineers, particularly those at the onset of their careers. Dylan advocates for the engagement with open-source as a means of skill development, networking, and contributing to the greater good of the tech community. He shares strategies for engineers and advocates within large organizations to champion the development and adoption of open-source projects, highlighting the business and security value these initiatives can bring.

Listeners will be treated to a rich exploration of how open-source projects like Truffle Hog are instrumental in advancing security practices and fostering a culture of collaboration and transparency in the tech industry. Whether you're an engineer, a cybersecurity professional, or simply interested in the impact of open-source on the future of technology, this episode offers compelling reasons to engage with and support open-source initiatives.

Join us for an enlightening conversation with Dylan Ayrey on the pivotal role of open-source in shaping a more secure digital landscape. Tune in to understand the nuances of discovering hidden risks in code, the symbiotic relationship between open-source and community, and how early career engagement with open-source projects can propel both personal growth and industry-wide advancements.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

8. Fredrick Lee, CSO of Gusto: Why is authentic diversity essential for epic security teams?

Tue, 24 Aug 2021 12:19:55 -0700

In this deeply insightful episode of a YSecurity.io production, we are honored to have Fredrick Lee ("Flee"), the Chief Security Officer at Gusto, share his experiences and the profound impact of diversity on building engineering and security teams. Flee's journey from his childhood, through his formative years at a boarding school in the deep south, to his role as a leading figure in cybersecurity, is not only inspiring but also illuminates the critical role diversity plays in fostering innovation and resilience.

Flee recounts his early fascination with computers and his discovery of the hacker magazine 2600, which opened a new world of security challenges and opportunities. Inspired by pioneers like John Lee (John Threat), Flee's narrative is a testament to the power of representation and the importance of diverse role models in the tech space. His journey is a reflection of how a community of diverse outcasts, connected by their passion for computing, can shape one's path in cybersecurity.

The conversation then shifts to the core of diversity's value in engineering and security teams. Flee articulates why building diverse teams is not just a social imperative but a technical necessity. He explains how diversity brings a multitude of perspectives that enhance problem-solving and innovation, leading to more resilient teams and products. Flee argues that the varied experiences and backgrounds of a diverse team contribute to a richer understanding of security challenges and more creative solutions.

Collaboration and open-source are highlighted as vital components of the security community, promoting a culture of sharing and collective growth. Flee shares how these practices have been instrumental in his work and the broader cybersecurity landscape, enhancing the community's ability to respond to threats and vulnerabilities effectively.

One of the most poignant moments of the interview comes when Flee describes his best days as the CSO at Gusto, particularly in the wake of George Floyd's murder. He reflects on the significance of empathy, leadership, and the responsibility of organizations to not only acknowledge societal issues but to actively contribute to positive change.

Join us for an unforgettable conversation with Fredrick Lee on the indispensable role of diversity in building effective, resilient, and innovative security teams. Whether you're in the cybersecurity field, passionate about diversity and inclusion, or interested in the intersection of social justice and technology, this episode offers invaluable insights into the power of diversity as both a moral and technical imperative for the future of tech.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

7. Michael Brooks, vCISO and Director of Cyber Risk Services at Trava

Tue, 10 Aug 2021 13:18:13 -0700

In this thought-provoking episode of a YSecurity.io production, we welcome Michael Brooks, the Chief Information Security Officer at Trava, to dissect the complex world of cyber risk, ransomware attacks, business preparedness, and risk management strategies. Michael brings a wealth of knowledge and experience, offering deep insights into the foundational challenges and strategic imperatives of cybersecurity.

At the heart of our discussion is the critical importance of data security. Michael prompts us to consider the intrinsic value of our data, urging businesses to reflect on whether they can operate without certain datasets. This perspective shifts the conversation from theoretical security measures to practical, business-critical imperatives. It's not just about protecting data for the sake of compliance or fear of breaches, but recognizing data as the lifeblood of modern business operations.

Michael delves into the anatomy of ransomware attacks, shedding light on the tactics used by attackers and the vulnerabilities they exploit. He emphasizes the need for businesses to not only fortify their defenses but also to cultivate a deep understanding of their risk profile. This involves identifying which data sets are vital for business continuity and ensuring they are adequately protected against potential threats.

The conversation also explores the broader landscape of cyber risk management, highlighting the importance of preparedness and resilience. Michael shares strategies for businesses to assess their vulnerabilities, implement robust security protocols, and develop incident response plans. He stresses that risk management is not a one-size-fits-all solution but requires a tailored approach that aligns with the unique needs and risk tolerance of each organization.

Listeners will gain practical advice on enhancing their cybersecurity posture, from the technicalities of safeguarding against ransomware to the nuances of cyber risk management. Michael's insights underscore the significance of understanding the value of data and the critical role it plays in determining security priorities.

Join us for an engaging and enlightening conversation with Michael Brooks on navigating the complexities of cyber risk and the pivotal steps businesses can take to ensure their data—and by extension, their operations—are secure. Whether you're a cybersecurity professional, a business leader, or simply interested in the dynamics of digital security, this episode offers valuable perspectives on protecting what matters most in the digital age.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

6. Prakash Darji, General Manager of Digital Experience at Pure Storage: The Next Frontier of Storage and Security

Mon, 26 Jul 2021 12:10:18 -0700

In this episode of a YSecurity.io production, we sit down with Prakash Darji, General Manager of the Digital Experience Business Unit at Pure Storage, for an insightful conversation about the evolving landscape of storage and security. Prakash brings a wealth of knowledge and experience to the table, offering a glimpse into the future of these critical technology sectors as envisioned by one of the industry's leaders.

The discussion kicks off with an exploration of Pure Storage's strategic acquisition of Portworx, a move that underscores the company's commitment to leading in the storage and security domains. Prakash elaborates on how this acquisition enhances Pure Storage's offerings, particularly in addressing the complex needs of containerized applications and cloud-native technologies, which are at the forefront of digital transformation efforts across industries.

Prakash then delves into the pressing issue of ransomware, sharing valuable insights into how businesses can bolster their defenses and recover quickly from such attacks. He emphasizes the importance of resilience and preparedness, highlighting innovative solutions and best practices that Pure Storage offers to help organizations mitigate risks and minimize the impact of security breaches.

Listeners will be treated to Prakash's forward-looking perspectives on the future of storage and security. He discusses emerging trends, the increasing integration of AI and machine learning technologies, and the critical role of advanced storage solutions in securing and managing the exponentially growing volumes of data generated by modern digital activities.

This conversation is not just about understanding the current state of storage and security; it's an invitation to think about the future possibilities and the strategic moves companies like Pure Storage are making to address the challenges and opportunities ahead.

Join us for a lively and informative discussion with Prakash Darji on the future of storage and security. Whether you're a tech enthusiast, a professional in the IT sector, or someone keen on understanding the directions in which these essential technology pillars are heading, this episode offers a comprehensive overview of what lies on the horizon.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

5. Leigh Honeywell, Founder and CEO of Tall Poppy, The Human Side of Privacy and Security: Online Harassment and Abuse

Thu, 01 Jul 2021 13:29:40 -0700

Join me for an interview with Leigh Honeywell. As founder and CEO of Tall Poppy, she's building tools and services to help companies protect their employees from online harassment and abuse.

Together, we share many vulnerable and authentic moments as we explore online harassment, abuse, and how Tall Poppy helps humans navigate difficult situations while still building a thriving business that makes the web better for all of us.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

4. Wesley Belleman of California Air National Guard and Palo Alto Networks: Security Operations Center from Military and Private Industry Perspectives

Thu, 17 Jun 2021 10:18:18 -0700

An interview with Wesley Belleman, Cyber Warfare Operator at the California Air National Guard and System Engineer at Palo Alto Networks, and his journey through Security Operations in the United Space Space Force.

In this episode, we dive into what a SOC is, how new technology changes our ability to respond to threats, and what the open problems are still open. We explore the cultural differences between civilian and military security operations and discuss various open-source projects such as Security Onion or MITRE Att&ck that can be used to build your own SOC.

So what will the future of SOC's look like? Wes echo's Anton Chuvakin predictions that SOC's will be entirely automated, likely within our lifetimes, but not soon.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

3. Daniel Feldman, Cloud Security Architect at HPE, Service Authentication with SPIFFE and SPIRE

Thu, 03 Jun 2021 09:20:08 -0700

An interview with Daniel Feldman, Cloud Security Architect at HPE (formerly Scytale.io), as we discuss his journey through service authentication with the open standard SPIFFE and the implementation SPIRE.

In this episode, Daniel tells the story of how he came across this problem of authentication at Veritas Technologies, why he joined a small startup Scytale.io to continue focusing on his security journey, and touch on what it's like at Hewlett Packard Enterprise. We end on a forward-looking note on what the future of cloud security might look like, with many challenging and open cloud security problems out there.

Daniel is happy to meet others with similar interests and experiences, so in that spirit, he is open to connecting and sharing stories and ideas. He can be reached on LinkedIn or Twitter as d_feldman.

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

2. Andrew Gontarczyk, CISO of Pure Storage: Building a Security Team

Mon, 17 May 2021 10:37:47 -0700

An interview with Andrew Gontarczyk, Chief Information Security Officer at Pure Storage, on the challenges of building a security team.

When is the right time for a company to build a security team? What types of Security Teams are there (Product Security, Infrastructure Security, DevSecOps, Red Team, Blue Team, Purple Teams), and what do they do? As a security leader, how do you influence the rest of a company towards a more secure posture? What are your favorite interview questions, and why? What role does diversity play in your team building? What's your leadership style? Even with a security team in place, what still keeps you up at night?

YSecurity: www.ysecurity.io

🔒 Sponsored by YSecurity

Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.

Book a free strategy call and we'll tell you exactly where you stand.

👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com

👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months

1. Anand Ganesh, Founding Software Architect at Hammerspace: Data-as-a-Service solves traditional security problems

Thu, 06 May 2021 16:16:13 -0700

Join me for an interview with Anand Ganesh, Founding Software Architect at Hammerspace, to discuss how storageless data solves traditional B2B storage security problems.

What is storageless data? How does Hammerspace encrypt data at rest? How do disaster recovery, backup, and snapshot data protection mechanisms work in Hammerspace? Why does data-as-a-service eliminate the need for fail-overs (passive-to-active transitions)? How do permissions work? How does intelligent data classification work in Hammerspace? How does Hammerspace help a customer recover from a ransomware attack? Do we have to trust our storage vendors such as AWS, Google, Azure, or even on-prem data centers? How do you securely delete data in a globally distributed system, like Hammerspace?