That one difference — rooted in centuries of philosophy, theology, and cultural storytelling — may be the most important thing nobody is talking about in the AI debate right now.

SecureTalk host Justin Beals sits down with scholars Bogna Konior (NYU Shanghai), Mi You (University of Kassel), and Vincent Garton to explore their co-edited book "Machine Decision Is Not Final: China and the History and Future of Artificial Intelligence" — and what it reveals about the hidden assumptions driving the decisions we make about AI governance, security, and society.

What this conversation unpacks:

→ Why Western AI fear traces back to Christian theology — not rational risk analysis

→ How the Chinese term for AI literally means "human-made wisdom ability" — no alien mind implied

→ The 2019 Elon Musk vs. Jack Ma exchange that exposed the cultural divide in real time

→ What DeepSeek's open-source breakthrough says about innovation, restriction, and creative problem-solving

→ Why this debate matters far beyond the US and China — and who else is watching closely

If you work in cybersecurity, tech leadership, or AI policy, the cultural lens on this technology isn't a soft question. It shapes real architectural, governance, and regulatory decisions.

Chapters

00:00 Introduction and Perspectives on AI in China
02:41 The Meaning Behind the Claw Machine Image
05:33 The Book's Creation and Collaborative Efforts
08:32 Cultural Perspectives on AI: East vs. West
11:06 The Impact of Open Source AI Models
13:45 Innovation in a Controlled Environment
16:20 Human-Made vs. Artificial Intelligence
19:23 The Philosophical Underpinnings of AI
22:06 The Role of Human Agency in AI Decisions
24:54 Exploring the Future of AI and Society
27:26 The Synthesis of Technology and Society
30:22 Conclusion and Final Thoughts
44:17 Understanding Artificial Intelligence: A Cultural Perspective
47:08 Machine Decision: The Chinese Perspective on AI
49:59 Innovation and Openness in AI Development
50:27 Global Implications of AI Beyond Superpowers
50:37 Introduction and Context of AI Governance
01:00:53 The Role of Computers in Decision Making
01:08:26 Transparency in AI and Governance
01:17:58 Cultural Perspectives on AI: East vs. West
01:23:46 The Singularity and Its Philosophical Implications
01:27:15 Simulation and Reality in AI Discourse
01:35:14 Social Implications of Large Language Models

🎙️ SecureTalk is hosted by Justin Beals, CEO of Strike Graph.

🔔 Subscribe for weekly conversations at the intersection of cybersecurity, technology, and leadership.

#ArtificialIntelligence #AIPolicy #ChinaAI #DeepSeek #Cybersecurity #AIGovernance #TechLeadership #OpenSourceAI

```

Chuck is a combat veteran, MIT graduate, and the Social Security Administration's first dedicated Chief Data Officer. He arrived two weeks before the 2025 administration change, watched data governance requests get denied and sensitive work get siloed away from the officials responsible for protecting it,  and when the risk became too great to ignore, he spoke up. It cost him his job.

In this episode of SecureTalk, Chuck and host Justin Beals cover:
- Why NUMIDENT data breach goes far beyond a typical data breach
- How shadow IT and unchecked access created a governance nightmare inside the SSA
- The national security implications of 550 million identity records at risk
- What it actually takes to blow the whistle when the stakes are this high

This is one of the most important cybersecurity conversations of 2025, not because of the technology involved, but because of what it reveals about the systems we trust to protect us.

Chapters

00:00 From Dreams to Data: A Unique Journey
02:47 Navigating the Data Landscape: Challenges and Innovations
05:41 The Role of Governance in Data Management
08:20 Civil Service and the Mission Mindset
11:16 Chaos and Change: The Impact of Administration Shifts
13:52 Empathy in Leadership: The Human Element
16:51 Life Experience and Effective Governance
21:16 Siloing and Data Manipulation in Government
23:30 The Risks of Shadow IT and Data Security
27:39 The Dangers of Numident Data
30:08 The Nightmare of Data Exfiltration
31:52 The Courage to Blow the Whistle
36:19 Transitioning to Political Service
38:24 Challenges of Running for Office
41:36 Building Community Through Problem Solving
43:05 Introduction to Data Sensitivity and Governance
44:33 The Risks of Data Exposure
45:55 Chuck Borges: A Profile in Data Leadership
46:46 Introduction to SecureTalk and Data Security
47:37 The Role of the Social Security Administration
48:35 Chuck Borges: A Journey Through Data Governance
50:28 The Impact of Administration Changes on Governance
56:14 Challenges in Data Management and Governance
01:00:58 The Risks of Data Exposure and Mismanagement
01:05:37 Whistleblowing and Ethical Responsibilities
01:14:56 Running for Office: A New Chapter in Public Service

Resources: 
 
Chuck Borges Website - https://chuck4md.com
Twitter - https://twitter.com/Chuck4MD

🔔 Subscribe to SecureTalk for weekly conversations on cybersecurity, leadership, and the technology shaping our world.
#SocialSecurity #DataGovernance #Cybersecurity #DataBreach #NationalSecurity #Whistleblower #FederalCybersecurity #IdentityTheft #SecureTalk #CDO

In this episode of SecureTalk, host Justin Beals sits down with John Ackerly, CEO and co-founder of Virtru and former White House technology policy adviser, to explore why perimeter security alone is broken — and what data-centric, cryptographic control means for the future of cybersecurity.

They cover:

00:00 Introduction to SecureTalk and Data Security
02:28 John Ackerly's Experience and Insights on Privacy Legislation
05:05 The Dichotomy of Privacy and Security
09:12 Public-Private Partnerships in National Security
12:24 Navigating Compliance and Security in Business
15:26 The Role of Technology in Security Solutions
18:40 Family Ties and Military Background in Cybersecurity
20:41 Insider Threats and Data Security Innovations
23:29 The Importance of Data Management and Audits
26:12 Cultural Impact on Security Practices
29:19 Future Challenges: Quantum Computing and Security
32:52 The Evolution of AI and Data Science in Security

Whether you work in cybersecurity, government, or technology policy, this conversation connects the policy decisions of the past 25 years to the architectural challenges we face today.

🔒 Learn more about Virtru: https://www.virtru.com 🎙️ Subscribe to SecureTalk for weekly conversations at the intersection of technology, security, and society.

Robert Siciliano has spent 30 years as a private investigator, appearing on CNN, The Today Show, and Fox News to explain exactly how con artists and cybercriminals think — and why your brain is actually working against you.

In this eye-opening conversation with SecureTalk host Justin Beals, Robert reveals:

- The psychological reason almost everyone falls for scams eventually

- How criminals use loneliness to build fake relationships and drain bank accounts

- Why your parents are the #1 target for the $124 trillion wealth transfer underway

- What a deepfake video call cost one company $25 million — in a single afternoon

- The one habit that would protect 80% of people — and almost nobody does it

This isn't a tech talk. It's a human talk. And it might be the most important conversation you have about your money, your family, and your identity this year.

Chapters

00:00 Introduction to Cybersecurity Challenges
02:44 The Human Blind Spot in Cybersecurity
05:30 Engaging Employees in Security Practices
08:44 Understanding Cybercrime Trends
11:30 The Psychological Aspects of Trust and Security
14:03 Personalizing Security Awareness Training
17:01 The Role of AI in Cybersecurity Threats
23:46 The Dark Reality of Human Trafficking and Cyber Crime
25:55 The Evolution of Cyber Crime Tactics
27:37 Understanding Human Behavior in Cybersecurity
29:54 The Impact of Loneliness on Cyber Vulnerability
31:58 The Kitchen Table Effect in Security Training
34:20 The Importance of Human Connection in Security Awareness
37:40 Empathy and Responsibility in Cybersecurity
39:47 Personal Stories Shaping a Security Perspective

🔔 Subscribe to SecureTalk — new episodes every week.

#ScamAlert #OnlineScams #IdentityTheft #CyberSafety #DeepFake #FinancialSecurity #PersonalFinance #TechForEveryone #StayProtected #CyberAware

Dr. Claire Finkelstein, Professor of Law at University of Pennsylvania and Director of the Center for Ethics and the Rule of Law, saw this coming. In October 2024, she ran a tabletop exercise with over 30 retired military leaders simulating exactly this scenario: federal forces confronting state National Guard during civil unrest. The simulation escalated to violence faster than anyone expected, with few off-ramps once momentum built.

Now that simulation is playing out in real time.

Dr. Finkelstein has been on the legal front lines, representing 155 members of Congress before the Supreme Court. When the Court ruled the administration couldn't use National Guard troops as they intended, ICE agents surged instead—creating the confrontation we're seeing today.

The questions are urgent: Can states prosecute federal agents who commit crimes in their jurisdiction? What happens when federal authorities claim immunity? How do soldiers follow orders when they can't trust those orders are lawful? The Supreme Court's immunity decision has made these questions harder to answer.

This conversation explores what happens when rule of law meets political will, and what remains when the institutions designed to protect democracy face their greatest test.

#CyberSecurity #NationalSecurity #Democracy #RuleOfLaw #Minnesota #Minneapolis

Resources: 
Finkelstein, Claire. (2026, January 21). We ran high-level US civil war simulations. Minessota is exactly how they start. The Guardian. https://www.theguardian.com/commentisfree/2026/jan/21/ice-minnesota-trump

The math is stark: 90% of social media users are represented by only 3% of tweets. We're making decisions based on algorithmic extremes, not community wisdom. Pentland shows how Taiwan used the Polis platform to restore government trust from 7% to 70% by eliminating follower counts and visualizing the full spectrum of opinion—proving most people agree more than they think.

For security professionals, the implications are profound: culture drives security outcomes more than controls. The stories your team shares about breaches, vulnerabilities, and response protocols create the shared wisdom that determines whether you're actually secure. AI can help synthesize context and surface patterns across distributed organizations, but cannot replace the human judgment needed when edge cases and outliers occur.

Drawing parallels to the Enlightenment—when letter-writing networks sparked unprecedented collaboration among scholars—Pentland argues we stand at a similar inflection point. We have tools that let us share information at unprecedented scale, yet our digital systems amplify loud voices and create echo chambers instead of fostering collective wisdom. His book "Shared Wisdom" offers a pragmatic framework for cultural evolution in the age of AI, recognizing we'll take steps forward, make mistakes, and need to choose our direction deliberately.

Key insights include understanding AI as a statistical repackaging of human stories, recognizing how four waves of AI development have each failed in predictable ways, and learning why loyal agents—systems legally bound to serve your interests like doctors and lawyers—represent the future of trustworthy AI. Pentland also explains why audit trails and liability matter more than premature regulation, and how communities need local governance that's interoperable but not uniform.

Alex "Sandy" Pentland is Stanford HAI Fellow, MIT Toshiba Professor, and member of the US National Academy of Engineering. Named one of "100 People to Watch This Century" by Newsweek and one of "seven most powerful data scientists in the world" by Forbes, his work established authentication standards for digital networks and contributed to pioneering EU privacy law.

Episode Resources: 
Pentland, Alex. (2025). Shared Wisdom: Cultural Evolution in the Age of AI. The MIT Press.  https://mitpress.mit.edu/9780262050999/shared-wisdom/

This strategic edition synthesizes lessons from security leaders at Walmart, PayPal, Postman, and the defense industrial base to reveal the playbook for 2026: treating security as a business function that enables velocity, builds trust, and creates competitive moats.

Five Strategic Imperatives for 2026:
1. Architect for the AI Identity Explosion 
When AI agents access your CRM, email, and databases on behalf of humans, who's accountable? Walmart's 10,000+ developers faced this at scale. Learn how to govern probabilistic, non-deterministic systems before deployment breaks.
2. Turn Supply Chain Security Into Competitive Advantage
CMMC enforcement is here—Raytheon paid $8.4M, Penn State $1.25M. But smart contractors are leading with certification to win contracts. See how quantitative security standards are reshaping business relationships between primes and subs.
3. Extract Intelligence From Your Own Logs 
One organization prevented $3M in fraud using internal threat intelligence. Learn why focused AI models that analyze your specific environment outperform generic vendor feeds.
4. Make Security Your Primary Differentiator 
When SOC 2 Type II certification wins you three enterprise customers worth $2M ARR, security spending looks very different to the CFO. Discover how to position security as the reason customers choose you.
5. Build Culture, Not Tool Stacks 
The oil & gas industry made safety everyone's responsibility through culture, not technology. Apply the same principles to solve cybersecurity's 65% turnover crisis.

Expert Insights From:
Rishi Bhargava (Descope) | Tobias Yergin (Walmart) | Bob Kolasky (Exiger) | Chris Wysopal (Veracode) | Bill Anderson (Mattermost) | Satyam Patel (Kandji) | Sam Chehab (Postman) | Brian Wagner | Dimitry Shvartsman (PayPal)
The Meta-Pattern: Organizations winning in 2026 measure security in business terms—revenue enabled, customers won, time to market reduced. They're not the "department of no" blocking progress—they're the team enabling fast, safe movement.

🎙️ SecureTalk: Strategic conversations with security leaders, hosted by Justin Beals
🔔 Subscribe for insights on AI security, CMMC, threat intelligence & security ROI

This special episode reveals how grassroots cultural shifts create lasting change, and why 2026 might be the year cybersecurity professionals become architects of something bigger than defenses.

We've distilled 2025's conversations with experts from Harvard, MIT, NYU, Brown, and the AI development frontlines into seven actionable lessons that reframe security from technical problem to human opportunity. From understanding the 800 billion AI agents already in our systems, to recognizing why your most valuable threat intelligence is already in your logs, to building the communities that make external defenses less necessary.

Here's what successful security leaders are realizing: The organizations thriving in 2026 aren't just protecting systems—they're creating conditions where humans and AI can flourish together.

THE SEVEN LESSONS: 
• Social division is our greatest vulnerability (and connection is our strength) 
• Technology won't save us from ourselves (but we can) 
• Real change happens through grassroots cultural shifts 
• AI demands fundamentally different thinking (here's how) 
• Our values can blind us (when to trust them, when not to) 
• The weakest links are often invisible (where to look) 
• Context matters more than technology (your advantage is closer than you think)

FEATURING INSIGHTS FROM: Dr. Claire Robertson (NYU) | Greg Epstein (Harvard/MIT) | Dr. De Kai | Rishi Bhargava (Descope) | Tobias Yergin (Walmart AI) | Prof. Steven Sloman (Brown) | Lars Kruse | Brian Wagner | Dr. Aram Sinnreich | Jesse Gilbert

PERFECT FOR: Security leaders building resilient organizations | Professionals navigating AI transformation | Anyone ready to move beyond purely technical solutions

🔗 StrikeGraph: https://strikegraph.com

Which lesson will change how you approach security in 2026? 

#Cybersecurity #AIGovernance #SecurityLeadership #CyberResilience #AIEthics #CISO #ThreatIntelligence #FutureOfWork

Join SecureTalk host Justin Beals for an essential conversation with Dr. Paola Cecchi-Dimeglio about building secure, ethical virtual worlds. Dr. Cecchi-Dimeglio brings 25 years of experience advising governments, Fortune 500 companies, and global institutions on AI ethics and technology governance.

Her new book "Building a Thriving Future: Metaverse and Multiverse" (MIT Press, 2025) provides frameworks for building virtual spaces that serve humanity rather than exploit it.

CORE THEMES: 
• Security by design vs. security bolted on after problems emerge 
• How biases get encoded into AI systems—and prevention strategies 
• The critical role of "human in the loop" for AI oversight 
• Why good regulation creates business stability 
• Digital identity systems for global inclusion 
• Authentication and verification in virtual spaces 
• Cross-border legal frameworks for technology governance

REAL-WORLD IMPACT: Over 1 billion people globally lack legal identification—virtual worlds could solve this through blockchain-based digital identity, or create new exclusions if built poorly. The standards we set now for authentication, verification, and identity control will determine whether these spaces become tools for human flourishing or mechanisms for surveillance.

WHY THIS MATTERS NOW:

• Virtual worlds already exist—gaming platforms host billions of users
• AI is accelerating everything, including security vulnerabilities
• Deepfake technology is improving faster than detection methods
• The decisions made today will shape digital society for decades

SURPRISING INSIGHTS: 
→ Children currently detect deepfakes better than adults (but not for long) 
→ Major consulting firms have sold governments expensive reports full of AI errors 
→ Voice recognition systems historically failed on non-Western accents due to training data bias
→ Email autocorrect defaults "Paola" to "Paolo" because datasets contained more men than women

ABOUT THE GUEST: Dr. Paola Cecchi-Dimeglio is a globally recognized expert in AI, big data, and behavioral science. She holds dual appointments at Harvard Law School and Kennedy School of Government, co-chairs the UN ITU Global Initiative on AI and Virtual Worlds, and has authored 70+ peer-reviewed publications. Her work advises the World Bank, European Commission, and Fortune 500 executives on ethical AI implementation.

THE OPTIMISTIC VISION: Virtual worlds can tap talent anywhere, breaking geographic barriers. They can connect separated families, provide legal identity to excluded populations, and create opportunities we can't yet imagine—but only if we build them with security, ethics, and human values as foundational requirements.

ABOUT SECURETALK: SecureTalk ranks in the top 2.5% of podcasts globally, making cybersecurity and compliance topics accessible to business leaders. Hosted by Justin Beals, CEO of Strike Graph and former network security engineer.

Perfect for: Security professionals, technology leaders, business executives, policy makers, anyone concerned about building ethical AI systems and secure virtual worlds.

📚 "Building a Thriving Future: Metaverse and Multiverse" by Dr. Paola Cecchi-Dimeglio (MIT Press, 2025)

#AIEthics #Cybersecurity #VirtualWorlds #TechnologyGovernance #MetaverseSecurity #DigitalEthics #AIRegulation #SecureByDesign

Justin Beals opens with a personal story about leaving a religious environment defined by absolute values, setting the stage for an exploration of how cognitive science explains why extremists control discourse, why outrage dominates social media, and why having strong values might actually be essential for good decision-making.

KEY TOPICS: • The two systems humans use for decision-making and why both matter • Why simplified positions dominate complex policy debates • How humor breaks through absolutist thinking • The critical difference between AI association and human deliberation • Why communities radicalize when they become too insular • Practical frameworks for leadership teams navigating value conflicts

Sloman, author of "The Cost of Conviction: How Our Deepest Values Lead Us Astray," shares insights from decades of research on cognition, reasoning, and collective thinking. The conversation moves from abstract cognitive science to immediate applications for security professionals operating in organizations where tribal loyalties threaten evidence-based decision-making.

Whether you're presenting risk assessments to boards, building security culture, or helping organizations function during divisive times, this episode offers frameworks for understanding when values serve us and when consequentialist analysis becomes essential.

Resources: Sloman, S. (2025). The cost of conviction: How our deepest values lead us astray. MIT Press. (https://mitpress.mit.edu/9780262049825/the-cost-of-conviction/) 

In this episode, former punk rock kid turned threat intelligence leader Joe Rossi reveals why your most valuable security intelligence isn't from expensive vendor feeds—it's sitting in your own logs right now. He shares the hard lessons learned building CTI programs from scratch, why most organizations focus on the wrong threats, and how to make security a competitive advantage instead of just a cost center.

Key insights:

• Why your firewall logs are more valuable than threat intelligence feeds

• The cultural mindset required before you invest in CTI

• How to quantify security program ROI in terms leadership actually cares about

• Dark web monitoring: reality vs. Hollywood expectations

• When your organization is actually ready for threat intelligence

Whether you're a CISO considering a CTI program or a security professional trying to prove value, this conversation offers practical frameworks for building security capabilities that directly impact the bottom line.

On November 10, 2025, that policy becomes mandatory reality for every defense contractor pursuing new DoD solicitations. Self-certification ends. Independent verification begins. And the defense industrial base faces its most significant security transformation in a generation.

In this conversation with Justin Beals, Bob explains what contractors need to understand about the deadline—and what recent enforcement actions reveal about gaps that have existed all along.

From Honor System to Accountability:

For years, defense contractors self-certified compliance with NIST 800-171 cybersecurity requirements. The system worked on trust. Contractors checked boxes, DoD accepted attestations, and controlled unclassified information flowed through supply chains with security gaps nobody was measuring.

Then came the settlements. Raytheon paid $8.4 million for failing basic security controls—no antivirus software on systems handling defense information, no system security plans, missing access controls. Penn State settled $1.25 million across 15 contracts. Georgia Tech paid $875,000 in the first DOJ intervention in a cybersecurity False Claims Act case.

These weren't breaches. These were preventable failures that contractors had certified didn't exist.

Katie Arrington's warning to the industry has been consistent: "If you go on LinkedIn one more time and tell me how hard CMMC is, I'm going to beat you. That ship sailed in 2014." Translation: adversaries are watching, and contractors broadcasting difficulties are revealing exactly where vulnerabilities exist.

The November 10th Framework:

After this deadline, every new contract solicitation includes CMMC requirements matched to data sensitivity:

Level 1 handles federal contract information through annual self-assessment with SPRS score reporting. Level 2 manages controlled unclassified information and requires independent C3PAO assessor validation—affecting approximately 35% of DoD's contractor base. Level 3 involves breakthrough technology or critical CUI aggregations and demands direct government audit.

The quantitative approach represents a shift. Instead of binary pass/fail, contractors receive scores reflecting actual security posture. An 88 out of 110 qualifies for Level 2 conditional status with plan of action and milestones. These numbers measure real capabilities across incident response, access control, and continuous monitoring.

The Supply Chain Ripple Effect:

Prime contractors bear new responsibility for subcontractor compliance. Before contract award, they must verify—not just accept—that subs meet requirements. Security questionnaires aren't sufficient anymore. Primes need evidence, validation, and continuous visibility.

An affirming official—typically a senior executive—personally attests to the government that the organization actively manages supply chain risk. This accountability changes relationships throughout the defense industrial base.

Practical Considerations:

Bob addresses the questions contractors are asking: How do you define system boundaries when CUI flows through your infrastructure? Why does each information system need a unique CMMC identifier? What does "current CMMC status" mean for maintaining certification? How do you schedule C3PAO assessments when capacity is limited and 35% of contractors need certification?

He also explains why technology becomes essential—automating compliance evidence collection makes continuous monitoring feasible without massive security staff increases. And he's candid about what the next two years bring: with Kirsten Davies nominated as new CIO and Katie Arrington driving implementation, expect aggressive rollout through 2026.

Why This Policy Survived:

Bob's experience spans Obama, Trump, and Biden administrations. The CMMC framework persisted through every transition because supply chain security isn't a partisan issue—it's a national defense imperative. Now at Exiger advising defense contractors, Bob bridges the gap between policy intent and practical implementation.

This conversation provides clarity on November 10th's real meaning: not just a compliance deadline, but a fundamental shift in how the defense industrial base secures the supply chain supporting national security.

Guest: Bob Kolasky, SVP Critical Infrastructure at Exiger | Former Founding Director, CISA National Risk Management Center | 15 years shaping federal cybersecurity policy

#CMMC #November10th #DefenseContracting #Cybersecurity #DFARS #CISA #SupplyChainSecurity #DIB #ComplianceDeadline #NationalSecurity

Host Justin Beals and Kruse, who studies at Sweden's Defense University, discuss the practical realities of implementing cybersecurity in resource-constrained environments. Through his research on over 600 European municipalities and validation interviews with consultants and administrators, Kruse reveals fascinating insights about the gap between written policies and daily operations.

The conversation opens with a real-world incident from Germany where 72 towns simultaneously lost access to their IT systems—not through sophisticated hacking, but through preventable security oversights. This case study illustrates why understanding operational security matters just as much as regulatory compliance.

Key topics explored include:

- How mid-sized communities differ from "smart cities" in their security approach

- The balance between regulatory requirements like GDPR, NIS2, and DORA

- Why employee training consistently ranks as the most critical security investment

- Practical frameworks for managing third-party technology vendors

- The role of political leadership in prioritizing cybersecurity budgets

- How research institutions contribute to better security policies

Kruse shares optimistic findings too: many organizations already practice good security fundamentals—they just need guidance connecting their existing processes to compliance requirements. The episode emphasizes that cybersecurity isn't about expensive technology alone; it's about building resilient practices that protect community services and citizen data.

Perfect for professionals in public administration, IT management, business operations, or anyone curious about how digital security works beyond headlines. This conversation offers practical knowledge about protecting the digital infrastructure we all depend on daily.

SecureTalk features conversations with experts shaping the future of cybersecurity and compliance, hosted by Justin Beals, CEO of Strike Graph.

#Cybersecurity #PublicSector #DigitalSecurity #CommunityResilience #SecurityEducation #DataPrivacy #TechPolicy #LocalGovernment #CyberAwareness #ITSecurity

For security professionals, this creates an exciting challenge: how do we architect systems today that remain secure as computing power evolves? What makes this particularly interesting is that blockchain and Web3 technologies are at the forefront of this transition—not because they're more vulnerable, but because they're leading the way in implementing quantum-resistant solutions.

Unlike traditional systems where encryption happens behind closed doors, blockchain's transparency means every transaction, every wallet, every cryptographic operation is visible on a public ledger. When post-quantum cryptography becomes necessary, these systems can't just patch quietly in the background. They need to migrate entire ecosystems while maintaining trust with users who can see every change on-chain.

In this episode, we sit down with James Stephens, founder and CEO of Krown Technologies and a certified cryptocurrency forensic investigator, to explore how the blockchain industry is pioneering quantum-resistant infrastructure that will inform security practices across all sectors.

What We Discuss:

• 
  Why blockchain and DeFi are leading quantum-resistance innovation
• How transparent, public ledgers change the security equation
• The practical steps security leaders can take now to prepare
• Why true randomness requires physics, not just algorithms
• Lessons from a decade of cryptocurrency forensic investigations
• How to build quantum-resistant infrastructure without sacrificing user experience
• Assessing vendor roadmaps for quantum readiness across any industry

James brings practical experience from both investigating cryptocurrency breaches and building quantum-resistant blockchain infrastructure. His forensic work revealed that most losses come from key mishandling and social engineering rather than cryptographic breaks—insights that shaped how he approaches designing secure systems for any environment.

This conversation covers both the technical innovation happening in quantum computing and the architectural decisions security teams need to make to prepare their organizations for this next era of computing power.

About the Guest: James Stephens is a recognized authority in blockchain security and cryptocurrency forensics with over a decade of experience at the intersection of digital assets, cybersecurity, and quantum innovation. He holds certifications including CBE, CCFI, and CORCI, and is the author of "Quantum Reckoning: Securing Blockchain and DeFi in the Post-Quantum Era."

#Cybersecurity #QuantumComputing #PostQuantumCryptography #Blockchain #Web3 #DeFi #InfoSec

Back in 2017, Vescent applied strategic foresight methodology to cybersecurity, uncovering fundamental assumptions like "security always plays catch-up," "the user is always wrong," and "we are completely dependent on passwords." Her research, published in 2018, predicted the passwordless revolution that's now mainstream reality.

This isn't just theoretical - Vescent demonstrates how appreciative inquiry flips traditional problem-solving approaches. Instead of asking "what's broken and how do we fix it," she explores "what's working well and how do we amplify it?" This methodology helped identify paradigm shifts that seemed radical in 2018 but are now industry standard.

Key insights include:

- How to shift from reactive to proactive security postures

- Why attack surface analysis needs systematic approaches

- The role of AI as thought partner rather than replacement

- How transparency reduces insider threat attack surfaces

- Practical applications of decentralized identity technologies

- Why security teams should focus on strengths, not just vulnerabilities

Vescent also addresses the commercialization challenges facing promising technologies like self-sovereign identity, explaining how ethical innovations often get compromised during market adoption. Her work bridges the gap between cybersecurity's technical realities and its broader societal implications.

For CISOs, security leaders, and technologists seeking to influence rather than just react to the future, this conversation provides actionable frameworks for anticipating threats and building more resilient systems. Vescent's strategic foresight methodology offers a roadmap for moving beyond endless problem-solving cycles toward security that creates value rather than just preventing loss.

Resources: 
Shifting Paradigms Paper: https://www.researchgate.net/publication/330542765_Shifting_Paradigms_Using_Strategic_Foresight_to_Plan_for_Security_Evolution 

Threat Positioning Framework GPT: https://chatgpt.com/g/g-68100f6a8c7481919d693ec9d4d9faab-the-threat-positioning-framework-gpt-by-h-vescent

Self Sovereign Identity Book : https://www.amazon.com/Comprehensive-Guide-Self-Sovereign-Identity-ebook/dp/B07Q3TXLDP?&linkCode=sl1&tag=vescent39-20&linkId=2797fe6ea49dff79952bc866ec8e8baf&language=en_US&ref_=as_li_ss_tl 

Heather's  email list: https://research.cybersecurityfuturist.com/

Today, that same hacker faces a new challenge. The AI revolution everyone celebrates may be creating the largest security vulnerability in computing history.

Chris and his team at Veracode just completed the most comprehensive study of AI-generated code ever conducted—testing 100 different language models across 80 coding scenarios over two years. What they discovered contradicts everything the tech industry believes about AI development tools.

The Reality Behind the Hype: Despite billions in investment and years of development, AI systems create vulnerabilities 45% of the time—exactly matching human error rates. While AI has dramatically improved at writing code that compiles and runs, it has learned nothing about writing secure code. The models have simply gotten better at disguising their mistakes.

The Mathematics of Risk: Development teams now code 3-5x faster using AI assistants like GitHub Copilot and ChatGPT. Same vulnerability rate, exponentially faster development speed equals a multiplication of security flaws entering production systems. Many organizations are simultaneously reducing their security testing capacity just as they accelerate their vulnerability creation rate.

The Training Data Problem: The source of the issue lies in contaminated training data. These AI systems have absorbed decades of insecure code from open-source repositories and crowd-sourced platforms like Reddit. They've learned every bad coding practice, every deprecated security measure, every vulnerability pattern from the past 30 years—and they're reproducing them at machine speed.

The Technical Reality:  Chris walks through specific findings: Java fails security tests 72% of the time, cross-site scripting vulnerabilities appear consistently, and inter-procedural data flows confuse even the most advanced models. The study reveals why some vulnerability types prove nearly impossible for current AI to handle correctly.

From Underground to Enterprise: This isn't just another technical report—it's a perspective from someone who helped define modern cybersecurity. The same analytical approach that once exposed vulnerabilities in massive corporate systems now reveals why the AI coding revolution presents unprecedented challenges.

The Path Forward:  While general-purpose AI struggles with security, specialized models focused on fixing rather than generating code show promise. Chris explains how Veracode's targeted approach to code remediation succeeds where broad AI systems fail, pointing toward solutions that embrace the "smarter beats bigger" philosophy.

The hacker who once operated in shadows now examines these systems in broad daylight, revealing how our accelerated development practices may be outpacing our ability to secure them.

Chapters

00:00 The Origins of Loft Hacking Group
07:48 Generative AI in Software Development
13:39 Vulnerabilities in AI-Generated Code
18:56 The Challenges of Secure Coding
24:34 The Future of AI in Software Security
29:45 The Impact of AI on Developer Roles

Resources: Veracode 2025 GenAI Security Report

In this episode of SecureTalk, host Justin Beals explores the "invisible majority problem" with Dr. Claire Robertson, Assistant Professor at Colby College. Together they examine how moderate voices have been algorithmically erased from our public discourse, creating pluralistic ignorance that threatens democracy itself.

Dr. Robertson's journey began at Kenyon College during the 2016 election—a blue island in a sea of red where Trump won the county by 40 points but the campus precinct went 90% blue. Surrounded by good people who saw the same election completely differently, she dedicated her career to understanding how we end up living in different realities.

Topics covered:

• The psychology behind false polarization
• How extreme voices get mathematically amplified
• Why conflict drives engagement in the attention economy
• The abandonment of scientific rigor in AI deployment
• Research methods for understanding our digital public square

• Resources: Claire E. Robertson, Kareena S. del Rosario, Jay J. Van Bavel,
  Inside the funhouse mirror factory: How social media distorts perceptions of norms,
  Current Opinion in Psychology,
  Volume 60,
  2024,
  101918,
  ISSN 2352-250X,
  https://doi.org/10.1016/j.copsyc.2024.101918.
  (https://www.sciencedirect.com/science/article/pii/S2352250X24001313)

Join Secure Talk host Justin Beals for a critical conversation with Rishi Bhargava, the security architect who built Demisto into a $560M category-defining platform and now leads Descope in solving the next impossible challenge. This episode delivers actionable insights for everyone—from Fortune 500 CISOs managing complex threat landscapes to business leaders evaluating AI adoption risks.

For Security Professionals, you'll discover: • How AI agent proliferation creates an "identity explosion" that traditional IAM can't handle • Why probabilistic AI systems require fundamentally different access controls than deterministic human users • Advanced WebAuthn and FIDO2 implementation strategies for zero-trust architectures • SOC2 compliance frameworks adapted for AI-human hybrid workflows • Real-world SOAR evolution lessons from the Demisto acquisition

For Business Leaders, you'll learn: 
• Why passwordless authentication directly impacts customer acquisition and retention 
• The hidden costs of password-related support tickets and user drop-offs 
• How early AI identity management adoption creates competitive advantages 
• Risk assessment frameworks for AI agent deployment in sensitive environments

For Everyone: 
• Why your current passwords are a ticking time bomb in an AI-first world 
• How biometric authentication actually works (and why it's more secure than you think) 
• Practical steps to future-proof your digital security today

Whether you're architecting enterprise security for thousands of employees or simply trying to understand why your login experience keeps getting more complex, this episode reveals the forces reshaping digital identity. The organizations that master AI agent authentication will lead their industries—those that don't risk catastrophic breaches and customer exodus.

#CISO #AIAuthentication #EnterpriseIdentity #ZeroTrust #PasswordlessSecurity #CyberSecurityStrategy #IAM #BiometricAuth #SecurityCompliance #AIAgents

March 23, 2003, Kuwait: Command Sergeant Major Bart Womack was loading ammunition and watching Tiger Woods play golf at 1 AM when a grenade rolled into his tent. What followed was every leader's worst nightmare - discovering that one of your own had been planning to destroy you all along.

This isn't just a military story. It's a threat to security we face everywhere.

In today's world of workplace shootings, corporate espionage, and school violence, the statistics are terrifying:

• Insider threats cause 60% of all security breaches

• From Sandy Hook to Fort Hood - trusted insiders inflict maximum damage

• Corporate employees steal billions in trade secrets annually

• The average insider threat goes undetected for 85 days

What makes this episode essential viewing:

Real Combat Experience: CSM Womack survived two Bronze Star combat situations, including a firefight with North Korean forces in the DMZ

The Diary Revelations: The attacker's own writings revealed: "Destroying America was my plan as a child" - written YEARS before joining the Army

Life-Saving Strategies: The 6 proactive methods that could prevent workplace violence, school shootings, and corporate sabotage

Universal Application: These hard-learned lessons apply to offices, schools, places of worship, and anywhere people gather

The Shocking Truth: While 5,000 soldiers searched for "insurgents," the real enemy was wearing the same uniform, had taken the same oath, and was sleeping in the tent next door.

Why This Matters to YOU:

Whether you're a parent worried about school safety, a manager responsible for employee welfare, or simply someone who wants to protect your community - the warning signs are the same. Political polarization, social media radicalization, and workplace tensions create the perfect storm for insider threats.

What You'll Learn:

✅ The "Trust No One" philosophy (and what it really means)

✅ How to implement "Observe, Listen, Report" in your environment  

✅ Why your gut instinct is your strongest security tool

✅ The evolution from belief → radicalized → extreme

✅ Real warning signs that leaders consistently miss

CSM Bart Womack transformed his traumatic experience into a mission: preventing others from experiencing what he and his soldiers endured. His insights have protected countless workplaces, schools, and communities.

The Bottom Line: In an era where conspiracy theories fuel real violence, where workplace tensions explode into tragedy, and where trusted insiders become active threats - these lessons could save your life.

🎖️ 29-year Army veteran, 101st Airborne Division

📖 Author of "Embedded Enemy" 

🎤 Professional security consultant and keynote speaker

🔒 Insider threat prevention expert

This episode contains discussions of violence and may not be suitable for all audiences.

#InsiderThreat #WorkplaceSafety #SchoolSecurity #Cybersecurity #MilitaryStory #SecurityAwareness #ThreatPrevention #CorporateSecurity #NationalSecurity #CrisisManagement #SecurityLeadership #RiskManagement #EmergencyPreparedness #SafetyTraining #SecurityEducation

Subscribe for more real-world security insights that could save lives. Your safety depends on what you don't see coming.

Twenty years ago, you could count the servers in your data center. Today, we've unleashed an army of digital entities that's spiraling beyond our control. For every human employee, there are 50-100 machine identities operating in your environment—containers, serverless functions, and automated processes that spawn and disappear by the minute. We've created more computing power than we have the ability to secure, and the machines are running amok.

In this episode of SecureTalk, we dive deep into the invisible crisis affecting 91% of organizations: machine identity breaches. Join host Justin Beals and cybersecurity expert Oded Hareven, CEO of Akeyless, as they explore why password rotation is dead, how ephemeral computing is breaking traditional security models, and what revolutionary approaches like distributed fragment cryptography mean for the future of cybersecurity.

What You'll Learn: • Why 85% of identity breaches now come from compromised machines, not humans • The fundamental mismatch between static security and dynamic infrastructure • How military-grade cybersecurity innovations are transforming commercial applications • Why the AI-quantum computing convergence is forcing us to rethink encryption • Practical steps toward "SSO for machines" and ephemeral security models

Key Topics:

• Machine identity management at scale
• Zero-knowledge cryptography
• Quantum-resistant security architectures
• The evolution from static → rotation → ephemeral security
• Building security that matches cloud-native infrastructure

Guest: Oded Hareven, Co-founder & CEO of Akeyless.

Timestamps: 

00:00 Introduction to Cybersecurity and Machine Identities

04:37 The Evolution of Security Paradigms

09:30 Akeyless and Machine Identity Management

13:53 Zero Trust and Ephemeral Security

18:36 The Impact of AI and Quantum Computing on Security

23:19 Future Trends in Cybersecurity and Akeyless's Vision

Resources:

• Akeyless: https://akeyless.io
• SecureTalk Podcast: www.securetalkpodcast.com

#Cybersecurity #CloudSecurity #MachineLearning #QuantumComputing #DevSecOps #IdentityManagement #ZeroTrust

Silicon Valley's shift from collaborative open-source principles to winner-take-all commercial dominance hasn't just changed business models—it's made us fundamentally more vulnerable. When companies prioritize winning everything over building secure, collaborative ecosystems, we all pay the price. But there's a profound irony: the more desperately these leaders chase absolute victory, the more they reveal themselves as losers of the most important game—building meaningful human communities.

In this episode, Harvard and MIT Humanist Chaplain Greg Epstein explores how tech's false prophets have led us astray and, more importantly, how we might find our way back to building human-centered security that actually works. The strongest security has never come from building higher walls—it comes from creating ecosystems where everyone's success strengthens the whole. When we understand how to work together better, we all create better security.

What You'll Learn: 
• How winner-take-all thinking creates systemic vulnerabilities 
• Why collaborative open-source principles build more resilient systems 
• The hidden security costs of commercial dominance 
• Practical strategies for building multi-stakeholder security 
• How to shift from competition to collaboration in your organization

Watch this episode to discover how changing your approach to teamwork and partnerships can dramatically improve your security posture.

About Greg M. Epstein: Greg serves as Humanist Chaplain at Harvard University and MIT, and spent 18 months at TechCrunch exploring the ethics of companies shifting our definition of humanity. He's the author of "Tech Agnostic: How Technology Became the World's Most Powerful Religion, and Why it Desperately Needs a Reformation."

Timestamps: 
Chapters

00:00 The Corruption of Winning Culture
02:39 The Role of Community in Security
05:44 Navigating the Media Landscape
08:20 The Algorithmic Influence on Information
11:01 The Cult of Personality in Tech
13:44 The Messianic Figures in Technology
16:24 The Fall of Tech Prophets
19:15 The Importance of Losing
21:44 The Future of Technology and Humanity
24:29 The Need for Ethical Technology
26:56 The Role of Men in Modern Society
29:39 The Impact of AI on Society
32:15 The Cult-like Nature of Tech Culture
34:54 The Importance of Human Connection
37:43 The Future of Humanism in Tech
40:11 The Path Forward for Technology and Humanity

#TechEthics #CommunityBuilding #DigitalSecurity #TechCulture #HumanistChaplain #SiliconValley #TechReformation

Key Topics Covered:

• Why traditional security rules fail with probabilistic AI systems
• The exponential risk of scaling AI agents from dozens to thousands
• Building secure data foundations for enterprise AI deployment
• Protecting AI agents that operate beyond your firewall
• Strategic approaches to AI implementation that balance innovation with risk
• The ontological framework for mapping AI capabilities to business tasks
• First principles thinking for AI security architecture

Tobias brings over two decades of experience in digital transformation, having held senior leadership roles at Intel, VMware, Panasonic, and Citrix Systems. His practical insights from implementing AI at Walmart's massive scale offer invaluable guidance for CISOs and security professionals navigating the complexities of enterprise AI adoption.

Perfect for: CISOs, Security Architects, IT Leaders, Enterprise Risk Managers, and anyone responsible for securing AI implementations in large organizations.

Welcome to SecureTalk's comprehensive 2025 Security Awareness Training video! This annually updated training is designed to help organizations meet their security compliance requirements while building a strong security culture.

🎯 What You'll Learn:

Social Engineering & AI-Enhanced Threats

• Advanced phishing detection in the AI era
• Voice and video deepfake attack recognition
• Financial verification protocols to prevent fraud
• Healthcare data protection against social engineering

Cloud Security & Infrastructure

• 
  Common cloud misconfigurations and prevention
• Secure AI model development and deployment
• Financial data protection in cloud environments
• Package dependency management and vulnerability scanning

Supply Chain & Third-Party Risk

• Vendor security assessment frameworks
• Zero Trust architecture implementation
• HIPAA compliance for business associates
• AI vendor risk evaluation checklists

Insider Threats & Hybrid Work Security

• Behavioral analytics for threat detection
• Environment-adaptive security controls
• Data loss prevention in remote work settings
• Segregation of duties in digital workflows

Regulatory Compliance & Automation

• 2025-2026 regulatory calendar overview
• Control-centric compliance approach
• Continuous monitoring and automation strategies
• Multi-framework compliance alignment

Building Security Culture

• Security mindset vs. rule-following approach
• Positive reinforcement security programs
• Organizational security maturity models
• Leadership's role in security culture

💼 Compliance Frameworks This Training Addresses:

• SOC 2 Type I & II
• ISO 27001
• HIPAA & Healthcare Security
• PCI DSS
• CMMC (Cybersecurity Maturity Model Certification)
• GDPR & EU AI Act
• AI Accountability Act
• NIST Cybersecurity Framework
• State privacy laws (CCPA, CPRA, etc.)

🏆 Perfect For:

• Annual security awareness training requirements
• Compliance audit preparation
• New employee onboarding
• Security culture development
• Multi-framework compliance programs

🎓 Certification Available: Complete the training and receive a certification of completion for your compliance documentation.
    https://4dont.share.hsforms.com/2EVBbDWdBQyKG5Udaaj0baA

📺 About SecureTalk: SecureTalk explores critical information security innovation and compliance topics. Hosted by Justin Beals, founder and CEO of StrikeGraph, featuring expert insights from cybersecurity professionals across finance, healthcare, engineering, and compliance.

🔔 Subscribe for more security insights and compliance guidance!

Chapters: 
0:00 Introduction & Training Overview 
3:18 Social Engineering with Steven Ferrell (IT Compliance Expert) 
15:00 Advanced Threats with Kenneth Webb (CISA, CISSP) 
30:30 Cloud Security with Josh (Head of Engineering) 
44:55 Insider Threats with Elmy Peralta (Assessments Manager) 
49:09 Regulatory Compliance with Micah Spieler (Chief Product Officer) 
1: 01:42 Security Culture with Juliett Eck (CFO)

#CybersecurityTraining #SecurityAwareness #ComplianceTraining #SOC2 #HIPAA #ISO27001 #SecurityCulture #StrikeGraph #SecureTalk

At 2 AM, most people are dreaming. Satyam Patel is wide awake, sending texts to his security team: "Are we secure? Did we patch that server? Is MFA enabled on that service account?"

This isn't insomnia—it's the origin story of how a "big firewall guy" transformed into one of cybersecurity's most forward-thinking leaders, and why his journey from infrastructure skeptic to AI evangelist mirrors the entire industry's evolution.

📖 THE THREE-ACT TRANSFORMATION:

Act I: The Infrastructure Skeptic's Awakening Watch Satyam's journey from traditional "firewall and load balancer guy" to realizing that employees can't be forced behind VPNs anymore. The moment he discovered that flexibility doesn't mean vulnerability—it means evolution. Learn how this mindset shift led him from protecting perimeters to protecting people.

Act II: The Culture Shock That Changed Everything Picture this: After years of doing "security roadshows" and begging for budget, Satyam walks into Kandji and experiences reverse culture shock. Instead of chasing people for security buy-in, they come to HIM asking, "What does security think?" Witness the CEO moment that flipped his world: "It's not a request—it's a mandate to protect our company at ANY cost."

Act III: The AI Prophet's Dilemma The heated boardroom debate that keeps CISOs awake: Replace human SOC analysts with AI, or keep the human element? Follow Satyam's internal struggle as he weighs 10,000 daily AI-analyzed calls against human intuition, leading to his bold prediction about "Minority Report" style predictive cybersecurity.

🎭 CHARACTER-DRIVEN MOMENTS:

The Paranoid Father: Why Satyam forces his family to use alphanumeric passwords and what Tom Cruise's "Minority Report" taught him about threat prediction.

The Reformed Skeptic: How a career infrastructure guy learned to embrace endpoint security and why he now believes MDM is the new perimeter.

The Reluctant Prophet: His uncomfortable realization that automation will replace thousands of cybersecurity jobs—and why he's helping it happen.

⚡ PLOT TWISTS YOU WON'T SEE COMING:

• 
  The university graduate's graduation post that led to complete identity theft
• Why 99% security equals 100% vulnerability (and the math that proves it)
• The Signal app scandal that changed how he thinks about mobile security

🎬 THE SUPPORTING CAST:

• Adam (Kandji CEO): The leader who gave unlimited security budget
• The Development Team: Who learned to ask security questions first
• The 2 AM Security Team: Who actually appreciate the paranoid texts
• The AI SOC Analyst: The non-human teammate changing everything

🚀 MEET THE PROTAGONIST: Satyam Patel isn't your typical CISO. He's the guy who went from customer to C-suite, from skeptic to believer, from infrastructure defender to AI advocate. With 25+ years of plot twists, failed budgets, successful breaches prevented, and one very understanding family who puts up with alphanumeric phone passwords.

#CISOStory #CyberSecurityJourney #AIvsHuman #ZeroTrust #SecurityLeadership #ThreatDetection #Kandji #EndpointSecurity #ParanoidCISO #CyberStory #SecurityCulture #TechTransformation

This isn't just another security interview—it's a cybersecurity thriller with real-world consequences. Subscribe for more stories from the digital frontlines! 🎬🔐

In this comprehensive interview, Brian Wagner, CTO at Revenir and former AWS security executive, shares insights from his new book "Redefining Information Security" and explains why the cybersecurity industry needs a fundamental shift in approach. With over 20 years of experience leading security transformations across enterprise organizations, Wagner presents a practical framework for moving beyond reactive security models.

About the Guest:

Brian Wagner brings extensive C-suite experience from Amazon Web Services, Moody's RMS, Bulletproof, and Defense.com. Based in London, he speaks globally on cloud security, AI-driven solutions, and security transformation. His latest book "Redefining Information Security" introduces a three-level maturity framework that's gaining attention from security leaders worldwide.

Key Discussion Points:

• The Security Maturity Framework: Wagner outlines his three-level approach—Reactive, Proactive, and Adaptive security—explaining how organizations can assess their current position and plan strategic improvements. He emphasizes that most companies remain stuck in reactive mode, responding to threats after damage occurs.
• From Cybersecurity to Information Safety: The conversation explores Wagner's concept of treating security as "information safety" rather than traditional cybersecurity. This cultural shift makes digital protection everyone's responsibility, transforming potential vulnerabilities into defensive assets.
• AI in Security Applications: Drawing from his work at Revenir, where the company handles sensitive financial and personal data across international borders, Wagner discusses practical AI implementations for pattern recognition, fraud detection, and compliance monitoring. He explains why AI excels at identifying normal versus abnormal patterns in security contexts.
• Security as Business Enabler: Wagner demonstrates how security can function as a competitive advantage rather than a cost center. He shares strategies for communicating security value to go-to-market teams and integrating security features into product development cycles.
• Compliance vs. Security Balance: The discussion addresses the relationship between regulatory compliance and actual security, with Wagner explaining how compliance represents minimum standards while effective security requires ongoing investment and adaptation.
• Open Source and Democratic Security: Wagner advocates for open source collaboration in cybersecurity, arguing that community-based approaches provide more transparent and accessible security solutions, especially important given recent changes in vulnerability disclosure programs.

Practical Implementation: 

The conversation includes real-world examples, from detecting sophisticated employment fraud schemes to integrating security practices into agile development workflows. Wagner emphasizes incremental improvements and measurable outcomes.

Book Recommendation:

"Redefining Information Security" offers a strategic approach to security leadership, focusing on cultural transformation and business alignment rather than purely technical solutions. The book provides frameworks for security professionals and business leaders looking to modernize their approach to digital protection.

Link to the book: https://www.koganpage.com/risk-compliance/redefining-information-security-9781398620018

This interview provides valuable insights for cybersecurity professionals, technology leaders, and anyone interested in understanding how AI and modern approaches are reshaping enterprise security practices.

#Cybersecurity #InformationSecurity #AI #SecurityMaturity #AWS #CloudSecurity #CTO #CISO #ThreatDetection #SecurityCulture #CyberThreats #SecurityLeadership

What happens when you realize your life's work is being used to destroy what you hoped to create?

Meet De Kai - the man who helped build Google Translate, Siri, and modern AI systems. In 1990s Hong Kong, he dreamed of AI that could bridge cultural divides. Thirty years later, he experienced his "Oppenheimer moment" - the same machine learning he pioneered to unite people was dividing humanity through social media algorithms.

The Reality Check: We don't just have 8 billion humans anymore. We have 800 billion AI systems learning our behavior 24/7 - "digital children" growing up without parental guidance.

🎯 KEY INSIGHTS:

• The Translation Paradox: How unity technology became division engines • The Blind Men & Elephant: Ancient parable explaining why we misunderstand AI • Digital Parenting Crisis: Why we're raising 800 billion unguided AI systems • The Psychology of Manipulation: How AI exploits cognitive weaknesses • Four Futures Scenario: Humanity's possible paths with AI

🧠 AI MANIPULATION TACTICS REVEALED:

• Anchoring attacks that shape your thinking
• Belief perseverance traps that backfire fact-checking
• How algorithms turn gossip into social weapons

📖 ABOUT "RAISING AI":

De Kai's book explores the question we should be asking: Not "Will AI replace us?" but "How do we raise AI ethically?" Written by Google's AI Ethics Council founding member, it reveals why current AI needs 15 million times more data than human children and provides a framework for ethical AI development.

🔬 DE KAI'S CREDENTIALS:

• AI pioneer & Founding Fellow in computational linguistics • Independent Director of AI ethics think tank The Future Society • One of 8 inaugural members of Google's AI Ethics Council • Joint appointment at HKUST Computer Science & Berkeley's International Computer Science Institute • Electronic musician exploring AI creativity

💭 QUESTIONS ANSWERED:

• How translation tech became social manipulation?
• What makes AI behave like "unparented teenagers"?
• How to be a good "AI parent" in organizations?
• Why human-AI merger might be our best survival strategy?

The Timeline is Accelerating. 99% of people are "frozen like deer in headlights" facing humanity's most disruptive transformation. Organizations ignoring AI governance face competitive extinction within five years.

This isn't academic theory - it's a confession and warning from someone who helped create the systems now shaping global culture.

Book: Raising AI: An Essential Guide to Parenting Our Future

#AIEthics #GoogleTranslate #ArtificialIntelligence #MachineLearning #RaisingAI #TechnologyLeadership #AIGovernance #DigitalTransformation #FutureOfWork #AIStrategy #Innovation #TechLeadership #AICompliance #BusinessStrategy

Every device around you is collecting data about you and everyone you interact with. Amazon Echo recordings are being subpoenaed in murder trials. Period tracking apps are being used to prosecute women. Ancestry websites are revealing family secrets. We're participants in the largest social experiment in human history—and we never opted in.

In this episode of SecureTalk, host Justin Beals sits down with Dr. Aram Sinnreich and Jesse Gilbert, co-authors of "The Secret Life of Data," to explore a revolutionary approach to digital security: data kindness.

🎯 KEY TOPICS COVERED: • Why our biggest security threat is social fragmentation, not just technical vulnerabilities • How tech companies profit from division (anger drives 5x more engagement than approval) • The food allergy transformation: how society changed practices organically in 20 years • Practical data kindness: simple actions that rebuild digital trust • Why cooperation is our best defense in an age of surveillance • How to reclaim agency over your digital life

🚨 CRITICAL INSIGHTS:

• We can't rely on tech companies (profit over people) or Congress (no data protection laws passed)
• Change must happen from the ground up through shared cultural practices
• Simple acts like unplugging smart devices for guests or consulting family before DNA uploads matter
• Divided societies are vulnerable societies—cooperation is a security strategy

👥 ABOUT THE GUESTS: 

Dr. Aram Sinnreich serves as a Professor and Graduate Director within the Communication Studies department at American University’s School of Communication. 

His research addresses the convergence of culture, law, and technology, focusing particularly on topics such as surveillance and privacy, intellectual property, digital rights, digital culture, democracy, governance, and music. 

Sinnreich has authored five books: Mashed Up (2010), The Piracy Crusade (2013), The Essential Guide to Intellectual Property (2019), the science fiction novel A Second Chance for Yesterday (2023; coauthored with Rachel Hope Cleves as R.A. Sinn), and The Secret Life of Data (2024; coauthored with Jesse Gilbert). 

Additionally, his writing has appeared in various publications including The New York Times, Billboard, Wired, The Daily Beast, and Rolling Stone. He is a core faculty member of the SOC doctoral program and the MA in Media, Technology & Democracy, regularly collaborating with SOC graduate students on research publications and projects. 

Jesse Gilbert is an interdisciplinary artist focused on the convergence of visual art, sound, and software design through his firm, Dark Matter Media. He previously served as the founding Chair of the Media Technology department at Woodbury University and has taught interactive software design at CalArts and UC San Diego.

Since 2010, Gilbert's work has revolved around his innovative software, SpectralGL, which is an interactive listening instrument that creates real-time visual landscapes in response to sound. Drawing on his background as a composer, sound designer, and lifelong technologist, his creative output investigates the phenomenological aspects of listening through improvisation and collaborative dialogue. His work has been showcased at numerous concert halls, festivals, and projection-mapped installations worldwide.

In 2007, Gilbert co-founded Dark Matter Media LLC to facilitate his independent creative projects and provide consultancy on emerging technologies across various public and private environments. From 2011 to 2017, he held the founding Chair position in the Department of Media Technology at Woodbury University and taught interactive software design at both CalArts and UC San Diego.

After documenting the problems in their first book, Aram and Jesse recently published insights in Time Magazine and are working on a new book about building cooperative societies with kindness embedded in technology design.

🔗 CONNECT WITH SECURETALK: • Subscribe for weekly cybersecurity insights • Follow Justin Beals on LinkedIn • 

RESOURCES:

Sinnreich, A., & Gilbert, J. (2025, April 3). How to be kind in a world that's always monitoring you. Time Magazine. https://time.com/7273469/data-monitoring-kindness-essay/

Sinnreich, A., & Gilbert, J. (2024). The secret life of data: Navigating hype and uncertainty in the age of algorithmic surveillance. MIT Press. 

Beals, J. (Host). (2024, May 14) The Algorithmic Mirror: Reflecting on Data's Role in Modern Life. in Secure Talk Podcast, Ep 173 with Aram Sinnreich and Jesse Gilbert 

Episode Description: When quantum computing pioneer Michele Mosca met Peter Shor in the 1990s, he thought quantum computing was "science fiction." Now, he's warning that we're just "a few quarters" away from quantum computers capable of shattering the encryption protecting our global financial system, government communications, and critical infrastructure.

In this must-listen episode, the Oxford-educated mathematician and co-founder of Evolution Q breaks down why symmetric key infrastructure (SKI) and "cryptographic resilience" are essential as quantum computing advances faster than our security preparations. With remarkable clarity, Mosca explains how the nine-year NIST standardization process signals both progress and concerning delays in our quantum readiness.

The interview explores why most organizations are unprepared, how quantum networks could provide a novel security solution, and what businesses should be doing now to protect their long-term data security. Mosca also details the latest breakthroughs in quantum error correction across ion traps, neutral atoms, and superconducting qubits that are bringing us closer to fault-tolerant quantum computing.

Key Topics Covered:

• The evolution of quantum computing from theoretical concept to imminent reality
• How close we are to breaking modern encryption standards
• Evolution Q's innovative approach to quantum resilience
• The concept of symmetric key infrastructure (SKI) as a defense mechanism
• Recent breakthroughs in quantum error correction
• Why organizations need both defense-in-depth and cryptographic diversity
• The limitations of the NIST standardization process and what it means for security

Episode Highlights:

"I met Don Coppersmith... he told me he was helping a colleague improve his algorithm where you'd trap these atoms and you'd shine lasers on them, do exponentiation and then do a Fourier transform... I thought he was joking. I'd never heard of this before."

"We look at it as an engineering challenge. Oh, how much does it cost to scale this up? By a factor of 10 or 100 or 1,000, but 1,000, it's like 10 bits of security... It's not that much of a security buffer. The one we're used to in cryptography between what we could break and those we can't, we want an enormous gap."

About the Guest: Michele Mosca is the CEO and co-founder of evolutionQ, a start-up that provides scalable defense-in-depth with post-quantum cryptography (PQC) and quantum key distribution (QKD) software solutions for cryptographic resilience and quantum-safe security.

Michele is a renowned expert in cryptography and among the world's leading experts at the intersection of quantum computing and cybersecurity. He has been instrumental in working with the business community to share the importance of cryptography as a

critical cybersecurity control protecting both data and communications.

Prior to evolutionQ, Michele was a founder of the world-leading Institute for Quantum Computing, a Professor in the Department of Combinatorics & Optimization at the University of Waterloo, and a founding member of the Perimeter Institute for Theoretical Physics. His work on quantum computing has been published widely in top journals and textbooks.

Michele worked on cryptography during his BMath (Waterloo) and MSc (Oxford) and obtained his Doctorate (Oxford) in Quantum Computer Algorithms. He was appointed as a Knight in the Order of Merit by the Government of Italy in 2018. The Knighthood

recognizes Michele’s contributions in quantum information science and digital security, as well as teaching and outreach.

Connect and Learn More:

• Stay updated on quantum security developments: quantum-safe.ca
• Subscribe to SecureTalk on your favorite podcast platform
• Join the conversation with #QuantumSecurity #PostQuantumCryptography #QuantumThreat #CyberResilience 

## Key Topics Covered:

- 🔒 **Physical Security Crisis**: How political polarization has created new security challenges for high-profile individuals and organizations

- 🌍 **Soft Power Erosion**: The concerning reduction in USAID and diplomatic initiatives and its impact on national security

- 🇺🇦 **Ukraine's Tech Innovation**: Revolutionary drone warfare tactics and rapid adaptation changing the future of military strategy

- 💻 **Information Warfare**: The growing "truth decay" problem and how disinformation campaigns are reshaping public discourse

- 🏛️ **Constitutional Challenges**: Analysis of current governance issues and threats to democratic institutions

- 🔍 **Leadership in Chaos**: Strategic insights for security professionals navigating turbulent times

## Episode Highlights:

### The Business of Protection

LeFever discusses how Concentric provides comprehensive security for high-net-worth individuals, including physical security, intelligence products, due diligence, and privacy protection in an increasingly polarized environment where public figures face heightened threats.

### The Crisis in Governance

The conversation examines concerning trends in the federal workforce, with both experts highlighting how dismissing experienced personnel creates institutional knowledge gaps and damages trust in critical security domains.

### The Value of Soft Power

Drawing from his experience leading earthquake relief efforts in Pakistan, LeFever explains how humanitarian initiatives like USAID build crucial international relationships that enhance national security more effectively than purely kinetic operations.

### Innovations in Modern Warfare

Analysis of Ukraine's remarkable technological adaptations against Russia, showcasing how smaller forces can effectively counter larger opponents through rapid innovation and precision drone strikes.

### Leadership Wisdom

LeFever shares invaluable advice for security leaders navigating chaos: maintain strategic focus on end goals while building resilience against tactical disruptions.

## About the Guests:

**Mike LeFever** is Executive Vice President of National Security at Concentric, providing comprehensive physical and privacy security solutions. His distinguished military career included leadership roles in counterterrorism and diplomatic security initiatives across multiple global hotspots.

**Justin Beals** is the host of SecureTalk and a recognized expert in cybersecurity strategy and implementation.

## Connect & Learn More:

- Visit www.securetalk.com For more episodes

Key Insights:

• Leading AI chatbots repeated Russian disinformation 33% of the time when tested on key geopolitical topics
• The Pravda network has expanded from 50 to over 150 websites specifically designed to influence AI training data
• Modern disinformation operations now prioritize "LLM grooming" over targeting human readers
• Even when AI systems attempt to debunk false claims, they often cite unreliable sources, further legitimizing them
• Human oversight remains essential as these networks constantly evolve to evade automated detection

Notable Quotes: "Bad actors are targeting AI models to get their information to appear in those responses, but they're also weaponizing AI to produce disinformation at scale." - McKenzie Sadeghi

"What is changing is really the delivery of the disinformation... it's reaching a much larger audience and an audience that's not targeted as specifically because now practically anyone is using ChatGPT or other chatbots." - Isis Blachez

"This network does not invest any money or resources into spreading its content online... It's sort of serving as a centralized hub. And as a result, it appears very high not only in search results but also in chatbot responses." - McKenzie Sadeghi

Resources: 

Sadeghi, M., & Blachez, I. (2025, March 6). A well-funded Moscow-based global disinformation network. NewsGuard Reality Check. https://www.newsguardrealitycheck.com/p/a-well-funded-moscow-based-global

Episode Insights:

• Postman's Strategic Position: Learn why Sam joined Postman in September 2024 and how they're positioned to be the connective tissue for the emerging AI agent ecosystem
• APIs as Agent Infrastructure: Sam explains how Postman's catalog of hundreds of thousands of documented APIs creates the perfect foundation for AI agent interactions
• Security by Design: Discover how Postman is embedding security throughout the API lifecycle - from conception to deployment
• The Human Factor in Security: Why security remains a collaborative responsibility across organizations and how to foster a security-minded culture
• Next-Gen Challenges: Sam's perspective on balancing innovation with fundamental security hygiene concerns like supply chain vulnerabilities

"I see such a larger ecosystem that's really going to get built here beyond what's out in the market today," says Sam, discussing how Postman will facilitate human-agent collaboration in building the next generation of applications.

Sam brings unique insights from his previous roles at technology giants like Palo Alto Networks and NVIDIA, where he once demonstrated an early chatbot prototype to Jensen Huang himself. His experience taking products through rigorous FedRAMP certification processes provides a valuable perspective on enterprise-grade security implementation.

This episode offers essential insights for developers, security professionals, and technology leaders interested in the intersection of APIs, AI, and enterprise security in today's rapidly evolving digital landscape.

Key Topics

• The Change Healthcare breach: How a single oversight led to a $2.9 billion loss despite substantial technology investments
• Why frameworks like CIS are great starting points but insufficient on their own
• How the "Ring of Security" approach addresses the complete attack surface
• Building a security culture that resonates with employees on a personal level
• Why a business impact analysis is critical but often missing from frameworks
• The importance of understanding your data before implementing AI solutions

Notable Quotes

"When you do the root cause analysis on headline breaches, nearly all of them started somewhere outside the technology." - Bryant Tow

"Even if you do your technology perfectly, you're leaving half of your attack surface open." - Bryant Tow

"Strategy drives governance. Governance drives operation." - Bryant Tow

About the Guest

Bryant Tow serves as Chief Security Officer at LeapFrog Services, where he assists clients with comprehensive security programs including strategy, governance, and operations. Previously, he owned Cyber Risk Solutions and served on the Department of Homeland Security Sector Coordinating Council. His "Ring of Security" concept emphasizes that cybersecurity is an organizational problem that uses technology as just one tool in the solution.

Resources Mentioned

• The "Ring of Security" concept
• CIS Framework limitations
• Business Impact Analysis
• AI Readiness Assessment
• Department of Homeland Security Sector Coordinating Council

SecureTalk is hosted by Justin Beals, focusing on cybersecurity strategy, governance, and best practices for organizations of all sizes.

### Key Highlights:

- **The Birth of Edge Networks**: How Akamai transformed from emergency content delivery savior to cybersecurity powerhouse

- **Massive Security Scale**: Processing 26 billion web attacks monthly and analyzing 7 trillion DNS queries daily

- **Zero Trust Evolution**: Why identity-aware proxies are replacing traditional VPNs for enterprise security

- **Micro-segmentation Explained**: Creating "mini-firewalls" at every endpoint to contain breaches and limit attack radius

- **Bot Attack Revolution**: The evolution from simple DDoS to sophisticated credential abuse and account takeover attempts

- **API Security Challenges**: Why APIs have become the new security frontier as other defenses improve

- **Client-Side Security**: How PCI DSS v4 is forcing new approaches to JavaScript security monitoring

- **Quantum-Resistant Future**: Akamai's implementation of NIST-approved quantum-resistant cryptography

### Notable Quotes:

"If you had our auto rules applied during the Log4J incident, you wouldn't have had to take any action during Christmas - it would have been protecting you automatically." - Joe Gronemeyer

"At some point I think it was in 2011-2012, is when we would start looking at the traffic coming in and protecting websites from attacks as well. So applying security at the edge, keeping the bad actors away from your servers." - Joe Gronemeyer

### About Our Guest:

Joe Gronemeyer serves as a Solutions Engineer at Akamai Technologies with nearly a decade of experience. Previously, he spent 13 years at Accenture as a Senior Manager leading digital solutions for Fortune 500 companies across pharmaceuticals, consumer goods, and telecommunications industries. He holds a BS in Industrial and Systems Engineering from Georgia Tech and is CISSP certified.

### Resources Mentioned:

- Web Application Firewall (WAF) technology

- Zero Trust Network Access (ZTNA)

- Enterprise Application Access

- Client-Side Access and Compliance (formerly Page Integrity Manager)

- OWASP Top 10 for web, API, and AI security

- PCI DSS version 4 compliance requirements

- NIST standards for quantum-resistant cryptography

*Don't miss our next episode where we'll continue exploring cutting-edge cybersecurity approaches for enterprise organizations.*

#EdgeSecurity #ZeroTrust #MicroSegmentation #APIProtection #WAF #PCICompliance #QuantumCryptography #CyberDefense

In this eye-opening episode of SecureTalk, host Justin Beals sits down with Nick Furneaux, renowned cryptocurrency investigator and author of the provocatively titled book "There's No Such Thing as Crypto Crime." Furneaux shares his extensive expertise on blockchain technology, cryptocurrency investigations, and the evolving landscape of digital financial crimes.

Key Topics Discussed:

The meaning behind Furneaux's book title "There's No Such Thing as Crypto Crime" and why traditional investigation skills remain relevant

• The fundamental differences between Bitcoin and newer cryptocurrencies like Ethereum and Solana
• How blockchain technology actually helps investigators through its open ledger system
• The mechanics behind "rug pulls" and other crypto-related scams
• The role of mining in cryptocurrency ownership and value
• How TRM Forensics tools help trace illicit cryptocurrency transactions
• The concerning rise of human trafficking in crypto scam operations
• How AI is transforming both criminal schemes and investigation techniques

Notable Quotes:

"There is no such thing as a crypto-only crime. There is no new criminal category. There is just a new payment mechanism." - Nick Furneaux

"The Bitcoin source code is some of the most beautiful code ever written. It is extraordinary... and it's never been hacked." - Nick Furneaux

"We're in a situation now where the victim is a victim, and the scammer is a victim." - Nick Furneaux on trafficking in scam compounds

About Nick Furneaux:

Nick Furneaux is a digital forensics expert, cryptocurrency investigator, and cybersecurity specialist. He has worked in digital forensics for many years and is known for his expertise in cryptocurrency investigations. He has served as a trainer and consultant for law enforcement agencies and private organizations on matters related to digital forensics and cryptocurrency tracing.

He is the author of *There’s No Such Thing as Cryptocrime* (2024) and *Investigating Cryptocurrencies* (2018). He has trained thousands of investigators in the essential skills needed to track cryptocurrencies involved in criminal activities. Currently, he works as a Blockchain Intelligence Expert and Master Trainer at TRM Labs and serves as an advisor to the Board of Asset Reality.

Resources Mentioned:

Book: "There's No Such Thing as Crypto Crime" by Nick Furneaux (link)

Book: "Investigating Cryptocurrencies" by Nick Furneaux (link)

TRM Forensics Investigative Toolkit

This episode provides invaluable insights for cybersecurity professionals, financial investigators, and anyone interested in understanding cryptocurrency's role in modern digital crime investigations.

SecureTalk is hosted by Justin Beals, bringing you expert conversations with the leading minds in cybersecurity.

#Cryptocurrency #BlockchainForensics #CryptoInvestigation #Cybersecurity #DigitalForensics #Bitcoin #Ethereum #CryptoScams #FinancialCrime

Johann shares how his security background and curiosity about AI led him to uncover the "SPAIWARE" attack - a persistent malicious instruction that can be injected into ChatGPT's long-term memory, potentially leading to data exfiltration and other security risks.

Key Topics Covered

• Johann's journey from Microsoft development consultant to becoming a leading red team expert specializing in AI security
• The discovery of ChatGPT's memory system vulnerability and how it could be exploited
• How traditional security concepts like the CIA security triad (Confidentiality, Integrity, Availability) apply to AI systems
• The development of "SPAIWARE" - a persistent prompt injection attack that can leak user data
• Command and control infrastructure using prompt injection techniques
• The challenges of securing agentic AI systems that can control web browsers and execute tasks
• The evolving relationship between security researchers and AI companies like OpenAI

Notable Quotes

"I think using this system is just so important because it can help you. They are so powerful. I started using it daily. But the security mindset of course too, because I use it for my productivity, but I always use it for trying to find the flaws and trying to understand how it works." - Johann Rehberger

"What I did basically was use that technique and then insert that instruction in memory. So that whenever there's a conversation turn, the user has a question, ChatGPT responds. Every single conversation turn will be sent to the third-party server. So this is where the word spyware basically kind of came from." - Johann Rehberger

"The better the models become, the better they follow instructions, including attacker instructions." - Johann Rehberger

About Johann Rehberger

Johann Rehberger is the Red Team Director at Electronic Arts with extensive experience in cybersecurity. His career includes roles at Microsoft, where he led the Red Team for Azure Data, and Uber, where he served as Red Team Lead. Johann is known for his pioneering work in AI security, specifically identifying and responsibly disclosing vulnerabilities in large language models like ChatGPT.

Resources Mentioned

• Johann's blog on machine learning security (https://embracethered.com/blog/index.html)
• Black Hat Europe presentation on ChatGPT security vulnerabilities
• LLM Owasp Top 10 vulnerability classifications

Connect With Us

Follow SecureTalk for more insights on cybersecurity trends and emerging threats. Visit our website at www.securetalkpodcast.com  for more episodes and resources.

#AISecurityRisks #PromptInjection #ChatGPT #Cybersecurity #AIVulnerabilities #RedTeaming #SecureTalk

In this illuminating episode of Secure Talk, Justin Beals sits down with Simson Garfinkel, renowned computer scientist, journalist, and author who helped implement differential privacy for the U.S. Census Bureau's 2020 census. As a fellow of the American Association for the Advancement of Science, the Association for Computing Machinery, and the IEEE, and with leadership positions at both the Department of Homeland Security and U.S. Census Bureau, Garfinkel offers unparalleled insights into how mathematics is creating an entirely new frontier in privacy protection in his new book “Differential Privacy”.

Differential privacy is a reliable mathematical framework that quantifies privacy risk or the potential for a major breach. It can transform how organizations understand, measure, and control data exposure. Yet most security, compliance, and legal professionals haven't grasped its revolutionary implications for measuring and predicting a major privacy breach.

Join Justin and Simson as they reveal:

- How differential privacy allows organizations to calculate privacy risk with mathematical precision

- Why this new field of privacy research eliminates guesswork when combining and distributing sensitive data

- The revolutionary balance between data utility and privacy protection that was previously impossible

- How forward-thinking organizations are using these mathematical formula to unlock data value safely

This isn't abstract theory – it's a practical revolution in how we approach data sharing. Garfinkel, who literally wrote the book on "Differential Privacy," shares real-world examples from his work with the U.S. Census Bureau, where differential privacy enabled the release of valuable population data while mathematically predicting individual privacy. In his book, Simson breaks down complex mathematical concepts into clear, actionable insights for security leaders, compliance officers, and legal counsel.

Listen now to discover how differential privacy is creating a future where data-sharing decisions are based on mathematical certainty rather than best guesses and crossed fingers.

Link to Simson's book: https://mitpress.mit.edu/9780262551656/differential-privacy/

In this critical episode of SecureTalk, host Justin Beals sits down with Robert Kolasky, former founding director of the National Risk Management Center at DHS and current Senior VP for Critical Infrastructure at Exiger. As the new administration implements sweeping changes to federal security requirements, Kolasky provides an insider's perspective on what these shifts mean for contractors, the Defense Industrial Base, and organizations managing critical infrastructure.

Drawing from his experience protecting everything from elections to the electrical grid, Kolasky offers rare insights into:

• The future of the Cybersecurity Maturity Model Certification (CMMC) program
• How companies can prepare for evolving compliance standards
• The relationship between FedRAMP and other security frameworks
• Emerging hybrid threats to national security
• Supply chain vulnerabilities and third-party risk management

Whether you're a federal contractor navigating new requirements or a security professional concerned about critical infrastructure protection, this conversation provides essential guidance during a time of unprecedented change in the national security landscape.

Boyle also delves into the equally provocative realm of biological engineering, where technologies like CRISPR are blurring the lines between species and challenging our ethical boundaries. He warns that we're entering an era where genetic modifications could fundamentally alter human capabilities, raising critical questions about ownership, consent, and the rights of an invention. For cybersecurity professionals, AI researchers and corporate leaders, Boyle's legal insights offer a crucial roadmap for navigating the complex ethical terrain of emerging technologies, emphasizing the importance of proactive, critical thinking in shaping our technological future.

You can find the book here: https://scholarship.law.duke.edu/faculty_books/9/

Security reviews have become the speed bump on the road to innovation that everyone acknowledges is necessary, but few have figured out how to navigate efficiently. Development teams push for velocity while security teams pull the emergency brake, creating tension that reverberates throughout organizations.

Today, we're joined by Dimitri Shvartsman, co-founder of Prime Security and prior Head of Cybersecurity at PayPal, to discuss how enterprise organizations are innovating security solutions to reduce the time to feature delivery. We'll explore how AI tools can actually enable rather than impede innovation and examine practical approaches to integrating AI security tools earlier in the development lifecycle.

Whether you're a CISO trying to balance security with business needs, a developer tired of security roadblocks, or a product leader navigating these competing priorities, this conversation will give you actionable insights to transform security from a bottleneck into a business enabler.

He highlights the alarming implications of leveraging AI in psychiatry, the historical intersection of these two fields, and the potential pitfalls and ethical challenges this marriage presents. He also delves into the technical, policy, and philosophical dimensions of using AI in psychiatry, bringing attention to various case studies and real-world applications such as emotion-recognition technology and AI-driven triage systems like those used by the Crisis Text Line. 

Daniel's insights present a compelling narrative, urging a cautious yet hopeful approach to adopting AI technologies in areas as sensitive as mental health, underscoring the need for transparency, privacy, and ethical considerations.

Book: 

Oberhaus, Daniel. The Silicon Shrink: How Artificial Intelligence Made the World an Asylum. MIT Press, 2025.  (Link) 

In this episode of Secure Talk, host Justin Beals talks with Terence Bennett, a former Naval Intelligence Officer and now the CEO of DreamFactory. They discuss Terence's intriguing path from an early interest in the military to a successful career in cybersecurity. He recounts his origin story, which is grounded in a lifelong dedication to service, racing sailboats at the naval academy, his experiences aboard the USS Paul Hamilton, and pivotal roles in intelligence during major geopolitical events such as the Arab Spring and the Bin Laden raid. The conversation covers topics including red teaming, the impact of digital transformation on intelligence, and the necessity of security by design in today’s fast-changing digital environment. Especially of interest is Terence’s new work on cybersecurity by marrying AI developed API’s with effective network segmentation. This episode serves as a valuable resource for cybersecurity professionals, providing a distinct viewpoint on the blend of military experience and cyber defense strategies.

Our discussion delves deeply into the synergy of AI advancements and the pressing need for robust security measures. Micah and Josh share their journey in striking the delicate balance between innovation and safety, offering invaluable insights for anyone in the tech and cybersecurity field.

As AI continues to revolutionise industries, cybersecurity experts must adapt and evolve. Tune in as we examine the potential and challenges presented by cutting-edge AI models. This episode is essential listening for those striving to stay ahead in the ever-evolving landscape of AI-driven cybersecurity. Join us and be part of the conversation shaping the future of technology!

Their engaging discussion shines a light on the power of systems thinking, the significance of thoughtful decision-making in the tech industry, and the vital balance between achieving business objectives and enhancing the human experience. 

This episode is a delightful must-listen for cybersecurity professionals who are excited to navigate the important intersection of technology, ethics, and human dignity in our ever-evolving digital world.

Books:

O'Neill, Kate. What Matters Next: A Leader's Guide to Making Human-Friendly Decisions In a World That's Moving Too Fast (2025) 

Tech Humanist: How You Can Make Technology Better for Business and Better for Humans (2018) 

They delve into Panos's early interest in computing, starting with a ZX Spectrum and his recent book on cryptography, which aims to make complex algorithms accessible to those with a high school level of mathematics. The conversation traverses the critical role of cryptography in our digital lives, the potential impacts of quantum computing, and the practical aspects of key management in modern web applications. Panos also shares captivating stories from the history of the Enigma machine and discusses the ongoing arms race in cryptography. Perfect for cybersecurity experts, this episode offers a rich blend of historical anecdotes, technical insights, and future-looking perspectives.

Book: Louridas, Panos. (2024) Cryptography. MIT Press.
           

00:00 Welcome to SecureTalk

00:28 The Importance of Cryptography

02:21 Introducing Panos Louridas

03:41 Panos Louridas' Journey into Computing

06:11 The Evolution of Cryptography

12:13 The Enigma Machine and Its Legacy

19:03 Security by Obscurity: A Fallacy

22:32 Speculations on NSA Backdoors

23:21 Government Contributions to Cryptography

24:51 Evolution and Security of AES

27:10 Challenges in Generating Randomness

28:15 Quantum Computing and Cryptography

33:45 Key Management in Modern Web Applications

36:53 TLS and AES: Understanding Their Relationship

39:01 The Human Factor in Cryptography

40:38 Making Cryptography Accessible

42:58 Conclusion and Final Thoughts

In this episode of Secure Talk, host Justin Beals interviews Michael Tiffany, co-founder of Human Security and the current leader of Fulcra Dynamics. Michael shares his early experiences with computers and his journey into cybersecurity, discussing topics the founding of Human Security as a solution for botnets, ad fraud, and early “Know Your Customer” challenges. He explains his current company, Fulcra's mission to empower individuals by unifying their personal data and promoting privacy and control in the age of AI. Listen as Michael reflects on the ethical responsibilities in technology and shares his vision for a future where individuals have sovereignty over their data.

00:00 Introduction to SecureTalk

00:32 Host's Journey into Computer Science

01:39 Introducing Michael Tiffany

03:12 Michael Tiffany's Early Experiences

15:26 The Birth of Human Security

20:56 Challenges and Innovations in Cybersecurity

27:11 Fulcra Dynamics: Empowering Personal Data

37:22 Vision for the Future of AI and Data Sovereignty

43:59 Conclusion and Final Thoughts

I’ve been utilizing cryptography in the development of web applications since my first professional web application development work. Although I’ve rarely understood the underlying technology and mathematics of cryptography.

In this episode of SecureTalk, our guest is Dr. Bill Anderson, an expert in cryptography. Bill shares his journey into the field, starting as a student in electrical and computer engineering. He inadvertently ventured into cryptography during his postgraduate studies. He discusses the evolution of cryptography, its historical context, and the impact of quantum computing on current cryptographic methods.

We explore various topics, including public key cryptography, digital signatures, and the ongoing need for crypto agility. Bill also provides insights into his current role as Principal Product Lead at Mattermost, a secure collaboration platform focused on data sovereignty and security. This episode offers a comprehensive look at modern cryptographic techniques and the challenges posed by future advancements in computing, making it a must-listen for anyone interested in cybersecurity and cryptography.

00:00 Welcome to SecureTalk: Introduction and Host Introduction

00:33 The Role of Security in Business Growth

01:55 Introducing Dr. Bill Anderson: A Security Expert

03:57 Dr. Anderson's Journey into Cryptography

05:35 The Evolution of Security and Cryptography

08:11 Understanding Business and Technology Landscapes

13:56 Mattermost: A Secure Collaboration Platform

22:01 The History and Methods of Cryptography

25:01 Understanding Public and Private Keys

25:58 Digital Signatures and Authentication

27:12 The Open Research Model in Cryptography

28:31 Challenges in Cryptographic Security

31:02 Quantum Computing and Cryptography

35:38 The Future of Cryptographic Systems

42:04 NIST's Role in Quantum-Safe Cryptography

49:41 Conclusion and Final Thoughts

In this engaging episode of SecureTalk, host Justin Beals invites Eldon Sprickerhoff, a seasoned cybersecurity expert and founder of eSentire, to share his journey. Eldon graduated with a computer science degree from Waterloo University in 1991 and went on to establish a leading managed security services provider.

During the conversation, Eldon reflects on his early career concerns and the macroeconomic challenges he faced during a recession. He also shares insights from his book, *Committed*, which explores the realities of startup life. The discussion highlights essential strategies for navigating the cybersecurity marketplace, the importance of founder-led sales, and the significant challenges and opportunities within the cybersecurity field.

Tune in to gain valuable perspectives on entrepreneurship, real-time vulnerability scans, and the impact of AI and quantum computing on cybersecurity.

Link to the Book: Commited: Startup Survival Tips and Uncommon Sense for First-Time Tech Founders https://sutherlandhousebooks.com/product/committed/

The conversation emphasizes the necessity of CMMC for federal contractors, including those in non-traditional sectors like medical equipment manufacturing, along with the associated costs and procedures. Stephen also shares insights from his experience conducting a self-assessment for CMMC compliance, offering practical advice for organizations aiming to achieve certification. 

This episode is essential for cybersecurity professionals who want to understand the latest federal compliance standards and prepare their organizations accordingly.

But we are in the midst of a massive proliferation of generative AI models. Since the technology is so nascent our expectations of privacy are being reshaped. An AI model is fundamentally a mathematical representation of a large data set. Its probabilistic function will create information depending on the prompts it can be given. Deep in the model the data used to ‘train’ it still leaves a fingerprint of the source information. What are the expectations for privacy, copyright and safety to those of us that have shared information on the internet?

In this episode of Secure Talk, host Justin Beals engages in a comprehensive discussion with Dan Clarke,  about the significant impact of AI. The conversation begins with Dan’s early days in computing and follows his journey into developing AI governance. They explore the transformative effects of AI in comparison to historical technological innovations, as well as the risks and biases that are inherent in AI systems. Additionally, they discuss current and future legal compliance issues.

Dan shares personal anecdotes related to privacy challenges and the applicability of AI, emphasizing the importance of transparency, thorough risk assessment, and bias testing in AI implementations. This episode provides valuable insights for anyone interested in the ethical and responsible use of AI technology in today's applications.

00:00 Welcome to SecureTalk: Exploring Information Security

00:32 The Evolving Landscape of Privacy and AI

01:47 Introducing Dan Clark: AI Privacy Leader

03:10 Dan Clark's Journey: From Intel to Privacy Advocacy

04:14 The Impact of AI: Paradigm Shifts and Privacy Concerns

06:08 Personal Data and Privacy: A Real-Life Story

08:45 The Importance of Data Control and Fairness

13:10 AI Governance and Legal Responsibilities

21:02 Current Laws Impacting AI and Privacy

26:47 Legal Basis for Data Usage

27:01 Introduction to Truio and InnerEdge

27:29 The Birth of Truio: Addressing GDPR

28:39 AI Governance and Federal Privacy Law

30:48 Transparent AI Practices

31:58 Understanding AI Risks and Transparency

36:52 AI Use Cases and Risk Assessment

44:57 Bias Testing and AI Governance

50:39 Concluding Thoughts on AI and Governance

Link: https://get.truyo.com/ai-governance-training

The conversation highlights CyberHoot's innovative use of positive reinforcement methods in their approach to automated training and examines the role of artificial intelligence (AI) in both creating and combating cybersecurity threats. They also discuss the future of AI in security training and provide practical steps that companies can take to enhance their cyber resilience.

00:00 Introduction to SecureTalk

00:34 The Importance of Security Awareness Training

03:18 Craig Taylor's Journey into Cybersecurity

05:25 The Evolution of Technology and AI

15:30 The Role of Virtual CISOs

21:48 Building CyberHoot: From Services to Product

25:17 The Ineffectiveness of Shock Collars and Negative Reinforcement

26:21 The Power of Positive Reinforcement in Training

27:21 Challenges with Fake Email Phishing

27:51 Cyberhoots' Approach to Phishing Simulations

28:50 Gamification and Positive Outcomes

30:26 The Anxiety Around Cybersecurity Training

31:39 The Problem with Traditional Phishing Tests

33:13 Emerging Best Practices in Cybersecurity

38:53 The Role of AI in Phishing and Cybersecurity

45:16 Future Perspectives and Rapid Content Creation

48:46 Conclusion and Final Thoughts

We discuss the early days of networked computing. How Eric recognized in 1995, while at Berkley, the opportunity of the Internet to break out of academic communities and become a space for business. In a moment of inspiration, he realized that the missing feature was security. To be successful a ‘web powered’ business needed to manage its users and their identities. Eric founded Securant Technologies in 1995 and developed some of the first Web Access Management products.  Securant Technologies was acquired by RSA in 2001. Eric continued to stay at the forefront of Identity Management by working on SAML, the gold standard of shared authentication.  Today, Eric is developing Strata and exploring how enterprise organizations are harmonizing multiple Identity Providers from Okta to Microsoft. Tune in to learn about the critical advancements shaping the trusted identity landscape from a leading expert and present innovator.

00:00 Introduction to SecureTalk

01:51 Challenges in Identity Management

03:16 Introduction to Eric Olden

04:33 Eric Olden's Early Experiences with Computing

08:39 The Birth of Identity Management Solutions

17:11 The Origin of SAML

23:13 Reflections on SAML Evolution

23:56 Introduction to OAuth and Identity Standards

26:22 The Vision Behind Strata

30:15 Challenges in Identity Management

33:12 Exploring Self-Hosted Identity Solutions

40:07 The Importance of Authentication and Authorization

46:39 Concluding Thoughts on Identity Standards

In this episode of SecureTalk, host Justin Beals is joined by cybersecurity researcher Luca Viganò to discuss his innovative approach to demystifying cybersecurity concepts using fairy tales. Luca shares his passion for making cybersecurity accessible to both experts and the general public by employing storytelling techniques. Key topics include multifactor authentication, explained through 'Cinderella' and password security inspired by 'Alibaba and the 40 Thieves.' Luca's insights are based on his acclaimed article 'Cyber Security of Fairy Tales.' This episode provides a fresh perspective on engaging non-expert stakeholders and underlines the importance of a social-technical approach to cybersecurity.

00:00 Introduction to SecureTalk
00:34 Host's Background and Passion for Storytelling
03:07 Introducing Luca Vigano
04:49 Luca's Journey in Cybersecurity
06:47 The Power of Storytelling in Teaching Security
08:10 Fairy Tales and Cybersecurity
18:43 Cinderella and Multi-Factor Authentication
34:06 Alibaba and the 40 Thieves: Lessons in Security
40:30 Show vs. Tell in Security Education
44:39 Future Work and Conclusion

Article: Luca Viganò, The cybersecurity of fairy tales, Journal of Cybersecurity, Volume 10, Issue 1, 2024, tyae005, https://doi.org/10.1093/cybsec/tyae005

00:00 Welcome to SecureTalk

00:32 Introduction to Application Security

01:44 Meet Idan Plotnik

02:52 Idan’s Journey in Cybersecurity

04:31 Early Encounters with Computers and Security

08:44 Military Service and Professional Growth

12:19 Founding Apiiro and Innovations in Security

14:06 Challenges in Modern Software Development

15:33 Comprehensive Security Measures

19:47 Understanding the Risk Landscape

24:35 Understanding Risk in Software Architecture

25:30 The Role of AI in Software Security

26:29 Translating Code into Components

27:50 The Importance of Software Inventory

31:47 The Limitations of SBOMs

40:02 Automation in Security Design

46:00 The Power of Graph Data Models

48:35 Conclusion and Final Thoughts

Join us on Secure Talk for an in-depth exploration of the complex world of privacy with esteemed sociologist and author James B. Rule. In this episode, he draws parallels between past and present institutional power. He discusses his latest book, “Taking Privacy Seriously:  How to Create the Rights We Need While We Still Have Something to Protect “where he delves into the intricacies of privacy laws, the implications of personal data commercialization, and the notion of "personal decision systems." 

James presents 11 practical privacy reforms, highlighting the importance of informed consent and strong data protection measures. This episode offers cybersecurity experts valuable historical context, actionable insights, and thought-provoking discussions on how to balance privacy with technological advancement. Join the conversation on how we can protect what truly matters.

Join us as we examine the challenges and potential reforms related to privacy in the digital age, highlighting recent legislative successes such as California's new privacy laws. James advocates for the establishment of national institutions dedicated to promoting privacy. He also discusses the ethical dilemmas faced by technology and policy leaders in striving to find the right balance between the utility of personal data and the protection of individual privacy.

This episode is essential for cybersecurity experts interested in privacy reform and the history of personal data usage.

Book: “Taking Privacy Seriously: How to Create the Rights We Need While We Still Have Something to Protect” 

https://www.ucpress.edu/books/taking-privacy-seriously/paper

00:00 Introduction to SecureTalk

00:32 Exploring the Complexities of Privacy

01:21 Introducing James B. Ruhle

02:56 James B. Ruhle's Journey into Privacy

06:55 Historical Perspectives on Privacy

09:10 Modern Privacy Challenges and Solutions

15:48 The Concept of Lawful Basis

23:59 Personal Decision Systems

26:26 Proposed Privacy Reforms

36:56 Public Events and Privacy Issues

42:55 Conclusion and Final Thoughts

In a thought-provoking episode of Secure Talk, host Justin Beals  interviews Greg Epstein, the Humanist Chaplain at Harvard and MIT, and a New York Times bestselling author about his upcoming book, "Tech Agnostic: How Technology Became the World's Most Powerful Religion and Why It Desperately Needs a Reformation." They discuss the intricate relationship between technology, ethics, security, and human experience, challenging traditional perspectives on cybersecurity. Through engaging conversations about societal equity, community connections, and the ethical implications of technology-induced isolation, Greg and Justin shed light on the profound cultural and existential impact of technology on modern life. The discussion delves into the psychological and emotional aspects of the tech world, drawing parallels with religious structures and highlighting the need for a balance between technological engagement and ethical responsibility.

Book: "Tech Agnostic: How Technology Became the World's Most Powerful Religion and Why it Desperately Needs a Reformation"
https://mitpress.mit.edu/9780262049207/tech-agnostic/

In this compelling episode of Secure Talk, host Justin interviews Bob Chaput, a seasoned CISO and cybersecurity leader with a rich background in the healthcare sector. The conversation traverses Bob’s extensive career, from his early days at GE to establishing Johnson & Johnson’s first information security program. Bob shares profound insights from his book, 'Cyber Risk Management as a Value Creator,' illustrating the shift of cybersecurity from a defensive necessity to a strategic business driver. They explore the critical role of governance, regulatory accountability, and the implementation of risk management frameworks like the NIST cybersecurity framework. Using real-world cases like Equifax’s post-breach recovery, Bob elucidates the tangible business value of robust cybersecurity measures. Learn about budgeting for cybersecurity, fostering organizational engagement, and integrating security into business operations for enhanced resilience and customer trust. This episode is a treasure trove for experts looking to transform their cybersecurity approach into a strategic advantage.

Book:  Enterprise Cyber Risk Management as a Value Creator 
https://bobchaput.com/enterprise-cyber-risk-management-as-a-value-creator/

00:00 Welcome to SecureTalk: Introduction and Host Overview

00:41 The Importance of Scope in Cybersecurity

02:58 Introducing Bob Chaput: Cybersecurity Expert

04:45 Bob Chaput's Career Journey

08:17 Enterprise Cyber Risk Management as a Value Creator

12:20 The Role of Regulations and Accountability in Cybersecurity

17:26 Strategic Approach to Enterprise Cyber Risk Management

21:33 Risk and Opportunity Assessment in Cybersecurity

26:47 Leveraging Security Practices for Business Value

27:58 The Impact of Cybersecurity on Business Value

28:56 Clearwater's Role in Enhancing Cybersecurity

31:03 The ECRM Budget Philosophy

32:59 Maxims for Effective Cyber Risk Management

35:59 Building a Team Sport Culture in Cybersecurity

40:47 Foundational Components of ECRM

44:19 Challenges in Third-Party Risk Management

49:25 Clearwater's Journey and Future Prospects

In this episode of Secure Talk, host Justin Beals welcomes Rey Kirton from Forge Point Capital to discuss venture capital's unique role in the cybersecurity industry. Rey shares his journey from consulting to venture capital, outlining the importance of building meaningful long-term relationships with companies he invests in. He explains how Forge Point Capital develops investment theses and highlights the value of solution-based, data-driven AI applications. The conversation delves into the significance of listening to customer feedback, industry patterns, and emerging themes like edge computing and AI in cybersecurity. The episode is a must-listen for founders and investors navigating the current market landscape, offering insights into building successful business partnerships and understanding evolving technology trends.

00:00 Welcome to SecureTalk

00:36 Introducing Our Guest: Ray Kirton

01:30 Rey Kirton's Career Journey

02:25 Venture Capital Insights

05:14 The Role of ForgePoint Capital

06:55 Investment Strategies and Challenges

17:01 AI in Cybersecurity

21:45 Leveraging Proprietary Data for AI and Data Science

23:19 The Rise and Fall of Blockchain and Crypto Hype

28:10 Understanding Venture Capital Dynamics

34:31 Future Trends in Technology and Investment

37:56 Advice for Aspiring Founders

39:09 The Importance of Customer Feedback

42:47 Building Strong Investor Relationships

In the latest episode of SecureTalk, Justin is joined by Dr. Paul Campbell, who serves as the Head of Software and AI at the UK's Medicines and Healthcare products Regulatory Agency (MHRA). Dr. Campbell discusses his journey from pharmacy to becoming a prominent figure in healthcare IT and regulated software. The conversation covers the development of AI in healthcare, the global standardization of regulations, and the MHRA’s innovative initiatives such as AI Airlock, which are driving progress in medical technology. The discussion also delves into the vital role of data representation, ethical considerations in AI, and the complexities of implementing advanced technologies in real-world medical settings.

In this episode of SecureTalk, host Justin Beals welcomes Jason Healey, a senior research scholar at Columbia's School for International and Public Affairs. Jason, a pioneer in the field of cyber threat intelligence and former intelligence officer, discusses his extensive career and the evolution of cyber defense from the late 1990s to today. Topics include the origins of cybersecurity, the challenges of cyber warfare and policy, and the balance between defense and innovation. Jason elaborates on the critical role of metrics such as mean time to detect in measuring cybersecurity effectiveness and emphasizes the importance of harmonizing regulations and frameworks in the U.S. A detailed analysis of recent cyber incidents and the necessity for more robust cyber policies underlines the insightful conversation, making it essential listening for cybersecurity professionals.

Throughout our conversation, Naomi shares her intriguing journey into the field of cybersecurity, from her early interest in tech and her educational background to landing a significant role at Vanguard Financial and eventually becoming a thought leader in cybersecurity. She explains the critical distinction between secure architecture reviews and secure code reviews and delves into the importance of trust and collaboration between developers and security engineers. Naomi also emphasizes the importance of inclusive hiring and discusses how she has successfully integrated individuals from non-traditional backgrounds into cybersecurity roles. As the founder of Cybersecurity Gatebreakers she helps technology teams find “young-in-career” talent ready to make an effective contribution. A poignant part of the discussion revolves around the concept of 'sec-splaining,' the need for excellent communication, and why security should be seen as a service to the business. This conversation is a must-listen for cybersecurity experts looking to enhance their understanding of team building and effective security management for software development.

-----
Additional Resources: 
Books:
"The Smartest Person in The Room" by Christian Espinosa

https://christianespinosa.com/books/the-smartest-person-in-the-room/

"Five Disfunctions of a Team" by  Patrick Lencioni

https://www.amazon.com/Five-Dysfunctions-Team-Leadership-Fable/dp/0787960756

In this episode of SecureTalk, host Justin Beals interviews David Holtzman, the brains behind the global domain name registration system and a former NSA analyst. They delve into the history and evolution of the DNS, discussing how it transformed from a single 'host.txt' file to a robust global system impacting millions of domain names. David shares his thoughts on decentralization, the potential of blockchain technology, and the future of cybersecurity in the wake of quantum computing. They also touch on the implications of AI, the cyclical nature of tech fads, and the importance of innovative yet secure solutions in today's rapidly evolving cyber environment. This episode is a must-listen for cybersecurity experts interested in the complex interplay between technology, governance, and security.

Join host Justin Beals and guest Mark Listes as they delve into the critical topic of election security. Mark, CEO of Pendulum and former Head of Policy at the U.S. Election Assistance Commission, shares his extensive expertise on managing election security and the intricate relationship between technology and trust in the electoral process. They explore the complexities of pre-vote misinformation, the robustness of various voting systems, and how the integrity of election results is maintained amidst emerging cybersecurity threats. Mark also highlights Pendulum's new tool, ElectionIQ, which aids businesses in navigating election-related risks. The discussion sheds light on the vital role of trust and participation in sustaining democracy, making it a must-listen for cybersecurity professionals seeking to understand the current landscape of election integrity.

Realizing that the security field has been rapidly growing, they used expertise in the humanities to explore security jobs and their impact on individuals, families and our community at large. The podcast covers their methods of capturing authentic experiences through interviews and photography, bringing a human touch to a field often viewed through a critical or technical lens. Danny and Ed recount their past roles in security and detail compelling stories from their book, including experiences of border patrol agents, military security and cybersecurity professionals. The discussion also touches on the companion exhibition for “Jobs / Security”  and their plans for expanding the project globally. This episode is a must-listen for those interested in the intersection of security and humanity.

Book: 'Job / Security: A Composite Portrait of the Expanding American Security Industry'. (2024) https://mitpress.mit.edu/9780262048699/jobsecurity/

Exhibition: Job Security: Voices and Views from the American Security Industry.  August 12- December 9, 2024 - University at Albany SUNY
https://www.albany.edu/museum/exhibitions/job-security-voices-and-views-american-security-industry

In this week's episode of SecureTalk we host an Associate Professor of Digital Media at Brock University, to discuss the intersection of cybersecurity and the humanities. Our guest's recent works include, 'Hacking the Humanities' and 'The Language of Cyberattacks,' delve into how digital culture, app development, and natural language processing intersect with cybersecurity. 

Listen in as we discuss William Gibson predicting the future of the internet and our examination of the cultural consequences of cybersecurity, emphasizing the need for broader digital literacy, the evolving landscape of internet privacy, and how speculative fiction can inform ethical questions and possible futures. They also touch on real-world incidents like the 'Parlor tricks' hack, demonstrating how programming literacy can empower individuals to navigate and influence the digital ecosystem. The conversation underscores the vital role of humanistic perspectives in understanding and shaping the cybersecurity landscape.