Dark Rhino Security Podcast

#SecurityConfidential #DarkRhiinoSecurity Ken Foster is a highly accomplished Security Expert with over 25 years of leadership experience in cybersecurity, infrastructure, and risk management. As a former CISO, technology leader, and US Navy Veteran, he brings a unique blend of strategic and operational expertise in information risk governance, IT enterprise operations, and security architecture across both the public and private sectors. In addition to his executive roles, He serves as an advisory board member and Chief Compliance Officer Purandar Das is back on our show. For those of you who may not remember, Purandar is a visionary leader in tech, having served as CTO for two of the largest marketing services companies. He is now the CEO of Sotero, a data protection company. His shift from data monetization to security was driven by the alarming rate of cyber threats, like those faced by JP Morgan. He's built systems that have reached millions, and now he's safeguarding a petabyte and a half of critical

Allie Hunter is a cybersecurity advocate and the author of Mothers Against Cyber Crime, a book that addresses the challenges parents face in protecting their families online. With a background in psychology, behavioral science, cybersecurity, and marketing, Allie weaves together real-life cyber incidents into compelling stories that offer practical advice for navigating the digital world. Allie collaborates with Savvy Cyber Kids, a nonprofit dedicated to educating families about online safety. Her work focuses on providing resources that empower parents and caregivers to safeguard their loved ones against cyber threats. Through her writing, Allie aims to raise awareness and equip readers with the knowledge they need to combat cybercrime effectively. 00:00 Introduction 01:47 Our Guest 02:13 Your net worth is your Network 07:20 Real-life horror stories for parents 10:37 The Bark Phone 16:20 Minecraft and Roblox 21:25 Protecting Tech Savvy Teens online 23:20 I thought I was safe, until it happened to me 25:37

#SecurityConfidential #DarkRhiinoSecurity Ken is the former CEO, Executive Producer, and Television Host at Cyber Life. He is the Best-Selling Author of “Hack the Cybersecurity Interview: A complete interview preparation guide for jumpstarting your cybersecurity career”. He has been featured in Forbes, Reader's Digest, Tech Republic, Fox, NBC, Dark Reading, and many more places. 00:00 Snippet 00:59 Our Guest 04:22 People are using AI to write books? 11:47 Additional places to look for Cybersecurity jobs 12:32 How to properly reach out to companies for jobs 16:05 Ghost jobs 20:12 Don’t create “wish lists” for jobs 25:30 Diversity in our industry 30:00 Fake coaching program scams 31:00 Are Certifications important 37:20 Diversity of Thought 40:20 Make your boss's life easier 45:50 Organizations to follow ------------------------------------------------------------------- Purchase the second edition of "Hack the Cybersecurity Interview" : https://www.amazon.com/Hack-Cybersecurity-Interview-Interviews-Entry

Jim Love is a strategic consultant and corporate advisor specializing in AI, technology, marketing, and business strategy. He is an accomplished author, journalist, professor, and podcast host, known for producing the popular shows Hashtag Trending and Cybersecurity Today, and is the publisher of Tech Newsday. Jim served as CIO and Chief Content Officer at IT World Canada, overseeing IT World Canada, CIO Canada, IT Business, Computer Dealer News, Network World Canada, and Direction Informatique, while also leading the company’s event initiatives. Before consulting, Jim worked in the financial services industry, covering banking, investments, trust, and insurance. 00:00 Intro 00:58 Our Guest 02:06 Working with Jim Carrey 07:11 The best piece of advice 14:07 Password Reuse 19:48 Holding CISOs criminally responsible 30:11 The dangers of Chat GPT 39:56 Our new normal: Automation 47:46 Connecting with Jim ------------------------------------------------------------ To learn more about Jim visit https://www.tech

Sanjay Chopra is the co-founder and CEO of Cognistx, an AI company known for developing innovative products like SQUARE and DQE, used across various industries. With over 30 years of experience in AI and business strategy, Sanjay has led several successful technology ventures. He serves on the Pittsburgh board of the Federal Reserve Bank of Cleveland and is involved in multiple technology councils and advisory boards. Sanjay holds advanced degrees from Carnegie Mellon University and Virginia Tech, and he also teaches e-Commerce as an adjunct professor at Carnegie Mellon. 00:00 Intro 01:04 Our Guest 10:15 Changing the AI threat landscape 17:40 Using AI to complete legal work 27:10 Will AI remove the human element? 47:08 What does CognistX do? 50:00 SQUARY and Dark Rhiino’s vCISO Bot Launch -------------------------------------------------------- To learn more about CognistX visit https://www.cognistx.com/To test our vCISO bot visit https://darkrhiinosecurity.com/ To learn more about Dark Rhiino Security visi

Greg Schaffer, founder of vCISO Services, LLC and a returning guest on Security Confidential, brings over 35 years of experience in IT and security, with 15 years as a CISO. He hosts the Virtual CISO Moment podcast and is the author of Information Security for Small and Midsized Businesses. 00:58 Our Guest 01:59 What’s new with Greg? 03:37 Changes in the vCISO world 11:29 People, Process, and Technology 15:00 Information Security for Small and Midsized Businesses -------------------------------------------------------------- Here's a link for $5 off Information Security for Small and Midsized Businesses exclusively for Security Confidential. Offer expires September 30, 2024. To learn more about Greg visit https://www.linkedin.com/in/gregoryschaffer/ To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com ------------------------------------------------------------- SOCIAL MEDIA: Stay connected with us on our social media pages where we'll give you snippets, alerts for n

#SecurityConfidential #DarkRhiinoSecurity Dan Lohrmann is an internationally recognized cybersecurity leader, keynote speaker, and author with over 30 years of experience. He served as Chief Security Officer, CTO, and CISO for Michigan's government and received numerous national awards, including CSO of the Year and Computerworld Premier 100 IT Leader. He has advised top-level government and business leaders, including at the White House and U.S. Department of Homeland Security. Currently, Dan is the Field CISO for Presidio and co-author of Cyber Mayday and the Day After, a guide for managing business disruptions. 00:00 Snippet 01:59 Our Guest 09:13 Was Cybersecurity a term back then? 13:05 Everybody keeps getting breached, Why? 19:00 Creating a culture 32:50 Trust but Verify mentality 45:53 Stopping Online Fraud 52:13 Bring your own AI 57:05 Cyber Mayday ---------------------------------------------------------------------- To read about Dan visit https://www.govtech.com/authors/dan-lohrmann.html To

#SecurityConfidential #DarkRhiinoSecurity Nick Espinosa is a cybersecurity expert with over 25 years of experience in the field. He founded Windy City Networks, later acquired in 2013, and went on to create Security Fanatics in 2015, specializing in custom cyber defense strategies for medium to enterprise-level corporations. Nick is a board member, advisor, and contributor to several cybersecurity organizations and initiatives, including Roosevelt University, the COVID-19 Cyber Threat Coalition, and the Cyber Peace Institute. He’s also an award-winning co-author, TEDx speaker, and host of the nationally syndicated radio show "The Deep Dive." 00:00 snippet 01:20 Our Guest 02:07 Growing up around technology 06:42 What can’t companies do right? 14:40 Nerd to English translation 21:07 The 5 laws of Cybersecurity 35:21 Innovating around Systems 49:24 More about Nick ---------------------------------------------------------- To learn more about Nick visit https://www.linkedin.com/in/nickespinosa/ Vi

#SecurityConfidential #DarkRhiinoSecurity Jake has been an innovator in the cloud-native ecosystem for over 15 years. After engineering roles at Amazon and Google, Jake founded Quay, the first private Docker registry, which was acquired by CoreOS. Jake then became an engineering leader at CoreOS, which was acquired by Red Hat (and then IBM). He is now the co-founder and CEO of AuthZed, the company commercializing SpiceDB, the industry-leading cloud-native permissions database. 00:00 Intro 00:58 Our guest 02:15 The Entrepreneur chip on your shoulder 06:58 The fear of failure 09:46 How do you pay salaries on open source when you use it daily 12:40 The basics of a Distributed Architecture 20:00 Distributed Databases 26:43 What if the platform isn’t distributed? 31:38 AuthZed 43:21 What will AI do in your world? 47:01 News from Jake ---------------------------------------------------------------------- Kiteworks enables organizations to effectively manage risk in every send, share, receive, and save of sensi

#SecurityConfidential #DarkRhiinoSecurity Aaron is a Security Confidential Alumni, Entrepreneur, Author, former VP of Microsoft in China, and the CEO of Nametag Inc, the company that invented “Sign in with ID” as a more secure alternative to passwords. 00:00 Intro 00:57 Our Guest 01:46 Social Engineering trends 04:03 Deep fakes: how does it work? 09:18 Watermarking content 11:30 Deepfake Prevention: Injection attack 13:11: Deepfake prevention: Presentation attack 15:00 How do you verify behind a screen? 27:16 Hidden security in your phones 32:08 Social Engineering and MFA in Healthcare 41:18 How to maintain LOYAL Employees 46:15 China: Friend or Foe? 50:13 Connecting with Aaron ------------------------------------------------------------------ Watch our other episode with Aaron: https://youtu.be/m2PLow9cWSE ------------------------------------------------------------------ To learn more about Nametag visit https://getnametag.com/ To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurit

#SecurityConfidential #DarkRhiinoSecurity Purandar Das is a visionary leader in tech, having served as CTO for two of the largest marketing services companies. He is now the CEO of a leading data protection company, pioneering innovative approaches to secure personal data. Transitioning from data monetization to data protection, Purandar was driven by concerns about the inadequacies of existing security products. His unique journey underscores a deep commitment to redefining data security standards in today’s digital age. 00:00 Snippet 01:15 Our Guest 02:05 What is the biggest vulnerability for organizations? 03:10 What makes Data valuable? 06:25 What role does AI play in data protection? 12:23 Doing the minimum 13:28 How can Organizations better protect themselves? 17:33 Encrypting data 20:49 Best Practices for SMBs ---------------------------------------------------------------------- To learn more about Purandar visit https://www.linkedin.com/in/purandardas/ To learn more about Dark Rhiino Security

Dr. Eric Daimler is a leading authority in robotics and artificial intelligence with over 20 years of experience as an entrepreneur, investor, technologist, and policymaker. He served as a Presidential Innovation Fellow for AI and Robotics under the Obama Administration, driving U.S. leadership in AI research and commercialization. Eric has founded and led several pioneering tech companies and currently serves on the boards of WelWaze Medical and Petuum. His latest venture, Conexus, addresses the critical issue of data deluge in information technology. With a career spanning business, academia, and policy, Eric offers a unique perspective on shaping the future of AI for societal benefit.  00:00 Snippet01:09 Our Guest05:40 AI is much more than Machine Learning10:57 Lisp and data30:54 Conexus 32:53 Type Theory and Quantum compiling34:44 The government's role in AI39:14 Connecting with Eric ------------------------------------------------------------------ To learn more about Eric visit https://www.linked

#SecurityConfidential #DarkRhiinoSecurity Vivek Ramachandran is a security researcher, author, speaker/trainer, and serial entrepreneur with over two decades of experience in offensive cybersecurity. He is currently the founder of⁠ SquareX⁠, building a browser-native security product focused on detecting, mitigating, and threat-hunting web attacks. Prior to that, he was the founder of Pentester Academy (acquired), which has trained thousands of customers from government agencies, Fortune 500 companies, and enterprises from over 140+ countries. He has authored multiple books in cybersecurity and spoken at DEFCON, BlackHat multiple times.  00:00 Introduction  01:04 Our Guest 05:55 Advice from Vivek to those who want to follow a passion 09:19 Ransomware payments have gone down  13:37 Why is this still not addressed? 27:55 Should the CISO report to the board or the CIO?  36:55 Vulnerabilities in Gmail, Outlook, and their counterparts 47:14 SquareX + DEFCON   ----------------------------------------------------

Vivek Ramachandran is a security researcher, author, speaker/trainer, and serial entrepreneur with over two decades of experience in offensive cybersecurity. He is currently the founder of SquareX, building a browser-native security product focused on detecting, mitigating, and threat-hunting web attacks. Prior to that, he was the founder of Pentester Academy (acquired), which has trained thousands of customers from government agencies, Fortune 500 companies, and enterprises from over 140+ countries. He has authored multiple books in cybersecurity and spoken at DEFCON, BlackHat multiple times.  00:00 Introduction  01:04 Our Guest 05:55 Advice from Vivek to those who want to follow a passion 09:19 Ransomware payments have gone down  13:37 Why is this still not addressed? 27:55 Should the CISO report to the board or the CIO?  36:55 Vulnerabilities in Gmail, Outlook, and their counterparts 47:14 SquareX + DEFCON   SOCIAL MEDIA: Stay connected with us on our social media pages where we'll give you snippets,

Stephen Kowski is a seasoned cybersecurity expert with a robust career spanning over two decades. He is currently the CTO at SlashNext, the leader in Ai-powered cloud email, mobile, and browser messaging security. Stephen has a rich history of leading and implementing comprehensive cybersecurity strategies, ensuring robust protection for organizations against evolving cyber threats. His expertise encompasses risk management, compliance, incident response, and innovative security solutions. Stephen is also a passionate advocate for cybersecurity education and awareness, continuously contributing to the development of the cybersecurity community. 00:00 Introduction 00:32 Our Guest 02:08 What is a field CTO? 03:19 Learning to speak their language 07:26 Why not take the traditional approach? 11:00 Anything made by a human can be broken by a human 15:03 What role does Risk play into product design? 20:35 3D Phishing 25:25 What are you trying to solve? 36:11 Is Email marketing effective anymore? 42:58 Attackers

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon celebrates 150 episodes with Robert Kerbeck. Robert is a multifaceted storyteller, former corporate spy, actor, acclaimed author, and founder of the Malibu Writers Circle. His award-winning debut book, "Malibu Burning: The Real Story Behind LA's Most Devastating Wildfire," earned him the 2020 IPPY Award and Readers’ Favorite Award, among others. One of his stories was adapted into the award-winning film, "Reconnected," showcased at film festivals globally. His latest memoir, "RUSE: Lying the American Dream from Hollywood to Wall Street," offers a thrilling glimpse into his career as a corporate spy. 00:00 Introduction 00:39 Our Guest 02:10 Corporate spy 06:10 Hacking your people 33:04 What’s the legal position for companies? 36:06 RUSE 43:30 People want connection 46:26 Getting a signed copy of RUSE ---------------------------------------------------------------------- To learn more abou

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Brian Vallelunga. Brian is the Founder and CEO of Doppler, which is the first secrets management platform for developers. Doppler empowers tens of thousands of engineering and devops teams to seamlessly orchestrate, govern, and manage their secrets across environments at scale. Brian has been featured in Forbes 30 Under 30, worked at improving overall Safety at Uber, and has won multiple state level science fairs. 00:00 Introduction 00:18 Our Guest 01:03 Building a successful company 07:37 Falling in love with your own idea 11:20 Killing Bad Startups 20:53 What problem are you solving? 26:38 Closing the gap 30:25 The bigger the company, the worse their security is 37:20 Out of Business 6 months after Breach 41:26 Will Machine Learning and Quantum Computing play a role? 46:07 More about Brian ------------------------------------------------- To learn more about Brian visit https://www.linkedin.com/in/vallelungabria

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Max Hillebrand. Max is the CEO at ZKSNACKS and Wasabi Wallet, a pioneering figure in the realm of privacy-focused cryptocurrency wallets. He is a dedicated open-source contributor focused on liberty and digital freedom. He champions non-scarcity in the digital realm, sharing his creations generously. Hillebrand works to build a robust economic ecosystem, empowering individuals for entrepreneurial pursuits. 00:00 Introduction  00:21 Our Guest 03:41 ZKSNACKS and Wasabi Wallet 06:41 The Basics of Bitcoin: How does it work? 13:30 How do bitcoin exchanges fail? 26:46 Changing the rules 33:47 Why do Ransomware actors want their cash in bitcoin? 37:00 How to get your public key on the blockchain? 44:10 Quantum computing and future issues 57:05 Book Recommendations from Max

#SecurityConfidential #DarkRhiinoSecurity This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Daryl Donley. Daryl is currently a VP at Outcomes responsible for Security and IT. He has a passion for building and solving problems through secure software and embraces secure software development practices. He spent 20 years directly involved as a tester, developer, and architect building end-user solutions. For the last 15+ years, he has been working in Information Security, helping teams build secure and compliant solutions. In his spare time, he enjoys sports and tinkering with technology like blockchain and digital assets. 00:00 Introduction 00:17 Our Guest 06:15 How do you manage 3rd party risk? 07:48 The role of threat intelligence 09:34 Do the stakeholders understand? 12:10 Not replying solely on Open source 18:40 Convenience over security 20:30 It’s secure enough 26:20 Throwing technology at a problem doesn’t solve it 29:36 Can AI help? 46:50 More about Daryl

This week on Dark Rhiino Security’s Security Confidential podcast, Host Manoj Tandon talks to Troy Hunt. Troy is an Australian Microsoft Regional Director and MVP for Developer Security. He's known for his expertise in web security, as well as his creation of 'Have I Been Pwned?' He's a prolific author for Pluralsight, a sought-after speaker at global conferences, and has been featured in a number of articles with publications including Forbes, TIME magazine, Mashable, PCWorld, ZDNet and Yahoo! Tech. Aside from technology and security, Troy is an avid snowboarder, windsurfer and tennis player 00:00 Introduction 01:17 We’re going to outsource you 05:20 Have I Been Pwned? 10:10 Does the value length matter? 15:13 Convenience vs Security 20:20 Recovering an account 34:08 What is the effectivity of 2FA? 37:45 Artificial Intelligence and NLP 443:27 If you’re going to do nothing, at least do this 52:25 More about Troy -------------------------------------------- To learn more about Troy visit http