Guest Steve Zalewski discusses topics such as open source challenges, cybersecurity hiring, and sales knowledge. They debate on privacy invasion vs. embarrassment, cybersecurity quiz, and mastering interviews. The podcast also explores company security, risk management, and mentorship in cybersecurity.

Guest Steve Zalewski and the hosts discuss the challenges of securing SaaS applications, the need for a specific strategy, gaining visibility in SaaS environments, and strategies for securing SaaS applications including DNS for app discovery and operationalizing security practices.

Steve Zalewski, a seasoned cybersecurity advisor and CISO in residence, joins to dive into the current landscape of cyber threats. He discusses the ongoing vulnerabilities in Microsoft 365, particularly concerning product deactivation and phishing risks. Zalewski also critiques traditional responses like rebooting systems to solve flaws, advocating for a more robust cybersecurity strategy. The conversation highlights the dangers of large language models creating malware and underscores the critical need for innovative defenses in today’s tech-driven world.

Steve Zalewski, a cybersecurity expert in identity access management, teams up with Damon Fleury, Chief Product Officer at SpyCloud, to discuss the evolving landscape of identity security. They highlight the necessity of centralized identity management and dynamic risk assessments. The conversation dives into the role of automation and user awareness in combating unauthorized access. Their insights focus on proactive defense strategies, tailored access controls, and the importance of adapting security measures to stay ahead of cyber threats.

Guest Steve Zalewski, co-host of Defense in Depth, discusses topics such as ransomware negotiations being hijacked, ransomware as a service, cybersecurity education for senior citizens, concerns over ransomware targeting backups, and the importance of security posture and disaster recovery.