Brilliance Security Magazine Podcast

In Episode S7E6 of the Brilliance Security Magazine Podcast, host Steven Bowcut sits down with Dmitri Vellikok, VP of Embedded Security at F-Secure, to discuss F-Secure’s newly launched Scam Kill Chain Framework and explore critical insights into how cybercriminals select and exploit their targets.The Inspiration Behind Scam Kill ChainDmitri shares his 20+ year journey in cybersecurity, from his early fascination with web-based hacking to his extensive experience with F-Secure, highlighting what motivates him to continue tackling cyber threats. He explains the inspiration behind the Scam Kill Chain Framework, a groundbreaking approach designed to close gaps in existing cybersecurity strategies, providing better protection for both businesses and consumers.Exploring the Scam Kill Chain FrameworkThe discussion delves deep into each stage of the Scam Kill Chain, from initial reconnaissance and infrastructure setup to lateral movement and eventual monetization. Dmitri emphasizes that timely intervention, especially during initial contact attempts by scammers, is critical for effective defense.Dispelling Misconceptions About Cyber ScamsListeners gain valuable insights into common misconceptions around scams, understanding the psychology of cybercriminals, and why attacks, although widespread, aren't typically personal but rather opportunistic and scaled. Dmitri also addresses emerging cybersecurity threats associated with connected IoT devices and AI-based systems, emphasizing the need for updated software and proactive threat detection.AI’s Role in Threat DetectionThe role of artificial intelligence and machine learning in identifying and preventing cyber threats within the Scam Kill Chain Framework is explored, providing practical guidance for security professionals interested in integrating this approach into their practices.Future Cybersecurity Challenges and PreparationFinally, Dmitri shares forward-looking perspectives on evolving threats and how F-Secure is proactively preparing to stay ahead of increasingly sophisticated cybercriminals. Don't miss this episode packed with actionable insights to enhance your cybersecurity strategies.

In Episode S7E5, host Steven Bowcut speaks with Ian Amit, CEO and Founder of Gomboc AI. The conversation covers various aspects of Gomboc AI and its approach to computer science and cybersecurity. Ian shares his practical problem-solving philosophy and insights into the evolving landscape of cybersecurity, highlighting the impact of generative AI and the inefficiencies in traditional cloud security and DevOps processes. They discuss the complexities of cloud security, including risks from misconfigurations and shadow IT, and outline Gomboc AI's deterministic approach to AI, which relies on provider documentation to deliver precise solutions while maintaining human oversight. Finally, Ian emphasizes the future direction of Gomboc AI, advocating for improved DevSecOps practices and the integration of infrastructure as code and GitOps methodologies.

In Episode S7E4,David Matalon, CEO and Founder ofVenn, joins Steven Bowcut to explore the evolving landscape of remote work security and the challenges of traditional Virtual Desktop Infrastructure (VDI). David shares insights into how financial services and other industries have struggled with data security, compliance, and usability in a BYOD-driven world, and how Venn’sSecure Enclave and Blue Border technology provide a more seamless, secure alternative. They also discuss the importance ofwork+life integration over balance, how Venn’s approach enhances remote productivity without sacrificing security, and the lessons learned from scaling a cybersecurity business. The conversation delves into thefuture of BYOD, its growing strategic importance in hybrid workforces, and how Venn is shaping the future of secure remote access by integrating with existing applications and infrastructure. David also shares his vision for thenext phase of remote work, where BYOD becomes the standard rather than the exception.

In Episode S7E3, the discussion features Marko Simenov, CEO of Plainsea, who talks about the company's innovative augmented penetration testing platform. Marko explains the origins of Plainsea, its unique features, and its benefits to both pen-testing companies and their clients, including time and cost savings, continuous testing capabilities, and improved efficiency. The conversation also covers Plainsea's integration with various industries, compliance requirements, and other cybersecurity software, as well as its potential for future development based on user feedback and market demands.

Edward Wu, Founder and CEO of Dropzone AI, shares his expertise on leveraging AI in cyber defense. He discusses how AI can enhance human security teams, illustrated through a case study of a tech startup with fewer engineers. Wu introduces 'agentic AI,' capable of autonomous complex task performance, emphasizing its adaptability to meet organizational needs. The conversation also tackles ethical concerns in AI, particularly around data usage, urging responsible practices to safeguard privacy while boosting productivity in cybersecurity.

In Episode S7E1, the host, Steven Bowcut, and Rita Gurevich, the CEO and founder of SPHERE, discuss the importance of identity hygiene in cybersecurity, emphasizing its continuous nature and role in protecting organizations from identity-related risks. They also discussed the challenges in identity management, the need for automation, and the impact of identity hygiene on cyber insurance costs. The conversation concludes with a discussion on the applicability of these concepts to different verticals and the increasing scope of identity management.

In this episode, Steven Bowcut sat down with Jori VanAntwerp, Founder and CEO of EmberOT, to explore the challenges and innovations in operational technology (OT) security. Jori, a seasoned expert with nearly 20 years of experience in both OT and IT security, discussed EmberOT’s mission to enhance visibility, security, and risk quantification for critical infrastructure. He detailed how EmberOT’s software sensors provide unmatched protection for OT networks and shared insights into the importance of risk quantification for their clients. The conversation covered a wide range of topics, from the convergence of OT and IT security to the most significant threats facing critical infrastructure today. Jori shared practical steps for organizations new to OT security and highlighted a success story where EmberOT dramatically improved a client’s security posture. Looking ahead, he also discussed emerging trends and technologies that will shape the future of OT security and how EmberOT is preparing to lead in this evolving space. This episode is a must-listen for anyone interested in critical infrastructure security and the innovative solutions EmberOT is bringing to the table.

In Episode S6E5 of the BSM podcast, we sit down with Ryan Smith, the founder of QFunction, to delve into the transformative power of AI and Machine Learning in cybersecurity. Ryan shares his insights on the pressing challenges businesses face in securing their data amidst the rising tide of cyberattacks and how QFunction's innovative approach is bridging the gap where traditional tools fall short. Ryan explains how QFunction leverages cutting-edge AI and Machine Learning technologies to proactively identify cyber threats, even for businesses without extensive cybersecurity expertise. He highlights the cost-effectiveness of QFunction's solutions, detailing how they improve cybersecurity posture while saving businesses money compared to new AI-powered solutions. Looking to the future, Ryan discusses the ongoing evolution of AI in cybersecurity and the considerations businesses must consider when implementing these advanced technologies. He also addresses the specific needs of small and medium-sized companies, explaining how QFunction's solutions are designed to be effective without overwhelming limited IT resources. The conversation covers how QFunction keeps its AI models current and adapts to the ever-changing cybersecurity landscape. Ryan also emphasizes the importance of data privacy and security in their processes, ensuring that their solutions protect and respect client data. Finally, Ryan offers a glimpse into future AI-driven threat detection and prevention innovations. Tune in to learn how QFunction is at the forefront of revolutionizing cybersecurity with AI and Machine Learning.

In this captivating episode, Steven Bowcut sits down with Edward Wu, the visionary Founder and CEO of Dropzone AI, to explore how artificial intelligence is transforming the cybersecurity landscape. Edward shares the journey of building Dropzone AI, the first AI SOC analyst that operates autonomously 24/7, integrating seamlessly with existing tools to deliver decision-ready reports without the need for playbooks, code, or prompts. We delve into the unique features that set Dropzone AI apart, including its ability to adapt to various environments and its cutting-edge behavioral attack detection capabilities. Edward discusses the challenges faced during development, the significant impact on cybersecurity teams, and the future trends in AI-driven cybersecurity. Listeners will gain valuable insights into the role of AI in enhancing cybersecurity measures, practical advice for organizations looking to adopt AI technologies, and Edward’s lessons learned in leadership and innovation. This episode is a must-listen for anyone interested in the intersection of AI and cybersecurity and how to effectively mitigate cyber threats in today's digital world. Tune in to discover how Edward Wu and Dropzone AI are revolutionizing cybersecurity and empowering organizations to stay ahead of cyber threats.

On the latest episode of the BSM podcast, host Steven Bowcut delves into the dynamic world of digital safety with Gavin Dunaway, Marketing Director at The Media Trust. This engaging conversation unveils how The Media Trust’s cutting-edge platform safeguards the user experiences across websites and mobile apps, enabling clients to both govern and monetize their digital assets effectively. Gavin explains the collaborative process between The Media Trust and various digital stakeholders—such as publishers, ad-tech platforms, and app developers—to shield consumers from digital threats and inappropriate content. He outlines the common challenges their clients face, such as delivering quality ads and maintaining optimal user experiences, and how The Media Trust’s solutions help navigate these issues. A significant focus of the discussion is on privacy and compliance. Gavin details how the platform ensures that digital properties not only respect user privacy preferences but also comply with stringent regulations like GDPR and CCPA. He also describes the sophisticated tools and methods used to monitor vendor activity across digital properties, ensuring all interactions are secure and compliant. Gavin shares insights into how The Media Trust customizes its services for a diverse range of clients, from advertisers to e-commerce platforms, tailoring solutions to meet specific needs and challenges. He highlights the most prevalent digital threats today, like malware and data breaches, and explains how the platform's real-time detection and mitigation strategies protect users. Looking to the future, Gavin speculates on emerging technologies and trends that could impact digital security and user experiences, offering valuable advice for listeners involved in digital asset management on how to enhance security, ensure compliance, and improve user experience, drawing from The Media Trust’s approach. This episode is a must-listen for anyone involved in digital publishing, advertising technology, and online commerce, offering critical insights and actionable strategies for navigating the complexities of digital security and compliance. Tune in to discover how you can make the internet a safer and more profitable space for your digital properties.