Enterprise Security Weekly (Audio)

Interview with Ravid Circus Ravid will discuss why security and engineering misalignment is the biggest barrier to fast, effective remediation, using data from Seemplicity's 2025 Remediation Operations Report. This is costing some teams days of unnecessary exposure, which can lead to major security implications for organizations. Segment Resources: https://seemplicity.io/papers/the-2025-remediation-operations-report/ https://seemplicity.io/news/seemplicity-releases-2025-remediation-operations-report-91-of-organizations-experience-delays-in-vulnerability-remediation/ https://seemplicity.io/blog/2025-remediation-operations-report-organizations-still-struggle/ Topic Segment: Thoughts on Anthropic's latest security report Ex-SC Media journalist Derek Johnson did a great job writing this one up over at Cyberscoop: China's 'autonomous' AI-powered hacking campaign still required a ton of human work There are a number of interesting questions that have been raised here. Some want more technical details and question the report's conclusions. How automated was it, really? I found it odd that Anthropic's CEO was on 60 minutes the same week, talking about how dangerous AI is (which is his company's primary and only product). I think one of the more interesting things to discuss is how Anthropic has based its identity and brand on AI safety. While so many other SaaS companies appear to be doing the bare minimum to stop attacks against their customers, Anthropic is putting significant resources into testing for future threats and discovering active attacks. News Segment Finally, in the enterprise security news, vendor layoffs have started again the sins of security vendor research the pillars of the Internet are burning selling out to North Korea isn't worth what they're paying you ransom payments, in 24 easy installments? a breach handled the right way we probably shouldn't be putting LLMs into kids toys ordering coffee from the terminal All that and more, on this episode of Enterprise Security Weekly. Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-434

Rob Allen, Chief Product Officer at ThreatLocker, joins to discuss the emerging threat of attackers using tiny Linux VMs on Windows systems to evade detection. He explains how tools like Hyper-V and WSL facilitate this covert technique. With insights on how attackers disable management tools and exploit admin privileges, Rob emphasizes practical mitigations like restricting admin rights. The conversation shifts to the security risks of humanoid robots, highlighting vulnerabilities and the implications for safety and privacy in an increasingly automated world.

Todd Peterson, Director of Product Marketing at Junto Security, dives into the challenges of securing OT/ICS systems, which are often overlooked by cybersecurity professionals. He emphasizes the need for integrating OT into enterprise identity and access management to enhance security. The conversation also touches on spotting misinformation online, offering tips for identifying dubious content and the societal impact of AI-generated 'slop.' The discussion concludes with insights into recent cybercriminal tactics targeting logistics, showcasing the evolving landscape of security threats.

Joel Burleson-Davis, CTO at Imprivata, discusses the exciting shift towards passwordless authentication, revolutionizing access for frontline workers in healthcare and critical sectors. He highlights how inefficient logins hinder productivity and presents various passwordless technologies like biometrics and FIDO. The conversation also tackles the escalating costs of AI agents, underscoring how organizations can effectively manage expenses while optimizing processes. Burleson-Davis shares strategies for secure, frictionless access, emphasizing the importance of understanding workforce needs.

In this engaging discussion, Dave Lewis, Global Advisory CISO at 1Password, shares insights on securing AI agents and the importance of embedding security in design to avoid future crises. Connor Mulhern from TechSoup highlights how nonprofits can navigate cybersecurity with limited resources and emphasizes accessible tech solutions. Mike Poole, of Werner Enterprises, talks about fostering a cybersecurity culture within the trucking industry, focusing on user engagement and executive support. The trio dives into the complexities of AI security, making it a must-listen!

In this insightful discussion, David Brauchler, Technical Director at NCC Group and an expert in AI security, shares his expertise on protecting AI applications. He reveals the futility of eliminating prompt injection vulnerabilities and offers architectural solutions to mitigate risks. David discusses the need for trust modeling in AI interactions, the limitations of traditional defenses like firewalls, and proposes an updated security model to replace the CIA triad. He emphasizes designing with secure AI frameworks to manage the evolving threat landscape effectively.

Dr. Anand Singh, CISO at Symmetry Systems and author of 'Data Security in the Age of AI', discusses the urgency behind his new book focused on securing AI implementations. He reveals five foundational steps to reshape data governance in the AI landscape and emphasizes the vital role of AI in incident response and risk management. The podcast also delves into the surprising purchasing behaviors of CISOs, highlighting that personal career safety often influences their choices more than product performance. Key insights into evolving security practices round out the conversation.

This discussion features Dor Fledel from Okta, who dives into identity sprawl and automated remediation for AI agents. Alexander Makarov from Adyen shares insights on phishing-resistant authentication and identity automation. Standards expert Aaron Parecki emphasizes the importance of interoperable identity frameworks. Heather Ceylan of Box talks about embedding AI into workflows while maintaining data governance. Finally, Matt Immler discusses insider threats and the need for a security-focused culture, while Nitin Raina warns about AI-driven social engineering.

How identity security can keep pace with the evolving threat landscape, with Brett Winterford Today's threat landscape has never been more complex. Malicious actors are leveraging tools like generative AI to develop more creative social engineering attacks that can have serious ramifications for businesses. Brett Winterford, VP of Okta Threat Intelligence, shares findings from his team's most recent investigations, as well as recommendations for organizations looking to strengthen their defenses. Segment Resources https://www.okta.com/newsroom/articles/okta-threat-intelligence-exposes-genai-s-role-in-dprk-it-scams/ https://www.okta.com/newsroom/articles/okta-observes-v0-ai-tool-used-to-build-phishing-sites/ https://sec.okta.com/articles/uncloakingvoidproxy/ How to navigate app development in the AI era with Shiv Ramji As AI reshapes how applications are built and consumed, developers and engineering leaders face a new set of challenges: enabling innovation while maintaining security. In this interview, Auth0 President Shiv Ramji will discuss the shifting landscape of application development in the AI era. He'll discuss the shift toward developing AI agents that are secure by design and standards-first so they can thrive within an interconnected web of applications and systems. How AI agents are reshaping cybersecurity from the inside out with Damon McDougald AI is being harnessed to transform cybersecurity operations—from automating routine tasks to closing skills gaps and accelerating incident response. Damon McDougald, Global Security Services Lead at Accenture, shares how agents can cut through alert fatigue and proactively defend against threats at scale. Damon also outlines the identity risks these agents introduce—and what cybersecurity leaders must do now to secure their access and maintain control in an increasingly autonomous environment. All three segments are sponsored by Oktane by Okta. Visit https://securityweekly.com/oktane to learn more! Visit https://www.securityweekly.com/esw for all the latest episodes! Show Notes: https://securityweekly.com/esw-426

Tod Beardsley, VP of Security Research at RunZero and an expert in security, discusses the shortcomings of traditional vulnerability management. He emphasizes the failure of CVE-centric approaches and highlights the importance of addressing issues like default credentials and misconfigurations. The conversation dives into recent NPM supply chain attacks, the fragility of the ecosystem, and community-driven solutions. Beardsley also touches on the latest trends in AI acquisitions and the cautious embrace of agentic AI within the banking sector.