The Segment: A Zero Trust Leadership Podcast

Richard Bird, CSO at Traceable AI, discusses the challenges of decentralized environments in cybersecurity. Topics include cognitive dissonance, misconceptions about Zero Trust, API Security, and the future of Zero Trust. Emphasis on making it harder for attackers through security measures.

Join John Kindervag, Chief Evangelist at Illumio and the visionary behind the Zero Trust security model, as he shares his journey from farming to shaping cybersecurity. He reveals the origins of Zero Trust, critiquing outdated security paradigms and emphasizing the need for continuous verification. With a discussion on federal initiatives and the cultural shift towards a Zero Trust framework, John highlights the importance of tailored strategies to combat evolving cyber threats. Tune in for insights that could revolutionize your security approach!

In this episode, host Raghu Nandakumara sits down with Ann Johnson, Corporate Vice President, Microsoft Security Business Development, to explore AI, everyday Zero Trust conversations, cyber resilience best practices, and so much more.  --------“Democratization has to exist as well, and there has to be global standards and there has to be global regulation, but there also has to be global cooperation, right?.. We’re seeing an increase in collaboration and cooperation, but we’re not where we need to be. And the only way we actually defeat the bad enemy is with collective defense, and we need to get a lot better about collective defense.”--------Time Stamps(04:32) An egalitarian approach to cybersecurity(11:01)  “The greatest thing the industry can do is improve visibility”(13:50) Three steps to Zero Trust(25:00) What’s driving Zero Trust adoption?(28:00) Talking cyber resilience to the Board(34:36) Becoming a better CISO--------SponsorAssume breach, minimize impact, increase resilience ROI, and save millions in downtime costs — with Illumio, the Zero Trust Segmentation company. Learn more at illumio.com.--------LinksConnect with Ann on LinkedIn

In this episode, host Raghu Nandakumara sits down with Richard Staynings, Chief Security Strategist at Cylera, to discuss how the role of the CISO has changed over the past 30 years, the IT challenges facing modern healthcare organizations, and today’s cybercrime landscape.--------“I'd like to think that all healthcare organizations are looking at all aspects of Zero Trust, right? But Zero Trust is a journey. It's not something where you can throw a switch on and become Zero Trust certified overnight. It's a mindset. It's a journey.”--------Time Stamps(02:49) The role of the CISO through the years(08:32) Understanding the perpetrators of cybercrime(19:00) The medical OT threat landscape(29:00) Reducing HIoT risk with Zero Trust(39:00) AI and the future of healthcare--------SponsorAssume breach, minimize impact, increase resilience ROI, and save millions in downtime costs — with Illumio, the Zero Trust Segmentation company. Learn more at illumio.com.--------LinksConnect with Richard on LinkedIn

In this episode, host Raghu Nandakumara sits down with Ryan Fried, Senior Security Engineer at Brooks Running, to discuss the role of cybersecurity in the manufacturing and retail sectors, building a successful Zero Trust program, and the difference between being compliant and being secure. --------“How can we go towards Zero and, I’ll say, Zero-ish Trust? Actual Zero Trust is really hard to do, and I think it's really intimidating...But, for instance, what we're talking about is micro-segmentation from a Zero Trust perspective, what is the best bang for our buck that we're gonna get with being the least disruptive?” - Ryan Fried--------Time Stamps* (06:31) Mapping out your risk exposure* (10:44) Striking a balance between good security and “good enough”* (13:03) Compliance in less regulated industries* (17:22) Being compliant vs. being secure* (24:22) Zero-ish Trust in action--------SponsorAssume breach, minimize impact, increase resilience ROI, and save millions in downtime costs — with Illumio, the Zero Trust Segmentation company. Learn more at illumio.com.--------LinksConnect with Ryan on LinkedIn

In this episode, host Raghu Nandakumara sits down with Rob Ragan, Principal Researcher at Bishop Fox – live at RSAC 2023! – to discuss the different types of threats, offensive security trends, and how to continuously find new opportunities to improve cyber resilience.--------"I'm seeing a lot more folks that are security engineers and are on blue teams that are also then wanting to participate in those red team exercises and in those tests, and be involved and actually understand how they can learn and apply those techniques while they're building into their threat models.And I see that the folks that are doing that on a more regular basis are maturing more rapidly. And if they're not factoring in that testing to what they've implemented, then there may be long periods and long gaps where there's a susceptibility that remains unknown." - Rob Ragan--------Time Stamps* (2:23) Learning the wrong ways to build applications* (6:31) Securing IoT/OT and national critical infrastructure* (15:36) Zero Trust and offensive security* (19:27) Maturing faster with more testing* (24:32) TCO and ROI--------SponsorAssume breach, minimize impact, increase resilience ROI, and save millions in downtime costs — with Illumio, the Zero Trust Segmentation company. Learn more at illumio.com.--------LinksConnect with Rob on LinkedIn

In a compelling discussion, Gary Barlet, Federal Field CTO at Illumio, shares insights from his extensive cybersecurity career. He emphasizes the critical need for an 'assume breach' mindset in federal organizations. Gary dives into the top cyber challenges facing the U.S. government and explains how adopting Zero Trust principles can fortify defenses. He addresses the economics of breaches and the importance of preparing for cybersecurity failures, advocating for resilience over perfection to protect sensitive environments.

In this episode, host Raghu Nandukumara chats with Shawn Kirk, Worldwide Leader for Security Go to Market at Amazon Web Services. The two of them discuss the shared responsibility model, making incremental Zero Trust improvements in the cloud, and understanding cloud economics and ROI. --------"When we're having conversations with customers we are very, very reluctant to put the actual technology, feature or the control at the beginning of the conversation. Because, particularly with something as nuanced to Zero Trust, you really have to have a much more in-depth understanding of the problem that they're trying to solve." - Shawn Kirk--------Time Stamps* (5:19) How to secure your cloud migration* (9:38) Zero Trust’s role in cyber conversations* (17:34) ROI benefits of cloud security* (19:25) Top security challenges facing AWS customers* (22:46) Evolving threats in the cloud--------SponsorAssume breach, minimize impact, increase resilience ROI, and save millions in downtime costs — with Illumio, the Zero Trust Segmentation company. Learn more at illumio.com.--------LinksConnect with Shawn on LinkedIn

In this episode, host Raghu Nandukumara sits down with Illumio CTO and Co-Founder PJ Kirner, to discuss Illumio’s founding story, taking a data-driven approach to innovation and market validation, and what RSA attendees should be thinking about as they gear up for this year’s conference. --------"I do think we fell off the bandwagon with all this implicit trust in the environment…All these things that were just allowed to talk to each other implicitly—no one ever thought about, you know, let’s turn this into explicit trust? That's a place where I think we definitely needed Zero Trust to help us along that journey." - PJ Kirner--------Time Stamps* (0:47) The Illumio founding story*(11:39) What do submarines and cyber resilience have in common?*(14:55) Overcoming implicit trust *(24:40) Validating ideas with data* (36:13) What a CTO hopes to see at RSA--------SponsorAssume breach, minimize impact, increase resilience ROI, and save millions in downtime costs — with Illumio, the Zero Trust Segmentation company. Learn more at illumio.com or visit us at RSAC in San Francisco, between April 24 – April 27! You can find us in the North Hall, at Booth 5778.--------LinksConnect with PJ on LinkedIn

In this episode, host Raghu Nandakumara sits down with Stephen Coraggio and Greg Tkaczyk, Managing Partner and Executive Consultant at IBM Security, to discuss the business value of cybersecurity, defining your crown jewels, and overcoming “analysis paralysis” and other Zero Trust challenges. --------“Back in the day it was around protecting everything, encrypting everything, and really making sure that we scan everything in an environment. Now when we talk to clients, it's around how do we make sure that we are truly looking after the most important things in our environment, making sure that those are properly protected, [and] controlled.” - Stephen Coraggio“You don't want to spend four months deciding what top five policies you want to enforce in a CSPM solution—Make those decisions quickly and reduce risk.” - Greg Tkaczyk--------Time Stamps* 10:17 – Defining your “crown jewels”* 13:09 – Overcoming “analysis paralysis”* 22:35 – ZT as a framework: “It’s a set of guiding principles”* 30:30 – What comes next in cyber (a case for AI/automation)* 34:10 – Using data to demonstrate ROI--------SponsorAssume breach, minimize impact, increase resilience ROI, and save millions in downtime costs — with Illumio, the Zero Trust Segmentation company. Learn more at illumio.com/--------LinksConnect with Stephen on LinkedInConnect with Greg on LinkedIn