Business Security Weekly (Audio)

Christy Wyatt, CEO focused on cyber resilience and downtime reduction. John Anthony Smith, founder specializing in rapid post‑breach recovery and orchestration. John Bruggeman, veteran Consulting CISO advising on zero trust and agentic AI risks. They discuss agentic AI expanding nonhuman attack surfaces, data inventory and sandboxing for safety, just‑in‑time privileges and rapid recovery orchestration to minimize costly downtime.

Ann Marie van den Hurk, crisis governance advisor who helps leaders make fast decisions under pressure. Amit Sinha, DigiCert CEO expanding PKI for machines, devices, and AI. Matt Immler, Okta regional CISO focused on identity and AI agents. They discuss why executive paralysis harms organizations, how to assign decision authority in the first 20 minutes, and how PKI and identity practices must evolve for autonomous AI agents.

Josh Marpet, a security professional with hands-on quantum and cryptography experience, joins the conversation. He breaks down crypto-agility and why it demands architecture, automation, and governance changes. Discussion covers discovery challenges, inventory tools and C-BOMs, timelines to 2030, vendor coordination, OT and embedded device risks, and practical first steps like scanners and toolkits.

Ben Wilcox, CTO and CISO at ProArch, who builds enterprise security strategy and AI governance. He explains why board cyber time is shrinking and how to translate technical metrics into business resilience. He outlines three board messages — risk, impact, ask — and covers AI to speed BIAs, measuring cyber risk reduction, and aligning CTO speed with CISO risk.

Myke Lyons, CISO at Cribl and 20+ year security leader, explains why AI is changing exploitability and how defenders must respond. He covers attackers using AI to craft exploits, shifting from IoCs to TTPs for prevention, trusting AI for smarter patching workflows, and leadership changes needed to unblock innovation and manage evolving risk tolerance.

Tim Morris, financial services strategist at Tanium and former Wells Fargo cybersecurity leader, discusses building trusted automation in a crawl-walk-run way. Short takes cover why legacy processes hinder AI, the need for asset truth and real-time data, human-in-the-loop guardrails, and avoiding shadow AI and political risk as teams scale automation.

Elyse Gunn, CISO at Nasuni known for building security and AI governance in regulated industries. She argues for reframing security as growth infrastructure. Topics include building internal trust, shifting security left, tying security to revenue, governing AI with core controls, and translating technical risk into business impact.

A market divergence between the Security Weekly 25 and the NASDAQ sparks a deep look at rebalancing and recent index changes. Discussion highlights shifts toward profitability and EBITDA over growth, plus heavy AI-focused funding and strategic acquisitions. The conversation also covers platform winners versus pure-play pressure, buyouts affecting index composition, and consolidation trends across security sectors.

Sandy Carielli, VP and Principal Analyst at Forrester Research advising on product and post-quantum security. She discusses tightening Q-Day timelines and why 2030 matters. She covers regulatory and vendor pressures, building cross-functional migration plans, crypto agility, and prioritizing long-lived sensitive data.

Hacia Atherton, a high-performance culture strategist and author of The Billion Dollar Blindspot, shares how culture, psychological safety, and emotional intelligence quietly shape decisions like cybersecurity investments. She discusses self-leadership, measuring cultural signals that predict profit, soliciting real feedback, handling high performers who harm culture, and aligning cyber risk with business goals.