In the rapidly evolving realm of IT and security, leadership is not just about possessing technical expertise.

In this episode, Gavriella Schuster and Gareth Lindahl-Wise discuss how security leaders can bridge the gap between technical prowess and business leadership acumen to become strategic influencers within their organizations. 

Gareth Lindahl-Wise shares a CISO's perspective on applying agentic AI to security operations. Emphasizing the need for speed and accuracy, Gareth explains why hiring more people isn't a sustainable solution for the increasing complexities in cybersecurity. 

One key takeaway is the importance of combining domain expertise with data science principles. Gareth warns against the danger of "automating mediocrity," which occurs when AI systems are implemented without a deep understanding of both the technology and the security domain.

In this episode Dan Holland, Deputy CISO at Tampa General Health System (TGH) and Sam McHugh, security strategist at Ontinue cover how to effectively talk about risk with organizational leaders. Dan discusses how to adopt the concept of “return on risk mitigation” to translate the ROI of cybersecurity investments. 

In this second episode of our 3-part series, Iris Safaka, lead data scientist at Ontinue, helps us demystify Agentic AI and explain its application in security operations (SecOps). 

What is Agentic AI? 

Key Properties of AI Agents

Building an Autonomous AI Agent

Theus Hossman, Chief Technology Officer for Ontinue, joins us in the first episode in a three-part series on Applying Agentic AI to security operations. With the exploding number of attack surfaces and a severe talent shortage, advances in AI and automation have the potential to turn the tide for IT and security leaders. 

In Episodes two and three we will discuss demystifying Agentic AI and agentic AI from the CISO’s perspective, respectively. 

In this episode, an IT security leader shares his top recommended steps to quickly improve your organization’s security posture. 

In this episode, Microsoft MVP Dean Ellerby discusses the state of OT Security, covering common risks and sharing best practices for security and IT leaders to get ahead of OT-related risks. 

SOC Analyst Andrew Tranter shares a few of his favorite open-source tools that - when combined with Windows event logs - can uplevel your DFIR efforts. Andrew covers specific use cases as well as how to get started with Hayabusa (Yamato-Security), Chainsaw (WithSecureLabs), and Timeline Explorer (Eric Zimmerman).

In this episode, Ontinue Chief Innovation Officer Drew Perry looks back to see how we did with our 2024 cybersecurity predictions. 

Topics include breaches affecting AI companies, the resurgence of homegrown ransomware groups, and the rise of passkeys and the rapid shift toward passwordless security. Drew explains why passkeys are useful, and how IT and security teams can enable this technology using tools that exist within their Microsoft security licenses. 

In this episode, SOC Analyst Rhys Downing sheds light on his research into a new sample of the LummaC2 Infostealer. You can find Rhys' most recent report on this new sample on the Ontinue blog.