This episode features Tim Beasley, a Senior Incident Response Consultant at Semperis with decades of experience in compromise recovery and post-breach response.

With a background that includes leading recovery efforts at Microsoft’s DART team and helping build the Compromise Recovery Security Practice, Tim brings deep operational insight into what happens after attackers gain access. His work spans ransomware, nation-state intrusions, and large-scale identity compromises across public and private sector organizations.

In this episode, Tim explains why gaining access is only the beginning of modern attacks and why identity remains the primary path for escalation. He breaks down how attackers exploit credential exposure and identity infrastructure, and why prevention alone fails without a recovery-first mindset. He shares real-world lessons from incident response and recovery, including how teams contain threats and limit the impact of identity compromises.

This episode reframes identity security as a resilience problem and offers a clearer way to think about preparing for the breach you haven’t detected yet.

Guest Bio

Guest Quote

Time stamps

Sponsor

Links

Connect with Tim on LinkedIn

Connect with Sean on LinkedIn

Don't miss future episodes

Learn more about Semperis

This episode features Dr. Mary Aiken, Professor of Cyberpsychology at Capitol Technology University and one of the world’s leading experts on the impact of technology on human behavior.

With a career spanning academia, law enforcement advisory roles, and global policy work with organizations like INTERPOL and Europol, Dr. Aiken brings deep insight into how human psychology shapes security outcomes. Her work focuses on the human layer of cyber risk—how trust, perception, fatigue, and bias influence behavior in digital environments.

In this episode, Dr. Aiken explains why humans aren’t the weakest link in cybersecurity but the most targeted. She shows how attackers weaponize human behavior through phishing, MFA fatigue, and insider recruitment, and why hybrid identity must be treated as a cyber-psychological battlefield. She also discusses what human-aware defenses look like in practice and why intelligence augmentation is critical to psychological and technical resilience.

This episode reframes identity security as a human problem first and offers a clearer way to think about protecting people in an increasingly manipulative digital world.

Guest Bio

Dr Mary Aiken is a world leading expert in Cyberpsychology – the study of the impact of technology on human behaviour. She is Professor of Cyberpsychology and Chair of the Department of Cyberpsychology at Capitol Technology University Washington D.C.’s premier STEM University, and Professor of Forensic Cyberpsychology at the University of East London. Professor Aiken is a Member of the INTERPOL Global Cybercrime Expert Group and an Academic Advisor to Europol's European Cyber Crime Centre (EC3). She is a Fellow of The Royal Society of Medicine, a member of the Medico-Legal Society and an International Affiliate Member of the American Psychological Association (APA). She is a former Global Fellow at the Washington DC Wilson Center, and is a Fellow of the Society for Chartered IT Professionals. She is a former Director of the Royal College of Surgeons (RCSI) Cyberpsychology Research Centre. Dr Aiken's work inspired the CBS PrimeTime TV series 'CSI: Cyber.' Her landmark bestselling book 'The Cyber Effect' was a 2016 'Times book of the year.' Dr Mary Aiken is recognised as an international expert in industry and policy debates at the intersection of technology and human behaviour she has been invited to present at events organised by global organisations such as the United Nations, the European Union, NATO, G7, Europol, INTERPOL and the White House.

Guest Quote

“People talk about humans being the weakest link in the cybersecurity equation. They're not the weakest link, they're just simply the most targeted link.”

Time stamps

01:58 Meet Dr. Mary Aiken: World-leading Expert in Cyberpsychology

Sponsor

The HIP Podcast is brought to you by Semperis, the leader in identity-driven cyber resilience for the hybrid enterprise. Trusted by the world’s leading businesses, Semperis protects critical Active Directory and Entra ID environments from cyberattacks, ensuring rapid recovery and business continuity when every second counts. Visit semperis.com to learn more.

Links

Connect with Dr. Aiken on LinkedIn

Connect with Sean on LinkedIn

Don't miss future episodes

Learn more about Semperis

This episode features Andy Drag, Staff Product Manager at Cohesity.

With a background in systems administration and two managed service provider startups, Andy brings deep, hands-on insight into the challenges IT teams face. Over the last decade, he’s led product management across backup vendors and SaaS continuity platforms, shaping products around integrations, cyber recovery, and resilience.

In this episode, Andy shows how ransomware has changed the stakes for backup and identity, and why they must be treated as tier-zero systems. He explains how attackers now target backup platforms, what tighter roles, isolation, and immutability look like in practice, and why actually rehearsing recovery is more important than any architecture diagram.

This is a realistic look at whether your recovery plan will work in a real-world attack or only looks good on paper.

Guest Bio

Guest Quote

Time stamps

Sponsor

Links

Learn more about Cohesity

Connect with Sean on LinkedIn

Don't miss future episodes

Learn more about Semperis

This episode features host Sean Deuby and fellow Semperis colleague Guido Grillenmeier, Principal Technologist, EMEA, in a candid recap of the 2025 Hybrid Identity Protection Conference in Charleston. They trade takeaways on what they heard, what surprised them, and what the event revealed about where hybrid identity security is headed.

Sean and Guido highlight some key observations from keynote speakers including Chris Inglis (former US National Cyber Director), Alex Weinert (Semperis CPO and former VP of Identity Security at Microsoft), and other identity security and recovery experts across the world.

This is a fast, grounded debrief designed to help you take in the conference highlights and carry forward the insights that will matter most in the year ahead.

Time stamps

04:27 The Biggest Conference Themes and What They Signal

08:39 Active Directory’s Evolution + Microsoft’s Presence

12:54 Keynotes and the Broader Identity Threat Picture

17:14 Practical Practitioner Takeaways

26:49 Identity Security as an Ongoing Program

31:39 Wrap-Up and What’s Next for HIP Conf

Sponsor

Links

Connect with Guido on LinkedIn

Connect with Sean on LinkedIn

Don't miss future episodes

Learn more about Semperis

This episode features Christopher Brumm, Cyber Security Architect at glueckkanja AG.

With 15+ years in IT security, Chris has worked across Microsoft’s security portfolio and beyond, moving from network and data-center defense into deep identity work with Active Directory and Entra ID. He’s now an identity SME, a GK Identity Community moderator, a frequent community speaker, and a regular writer on security and identity.

In this episode, Chris explores the limitations of Active Directory security and how Microsoft’s new Global Secure Access directly addresses those gaps. He breaks down how zero trust principles and granular controls work in practice, and why connecting on-prem servers to the cloud is now simpler and safer. Chris shows how this shift strengthens defenses by enforcing access through identity-first policies instead of outdated network-centric models.

This is a clear, field-tested walkthrough of why hybrid identity security needs a new playbook, and how Global Secure Access helps teams close the holes attackers rely on most.

Guest Bio

For over 15 years, Christopher Brumm has been immersed in IT security topics, possessing extensive knowledge and practical experience in the Microsoft Security Portfolio and beyond. Over the years, he has progressed from network and data center topics to Active Directory and Entra ID, delving deeper into identity security. Today, he is a Subject Matter Expert for Identity in the Security Team and a moderator of the GK Identity Community. He regularly speaks at community events and publishes blog posts on security and identity topics. Chris's latest passion is Global Secure Access, where the themes of identity, security, and networking converge to enable a comprehensive Zero Trust approach.

Guest Quote

 “It’s not realistic to modernize protocols like Kerberos or SMB to support MFA and device compliance... but we have an option to control the network layer.”

Time stamps

01:07 Meet Christopher Brumm: Microsoft Security MVP and CISSP

02:00 The Hybrid Identity Attack Playbook

06:03 Active Directory vs. Entra ID: The Security Gap

09:02 Breaking Down Global Secure Access

11:58 What This Looks Like for Real Users

16:17 Bringing Zero Trust to the Network Layer

17:50 What You Need to Deploy Global Secure Access

20:48 Conclusion and Final Thoughts

Sponsor

The HIP Podcast is brought to you by Semperis, the leader in identity-driven cyber resilience for the hybrid enterprise. Trusted by the world’s leading businesses, Semperis protects critical Active Directory environments from cyberattacks, ensuring rapid recovery and business continuity when every second counts. Visit semperis.com to learn more.

Links

Connect with Christopher on LinkedIn

Learn more about glueckkanja AG

Watch Christopher’s talk at HIPConf 2025

Connect with Sean on LinkedIn

Don't miss future episodes

Learn more about Semperis

This episode features Daniel Stefaniak, Vice President Architect - Cybersecurity and Identity at JPMorgan Chase.

With deep experience as an IT architect, consultant, and technical program manager, Daniel has helped design and deploy large-scale IAM and CIAM solutions that support millions of users. He is widely recognized for his expertise in Active Directory and Entra ID and for bringing clear, unfiltered insight into some of the industry’s toughest identity challenges.

In this episode, Daniel explains why attack path management is never a one-and-done effort, how to focus on the high-impact issues that matter most, and why success depends on dedicated ownership rather than tools alone.

This is an honest and practical look at what it truly takes to understand and manage attack paths in modern identity environments.

Guest Bio

Former Microsoft Program Manager, instrumental in driving technical content, readiness, and enterprise adoption of Azure AD. Proven ability to lead end-to-end project lifecycles, align security strategies with regulatory requirements, and design robust directory and identity federation solutions.

Guest Quote

Time stamps

Sponsor

Links

Learn more about JPMorgan Chase

Connect with Sean on LinkedIn

Don't miss future episodes

Learn more about Semperis

This episode features Nathan Wenzler, Field Chief Information Security Officer at Optiv.

With nearly 30 years of experience leading cybersecurity programs across government agencies, nonprofits, and Fortune 1000 companies, Nathan has spent his career at the intersection of people, process, and technology. He’s helped organizations redefine what it means to build security cultures that actually work.

In this episode, Nathan explains why communication (not technology) s a CISO’s most important skill, how to create a culture that values security without slowing innovation, and why empathy may be the most underrated tool in cybersecurity.

This is an insightful look at the people-first mindset behind stronger, more resilient security programs.

Guest Bio

Wenzler has served as a CISO, executive management consultant and senior analyst, holding leadership roles at Tenable, Moss Adams, AsTech and Thycotic. He also spent more than a decade in public sector IT and security roles with Monterey County, California, and supported state and federal agencies.

He is known for helping security leaders better communicate the measurable value and benefit of a mature, effective cybersecurity program to executives, technical stakeholders and nontechnical business partners. His approach emphasizes not only technical excellence but also the human and organizational factors that drive long-term security success.

Wenzler has spoken at more than 400 events worldwide, educating security leaders and professionals on how to excel in their role as an organization's risk expert. He has also served on advisory boards, including the Tombolo Institute at Bellevue College, and is a former member of the Forbes Technology Council. His areas of expertise include vulnerability and exposure management, privileged access management and identity governance, cyber risk management, incident response, and executive-level communications and program management

Guest Quote

Time stamps

Sponsor

The HIP Podcast is brought to you by Semperis, the leader in identity-driven cyber resilience for the hybrid enterprise. Trusted by the world’s leading businesses, Semperis protects critical Active Directory environments from cyberattacks, ensuring rapid recovery and business continuity when every second counts. Visit semperis.com to learn more.

Links

Connect with Nathan on LinkedIn

Learn more about Optiv

Connect with Sean on LinkedIn

Don't miss future episodes

Learn more about Semperis

This episode features Heather Costa, Director of Technology Resilience at Mayo Clinic.

With over two decades of experience building resilience programs at leading healthcare institutions, Heather has redefined what it means to prepare for and thrive through disruption. From Cleveland Clinic to Mayo Clinic, she’s led enterprise-wide recovery strategies that balance people, process, and technology.

In this episode, Heather explains why true resilience starts with leadership, not technology, how to set clear priorities when everything feels critical, and how to design organizations that adapt and recover faster.

This is a powerful look at the mindset and methods behind building resilience that lasts in healthcare and beyond.

Guest Bio

Heather is a dynamic leader, keynote speaker, and mentor, frequently invited to share her insights at organizations and conferences such as Harvard NPLI, HIMSS, and the HIPAA Summit. She is recognized for building high-performing teams and fostering the next generation of cybersecurity leaders.

Heather holds a Master’s in Homeland Security – Information Security and Forensics from Penn State, a summa cum laude Bachelor’s in Emergency Management from the University of Akron, and multiple esteemed certifications including Certified Business Continuity Professional (CBCP), Certified Cyber Resilience Professional (CCRP). She is Vice President for the WiCyS Healthcare Affiliate and a member of several distinguished honor societies.

Outside of work, Heather is a dedicated solo mom to five children, inspiring her family and community with her resilience and leadership.

Guest Quote

Time stamps

Sponsor

The HIP Podcast is brought to you by Semperis, the leader in identity-driven cyber resilience for the hybrid enterprise. Trusted by the world’s leading businesses, Semperis protects critical Active Directory environments from cyberattacks, ensuring rapid recovery and business continuity when every second counts. Visit semperis.com to learn more.

Links

Connect with Heather on LinkedIn

This episode features Dr. Chase Cunningham, Chief Strategy Officer at Demo-Force.com.

Widely known as “Dr. Zero Trust”, he’s the creator of the Zero Trust Extended Framework and former Forrester principal analyst. With decades of experience supporting the NSA, U.S. Navy, FBI Cyber, and other government missions, Chase brings deep expertise on how nation-states wage digital conflict.

In this episode, Chase explains how China, Russia, and North Korea use cyber operations to advance long-term strategic goals, why critical infrastructure has become a silent battlefield, and why attribution makes retaliation so difficult. He shares practical guidance for hardening defenses, outpacing common attackers, and avoiding becoming the “slowest gazelle in the herd.”

This is a sobering look at how geopolitics fuels cyber risk, and the urgent realities every security leader must prepare for now.

Guest Bio

Creator of the Zero Trust eXtended framework and a cybersecurity expert with decades of operational experience in NSA, US Navy, FBI Cyber, and other government mission groups, Chase is responsible for ZTEdge's overall strategy and technology alignment. Chase was previously VP and Principal Analyst at Forrester Research; Director of Threat Intelligence for Armor; Director of Cyber Analytics for Decisive Analytics; and Chief Cryptologic Technician, US Navy. He's the author of the Cynja series and Cyber Warfare: Truth, Tactics, and Strategies.

Guest Quote

" Putin has even been noted as saying that chaos is the goal. You do that via cyber. You don't do that by putting boots on ground anymore. That is very important for everybody that's connected or digital to understand, you are operating in a live fire battlefield environment. You're not just on the internet.”

Time stamps

01:04 Meet Dr. Chase Cunningham: Dr. Zero Trust

Sponsor

The HIP Podcast is brought to you by Semperis, the leader in identity-driven cyber resilience for the hybrid enterprise. Trusted by the world’s leading businesses, Semperis protects critical Active Directory environments from cyberattacks, ensuring rapid recovery and business continuity when every second counts. Visit semperis.com to learn more.

Links

Connect with Chase on LinkedIn

Learn more about Demo-Force.com

Chase’s HIPConf 2024 Talk: Cyber Threat: The Fifth Horseman of the Apocalypse

Connect with Sean on LinkedIn

Don't miss future episodes

Register for HIP Conf 2025

Learn more about Semperis

This episode features Jonathon Mayor, Principal Security Consultant for the Americas at Cohesity.

A founding member of Cohesity’s Security Center of Excellence and the Cyber Event Response Team, Jonathon has more than 20 years of experience in security operations, forensics, and business continuity, with past leadership roles at EMC, Dell, and Verizon. He’s guided Fortune 500 and Global 1000 organizations through high-stakes incident response and recovery.

In this episode, Jonathon explains why trust is the first casualty in a cyberattack, how to distinguish between mission critical operations and mission critical response, and why resilience depends as much on people and process as on technology. He shares candid lessons from the field on avoiding endless “what if” scenarios, preparing for the human toll of prolonged incidents, and building flexibility into every plan.

This is a practical look at cyber resilience and the critical skills every leader needs to have before the next 2 a.m. incident call.

Guest Bio

With more than 20 years in security operations, forensics, and business continuity, Jonathon has held leadership roles at EMC, Dell, and Verizon, where he oversaw global NOC operations and major incident mitigation.

Guest Quote

Time stamps

Sponsor

Links

Connect with Jonathon on LinkedIn

Learn more about Cohesity

Connect with Sean on LinkedIn

Don't miss future episodes

Learn more about Semperis