In this special episode recorded at fwd:cloudsec 2025 in Denver, Jeremy sits down with two cloud leaders from Veradigm: Kyler Middleton and Sai Gunaranjan. The duo shares insights from their joint talk on securing AI usage in enterprise platforms, highlighting real-world challenges around governance, model usage, data sovereignty, and developer enablement.

With the health tech industry as a backdrop, they reflect on balancing innovation with control, managing AI risks, and fostering collaboration between platform engineering and governance teams. This episode is a timely and practical look at the realities of secure AI adoption in modern organizations.

Guest Bio – Kyler Middleton

Kyler Middleton is the Principal Internal AI Developer at Veradigm, where she leads internal AI development initiatives with a focus on enablement, experimentation, and responsible model usage. A passionate technologist, Kyler works closely with platform and security teams to ensure AI is integrated thoughtfully and securely into enterprise workflows.

Guest Bio – Sai Gunaranjan

Sai Gunaranjan is the Lead Architect for the Veradigm Cloud Platform, with a focus on Azure technologies and scalable platform governance. He plays a key role in enabling secure AI experimentation and implementation across Veradigm’s healthcare-focused products, combining deep cloud expertise with a pragmatic approach to compliance and risk mitigation.

Kyler on Linkedin - https://www.linkedin.com/in/kylermiddleton

Sai on Linked - https://www.linkedin.com/in/saigunaranjan

Let's Do DevOps - http://letsdodevops.com/

In this episode of Modern Cyber, Jeremy is joined by Celina Stewart, Director of Cyber and AI Risk Management at Neuvik, for a wide-ranging discussion on how cybersecurity findings are best translated into business risk—and why most organizations still struggle with that step. Celina draws on her background in consulting, offensive security, and M&A due diligence to explore common missteps in cloud migrations, hidden AI risks most companies overlook, and how to prioritize remediation in real-world, high-pressure situations. Plus, she shares her perspective on what’s coming next in AI attacks, including a deep dive into memory injection.

Guest Bio – Celina Stewart:

Celina Stewart is the Director of Cyber and AI Risk Management at Neuvik, where she helps organizations design and optimize cybersecurity programs through a risk-based lens. Before joining Neuvik, Celina was a founding member of McKinsey & Company’s cybersecurity practice, advising Fortune 500 companies on strategy, program performance, and enterprise risk integration. Her insights have been published in McKinsey on Risk and other leading outlets, and she’s a regular speaker at conferences including the AI Risk Summit, HackRedCon, and ACSAC. Celina holds an MBA and an MS in Design Innovation from Northwestern’s Kellogg School of Management.

Neuvik Webiste - www.neuvik.com

In this episode of Modern Cyber, Jeremy sits down with Dan Draper, founder and CEO of CipherStash, to unpack the complexities of modern data encryption and secure access. From searchable encryption to post-quantum cryptography, Dan explains how CipherStash is making secure data access possible without sacrificing utility. The conversation covers Zero Trust, access control philosophies, real-world encryption applications, and why most people don’t actually care about security—until it blocks a deal. This is a highly technical, yet accessible dive into how data protection is evolving in the face of increasing complexity and looming quantum threats.

About Dan Draper

Dan Draper is the founder and CEO of CipherStash, a data security company focused on enabling trusted access to encrypted data. An experienced cryptography engineer, Dan previously served as VP of Engineering at MedicalDirector and Expert360. His mission is to empower developers with the tools and knowledge they need to build secure, privacy-respecting applications. Dan is a leading voice in applying searchable encryption to real-world business challenges and is passionate about rethinking how organizations manage data access securely and efficiently.

Host Note: “We checked Riverside’s encryption after recording and found this: https://www.ietf.org/id/draft-ietf-tls-ecdhe-mlkem-00.html — so quantum-safe 🙂”

CipherStash Website: https://cipherstash.com/

Dan on Linkedin: https://www.linkedin.com/in/ddraper/

In this episode of Modern Cyber, Jeremy is joined by Stephen Hinch, award-winning author and longtime high-tech executive, for a wide-ranging conversation on the intersection of cybersecurity, innovation, and organizational mindset. Drawing on decades of experience at companies like HP and Agilent, Stephen shares insights into the mindset challenges facing modern cybersecurity programs, particularly in small and midsize businesses. He also discusses the real cost of complacency, how to lead innovative initiatives without compromising security, and what writing a cybersecurity book—and hiking guide—has taught him about leadership, resilience, and purpose.

About Stephen Hinch

Stephen W. Hinch is an experienced senior executive, award-winning author, and recognized innovator in the high-tech industry. With decades of management experience at companies like Hewlett-Packard, Agilent Technologies, and TeamLogic IT, he played a pivotal role in advancing surface mount and fiber optic technologies. He has authored five books, including the IBPA Benjamin Franklin Award-winning The Slickrock Desert, and his latest title, Winning Through Innovation: Lessons from the Front Lines of Business, is set to release in May 2025. Steve now serves as a consultant to senior executives in high tech and continues to shape industry standards and innovation.

Winning Through Innovation on Amazon: https://www.amazon.com/Winning-through-Innovation-Lessons-Business-ebook/dp/B0DXRGS99R

The Slickrock Desert on Amazon: https://www.amazon.com/Slickrock-Desert-Discovery-Endangered-Wilderness/dp/0966199901

Stephen's Website: https://www.stephen-w-hinch.com/

In this special in-person episode of Modern Cyber, Jeremy sits down with cybersecurity icon Mikko Hypponen at RSA Conference 2025 in San Francisco. Surrounded by the energy of the industry’s biggest event, the conversation dives into the current state of AI in security, LLMs discovering vulnerabilities, and the emerging threat of AI-powered ransomware gangs. Mikko also shares insights on geopolitics in cybersecurity—from North Korean developer infiltration to Russian ransomware operations—and reflects on Europe’s shifting trust in U.S. tech. This episode blends deep technical insight with broader industry trends and personal reflections, recorded steps away from the Moscone Center.

About Mikko Hypponen:

Mikko Hyppönen is a globally recognized cybersecurity expert and the Chief Research Officer at WithSecure. With over 30 years of experience in the industry, Mikko has analyzed some of the most significant malware outbreaks in history, such as Love Letter, Melissa, and Stuxnet. He is a sought-after speaker at international conferences, a TED Talk veteran, and the author of the acclaimed book If It’s Smart, It’s Vulnerable. Passionate about cybersecurity education, Mikko has been a driving force behind initiatives like the Museum of Malware Art, showcasing how digital threats can inspire artistic creativity.

Mikko's Website: https://mikko.com/

WithSecure Website: https://www.withsecure.com/en/home

Mikko's Linkedin: https://www.linkedin.com/in/hypponen/

Mikko's X: https://twitter.com/mikko

In this episode of Modern Cyber, Jeremy is joined by Justin Rende, founder and CEO of Rhymetec, to unpack the critical differences between proactive and reactive security strategies. They dive into the realities of SaaS security, the role of compliance as both a sales enabler and a security foundation, and the importance of building security into an organization from the very beginning. With insights from thousands of audits and assessments, Justin shares practical guidance on vendor risk, developer awareness, and why a checkbox approach to compliance simply doesn’t cut it.

About Justin

Justin Rende is the founder and CEO of Rhymetec, a cybersecurity firm providing cybersecurity, compliance and data privacy needs to SaaS companies. With more than 20 years of experience in cybersecurity, Justin has focused exclusively on developing the most innovative and customizable cybersecurity solutions for modern SaaS-based companies. Since founding the company in 2015, Justin has led Rhymetec’s growth to more than 35 full-time employees, without outsourcing any of its services, and has served more than 1,000 clients ranging from startups to large enterprises.

Rhymetec Website - https://rhymetec.com/

Justin on Linkedin - https://www.linkedin.com/in/justin-rende/

In this special crossover episode of Modern Cyber and the Ransomware Rewind podcast, Jeremy teams up with Joe Erle for a wide-ranging discussion on API security, ransomware threats, and the changing landscape of cyber insurance. From dissecting real-world examples like the MOVEit vulnerability to breaking down how ransomware negotiations really work, this episode blends technical insight with practical guidance. Whether you're a defender thinking about supply chain risk or a business leader evaluating your cyber insurance policy, this one’s packed with useful takeaways.

About Joe Erle

Joe Erle is the host of the Ransomware Rewind podcast and a cybersecurity insurance expert at C3 Insurance. With years of experience helping organizations navigate the complexities of cyber risk, Joe brings deep knowledge of incident response, policy coverage, and ransomware negotiation. Through his podcast and professional work, he provides actionable insights on current threats, trends, and how companies can better protect themselves.

Ransomware Rewind Podcast - https://www.youtube.com/@UC8UYB3xzRVdm6QypQ8SZBww

C3 Insurance - https://c3insurance.com/

Joe on Linkedin - https://www.linkedin.com/in/joeerle/

In this episode, Jeremy welcomes Danny Allan, Chief Technology Officer at Snyk, for a wide-ranging conversation on how AI is transforming software development and cybersecurity. From productivity boosts to the growing sophistication of AI-powered attacks, Danny shares his perspective on the evolving responsibilities of developers, the implications of "vibe coding," and why security guardrails are more critical than ever. They also dig into how AI is being used to filter noise in vulnerability data, what realistic productivity gains might look like, and how Snyk is helping developers build securely by default.

About Danny Allan

Danny Allan is the Chief Technology Officer at Snyk, where he leads the strategic direction of the company’s developer-first security platform. Before joining Snyk, Danny served as CTO at Veeam and Desktone (acquired by VMware), and as Director of Security Research at IBM. With deep experience across security, infrastructure, and cloud, Danny is a champion for making security accessible and scalable for developers. A proud Canadian, he’s also an avid scuba diver, cyclist, and hockey enthusiast.

www.snyk.io

In this Breach Series episode of Modern Cyber, Jeremy speaks with Adam Burns, CEO of BlackVeil, about a real-world ransomware incident that struck one of Adam’s MSP clients. Adam shares how the breach was initially detected, the role phishing played in the attack, and the team’s recovery efforts—including narrowly saving the client’s backups. The conversation also touches on CrowdStrike’s 2023 outage and key lessons learned from both incidents, including the importance of fundamentals like email security, air-gapped backups, and response readiness.

About Adam Burns

Adam Burns is the CEO of BlackVeil, a New Zealand-based company focused on simplifying email security for businesses of all sizes. With a career rooted in the MSP space, Adam has worked across support, engineering, and project delivery roles. Drawing on years of experience responding to cybersecurity incidents, he now helps organizations protect against common vulnerabilities—especially phishing and email-based threats.

BlackVeil Website: https://www.blackveil.co.nz

In this special episode of the Modern Cyber Breach Series, we welcome back Jeff Lyon, CEO and Founder of TheCyberWild. Jeff shares a firsthand account of responding to a major ransomware attack on a hospital—one that unfolded just before the COVID-19 pandemic.From the initial emergency call to the recovery process, Jeff walks us through the critical decisions, the challenges of an unprepared IT team, and the difficulties of restoring operations while ensuring patient care. He also sheds light on lessons learned, including the importance of proactive security measures, incident response planning, and continuous monitoring.Join us as we dive deep into the realities of cybersecurity in healthcare, the risks of ransomware, and why no organization—regardless of size—can afford to be unprepared.

About Jeff Lyon

Jeff Lyon is a Business Information Security Advisor who empowers organizations to take control of their cybersecurity frontier. As the CEO and Founder of TheCyberWild, Jeff guides organizations through the intricacies of cyberspace. With a wealth of knowledge accumulated through years of hands-on experience and strategic leadership, he provides security awareness training, security assessments, 24x7x365 Security Monitoring and governance, risk, and compliance strategies and other cybersecurity solutions tailored to the unique needs of each client.

TheCyberWild Website - https://thecyberwild.com/