In this episode of Security Cocktail Hour, we go deep into the high-stakes world of modern cyber incident response (IR) with Lisa Landau and Tim Shipp of ThreatLight—two top-tier experts redefining how breaches are handled today.

Discover how IR has evolved—and why the old playbook no longer works.

What you’ll learn:

• Why speed is everything in breach response

• Why incident response isn’t about flying on-site anymore

• How top teams manage the intense stress of IR

• Why cybercriminals operate like businesses—and how to outsmart them

• Why tools alone aren’t enough—and what your team really needs

Whether you’re defending a Fortune 500 company or just want to understand how real cyber incidents unfold, you’ll hear directly from the professionals who lead real-world breach responses under pressure.

📎 Learn more about ThreatLight: https://www.threatlight.com

Selling six-figure security solutions isn’t about flashy demos or steak dinners—it’s about trust, relationships, and delivering real value. In this episode of the Security Cocktail Hour, we go inside the world of cybersecurity sales with Trevor Marcotte, founder of TnK Tech and a longtime industry insider.

Trevor reveals how deals actually get done in the high-stakes world of cybersecurity—from building trust with IT buyers and CISOs to navigating complex vendor relationships and solving real problems for clients. Alongside co-hosts Joe Patti and Adam Roth, Trevor shares why people matter more than products, and how trust beats tools every time.

Visit TnK Tech at https://tnkgoattech.com

💬 Tell us in the comments about the good and bad relationships you've had with sales people.

#Cybersecurity #InfoSec #InformationSecurity #Podcast #TechSales

Agentic AI is changing the game—but is it a security nightmare in the making? In this episode of the Security Cocktail Hour, co-hosts Joe Patti and Adam Roth sit down with Kevin O’Connor to dive into one of the hottest (and most misunderstood) topics in cybersecurity: Agentic AI Security.

Join us to learn:

✔️ What agentic AI actually is—and why it’s exploding in popularity

✔️ The real security risks that come with AI agents running wild in business environments

✔️ How cybercriminals can hijack AI agents for fraud, misinformation, and even weaponizing data

✔️ Why agentic AI could be the new Shadow IT, operating outside security teams’ control

✔️ How companies can secure AI-powered automations before they become the next major attack vector

As businesses rush to adopt AI-driven assistants, chatbots, and automation tools, are they unknowingly opening the floodgates to massive security risks? And can we actually defend against it?

Watch now to get ahead of the next AI security challenge!

Kevin joins us from Zenity

Learn more about Securing Agentic AI from Zenity Labs - No Sales, No Marketing, Just the Research

https://labs.zenity.io/

Get in on the conversation - The Industry’s First Agentic AI Security Summit

https://www.zenity.io/resources/events/ai-agent-security-summit-2025/

Do you think AI agents will turn everyone into a software developer? Tell us in the comments.

Ever wondered what it's like to lead cybersecurity on the front lines? In this episode of Security Cocktail Hour, we sit down with Keren de Via, a former IDF officer and trailblazing Chief Information Security Officer (CISO), who shares her extraordinary journey from military leadership to navigating the complex world of corporate cybersecurity.

Join hosts Joe Patti and Adam Roth as they dive deep into Keren's experiences leading cybersecurity for front line units, where security decisions carry the highest stakes. From adapting military strategies to the boardroom to redefining leadership in the cybersecurity landscape, Keren's insights are a masterclass in resilience, agility, and innovation.

Tell us about some of the toughest decisions you've made in the comments!

#Cybersecurity #Leadership #CISO #InformationSecurity #RiskManagement #Podcast #CyberLeadership #Innovation #HighStakesDecisions #CyberResilience

If you thought the tech industry only wanted your money, think again -- they're coming after your mind. Guest Winn Schwartau describes how in his new book "The Art and Science of Metawar: How to Coexist With AI-Driven Reality Distortion, Disinformation, & Addiction". Join us to learn what Metawar is, how we can protect ourselves with cognitive defenses and why immediate action is crucial, because it's already begun.

To get right into the discussion of Winn's book, jump to 6:03

Buy the book at Amazon https://a.co/d/5JEA9Lu

Visit Winn at his website and follow him on social media

Web: https://www.winnschwartau.com/

LinkedIn: https://www.linkedin.com/in/winnschwartau/

Instagram: https://www.instagram.com/winnschwartau/

X: https://x.com/winnschwartau

TikTok: https://www.tiktok.com/@officialwinnschwartau

And follow us too!

LinkedIn: https://www.linkedin.com/company/security-cocktail-hour

Instagram: https://www.instagram.com/seccocktailhour/

Web: https://securitycocktailhour.com

Drop us a comment and tell us if you want to see more authors talking about their books!

#informationsecurity #infosec #podcast #cybersecurity #metawar #books

Previous guest Jennifer Gold returns for another episode, and this time she's brought friends: cyber and intelligence veterans Patrick Arvidson and Roger Hockenberry. Together, they delve into the evolving world of cybersecurity, sharing insider perspectives from the CIA, NSA, and the private sector. Hear about:

🕶 Why Fridays and holidays are prime time for ransomware attacks

💡 The commoditization of intelligence

🎯 Practical strategies to prevent, detect, and respond to cyber threats

Learn how attackers exploit weekends, discover the real cost of third-party risks, and uncover why “intelligence” might not always mean what you think. Plus, hear about the creative side of coding, retro hacking nostalgia, and the challenges of managing risk in a hyperconnected world.

If you’re ready for a blend of expert advice, engaging banter, colorful drinks and Hawaiian shirts, be sure to join us. And don’t forget to drop us a comment and follow the podcast.

#informationsecurity #infosec #cybersecurity #podcast #ransomware #threatintelligence #hacking

You need experience to get even an entry level job, but how to do you get a job if you don't have experience? For years this classic dilemma didn't apply to cybersecurity, but times have changed. Newly minted security consultant Jerry Sinayuk of NukuDo tells us how he got trained and is lining up his first consulting engagements -- all while getting paid. Join us to learn about this new approach to breaking into a high-tech industry that's actually centuries old.

And if that isn't enough to hit a lot of keyword searches, Jerry also shares his passion for blockchain technology and gives his unvarnished opinion on NFT's.

Put your questions on cyber security hiring in the comments, and Joe and Adam will respond with the wisdom of their many years in the field. And don't forget to share and tell your friends.

Check out NukuDo, Jerry's company, and their program at https://nukudo.com.

Show your support for the podcast with official Security Cocktail Hour merch: Shirts, mugs and more at https://securitycocktailhour.com/store

#informationsecurity #infosecurity #cybersecurity #podcast #cyberjobs #securityjobs #blockchain #nft #bitcoin #cybercurrency #training

Artificial intelligence is revolutionizing industries, and cybersecurity experts are navigating uncharted territory to keep pace. In this episode of the Security Cocktail Hour podcast, Alec Crawford, Founder and CEO of AI Risk, Inc., joins co-hosts Joe Patti and Adam Roth for a dive into the practical, technical, and ethical challenges of AI - including some surprises nobody saw coming, as well as what an adversary can do with a drone. From early work with neural networks to cutting edge large language models, Alec shares the challenges he's taking on to secure today’s generative AI models.

Highlights include:

🔒 Vulnerabilities AI introduces to corporate environments

🔒 Creative and unexpected ways hackers are manipulating AI systems

🔒 Why regulating AI is so challenging—and what might work better

For more insights from Alec, tune into his podcast, AI Risk-Reward or visit AI Risk, Inc..

#InformationSecurity #Infosec #Cybersecurity #Podcast #ArtificialIntelligence #AI #GenAI #GenerativeAI #Hacking #TechInnovation #Regulation #TechRegulation #Drone

This holiday season, don’t let scams ruin the festive spirit! In this special holiday episode of the Security Cocktail Hour, co-hosts Joe Patti and Adam Roth break down the most common holiday scams, from the classics to the sneaky new ones you’ve never heard of. From fake gift card requests to sophisticated AI-driven scams, we’ll teach you how to stay one step ahead of the scammers.

🎄 What you’ll learn:

• How scammers exploit holiday stress and generosity
• The latest tricks using AI and malware
• Real-life examples of scams and how to avoid them

Whether you’re buying gifts, traveling, or just enjoying the holidays with family, these practical tips will help you protect yourself and your loved ones.

And to really up your security game, check out our new store for Security Cocktail Hour clothing and gear at https://securitycocktailhour.com/store.
Leave a comment with your experiences or questions about scams!

Stay safe, stay smart, and have a happy holiday season! 🎁

#informationsecurity #infosec #cybersecurity #podcast #ai #artificialintelligence #giftcardscam #HolidayScams #StaySafe

Are your organization's security gaps leaving the door wide open for attackers? In this episode of the Security Cocktail Hour podcast, co-hosts Joe Patti and Adam Roth sit down with seasoned penetration tester and identity security expert Jason Luttrell.

Jason shares fascinating stories from his days of hacking banks, infiltrating data centers, and even dumpster diving, all legitimate work for his customers, to expose the vulnerabilities they never knew existed. Discover why physical security is just as critical as digital defenses and how attackers exploit overlooked entry points.

Later, the discussion shifts to the evolving landscape of identity management and why protecting access credentials is the cornerstone of modern cybersecurity. Learn about the latest best practices for managing passwords, including the use of password managers, multi-factor authentication (MFA), and techniques to avoid common pitfalls you may be using. Plus, hear Jason's take on emerging alternatives like passkeys and why they might still be a long way from replacing passwords entirely.

Topics Covered:

• Real-life hacking stories from the frontlines of cybersecurity.
• The terrifying ease of bypassing weak physical security.
• Why "passwords must die" and what might replace them.
• How identity security can make or break your defenses.
• Practical tips for protecting your organization today.

💡 Ready to level up your cybersecurity game? Follow us, and join the conversation in the comments. What’s your take on Jason’s bold claim about the future of identity security? Let us know!