"If you envision a world where what would be the most ideal way to make access management IAM decisions, to enable people to access internal things, you'd want to do a few things,” reflects Bobby DeSimone, Founder and CEO at Pomerium.

In this episode of The Security Strategies Podcast, host Alejandro Leal, cybersecurity expert and senior analyst at KuppingerCole Analysts AG speaks with DeSimone about the shifting focus in security to internal access solutions, particularly in identity and access management [IAM].

DeSimone emphasises the importance of simplifying typically complex internal access management IAM solutions. He suggests directing focus on the foundational need for secure and user-friendly access among other recommendations.

Additionally, he shares insights from his journey in the privileged access management space, discussing the limitations of traditional perimeter-based security and the need for a more comprehensive approach to identity and access.

The conversation also explores the challenges posed by client-based access solutions, the importance of context-driven access, and how Pomerium's clientless approach to device health is reforming internal access management IAM.

As threats become more sophisticated and workforces more distributed, the once impenetrable "castle and moat" approach leaves organisations vulnerable in terms of identity and access. As such, this podcast addresses the limitations of conventional access management IAM solutions and explores a modern, context-driven approach to securing internal assets.

DeSimone argues that the numerous acronyms like SASE, CASB, and PAM, while representing different facets of privileged access, ultimately fall under the umbrella of "just actually one big market under it, which is the internal identity and access market". The core challenge lies in moving beyond login-based authorization to a more granular, context-driven access model.

Watch the podcast to learn more about how to overcome traditional complexities and approach a more modern and relevant internal access management IAM solution.

• Bobby's journey in security began with privileged access management.
• Traditional perimeter-based security has significant limitations.
• Organisations struggle with internal access despite strong outer defenses.
• Client-based access solutions introduce administrative burdens and vulnerabilities.
• Context-driven access is essential for modern security solutions.
• Pomerium supports clientless device identity for easier access management.
• The security landscape is evolving towards a more integrated internal access market.
• Real-world applications of Pomerium show its effectiveness across industries.
• CISOs should prioritize securing internal assets without traditional complexities.
• Pomerium offers a flexible approach to access control on organisational terms.

00:00 Introduction to Security Strategies Podcast

01:02 Bobby's Journey in Security and PAM

03:01 Challenges of Traditional Client-Based Access Solutions

05:53 Market Segmentation and Context-Driven Access

09:02 Pomerium's Approach to Device Health and Clientless Access

12:03 Beyond the Perimeter: Real-World Applications of Pomerium

16:51 Key Takeaways for CISOs

Pomerium is a zero-trust reverse proxy that helps enterprises manage secure application access. Authenticate, authorise, monitor, and secure user access to any application without a VPN. Access is driven by identity and context.

Pomerium allows you to use your existing identity provider, such as Okta, Active Directory, Google, Gsuite, or OneLogin to add single-sign-on authentication to any application. It enables you to add access control to any app, providing a standardised interface to do so whether an application itself has authorisation or authentication baked-in. This allows developers to focus on their apps, rather than reinventing access control mechanisms.

Takeaways

• #ExposureManagement involves assessing multiple factors, not just single scans.
• Organisations must optimise their remediation capacity due to limited resources.
• Visibility is crucial, but finding the most important exposure is essential.
• #TraditionalVulnerability management programs are becoming ineffective.
• Exploitability is the key criterion for prioritising remediation efforts.
• Automated scanning can provide rapid insights into vulnerabilities.
• Time taken to remediate is critical for effective security management.

Summary

In this episode of the Security Strategist, Richard Stiennon, Chief Research Analyst at IT Harvest and industry leader, speaks with Marc Gaffan, the CEO of IONIX.

They explore the core challenges facing #cybersecurity professionals — particularly in a rapidly evolving digital landscape — and discuss innovative approaches to attack surface management.

Gaffan explains exposure management isn't just about looking at one scan, vulnerability, or way an organisation could be exploited. Instead, it takes a holistic approach to understand what "exposure" means for organisations.

Listen to the full conversation on how to adapt your security strategy to today's potential threats. Gaffan's expertise provides valuable guidance for any security professional looking to stay ahead of the curve.

For more tech insights visit EM360Tech.com

Takeaways

• #Peacetimesecurity is no longer sufficient in modern cloud environments.
• AI and automation are essential for effective security management.
• Real-time security platforms can prevent breaches before they occur.
• Integrating security into the development process is crucial for success.
• Key metrics include mean time to detect and remediate vulnerabilities.
• A unified #dataarchitecture is vital for effective security operations.
• Automation can significantly reduce analyst workload and alert fatigue.
• Organisations should evaluate vendors based on their ability to adapt to evolving threats.

Summary

Is your organisation still relying on outdated “peacetime” security solution strategies in the face of rapidly evolving #cloudthreats? Host Brad LaPorte explores answering this question with guest Ory Segal, Technical Evangelist of Cortex Cloud, Palo Alto Networks. They  discuss how the dynamic nature of modern cloud environments and increasing adoption of AI are compelling organisations to move beyond traditional "peacetime" network security measures.

In this episode of the Security Strategist, Segal explains the difference between securing traditional monolithic applications and modern cloud-native applications. “Modern cloud native applications, beyond the fact that it's deployed to the cloud, entails something completely different,” Segal states, stressing the complexity of various technological layers in cloud services.

Join the conversation as we discuss the shift from static security models to dynamic, real-time protection, and leveraging #AI to mitigate cloud security threats and strengthen network protection. Learn what this means for your organisation and how to adapt your cloud security solutions.

For the latest tech insights visit: EM360Tech.com

Remote Monitoring and Management (RMM) solutions are quite ambitious, promising to identify the issues before they have a chance to impact your IT operations. “A good RMM offers a combination of tools for you to do this properly,” stated Elias Moura, the Head of Product Marketing at Pulseway. 

“You have automation to enable auto-remediation, built-in remote control, automated patching, mobile device management, and other features that make RMM an effective tool,” he added. “The RMM is usually the central piece to make sure that IT management is consistent and tackling different issues that your end user could face.” 

In this episode of the Security Strategist podcast, host Shubhangi Dua, B2B Tech Journalist and Podcast Producer from EM360Tech speaks to Moura and Edgar Zacharjev, SVP of Product and Strategy at Pulseway. 

They discuss contemporary cybersecurity threats, the importance of compliance and protocols, and the role RMM, automation, and AI in IT management. The conversation spotlights the significance of patch management, automation, and the integration of AI in cybersecurity strategies. 

Real-life examples illustrate how organisations can effectively tackle security challenges, emphasising the need for a proactive approach and continuous awareness training.

Watch the podcast to learn why diligent patch management forms your initial and crucial line of defense against exploitation. Explore the power of automation in streamlining security operations, improving response times, and enhancing overall efficiency. 

• The cybersecurity landscape is constantly evolving, requiring adaptive strategies.
• Compliance and protocols, while sometimes seen as hindrances, are essential for security.
• Remote Monitoring and Management (RMM) is crucial for effective IT management.
• Patching systems regularly is vital to prevent vulnerabilities.
• Automation can significantly enhance IT efficiency and reduce manual workload.
• AI is becoming integral in IT and business management, cybersecurity, but organizations must use it wisely.
• Anomaly detection and user awareness training are critical components of a security strategy.
• Building a unified IT stack simplifies management and enhances security.
• Real-life examples demonstrate the effectiveness of proactive cybersecurity measures.
• CISOs must advocate for cybersecurity investment within their organisations.

00:00 Introduction to Cybersecurity Challenges

03:10 Evolving Cybersecurity Strategies

05:58 The Importance of Compliance and Protocols

08:53 Understanding Remote Monitoring and Management (RMM)

11:50 The Role of Patching in Cybersecurity

14:58 Advancements in Automation and IT Management

17:59 AI in Cybersecurity: Opportunities and Risks

20:59 Anomaly Detection and IT Awareness Training

24:02 Real-Life Examples of Cybersecurity Solutions

27:00 Benefits of RMM for Proactive IT Management

29:51 Building a Unified IT Stack

32:51 Internal Security Practices and Protocols

36:10 Key Takeaways for CISOs

Application Programming Interface (API) is one of the most critical components of software applications which mediates communication between different applications and exchanges permissible data. APIs, as a fundamental integrant of software, are acutely important to secure, as vulnerabilities can be exploited by threat actors.

“When it comes to API-based attacks or API attacks, just within 2024, if we compare the second half of the year to the first half, there was a 188 percent surge in those types of attacks,” articulated Uri Dorot, the Senior Product Marketing Manager at Radware. 

To ultimately enhance a business’s ability to detect and respond to cyber threats, securing APIs is key. These APIs are also essential in controlling access to sensitive business logic and data – acting as a key attack vector. 

In this episode of the Security Strategist podcast, Chris Steffen, VP of Research at EMA is joined by Dorot. They discuss the biggest challenges facing API security particularly pertaining to business logic attacks. 

The speakers address the question – Can organisations truly mitigate targeted attacks against their APIs and application business logic? Dorot breaks down the steps and provides practical security strategies to protect enterprises from not only falling into traps but also using business logic for effective protection against increasingly sophisticated threats.

• Business logic attacks exploit legitimate API calls in illegitimate ways.
• Visibility into API environments is crucial for effective security.
• Organizations often lack documentation for their APIs, increasing risk.
• AI tools can help discover and map API endpoints and business logic.
• Business logic is complex and constantly evolving, requiring ongoing attention.
• Attackers use AI to enhance their reconnaissance and exploit strategies.
• Contextual understanding is key to identifying unusual access patterns.
• Security solutions must adapt to the dynamic nature of applications.
• Real-time/runtime mitigation is necessary to respond to evolving threats.
• HTTP DDoS attacks on API-based applications require specialized behavioral-based protection.

00:00 Introduction to API Security Challenges

02:32 Understanding Business Logic Attacks

06:11 The Importance of API Visibility

12:26 AI's Role in API Security

17:52 Trends in API Security with Generative AI

21:43 Context and Granularity in Protection

28:58 Key Takeaways for Security Practitioners

Radware is a leading cyber security solutions and application delivery solutions company globally. They provide award-winning security and availability for infrastructure, applications, and enterprise IT across physical, cloud, and software-defined data centers. 

Trusted by over 12,500 enterprises and carriers worldwide to enhance digital experience, ensure business continuity, and maximise productivity with cost-effective solutions.

In this episode of the Security Strategist podcast, Chris Steffen speaks with Sudhir Reddy, the CTO of Esper, about the imperative balance between security and user experience in dedicated devices. 

They discuss the unique challenges of securing these devices, the role of Mobile Device Management (MDM), compliance issues, and practical steps enterprises can take to optimise their device fleets. The conversation not only spotlights the importance of proactive security measures but also the need for organisations to address vulnerabilities in their dedicated devices.

From kiosks and point-of-sale machines to medical devices and airport check-in counters, these ubiquitous tools present idiosyncratic security vulnerabilities that demand proactive strategies. 

MDM is the first line of defense. Sudhir says, “This is your interface to secure everything that's happening on the device, whether it's bits and bytes that get on the device.” 

“Whether it's what peripherals are allowed on the device, what device serial numbers of peripherals are allowed to talk to the device,” he added. “All of these are things that managers of large fleets have to think about."

Tune into the podcast to hear more about dedicated device security as a critical component of a detailed security strategy and adopting a proactive, data-driven approach to help organisations mitigate risks and ensure harmonious operation of their edge device fleets.

Takeaways

• Dedicated devices present unique security challenges compared to traditional devices.
• The presence of humans is a key factor in security compliance issues.
• MDM can enhance both security and user experience.
• Compliance is crucial for devices handling sensitive data.
• Patching and updating devices can be challenging due to downtime.
• Proactive measures can minimise vulnerabilities before exploitation.
• Organisations should start with smaller, manageable security issues.
• Gradual rollout of updates can prevent widespread issues.
• Device management should not be an afterthought.
• There are tools available to help secure dedicated devices.

Chapters

00:00 Introduction to Dedicated Devices and Security Challenges

03:01 The Unique Landscape of Dedicated Devices

05:48 The Role of MDM in Security and User Experience

08:57 Compliance and Data Security in Dedicated Devices

12:05 Patching and Updating Challenges

15:02 Proactive Security Measures for Device Management

18:53 Practical Steps for Improving Security Posture

25:06 Final Thoughts and Key Takeaways

Welcome back to Meeting of the Minds, a podcast series that brings industry leaders together for the most engaging conversations of the year. In our inaugural episode, cybersecurity experts Christopher Steffen, Richard Stiennon, and Brad LaPorte, joined by Evgeniy Kharam, provided a comprehensive overview of the current cybersecurity landscape. They explored the complexities and challenges that organisations face in today's digital age, setting the stage for a deeper exploration of what the future holds.

This episode, Steffen, Stiennon, and LaPorte were joined by moderator Alejandro Leal, a senior analyst specialising in cybersecurity, digital identity, and AI at KuppingerCole. Throwing out the script, they took the conversation to the next level, venturing into uncharted territory and pushing the boundaries of cybersecurity.

Prepare for a no-holds-barred discussion as the analysts speculated on the disruptive forces that will shape the future of cybersecurity, dissecting everything from the intricate challenges of DOGE and securing AI to the potential paradigm shifts brought about by quantum computing.

The cybersecurity experts did not shy away from controversial topics, but instead provided their unfiltered opinions on the impact of government initiatives like DOGE and the UK's Investigatory Powers Act.

They also talked about the ethical dilemmas surrounding data privacy and security, and debated the potential consequences of a "quantum day" – the moment when quantum computing breaks current encryption standards. Brace yourself for some surprising hot takes and thought-provoking insights that will challenge your understanding of the cybersecurity landscape.

Watch the first episode of Meeting of the Minds State of Cybersecurity in 2025 podcast.

Takeaways

• The chaotic approach to government efficiency can hinder cybersecurity efforts.
• Bureaucracy can provide stability but also opens doors for corruption.
• The balance between efficiency and oversight is crucial in cybersecurity.
• Recent government actions raise concerns about privacy and security.
• Reckless adoption of new technologies poses significant risks.
• The cybersecurity landscape is influenced by political decisions.
• The historical tension between privacy and state surveillance continues.
• Court orders should be the standard for accessing private information. Lawful Intercept has led to vulnerabilities in telecom systems.
• Businesses must use secure communication methods, even with trusted devices.
• Sensitive data should not be stored on mobile devices.
• Organisations should avoid using apps like WhatsApp for sensitive communications.
• Most organisations lack basic encryption for their data.
• Organisations must understand their data infrastructure before preparing for quantum.
• The future of cybersecurity will require adaptability and innovative thinking.

Chapters

00:00 Introduction to Cybersecurity in 2025

01:30 Impact of Government Efficiency on Cybersecurity

11:09 Bureaucracy vs. Efficiency in Cybersecurity

16:56 UK Government's Demand for Encrypted Data Access

24:08 The Risks of Backdoors in Technology

27:21 Preparing for Quantum Computing

39:01 Current State of Quantum Authentication

47:07 The Future of Cybersecurity and Quantum Technology

Andrea Cullen discusses her extensive experience in cybersecurity, focusing on the gender imbalance and cultural stereotypes that have historically dominated the field. She emphasizes the importance of diversity and mentorship in fostering innovation and problem-solving within cybersecurity teams. Andrea advocates for a more inclusive approach to recruitment and highlights the need for creative thinking in addressing cybersecurity challenges. The discussion also touches on the significance of leadership in creating a welcoming environment for diverse talent.

Key takeaways

• Cybersecurity has been male-dominated for decades.
• Cultural stereotypes contribute to gender imbalance in tech.
• Diversity enhances problem-solving and innovation.
• Mentorship is crucial for underrepresented groups.
• Leadership should model openness to mistakes.
• Cybersecurity requires both technical and creative skills.
• Recruitment should focus on potential, not just certificates.
• Real-world experiences can change perceptions of cybersecurity.
• Diverse teams lead to better solutions and outcomes.
• Everyone has something to contribute to cybersecurity.

“Continuous threat exposure management is the new phrase for what we used to call vulnerability management programs," said J.J. Guy, CEO and Co-Founder of Sevco Security.

In this episode of The Security Strategist podcast, Richard Stiennon, Founder and Chief Analyst at IT-Harvest speaks with Guy about the evolution of vulnerability management into Continuous Threat Exposure Management (CTEM). 

Guy stresses that traditional vulnerability management falls short in modern environments, which is why there's a critical shift towards CTEM. This isn't just a rebranding, it's a fundamental change in approach. As attack surfaces expand, so do the types of exposures organisations need to address. A fragmented approach to vulnerabilities leaves organisations overwhelmed.

"We've all told all auditors we've got it under control and we've all pointed to the CMDB as the tool to accommodate that control. But at the same time, we've known that the CMDB is wildly inaccurate," Guy voiced, spotlighting the need for a better system.

CTEM programs offer a structured framework, integrating the interconnectedness between vulnerabilities and devices, users, threats in the wild, and the business impact of a breach to drive more effective prioritisation, mitigation, and remediation of vulnerabilities in increasingly complex environments. As Guy says, welcome to Vulnerability Management Programs 2.0.

This is just a taste of what was discussed on the podcast. Watch the podcast for deeper insights and unconventional notions for businesses to succeed in today’s rapidly involving cybersecurity sphere.

Takeaways

• Continuous Threat Exposure Management (CTEM) is the evolution of vulnerability management.
• CTEM is seen as vulnerability management 2.0, adapting to the changing landscape of cybersecurity.
• A strong asset inventory is foundational for effective CTEM.
• Organisations often face challenges in managing multiple vulnerability assessment tools.
• The importance of real-time, live operational views of assets cannot be overstated.
• Threat intelligence plays a critical role in prioritizing vulnerabilities.
• Data aggregation from multiple sources is essential for a complete inventory.
• The industry needs to move away from compliance-oriented activities to operational ones.
• Emerging trends indicate a consolidation of tools and deeper integrations in cybersecurity.
• Better data leads to better decisions and outcomes for organisations.

Chapters

00:00 Introduction to Continuous Threat Exposure Management

02:52 The Evolution of Vulnerability Management

05:52 The Importance of Asset Inventory

08:54 Challenges in Vulnerability Management

11:50 Characteristics of a Strong Security Inventory

15:01 Emerging Trends in Exposure Management

17:57 Key Takeaways for CISOs

In today's deeply connected world, cybersecurity is no longer just a technical issue—it's deeply intertwined with geopolitics. This episode explores this complex relationship, talking about the ever-shifting threat space and examining how international regulations and geopolitical tensions impact organisations' cybersecurity posture. 

The episode also discusses the double-edged sword of artificial intelligence in cybersecurity, acknowledging its potential to enhance defenses while also requiring skilled personnel to effectively leverage its capabilities. 

It further spotlights that achieving zero risk in cybersecurity is an unrealistic goal, and enterprises must focus on building strong risk management frameworks and selecting the right security controls to mitigate potential damage.

The podcast provides valuable takeaways for businesses of all sizes, stressing the importance of continuous improvement and adaptation in the face of ever-evolving cyber threats.

Tune in for a deep dive into the intersection of geopolitics and cybersecurity. Gain valuable insights on how to navigate the complex regulatory environment, leverage the power of AI, and develop effective risk management strategies to protect your organisation in today's interconnected world.

In this episode of the EM360Tech’s The Security Strategist podcast, host Shubhangi Dua speaks with Bryan Marlatt, Chief Regional Officer at CyXcel, about the complex relationship between geopolitics and cybersecurity. 

Takeaways

• The global regulatory landscape for cybersecurity is complex and fragmented.
• Privacy regulations are critical for enterprises to monitor and comply with.
• AI can enhance cybersecurity processes but requires skilled personnel to leverage effectively.
• Zero risk in cybersecurity is unrealistic; organisations must manage acceptable risk.
• GDPR has significantly influenced how organisations approach data protection.
• Phishing attacks remain a prevalent threat across all sectors.
• Operational technologies are increasingly vulnerable to cyber threats.
• Organisations need to adopt a proactive approach to cybersecurity.
• Choosing the right security controls is essential for effective risk management.
• Continuous improvement and adaptation are necessary in the cybersecurity landscape.

Chapters

00:00 Introduction to Geopolitics and Cybersecurity

02:29 Navigating the Complex Regulatory Landscape

05:15 The Role of AI in Cybersecurity

12:15 Understanding Acceptable Risk in Cybersecurity

18:24 Global Perspectives on Cybersecurity Regulations

23:04 Emerging Cyber Threats and Mitigation Strategies