Welcome back to "Forcepoint: To the Point Cybersecurity." In this episode, hosts Rachael Lyon and Jonathan Knepher are joined by Walter Haydock, founder and CEO of Stackaware. Walter brings a unique perspective from his time in the Marine Corps and Homeland Security, and now leads the charge in AI governance and risk management.

Today’s conversation dives deep into the maze of AI regulation, focusing on the newly emerging ISO 42001 standard and what compliance really means for organizations. Walter unpacks the complexities facing companies as they navigate a patchwork of state, national, and international laws—highlighting the challenges and opportunities presented by Colorado’s groundbreaking AI legislation and Europe’s evolving approach.

Tune in as they discuss how to build a solid foundation for digital transformation, the three layers of AI risk, and the importance of transparency and clear policy in responsible AI adoption. If you’re a CISO, security professional, or just curious about what the future holds for AI governance and cybersecurity, this episode is packed with practical insights and thought-provoking analysis.

For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e347

Welcome back to To the Point Cybersecurity Podcast, brought to you by Forcepoint! In this week’s episode, co-hosts Rachael Lyon and Jonathan Knepher continue their conversation with Russell Teague, CISO at Fortified Health Security and a contributor to the White House National Cybersecurity Healthcare Strategy. With over three decades of experience spanning healthcare, tech, pharma, and finance, Russell dives deep into the current state of cybersecurity in the healthcare sector.

In this insightful Part 2, the trio unpacks hot topics like the HIPAA Security Rule update, how budget uncertainty is creating decision paralysis for healthcare organizations, and the real-world impact this has on cyber preparedness. Russell discusses the importance—and challenges—of moving toward a secure-by-design approach for medical devices, the complexities of third-party and even fourth- and fifth-party risk, and why building strong vendor relationships and risk management programs has never been more critical.

Looking to the future, they also tackle the role of AI and workforce shortages in healthcare cybersecurity, highlighting how AI could help close the security gap and how new talent—whether from the military, clinics, or other backgrounds—can find a path into this essential field.

If you’re interested in where healthcare cybersecurity is heading and want practical advice straight from a top expert, this episode is packed with insights you won’t want to miss. Be sure to hit that subscribe button so you never miss an episode of To the Point Cybersecurity!

For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e346

On this episode of To the Point Cybersecurity Podcast, hosts Rachel Lyon and Jonathan Knepher dive deep into the evolving threat landscape in healthcare cybersecurity with special guest Russell Teague, CSO at Fortified Health Security. With over three decades of experience across sectors like healthcare, pharma, and finance—and as a contributor to the White House National Cybersecurity Healthcare Strategy—Russell brings incredibly valuable insights to the table.

Together, they unpack the most pressing cyber threats facing healthcare organizations today, including ransomware as a service, third-party risks, and the growing impact of AI on both offense and defense. Russell discusses the unique challenges rural and small healthcare providers face, the critical importance of operational resiliency and incident readiness, and why data management remains a top priority in protecting patient information.

Tune in for practical advice, free resources, and expert analysis of what's needed to stay ahead of attackers in one of the world’s most targeted industries. Whether you're a cybersecurity professional, healthcare leader, or just interested in the intersection of technology and patient care, this episode is packed with insights you won't want to miss.

For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e345

Welcome back to the "To The Point Cybersecurity" podcast! After a short hiatus, hosts Rachel Lyon and Jonathan Knepher return with an exciting new episode featuring Greg Hatcher, co-founder of White Knight Labs—dubbed the "Ocean’s Eleven of cybersecurity." Greg brings a unique perspective from his days in Army Special Forces and his deep expertise in offensive cybersecurity operations. In this episode, the conversation dives into the world of red teaming, how it differs from traditional penetration testing, the realities of social engineering and physical access exploits, supply chain and AI security threats, and the ever-evolving role of CISOs in defending their organizations. Whether you're curious about insider threats, the challenges of shadow AI, or just want a glimpse into some of the most compelling stories from the front lines of cyber offense, this episode delivers insights, cautionary tales, and actionable advice for organizations looking to stay one step ahead. So sit back, tune in, and get ready to go "to the point" on everything cybersecurity! For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e344

Joining the podcast this week is Mishi Choudhary, SVP and General Counsel at Virtru. Mishi shares with us some legal perspective on the privacy discussion including freedom of thought, the right to be forgotten, end-to-end encryption for protecting user data, finding a middle ground between meeting customer privacy demands and complying with legal requirements, getting to a federal privacy regulation, and so much more! You won’t want to miss what is a truly spirited and candid conversation – in two parts!

Mishi Choudhary

SVP and General Counsel, Virtru

A technology lawyer with over 17 years of legal experience, Mishi has served as a legal representative for many of the world's most prominent free and open source software developers and distributors, including the Free Software Foundation, Cloud Native Computing Foundation, Linux Foundation, Debian, the Apache Software Foundation, and OpenSSL. At Virtru, she leads all legal and compliance activities, builds internal processes to continue to accelerate growth, helps shape Virtru and open source strategy, and activates global business development efforts.

For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e343

Joining the podcast this week is Mishi Choudhary, SVP and General Counsel at Virtru. Mishi shares with us some legal perspective on the privacy discussion including freedom of thought, the right to be forgotten, end-to-end encryption for protecting user data, finding a middle ground between meeting customer privacy demands and complying with legal requirements, getting to a federal privacy regulation, and so much more! You won’t want to miss what is a truly spirited and candid conversation – in two parts!

Mishi Choudhary, SVP and General Counsel, Virtru

A technology lawyer with over 17 years of legal experience, Mishi has served as a legal representative for many of the world's most prominent free and open source software developers and distributors, including the Free Software Foundation, Cloud Native Computing Foundation, Linux Foundation, Debian, the Apache Software Foundation, and OpenSSL. At Virtru, she leads all legal and compliance activities, builds internal processes to continue to accelerate growth, helps shape Virtru and open source strategy, and activates global business development efforts.

For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e342

Joining the podcast this week is Dmitry Bestuzhev, senior director of cyber threat intelligence (CTI) at Blackberry. He gives Petko an inside look into the key types of CTI and how the insights can be used to build context and determine response in specific circumstances, such as in the recent case of attempted targets at NATO. Dmitry also turns our attention to the risks posed by public charging stations - a ploy dubbed “Juice Jacking.”

Dmitry Bestuzhev, Senior Director CTI at BlackBerry

Dmitry Bestuzhev is Senior Director, CTI (Cyber Threat Intelligence) at BlackBerry. Prior to BlackBerry, Dmitry was Head of Kaspersky's Global Research and Analysis Team for Latin America, where he oversaw the company's experts' anti-malware development work in the region. Dmitry has more than 20 years of experience in IT security across a wide variety of roles. His field of expertise covers everything from traditional online fraud to targeted high-profile attacks on financial and governmental institutions. His main focus in research is on producing Threat Intelligence reports on financially motivated targeted attacks.

For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e341

Joining the podcast this week is Dmitry Bestuzhev, senior director of cyber threat intelligence (CTI) at Blackberry. He gives Petko an inside look into the key types of CTI and how the insights can be used to build context and determine response in specific circumstances, such as in the recent case of attempted targets at NATO. Dmitry also turns our attention to the risks posed by public charging stations - a ploy dubbed “Juice Jacking.”

Dmitry Bestuzhev, Senior Director CTI at BlackBerry

Dmitry Bestuzhev is Senior Director, CTI (Cyber Threat Intelligence) at BlackBerry. Prior to BlackBerry, Dmitry was Head of Kaspersky's Global Research and Analysis Team for Latin America, where he oversaw the company's experts' anti-malware development work in the region. Dmitry has more than 20 years of experience in IT security across a wide variety of roles. His field of expertise covers everything from traditional online fraud to targeted high-profile attacks on financial and governmental institutions. His main focus in research is on producing Threat Intelligence reports on financially motivated targeted attacks.

For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e340

This week we’re joined by Julia Fallon, Executive Director of the State Educational Technology Directors Association (SETDA) and she shines a light on the appeal of school systems to cyber attackers. (HINT: it is access to PII to open credit cards, mortgages and more in the name of children that often is only detected many years later.) We also discuss the connection between schools and insurance companies, trends in how school systems are fortifying their security measures, the evolution of infosec to become a front office issue, and what schools can do to integrate cybersecurity into curriculums to both bolster security and lay a pathway for future cyber professionals.

Julia Fallon is the Executive Director of the State Educational Technology Directors Association (SETDA), where she works with U.S. state and territorial digital learning leaders to empower the education community to leverage technology for learning, teaching, and school operations.

Involved with learning technologies since 1989, her professional interest lies in making the case for public school systems wherein educators are able to optimize technology-rich learning environments to equitably engage the learners who fill their classrooms.

For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e339

This week, Audra is joined by Megan Stifel, chief strategy officer for the Institute for Security and Technology, to discuss how ransomware has evolved from a business nuisance to now a threat to national security. Megan also shares how the United States' overall response to ransomware has the potential to impact the types of attacks faced by its organizations and touches on the need for greater transparency when it comes to international cyber information sharing.

Megan Stifel is the Chief Strategy Officer for the Institute for Security and Technology. She is the founder of Silicon Harbor Consultants, which provides strategic cybersecurity operations and policy counsel. Prior to founding Silicon Harbor Consultants, she was an attorney in the National Security Division at the U.S. Department of Justice (DOJ).

She most recently served as Global Policy Officer and Capacity and Resilience Program Director at the Global Cyber Alliance. She was previously the Cybersecurity Program Director at Public Knowledge.

For links and resources discussed in this episode, please visit our show notes at https://www.forcepoint.com/govpodcast/e337