Security Confidential

#SecurityConfidential #DarkRhiinoSecurityAndy Smith is the CEO and Co-Founder of Tracebit, a cybersecurity company building deception technology that deploys security canaries across cloud infrastructure, identity platforms, and SaaS environments to detect breaches with high fidelity. Before founding Tracebit, Andy was Head of Engineering at Tessian, where firsthand exposure to a widespread supply chain incident affecting thousands of companies sharpened his and Sam's conviction in the "assume breach" philosophy that underpins Tracebit today. Originally from the UK, Andy recently relocated to New York as Tracebit grows its US presence. 00:00 Intro02:17 Our Guest03:50 All Defenders get this wrong06:05 What good does all this technology do?09:48 My experience with a third party breach11:30 Deception technologies18:50 AI is not detecting properly 22:26 What about LLMs? Do they mirror that behavior?26:30 The Assume breach philosophy 35:38 What makes deployment of deception technology defective?40:40 Tracking Canaries 47:00 Learn about Tracebit----------------------------------------------------------------------To learn more about Andy visit https://www.linkedin.com/in/andy-m-smith/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com----------------------------------------------------------------------

Jason Roos is a globally recognized CIO, digital transformation leader with over 25 years of experience, and the CEO of TAITAN. Jason has led major initiatives across the U.S., Europe, and the Middle East, including serving as CIO for NEOM’s Education, Research & Innovation sector. He’s also been named one of the Top 10 CIOs in the Middle East multiple times. 00:00 Intro02:10 Our Guest11:38 How do you balance convenience vs Security17:30 De-provisioning gaps22:36 Are people more accepting of compliance rules in the Middle East?28:20 TAITAN34:20 The current administration’s relationship with Saudi Arabia 43:29 Connecting with Jason----------------------------------------------------------------------To learn more about Jason visit https://www.linkedin.com/in/jason-roos-9840933/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com

#SecurityConfidential #DarkRhiinoSecurityDiyar Saadi Ali is a cybersecurity professional specializing in cybercrime investigations, SOC operations, and malware analysis. A contributor to the MITRE ATT&CK framework, Diyar has helped strengthen global threat intelligence efforts and defensive strategies. Diyar regularly speaks at international cybersecurity conferences including Arab Cyber Security, DeepSec, GISEC, BlackHat, and SulyCon, contributing to the advancement of the global cyber community.00:00 Intro02:26 Our Guest03:42 Learning Cybersecurity in Iraq07:40 The MITRE attack Framework: Is that all the knowledge we know? 11:30 There are still tons of unknown vulnerabilities13:30 You can’t fake motivation17:00 Defenders are to blame19:16 Who is coming up with Malware?22:10 Every crime leaves a trace24:12 AI is making malware easy29:00 Governance and Trust38:02 Presentations and News from Diyar----------------------------------------------------------------------To learn more about Diyar visit https://www.linkedin.com/in/diyarsaadi/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com

Sara Ricci is a cybersecurity and enterprise risk executive with deep expertise in operational resilience, IT risk, and third-party risk management. She advises C-suite leaders on building stronger, more resilient organizations in the face of evolving cyber and operational threats. Sara is a frequent global speaker and mentor through the Executive Women’s Forum Lift program and is known for her cross-disciplinary approach to risk, combining cybersecurity, business continuity, privacy, and sustainability to help organizations stay resilient.00:00 Intro02:29 Our Guest06:12 Resilience across industry15:30 Data exists in many forms21:20 Is you see something, say something26:20 The attack surface changing with AI38:30 4th party risk42:15 Connecting with Sara--------------------------------------SOCIAL MEDIA:Stay connected with us on our social media pages where we'll give you snippets, alerts for new podcasts, and even behind the scenes of our studio!Instagram: @securityconfidential and @DarkrhiinosecurityFacebook: @Dark-Rhiino-Security-IncTwitter: @darkrhiinosecLinkedIn: @dark-rhiino-securityYoutube: @DarkRhiinoSecurity ​

#SecurityConfidential #DarkRhiinoSecurityTiffini Smith is a strategic legal executive and board advisor with over 20 years of experience in privacy, cybersecurity, and AI governance. A U.S. Patent Attorney with bar admissions in the U.S. and England & Wales, she helps organizations navigate everything from breach preparedness to the EU AI Act. Tiffini has led global legal teams and provided global cybersecurity legal advice, including addressing issues such as incident response readiness, vendor risk programs, AI model risk reviews, and board-level briefings, and is known for translating complex legal and cyber risk into actionable guidance for executives. She also authors a newsletter.00:00 Intro02:28 Our Guest05:48 Regulation across states and countries09:48 Cybersecurity regulation culturally14:00 Employee training and teaching them the Why 23:07 How do you mitigate against AI?25:00 CISOs don’t understand how the business works29:11 Does being compliant actually reduce your exposure? 34:00 Regulations on AI in your business50:10 More about Tiffini----------------------------------------------------------------------To learn more about Tiffini visit https://www.linkedin.com/in/tiffini-smith/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com----------------------------------------------------------------------

#SecurityConfidential #DarkRhiinoSecurityRobert Siciliano is a cybersecurity and identity theft expert, private investigator, and CEO of Protect Now LLC, with over 30 years of experience protecting people and organizations from fraud, social engineering, and cybercrime. Known for closing the “Human Blindspot,” Robert developed the Strategic Human Firewall™ to help individuals and employees recognize and stop manipulation before technology ever fails. A Certified Speaking Professional and #1 bestselling author of multiple books on identity theft and privacy, he is a frequent media expert on CNN, Fox News, and The Today Show. Robert works at the intersection of physical and digital security, helping organizations defend against AI-driven fraud by strengthening the human layer of security.00:00 Intro01:35 Our Guest02:36 Protecting others for an early age05:48 I got hacked in the 90’s09:26 Social Security Numbers on the Dark Web11:00 A Psychological form of denial19:04 The “Human Blindspot”21:00 The Criminals know more about us than we do23:20 Regulatory Compliance25:14 Going through Security with a guide30:03 The Strategic Human Firewall36:00 Change Minds = Change Hearts41:00 Social Engineering: What works?53:31 More about Robert----------------------------------------------------------------------To learn more about Robert visit https://www.linkedin.com/in/robertsiciliano/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com----------------------------------------------------------------------

#SecurityConfidential #DarkRhiinoSecurityDr. Rizwan Sheikh is the Founder and CEO of Global AI Excellence, the inventor of a groundbreaking AI governance model, and one of the leading voices helping organizations deploy AI responsibly. With decades of experience spanning Deloitte, Fortune 500 consulting, and teaching AI strategy at places like Harvard and MIT, Dr. Riz is helping bridge the gap between innovation and governance. 01:00 Intro02:34 Our Guest03:33 93% of Employees are using AI05:04 Why don’t existing governance models work?06:15 ChatGPT Sources are fake07:17 A.I Hallucinates12:06 How do you govern Ai?22:02 When should you govern Ai?31:47 What should AI look like for my company? 33:45 European Union AI Act39:05 Believing False AI statements43:20 How can you build governance to something that changes daily?45:43 How do I get into AI?48:06 Connecting with Dr. Rizwan

#SecurityConfidential #DarkRhiinoSecurityMatthew Waddell is an incident response and digital forensics expert with over 25 years of experience helping governments, global enterprises, and small businesses. He has also supported U.S. government counter-intelligence investigations and frontline operations overseas. Today, he’s distilling decades of real-world experience into practical guidance and a new book designed to help organizations survive ransomware with clarity and confidence.00:00 Intro1:25 Our Guest02:02 Working for NASA09:30 Password hygiene is the key 11:38 Passkeys: Good or bad?18:00 If you collect any finances, you’re a target23:30 Bad Actors are practicing on Small businesses27:18 Is A.I accelerating the Ransomware process?29:22 Employee Education Mindset34:23 Physical Security42:57 Calming down the executive team50:11 Survive Ransomware----------------------------------------------------------------------To learn more about Matthew visit https://tacticallysecure.com/survive/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com----------------------------------------------------------------------

#SecurityConfidential #DarkRhiinoSecurityGrant Asplund is a cybersecurity evangelist with over 25 years of experience helping organizations defend against sophisticated cyber threats. He travels globally, speaking at major conferences like RSA, engaging with analysts, partners, and media to advance security across cloud, mobile, and infrastructure. Grant has held leadership roles across sales, marketing, and executive management at companies including Dome9, Blue Coat, Neustar, and Altor Networks, and previously led MetaInfo through its acquisition by Neustar. He also hosts the CISO Secrets and Talking Cloud podcasts, where he explores cloud security trends and real-world leadership insights.00:00 intro03:00 Our Guest05:13 Start with a Helpdesk role10:00 Ai taking over roles13:35 AI first mindset35:10 The future of AI tools45:07 CISOs report to the board 49:05 More about Grant----------------------------------------------------------------------To learn more about Grant visit https://www.linkedin.com/in/grantasplund/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com----------------------------------------------------------------------

#SecurityConfidential #DarkRhiinoSecurity Daniel Lowrie (@daniellowrie) is a longtime IT and cybersecurity professional with over 20 years of hands-on experience, starting from workstation support and evolving into ethical hacking and security training. Inspired early on by hacker and spy movies, he turned that curiosity into a career focused on popping shells, breaking into systems ethically, and teaching others how it all works. Today, he spends his time learning everything he can about cybersecurity, creating training content, and helping the next generation of cyber professionals grow through speaking, mentoring, and community involvement.00:00 Intro02:20 Our Guest04:40 Getting started in Cyber09:20 Taking inspiration from movies09:40 War Games13:35 First hack18:07 The Path to a Cyber career26:27 Finding bugs early32:36 Secure or Cheap?38:53 The downside of AI in Tech48:32 More about Daniel ----------------------------------------------------------------------To learn more about Daniel visit https://www.linkedin.com/in/daniellowrie/Check out his classes: https://youtube.com/@daniellowrie?si=ExQHOcMTKlE4E51G To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com----------------------------------------------------------------------SOCIAL MEDIA:Stay connected with us on our social media pages where we'll give you snippets, alerts for new podcasts, and even behind the scenes of our studio!Instagram: @securityconfidential and @DarkrhiinosecurityFacebook: @Dark-Rhiino-Security-IncTwitter: @darkrhiinosecLinkedIn: @dark-rhiino-securityYoutube: @DarkRhiinoSecurity ​----------------------------------------------------------------------#darkrhiinosecurity #securityconfidential #cybersecurity #cyberpodcast #ai #artificialintelligence #securitypodcast #cybernews #technews #techsoftware #informationtechnology #infosec #cybersecurityforbeginners #technewstoday

#SecurityConfidential #DarkRhiinoSecurityHusam Shbib is a cybersecurity consultant specializing in penetration testing, digital forensics, malware analysis, programming, and OSINT. He’s the founder of Memory Forensic and the author of Captain Cyber and the Safe Surfing Adventure. Husam is also a global speaker featured at events like BlackHat MEA, ASFSFM, and 3D Forensics, known for his hands-on expertise in uncovering digital evidence and analyzing complex cyber incidents.----------------------------------------------------------------------To learn more about Husam visit https://husamshbib.com/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com

#SecurityConfidential #DarkRhiinoSecurity Matthew Devost is a cybersecurity, risk management, and national security expert with over 25 years of experience. He is the CEO and Co-Founder of OODA LLC and Devsec previously founded the Terrorism Research Center and cybersecurity consultancy FusionX, which was acquired by Accenture. At Accenture, he led the Global Cyber Defense practice. Matthew has held key leadership roles at iDefense, iSIGHT Partners, Total Intel, SDI, Tulco Holdings, and Technical Defense, making him a trusted voice in cyber threat intelligence and critical infrastructure protection. 00:00 Introduction02:03 The Evolution of Cybersecurity and National Security Risks06:16 Understanding Cyber Threats and Strategies for Defense11:19 The Role of Private Sector in Cybersecurity14:40 Addressing Cybersecurity Challenges and Failures of Imagination17:16 Overcoming Inertia in Cybersecurity Leadership20:42 The Importance of Red Teaming and Realistic Simulations24:44 The Impact of AI on Cybersecurity29:31 Future of Cybersecurity and Emerging Technologies36:56 Overview of OODA and DevSec Ventures----------------------------------------------------------------------To learn more about Matthew visit https://www.devost.net/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com