The ITSM Practice: Elevating ITSM and IT Security Knowledge
by Luigi Ferri
Is this your podcast?Insights from recent episode analysis
Audience Interest
Podcast Focus
Publishing Consistency
Platform Reach
Insights are generated by CastFox AI using publicly available data, episode content, and proprietary models.
Most discussed topics
Brands & references
Total monthly reach
Estimated from 2 chart positions in 2 markets.
By chart position
- 🇵🇹PT · Technology#105500 to 3K
- 🇧🇪BE · Technology#110500 to 3K
- Per-Episode Audience
Est. listeners per new episode within ~30 days
300 to 1.8K🎙 Daily cadence·142 episodes·Last published 2d ago - Monthly Reach
Unique listeners across all episodes (30 days)
1K to 6K🇵🇹50%🇧🇪50% - Active Followers
Loyal subscribers who consistently listen
400 to 2.4K
Market Insights
Platform Distribution
Reach across major podcast platforms, updated hourly
Total Followers
—
Total Plays
—
Total Reviews
—
* Data sourced directly from platform APIs and aggregated hourly across all major podcast directories.
On the show
From 17 epsHost
Recent guests
No guests detected in recent episodes.
Recent episodes
PSD3: Governance Before Technology
Jun 23, 2026
Unknown duration
AI Security Strategy: Why Midmarket Organizations Get It Wrong
Jun 16, 2026
Unknown duration
What DoDAF Can Teach Leaders About Architecture and Complexity
Jun 9, 2026
11m 03s
Identity Is the New Perimeter
Jun 2, 2026
10m 20s
FINMA and ITIL 4: Building Resilient Swiss Banks
May 26, 2026
9m 41s
Social Links & Contact
Official channels & resources
Official Website
Login
RSS Feed
Login
| Date | Episode | Topics | Guests | Brands | Places | Keywords | Sponsor | Length | |
|---|---|---|---|---|---|---|---|---|---|
| 6/23/26 |  PSD3: Governance Before Technology | In this episode, Luigi Ferri explores why organisations often take the wrong first step when preparing for PSD3 compliance. Rather than rushing into new tools, fraud platforms, or transformation programmes, PSD3 readiness begins with observation. Learn how incident response, governance, decision authority, and organisational behaviour under uncertainty reveal the real gaps that PSD3 exposes. Discover why governance maturity and clear accountability are critical for building a resilient PSD3 strategy.In this episode, we answer to:Why is the first step towards PSD3 compliance so often the wrong one?How can incident response reveal governance gaps and decision-making weaknesses?What should organisations stabilise before launching PSD3 programmes, fraud initiatives, or policy transformations?Resources Mentioned in this Episode: Deloitte website, article "Shedding light on PSD3/PSR", link https://www.deloitte.com/lu/en/Industries/banking-capital-markets/perspectives/shedding-light-on-psd3-psr.html Schoenherr website, article "The EU's new Payments Services Package", link https://www.schoenherr.eu/content/the-eu-s-new-payments-services-package European Payments Council website, article "What do the PSD3 and PSR mean for the payments sector?", link https://www.europeanpaymentscouncil.eu/news-insights/insight/what-do-psd3-and-psr-mean-payments-sector MK Fintech Partners website, article "PSD3 is Here! How is it Different From Previous Directives?", link https://mkfintechpartners.com/2023/07/11/difference-psd1-psd2-and-psd3/ Finexer website, article "PSD3: All you need to know in 2025", link https://blog.finexer.com/psd3-all-you-need-to-know-in-2025/ Connect with me on:LinkedIn: https://www.linkedin.com/in/theitsmpractice/Website: http://www.theitsmpractice.comAnd if you want more tips and guidance, follow me on LinkedIn. I am sharing daily posts regarding Enterprise Service Management, IT Service Management, and IT Security.Credits:Sound engineering by Alan Southgate - http://alsouthgate.co.uk/Graphics by Yulia Kolodyazhnaya | — | ||||||
| 6/16/26 | AI Security Strategy: Why Midmarket Organizations Get It Wrong | Why do most AI security strategies fail in the midmarket? In this episode of The ITSM Practice Podcast, we explore why successful AI security is not about buying more AI tools but about building the right foundation first. Learn how identity management, telemetry quality, governance, and operational maturity determine AI security success. We discuss AI readiness, MSSP evolution, cybersecurity automation, SOC transformation, and practical AI security roadmaps for midmarket organizations. Discover why AI augments security teams rather than replacing them and how organizations can achieve sustainable cyber resilience through proper sequencing.In this Episode, we answer:Why do most AI security initiatives fail in midmarket organizations despite significant investments in AI-powered cybersecurity tools?How do identity management, telemetry quality, and governance impact AI security readiness and operational resilience?What should MSPs and MSSPs prioritize over the next 2–3 years to build effective AI security strategies and support midmarket clients?Resources Mentioned in this Episode:SailPoint website, ebook "Identity as the foundation: The modern zero trust blueprint for 2026", link https://www.sailpoint.com/identity-library/identity-security-essential-to-zero-trust-strategy Xage Security website, article "Zero Trust: A Proven Solution for the New AI Security Challenge", link https://xage.com/blog/zero-trust-proven-solution-for-the-new-ai-security-challenge/Checkpoint website, article "How AI Phishing Attacks Became A Threat in 2025", link https://www.checkpoint.com/cyber-hub/threat-prevention/what-is-phishing/ai-phishing-attacks/ EC-Council website, article "The Rising Threat of AI-Powered Phishing: What it is, How to Detect it, and How to Prevent it", link https://www.eccu.edu/blog/ai-powered-phishing-detection-prevention/ Your Alaska Link TV YouTube Channel, video "Hackers use AI to boost cyber scams and attacks", link https://www.youtube.com/watch?v=hRJqRFj0kRQMicrosoft Mechanics YouTube Channel, video "AI with Zero Trust Security", link https://www.youtube.com/watch?v=OnlN-2Q5QsE Connect with me on:LinkedIn: https://www.linkedin.com/in/theitsmpractice/Website: http://www.theitsmpractice.comAnd if you want more tips and guidance, follow me on LinkedIn. I am sharing daily posts regarding Enterprise Service Management, IT Service Management, and IT Security.Credits:Sound engineering by Alan Southgate - http://alsouthgate.co.uk/Graphics by Yulia Kolodyazhnaya | — | ||||||
| 6/9/26 | What DoDAF Can Teach Leaders About Architecture and Complexity✨ | architecturecomplexity+4 | — | Department of Defense Architecture Framework (DoDAF)US DoDAF Official Documentation+2 | — | DoDAFarchitecture+6 | — | 11m 03s | |
| 6/2/26 | Identity Is the New Perimeter✨ | cybersecurityidentity governance+4 | — | MGMSnowflake+3 | — | identity governanceAI governance+5 | — | 10m 20s | |
| 5/26/26 | FINMA and ITIL 4: Building Resilient Swiss Banks✨ | operational resilienceITIL 4+4 | — | FINMAKPMG+3 | Switzerland | FINMAITIL 4+5 | — | 9m 41s | |
| 5/19/26 | Broken Transmission: Why Fintech Strategy Fails✨ | fintech strategyAgile delivery+5 | — | Project Management InstituteUniversity of Salford - Manchester+6 | — | fintechAgile+5 | — | 6m 19s | |
| 5/12/26 | FINOS vs ISO 42001: What to Choose✨ | AI governanceFintech+3 | — | FINOSISO 42001+1 | — | FINOSISO 42001+4 | — | 8m 45s | |
| 5/5/26 | Who Owns Cloud Security?✨ | cloud securityshared responsibility model+3 | — | ISO/IEC 27017Vanta+3 | — | cloud securityISO/IEC 27017+3 | — | 9m 15s | |
| 4/28/26 | CISO Strategy: Where Product Security Fails at Scale✨ | CISO strategyproduct security+3 | — | AdviseraIkarus+2 | — | CISOsecurity risk+4 | — | 7m 56s | |
| 4/21/26 | ITIL 5 Exposed: Accountability Without Authority✨ | ITIL 5Accountability+4 | — | PeopleCertLearning Tree International+4 | — | ITIL 5Service Owners+5 | — | 8m 10s | |
Want analysis for the episodes below?Free for Pro Submit a request, we'll have your selected episodes analyzed within an hour. Free, at no cost to you, for Pro users. | |||||||||
| 4/14/26 | PSD3 Explained: Payments Security & Fraud✨ | payments securityfraud prevention+4 | — | StripeTrustbuilder+3 | — | PSD3payments security+5 | — | 8m 58s | |
| 4/7/26 | AI Governance Illusion: Hidden Risks & Accountability in ITSM✨ | AI governanceITSM+4 | — | NISTEuropean Commission+3 | — | AI governanceITSM+5 | — | 9m 39s | |
| 3/31/26 | DevSecOps: Responsibility Without Authority✨ | DevSecOpssecurity governance+4 | — | BlackduckJit+2 | — | DevSecOpssecurity responsibility+4 | — | 6m 45s | |
| 3/24/26 | ISO 31000 vs MoR: Closing the Risk Management Gap✨ | Enterprise Risk ManagementISO 31000+4 | — | ISO 31000MoR+5 | — | Enterprise Risk ManagementISO 31000+5 | — | 7m 35s | |
| 3/17/26 | ITIL 5: Stop Explaining Failures. Start Owning System Decisions✨ | ITIL 5accountability+4 | — | ITIL Training AcademyPeopleCert+3 | — | ITIL 5leadership+5 | — | 6m 57s | |
| 3/10/26 | ITIL 5, SCF and the Compliance Illusion✨ | security frameworkscompliance culture+4 | — | ISONIST+4 | — | security frameworkscompliance+7 | — | 8m 49s | |
| 3/3/26 | ITIL 5 for CIOs: Governing AI-Driven Digital Systems at Scale✨ | ITIL 5AI-driven digital systems+4 | — | ITIL Training AcademyServiceNow+6 | — | ITIL 5AI+6 | — | 9m 07s | |
| 2/24/26 | Why IT Maturity Is the Hidden Risk in IT Carve-Outs✨ | IT maturityIT carve-outs+4 | — | AvenDATAUmbrex+4 | — | IT maturityIT carve-outs+5 | — | 8m 28s | |
| 2/17/26 | Why ITIL 4 Is Critical for HITRUST Success✨ | HITRUST certificationITIL 4+4 | — | HITRUST AllianceSchneider Downs+1 | — | HITRUSTITIL 4+4 | — | 8m 02s | |
| 2/10/26 | FISMA in the Cloud: What Midsize Security Teams Need to Know | In this episode of The ITSM Practice Podcast, we explore what FISMA really means for midsize, cloud-native security teams. Using real-world scenarios, we explain why FISMA was built for federal systems, where it clashes with cloud responsibility models, and how a risk-based adoption strengthens governance without falling into compliance theatre.In this episode, we answer to:Do FISMA controls apply to cloud-native and SaaS-based environments?How can midsize companies use FISMA without full federal-style compliance?Why is risk-based adoption more effective than checklist compliance in the cloud?Resources Mentioned in this Episode: CISA website, Federal Information Security Modernization Act page, link https://www.cisa.gov/topics/cyber-threats-and-advisories/federal-information-security-modernization-actNIST website, NIST Special Publication 800-53, link https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r5.pdfSecureframe website, article "FISMA Compliance: What It Is and How to Achieve It", link https://secureframe.com/hub/nist-800-53/fisma-complianceSecurity Compass website, article "ISO 27001 vs NIST 800-53", link https://www.securitycompass.com/blog/iso-27001-vs-nist-800-53/Connect with me on:LinkedIn: https://www.linkedin.com/in/theitsmpractice/Website: http://www.theitsmpractice.comAnd if you want more tips and guidance, follow me on LinkedIn. I am sharing daily posts regarding Enterprise Service Management, IT Service Management, and IT Security.Credits:Sound engineering by Alan Southgate - http://alsouthgate.co.uk/Graphics by Yulia Kolodyazhnaya | — | ||||||
| 2/3/26 | ISO 27001 & ISO 42001: Governing AI Risk | As AI expands the security perimeter, CISOs face new questions about data, trust, and accountability. This episode explains how combining ISO/IEC 27001 and ISO/IEC 42001 creates a unified governance engine for information security and AI governance. Learn how mid-size organizations can turn AI risk, transparency, and compliance into a strategic advantage.In this episode, we answer to:How does AI change the traditional security perimeter defined by ISO 27001?Why is ISO 42001 essential to govern AI risk, fairness, and explainability?How can CISOs clearly explain to customers where AI uses and sends their data?Resources Mentioned in this Episode:De.iterate website, article "ISO 42001 Certification: Benefits, Challenges, and Real-World Applications", link https://deiterate.com/2025/02/26/iso-42001-certification-benefits-challenges-and-real-world-applications/Cherry Bekaert website, article "ISO 42001 vs. ISO 27001: Data Protection for Scaling Your Professional Services Firm", link https://www.cbh.com/insights/articles/data-protection-for-professional-services-firms/Mitratech website, article "ISO 42001 & AI Risk: Strengthen Third-Party Compliance", link https://mitratech.com/resource-hub/blog/iso-42001-ai-risk-strengthen-third-party-compliance/ Walter Haydock blog, article "How we implement ISO 42001 control A.10.3 and help clients do the same to manage AI vendor risk", link https://blog.stackaware.com/p/iso-42001-annex-a-control-10-3-supplier-risk-management Connect with me on:LinkedIn: https://www.linkedin.com/in/theitsmpractice/Website: http://www.theitsmpractice.comAnd if you want more tips and guidance, follow me on LinkedIn. I am sharing daily posts regarding Enterprise Service Management, IT Service Management, and IT Security.Credits:Sound engineering by Alan Southgate - http://alsouthgate.co.uk/Graphics by Yulia Kolodyazhnaya | — | ||||||
| 1/27/26 | Payment Security by Design with PCI P2PE | In this episode of The ITSM Practice Podcast, Luigi Ferri explains why PCI P2PE is not just encryption but a security-by-design discipline. Learn how point-to-point encryption eliminates clear-text card data, reduces breach impact, simplifies PCI compliance, and integrates with ITIL governance to protect trust from the first millisecond of payment.In this episode, we answer to:What is PCI P2PE and why is it critical for modern payment security and PCI DSS compliance?How does P2PE reduce breach exposure and change merchant compliance obligations?Why are governance, the PIM, and ITIL practices essential to keeping P2PE effective over time?Resources Mentioned in this Episode: PCI website, white paper "P2PE At a Glance", link https://www.pcisecuritystandards.org/documents/P2PE_At_a_Glance_v3.pdfPCI website, white paper "Point-to-Point Encryption", link https://www.pci-dss.gr/media/1934/p2pe_hybrid_v111.pdfPayway website, article "Protect Cardholder Data with P2PE", link https://www.payway.com/blog/how-to-keep-yourself-out-of-the-news-with-p2pe Bluefin website, article "What is Point-to-Point Encryption (P2PE)?", link https://www.bluefin.com/payment-security/pci-p2pe-faq/Ingenico website, article "3 Things to Know About P2PE v3.0", link https://ingenico.com/de/node/818Connect with me on:LinkedIn: https://www.linkedin.com/in/theitsmpractice/Website: http://www.theitsmpractice.comAnd if you want more tips and guidance, follow me on LinkedIn. I am sharing daily posts regarding Enterprise Service Management, IT Service Management, and IT Security.Credits:Sound engineering by Alan Southgate - http://alsouthgate.co.uk/Graphics by Yulia Kolodyazhnaya | — | ||||||
| 1/20/26 | ITIL v3 as the Backbone of eSIM Security | In this episode of The ITSM Practice Podcast, Luigi Ferri explains how ITIL v3 processes enable compliance with GSMA SAS-SM for secure eSIM provisioning. Discover how governance, service design, change, and continual improvement turn security from theory into an auditable, operational discipline in modern telecom environments.In this episode, we answer to:How can ITIL v3 processes support GSMA SAS-SM certification for eSIM management?What operational evidence is required to prove secure remote SIM provisioning?How do governance and continual improvement help maintain long-term SAS-SM compliance?Resources Mentioned in this Episode:GSMA website, article "Security Accreditation Scheme (SAS)", link https://www.gsma.com/solutions-and-impact/industry-services/assurance-services/security-accreditation-scheme-sas/GSMA website, article "eSIM Compliance", link https://www.gsma.com/solutions-and-impact/technologies/esim/compliance/IT Process Maps website, article "IT Security Management", link https://wiki.en.it-processmaps.com/index.php/IT_Security_Management?Connect with me on:LinkedIn: https://www.linkedin.com/in/theitsmpractice/Website: http://www.theitsmpractice.comAnd if you want more tips and guidance, follow me on LinkedIn. I am sharing daily posts regarding Enterprise Service Management, IT Service Management, and IT Security.Credits:Sound engineering by Alan Southgate - http://alsouthgate.co.uk/Graphics by Yulia Kolodyazhnaya | — | ||||||
| 1/13/26 | Why Mature ITSM Programs Fail? | Why do mature ITSM programs still fail? This episode explores the hidden risks behind ITSM stagnation, loss of executive sponsorship, outdated KPIs, rigid processes, and misaligned culture. Learn how to sustain ITSM maturity through continual improvement, business-aligned metrics, leadership engagement, and evolution in the age of automation and AI.In this episode, we answer to:Why do mature ITSM programs fail despite successful ITIL adoption?How does loss of executive sponsorship undermine IT Service Management sustainability?How can ITSM processes and KPIs evolve to support automation, AI, and business agility?Resources Mentioned in this Episode:Keith D. Sutherland, Lawrence J. "Butch" Sheets, book "A Practical Guide to Service Management: Insights from industry experts for uncovering, implementing, and improving service management practices", link https://www.amazon.de/-/en/Keith-D-Sutherland/dp/1804612502TOPdesk website, article "5 ITSM implementation pitfalls to avoid", link https://www.topdesk.com/en/blog/itsm-implementation-pitfalls/ Sunrise website, article "Why ITSM implementations often fail?", link https://www.sunrisesoftware.com/blog/why-itsm-implementations-often-fail ITSM Tools website, article "10 Common ITSM Mistakes and How to Avoid Them", link https://itsm.tools/10-common-itsm-mistakes-and-how-to-avoid-them/ Connect with me on:LinkedIn: https://www.linkedin.com/in/theitsmpractice/Website: http://www.theitsmpractice.comAnd if you want more tips and guidance, follow me on LinkedIn. I am sharing daily posts regarding Enterprise Service Management, IT Service Management, and IT Security.Credits:Sound engineering by Alan Southgate - http://alsouthgate.co.uk/Graphics by Yulia Kolodyazhnaya | — | ||||||
| 1/6/26 | From Readiness to Action: Building Your AI Roadmap | In this episode of The ITSM Practice Podcast, Luigi Ferri moves from AI theory to execution, explaining how medium-sized organizations can define AI use cases, assess data and infrastructure, build skills, and scale pilot projects. The focus is on creating a practical AI roadmap for IT Service Management with measurable, sustainable outcomes.In this episode, we answer to:How can organizations identify the right AI use cases for IT Service Management?What data, infrastructure, and skills are required to scale AI initiatives successfully?How can IT leaders manage risks while building a realistic AI roadmap?Resources Mentioned in this Episode:How to Assess AI Readiness for Service Delivery, link https://theitsmpractice.gumroad.com/l/HowtoAssessAIReadinessforServiceDeliveryKPMG website, article "AI Governance: Factors for Success", link https://kpmg.com/de/en/home/insights/2025/04/ki-governance-these-are-the-factors-for-success.htmlIBM website, article "What is AI governance?", link https://www.ibm.com/think/topics/ai-governanceDeepchecks website, article "Understanding the AI Maturity Model: Advancing Your Organization’s AI Capabilities", link https://www.deepchecks.com/understanding-the-ai-maturity-model-advancing-your-organizations-ai-capabilities/Connect with me on:LinkedIn: https://www.linkedin.com/in/theitsmpractice/Website: http://www.theitsmpractice.comAnd if you want more tips and guidance, follow me on LinkedIn. I am sharing daily posts regarding Enterprise Service Management, IT Service Management, and IT Security.Credits:Sound engineering by Alan Southgate - http://alsouthgate.co.uk/Graphics by Yulia Kolodyazhnaya | — | ||||||
Showing 25 of 146
Pitch Fit is a Pro feature
See how bookable this show is for guests, which brands already advertise, the per-episode ad value, and the best-fit guest and sponsor profile. The numbers are blurred on the free plan.
How readily this show books outside guests like you.
How proven this show is for host-read sponsorships.
For Guests
ProFor Advertisers
ProUpgrade to Pro to unlock guest cadence, sponsor categories, fit scores, and per-episode ad value for this show.
Chart Positions
2 placements across 2 markets.
Chart Positions
2 placements across 2 markets.