Resilient Cyber
Resilient Cyber brings listeners discussions from a variety of Cybersecurity and Information Technology (IT) Subject Matter Experts (SME) across the Public and Private domains from a variety of industries. As we watch the increased digitalization of our society, striving for a secure and resilient ecosystem is paramount.
Episodes
215 episodes
Building an AI AppSec Engineer
JJ of Gecko Security and former Disney and Costco CISO Ryan Knisley on why AppSec needs an AI security engineer, not another scanner.DescriptionAppSec has been stuck for year...
Why Finding Vulnerabilities Was Never the Hard Part
Every headline wants you to believe AI has rewritten the rules of cybersecurity. Eric Doerr, the Chief Product Officer at
Rain Versus Flood, Making Sense of the 2026 CVE Surge
CVEs are on pace to hit nearly 70,000 in 2026, but Jerry Gamblin explains why the actual exploitable risk is staying surprisingly flat.DescriptionJerry Gamblin runs RogoLabs and built CVE.ICU, and he co-authored the FIRST m...
You Don't Need A Frontier Model to Find Zero Days
Niels Provos on why you don't need a frontier model to find zero days, why the Vulnpocalypse is overstated, and how security invariants change the game.DescriptionNiels Provos has spent twenty-five years in security, from w...
AI Industrialized the Vuln Lifecycle and Broke the System of Record
VulnCheck's Patrick Garrity on the NVD collapse, the first real AI disclosure wave, and why remediation, not finding bugs, is the bottleneck.DescriptionVulnerability management spent years as the chore everyone dreaded, and...
AI Is Winning the Cyber Arms Race
For twenty years the security playbook started in the same place, find a vulnerability, prioritize it, and patch it. Doug Merritt, CEO of Aviatrix and former CEO of Splunk, thinks that playbook is quietly breaking, and his explanation has nothi...
Securing the Agentic SDLC
In this episode of Resilient Cyber, I sit down with Katie Norton, Research Manager for DevSecOps and Software Supply Chain Security at IDC, to unpack what application security looks like as AI moves from copilot to autonomous teammate across th...
The Agentic GRC Revolution
In this episode, we sat down with Richa Gual, CEO of Complyance, the AI-first enterprise GRC platform that recently raised a $20M Series A led by GV (Google Ventures), to dig into how legacy GRC is fina...
Identity as Infrastructure in the Agentic Era
In this episode of Resilient Cyber, I sat down with Karl McGuinness — author of Control Plane and one of the sharpest voices working on identity in the agentic era — to unpack what most of the industry is still getting wrong about IAM ...
Why AI Security Feels So Fragile
AI security feels fragile right now — and in this episode, Ron Bennatan, VP of Strategy, AI and Database Security at Varonis and founder of Guardium, JSonar, and AllTrue.ai, explains exactly why.Ron unpacks what "fragile" actually means ...
You Can't Trust What You Can't Verify — The Case for AI Model Identity
Most organizations deploying AI today cannot answer a deceptively simple question. Which model is actually running in their environment?It is not a hypothetical concern. Model substitution, supply chain compromise, adversarial fin...
Securing the Vibe: Tanya Janca on AI-Generated Code, Mythos, and the New AppSec Reality
A new episode of the Resilient Cyber Show just dropped, and this one is a conversation I’ve been looking forward to for a long time.I sat down with Tanya Janca, better known to most of the AppSec world as SheHacksPurple. Ta...
AI and the Future of Secure Coding
What happens to application security when AI agents start writing most of the code?Jack Cable knows both sides of this problem better than almost anyone. As a Senior Technical Advisor at CISA, he helped architect the Secure by Design ini...
Your AI Agent Is Running As Root
When you fire up Claude Code, Cursor, or any AI coding agent, it launches with your full system permissions, your SSH keys, cloud credentials, browser passwords, every file on your machine. Most developers never think twice about it.Luke...
The 350 Million Problem: Securing the Businesses No One Else Will
Show DescriptionJoe Levy is the CEO of Sophos and a 30-year cybersecurity veteran who has held technical and executive roles across some of the industry's most recognizable brands. In this episode, we dig into a stat that should r...
Before the Breach: The Zero Day Clock and the Race Against Exploitation
Show DescriptionThe Zero Day Clock is ticking — and the numbers should make every security leader uncomfortable. In this episode, I sit down with Sergej Epp, CISO at a leading security firm, who built the Zero Day Clock after ...
Securing the Future with Autonomous Defense
Summary:In this conversation, Chris Hughes and Stanislav Fort discuss the transformative role of AI in cybersecurity, particularly in vulnerability management. Stanislav shares insights on how AI can discover zero-day vulnerabilities in...
Selling Cyber: Deal Flow and Market Signals with Momentum Cyber
In this episode of Resilient Cyber I catch up with Momentum Cyber's Founder & CEO,
Exploiting AI IDEs
In this episode of Resilient Cyber, we will be sat down with Ari Marzuk, the researcher who published "
AI is Ready for Production - Security, Risk and Compliance Isn't
In this episode of Resilient Cyber, I sit down with VP, Product Marketing and Strategy for Protegrity, James Rice. We will be discussing how traditional approaches to security aren't solving the AI security challenge, the importance...
Hacking the OpenClaw Hype
In this episode of Resilient Cyber, I sit down with Jamieson O'Reilly, Security Researcher and Founder @
Switching to Cyber - Navigating Cybersecurity Careers
In this episode of Resilient Cyber, I sit down with longtime Cyber practitioners and leaders Helen Patton and <...
Resilient Cyber w/ Anshuman Bhartiya - AI-native AppSec
In this episode of Resilient Cyber I sit down with Anshuman Bhartiya to discuss AI-native AppSec. ...