.png)
The Entropy Podcast
Hosted by Francis Gorman, The Entropy Podcast brings together intelligence community veterans, post-quantum cryptography pioneers, CISOs, business leaders, and frontline practitioners for unfiltered conversations on the threats, complexity, and geopolitics shaping our world.
Past guests include former senior CIA officers, leading cryptographers, digital forensics experts, and security and technology leaders from across financial services, critical infrastructure, and government, voices rarely heard together in one place.
Each episode goes beyond headlines to explore how cyber risk, emerging technology, and geopolitical instability are reshaping the way organisations operate, compete, and defend themselves. Expect candid insight on quantum risk, nation-state threats, AI, espionage, financial crime, business resilience, and the human dimensions of leadership.
Designed for CISOs, board members, founders, technologists, policy thinkers, and the professionally curious, Entropy sits at the intersection of business, technology, and cybersecurity a space for genuine conversations with unique minds, the kind that don’t fit neatly into a press release.
The name Entropy reflects the growing complexity and unpredictability of the systems we depend on, and the discipline required to lead through them.
Disclaimer: The views and opinions expressed on The Entropy Podcast are those of the host and guests in their personal capacity and do not represent the views, positions, or policies of their respective employers, affiliated organisations, or any government body. Guest appearances do not constitute endorsement by the host, and the host’s commentary does not constitute endorsement of guests’ views. Content is provided for informational and educational purposes only and does not constitute professional, legal, financial, or security advice.
Buy Our Swag:
We now have some slick new swag you can purchase through our Esty store.
https://theentropypodcast.etsy.com
Watch and Subscribe
You can also watch full episodes and exclusive content on our YouTube channel:
www.youtube.com/@TheEntropyPodcast
Achievements
The Entropy Podcast delivered strong chart performance throughout 2025, demonstrating consistent international reach and listener engagement.
- Regularly ranked within the Top 20 Technology podcasts in Ireland.
- Achieved a Top 25 placement in the United States Technology charts, holding the position for one week.
- Charted internationally across multiple markets, including Israel, Belgium, and the United Kingdom.
This performance reflects sustained global interest and growing recognition across key podcast markets.
Audio Quality Notice
Some episodes may feature minor variations in audio quality due to remote recording environments and external factors. We continuously strive to deliver the highest possible audio standards and appreciate your understanding.
The Entropy Podcast
Quantum Risk: The Boardroom’s Blind Spot with Brian Couzens
Use Left/Right to seek, Home/End to jump to start or end. Hold shift to jump forward or backward.
This episode re-frames post-quantum cryptography (PQC) from a technical future risk into a present-day governance failure. Brian Couzens argues that quantum computing did not create the cryptographic problem organizations face it exposed it.
For decades, cryptography has operated as an invisible layer of digital infrastructure: unmanaged, unowned, and largely unmapped. Boards assumed it “just worked.” Now, with the reality of Harvest Now, Decrypt Later and long-lived data exposure, that complacency has turned into structural risk.
The core message is clear: this is not an algorithm upgrade problem. It is a fiduciary accountability problem.
Cybersecurity is operational. Cryptography is structural. If the structural foundations are weak, no amount of detection, patching, or response will compensate. And when encrypted data is intercepted today and decrypted in the future, the accountability does not sit with IT it sits with the board.
Waiting for a definitive quantum timeline is not strategy. It is delay. And delay in this context may already constitute negligence.
Takeaways:
- Quantum Didn’t Create the Risk, It Exposed It. The real issue is the unmanaged cryptographic estate: no visibility, no ownership, no lifecycle governance.
- This Is a Governance Failure, Not a Technology Upgrade. PQC is often framed as an IT transformation. Brian argues it is a risk transformation that belongs at board and CRO level.
- Harvest Now, Decrypt Later Is a Present Exposure. If long-lived data is stolen today, future decryption eliminates any chance of remediation. You cannot “patch” broken cryptography after the fact.
- Compliance Is Not Protection. Regulation governs algorithm choice, not lifecycle management, exposure windows, or migration timing. Organizations can be compliant on paper and exposed in reality.
SoundBytes:
- “Quantum didn’t create the problem. It exposed it.”
- “Crypto isn’t operational noise — it’s structural risk.”
- “You can’t patch broken cryptography.”
- “This isn’t a risk. It’s an issue. It’s going to happen.”
- “Compliance is static. Cryptographic risk moves.”
If you want to reach out to Brian you can find his detail over at https://sitg-consulting.com/
