The Business of Cybersecurity

The Business of Cybersecurity

por Neil C. Hughes
NegociosTecnología
Mimecast CISO On Why AI Has Become A Cybersecurity Risk
What happens when the technology designed to make us more productive quietly becomes one of the biggest security risks inside the enterprise? In this episode of The Business of Cybersecurity, I sit down with Leslie Nielsen, CISO at Mimecast, to discuss the growing tension between AI adoption and cybersecurity, and why many organizations may be exposing sensitive information faster than they realize. As businesses race to deploy generative AI, AI agents, and Model Context Protocol integrations, Leslie explains why AI models themselves are becoming valuable targets. When organizations pool large volumes of sensitive data into centralized AI systems, they create what he describes as a corporate brain, one that can quickly become attractive to attackers if the right controls are not in place. We explore the rise of shadow AI, where employees use unsanctioned AI tools to meet deadlines and improve productivity, often without understanding the long-term consequences. Leslie shares why a simple upload of financial data, customer information, or proprietary documents into a public AI platform can create risks that traditional security teams struggle to contain once the information has entered a large language model. The conversation also examines the changing nature of insider threats. From negligent behavior to deliberate misuse of credentials, attackers are increasingly targeting employees directly. Leslie discusses how AI is making it easier for threat actors to identify vulnerable individuals, while growing concerns around job displacement may create new pressures inside organizations. We also discuss why visibility remains one of the biggest cybersecurity challenges facing modern enterprises. As AI changes data flows, communication channels, and user behavior, many organizations are discovering that traditional security controls were never designed for the speed and complexity of today's AI-powered environments. Leslie explains why cybersecurity leaders need to become AI champions rather than blockers, helping businesses adopt AI safely while maintaining visibility, governance, and trust. Looking ahead, Leslie remains optimistic about using AI to strengthen cyber defenses. As attackers embrace AI, defenders are doing the same, creating a new chapter in cybersecurity where automation, intelligence, and human expertise will work together to protect organizations from emerging threats. How is your organization balancing AI innovation with security, and are you confident you can see where your data is really going? Share your thoughts with me.
E36
2 jun 2026
22:46
Orange Cyberdefense On The New FCA Cyber Reporting Rules
What happens when your biggest cybersecurity risk isn't inside your organization at all, but somewhere deep within your supply chain? In this episode of The Business of Cybersecurity, I sit down with Ben Gibbins, Head of Financial Services and Insurance at Orange Cyberdefense UK, to discuss the Financial Conduct Authority's new cyber incident and third-party reporting requirements and what they mean for financial institutions facing a March 2027 compliance deadline. The conversation begins with a striking statistic. More than 40% of cyber incidents reported to the FCA involved at least one third party, highlighting how interconnected digital ecosystems have created new points of vulnerability across financial services. Ben explains why attackers are increasingly targeting suppliers, service providers, and technology partners to gain access to larger organizations, and why regulators are becoming increasingly concerned about concentration risk across critical infrastructure. We also tackle one of the biggest misconceptions surrounding the new FCA requirements. Many organizations assume that compliance with the EU's Digital Operational Resilience Act (DORA) automatically prepares them for the UK's reporting obligations. Ben explains why that assumption could leave firms exposed, outlining the differences between the two frameworks and the additional work many organizations still need to complete. Our discussion explores operational resilience, supply chain visibility, incident reporting, and the practical realities of responding to cyber incidents while simultaneously meeting regulatory expectations. Ben shares insights on why organizations need a far better understanding of third-, fourth-, and even fifth-party dependencies, and why traditional approaches to supplier risk management are struggling to keep pace with today's interconnected business environment. We also examine how collaboration between regulators, cybersecurity providers, threat intelligence specialists, and financial institutions could help strengthen collective defenses against increasingly sophisticated threats. From cyber extortion campaigns to supply chain attacks affecting hundreds of organizations simultaneously, the discussion highlights why resilience has become as important as prevention. If your organization assumes compliance is already covered, this conversation may prompt a second look. Are businesses truly prepared for the next phase of cyber resilience reporting, or are many still underestimating the risks hidden within their supply chains? Share your thoughts with me.
E35
31 may 2026
40:07
Deepfakes, AI Agents, and the Collapse of Traditional Identity Security
How do you defend trust in a world where AI can imitate voices, generate highly convincing phishing attacks, and automate fraud at a scale humans can barely keep up with? In this episode of Business of Cybersecurity, I sit down with Mary Ann Miller from Prove to discuss how AI is reshaping fraud, identity, and cybersecurity in ways many organizations are still struggling to understand fully. With decades of experience across banking, fintech, and fraud prevention, Mary Ann brings a unique perspective on the growing collision between customer experience, digital identity, and AI-driven attacks. We explore how cybercriminals are using contextual AI-powered phishing campaigns that feel increasingly believable, why account takeover attacks are evolving into AI-assisted operations, and what happens when human intuition is no longer enough to identify deepfakes and manipulated content online. Mary Ann explains why the traditional idea of identity verification at login is beginning to break down, especially as one-time passwords and legacy authentication methods become easier to exploit. The conversation also examines the rise of “continuous identity,” in which organizations must continually evaluate trust signals across the customer journey rather than relying on a single authentication event. Mary Ann shares why many organizations are investing heavily in AI innovation while simultaneously lacking the controls needed to defend themselves against AI-driven fraud. We also discuss how non-human identities, AI agents, and automated interactions are introducing new risks that many businesses are still unprepared for. There is also a fascinating discussion around how AI has quietly powered fraud detection systems for decades, from early neural networks monitoring payment anomalies to today’s far more advanced machine learning systems. But as organizations race to introduce AI-powered customer experiences, Mary Ann warns that customer trust and adoption cannot be taken for granted. She shares the example of Walmart reportedly seeing a major drop in conversions during an AI-driven commerce experiment, highlighting how businesses are still learning where AI genuinely improves experiences and where it creates friction. Mary Ann also offers practical advice for boards and security leaders on how to proactively test their defenses through fraud red-team exercises, why organizations need to recognize AI-generated attack patterns earlier, and how businesses can rethink identity in a world where both humans and machines participate in digital interactions. If you care about the future of trust, authentication, fraud prevention, and cybersecurity in the AI era, this conversation offers a valuable look at the challenges already unfolding behind the scenes.
E34
27 may 2026
26:53
When Identity Becomes The Front Line Of Cybersecurity
What happens when the biggest cybersecurity weakness inside your organization isn’t your infrastructure, but the people using it every day? In this episode of Business of Cybersecurity, I speak with David Cottingham, president of rf IDEAS, about why identity has become one of the most targeted attack surfaces in modern business. From phishing attacks powered by AI to the growing risks tied to compromised credentials, David explains why traditional password habits continue to expose organizations across healthcare, manufacturing, finance, and enterprise environments. Our conversation looks at the uncomfortable reality that while businesses have spent years hardening infrastructure, attackers have shifted their attention toward human behavior. David shares why fully passwordless environments may still be out of reach for many organizations, but why the move toward stronger authentication methods, secure second factors, mobile credentials, passkeys, and biometric workflows is already reshaping how businesses think about trust and access. We also discuss the growing tension between stronger security and employee productivity. From clinicians accessing patient records in hospitals to workers authenticating on factory floors, David explains why security tools only succeed when they fit naturally into real-world workflows. The episode also explores the convergence of physical and logical security, the dangers of outdated proximity cards, and how layered security strategies still matter in an age shaped by AI-driven threats. Along the way, David shares what he’s hearing from organizations at industry events, why many leaders feel overwhelmed by identity decisions, and how companies can future-proof their authentication strategies without disrupting existing systems overnight. If identity is now the new perimeter, how should organizations rethink trust before the next breach forces the conversation?
E33
20 may 2026
22:40
Index Engines On Why Cyber Resilience Has Become A Boardroom Issue
What happens when ransomware stops being treated as a cybersecurity problem and starts being viewed as a direct threat to business survival? In this episode of Business of Cybersecurity, I sat down with Jim McGann, CMO at Index Engines, to unpack why 2026 is shaping up to be one of the most dangerous years yet for organizations facing increasingly sophisticated cyberattacks. Jim shared how ransomware gangs are evolving into highly organized operations powered by AI, automation, and ransomware-as-a-service models that dramatically lower the barrier to entry for attackers. From healthcare systems and transportation networks to retailers and city infrastructure, no sector appears off limits anymore. We explored why traditional disaster recovery strategies built for floods or hardware failures are no longer enough when attackers actively corrupt backups, manipulate databases, and target recovery systems themselves. A major focus of our conversation centered on the idea of “Return on Risk” or ROR, a shift away from viewing cybersecurity purely through an ROI lens. Jim explained why boards and executives need to stop treating ransomware as an isolated IT issue and instead recognize it as a business continuity crisis capable of damaging reputation, customer trust, revenue, and regulatory standing in a matter of hours. He shared real-world stories of organizations discovering their backups had been deleted, deepfake scams impersonating executives, and attackers infiltrating recovery planning meetings themselves. We also discussed how Index Engines’ CyberSense platform approaches cyber resilience differently by validating the integrity of recovery data and helping organizations identify clean copies of data with a 99.99% detection SLA for ransomware corruption. Jim explained why assuming compromise has become essential and why organizations must rehearse recovery strategies long before disaster strikes. This conversation goes far beyond technical defenses. It examines trust, operational resilience, leadership accountability, and what happens when businesses fail to answer one simple but uncomfortable question: “How quickly can we recover if everything goes down tomorrow?” Are organizations finally starting to accept that prevention alone is no longer enough, or are too many still hoping they will somehow avoid becoming the next headline? Useful Links Connect with Jim McGann Learn more about Index Engines Please check the partners of the Tech Tech Talks Network Learn more about the NordLayer Browser Visit Denodo.com
E32
17 may 2026
30:04
The Internet Will Never Be This Secure Again, IEEE's Kevin Curran on AI and Cybersecurity
What happens when one of the world’s most experienced cybersecurity educators looks at the future of AI and quietly admits that the internet may never be this secure again? In this episode of Business of Cybersecurity, I sat down with IEEE member and cybersecurity professor Kevin Curran for a conversation that moved far beyond theory and into the real-world risks, opportunities, and uncomfortable truths shaping the next era of digital security. Kevin brought a fascinating perspective to the discussion, shaped by nearly three decades teaching computer science and cybersecurity at Ulster University, alongside years working with industry leaders, legal cases, and global media. Together, we explored how cybersecurity evolved from an afterthought into one of the most in-demand career paths in the world. Kevin explained why the rise of online commerce, social media, cloud services, and cryptocurrency completely transformed the threat landscape, creating an environment where cybercrime became financially rewarding and increasingly sophisticated. The conversation also tackled the growing cybersecurity talent gap and why AI is simultaneously creating new risks and new career opportunities. Kevin shared why he believes certifications still matter in cybersecurity, why platforms like TryHackMe are helping democratize access to cyber training, and why younger professionals have an advantage if they become truly AI-native. He also offered a candid look at how AI agents, autonomous workflows, and rapidly evolving models are reshaping both education and enterprise security practices in real time. One of the most thought-provoking moments came when Kevin discussed the emotional side of working in technology during a period of relentless acceleration. From AI burnout to fears around agentic systems and nation-state threats, he spoke openly about the pressure many professionals are feeling as they try to keep pace with constant disruption. Rather than resisting change, Kevin argues that the future belongs to people with strong judgment, domain expertise, and the ability to work alongside AI systems responsibly. We also discussed the balancing act facing business leaders today. Organizations want innovation and productivity gains from AI, but they also need governance, compliance, and protection against entirely new attack vectors like prompt injection, malicious plugins, and compromised AI agents. Kevin shared practical advice for anyone looking to future-proof their career in cybersecurity, particularly around understanding agent architectures, AI workflows, and how trust models are changing inside modern organizations. If you work in cybersecurity, technology leadership, education, or simply want a clearer understanding of where AI and cyber risk are heading next, this episode offers a thoughtful and surprisingly human conversation about a rapidly changing industry. After listening, do you share Kevin’s concerns that today may eventually feel like the safest period of the internet we will ever experience? Please check the partners of the Tech Tech Talks Network Learn more about the NordLayer Browser Visit Denodo.com
E31
11 may 2026
34:32
Commvault On Cyber Recovery Why Disaster Plans Fall Short
What happens when cyber resilience shifts from an IT concern to something that directly impacts revenue, operations, and even national stability? In this episode of The Business of Cybersecurity, I sit down with Mark Molyneux, Field CTO for Northern Europe at Commvault, to break down the UK’s Cyber Security and Resilience Bill and what it really means for organizations trying to stay ahead of increasingly complex threats. At first glance, legislation like this can feel distant, something for compliance teams to worry about later. But as Mark explains, the reality is far more immediate. This bill has been years in the making, shaped by a growing pattern of incidents that have moved beyond isolated IT problems and into events with real economic and societal impact. The conversation quickly shifts from what the bill says to why it matters right now, especially as cyber threats continue to evolve faster than regulation can keep up. One of the most valuable takeaways from our discussion is the distinction between disaster recovery and true cyber recovery. Many organizations believe they are prepared because they have invested heavily in backup systems and failover environments. But as Mark highlights, those assumptions can break down quickly when core systems, identities, or trusted environments are compromised. In those moments, traditional recovery metrics no longer apply, and the focus turns to how quickly a business can return to a clean, operational state. We also explore the risk of treating new regulation as a simple compliance exercise. There is always a temptation to do the minimum required and move on. However, recent real-world incidents have changed the tone of the conversation. Leadership teams are starting to recognize that resilience is about survival, not certification. That shift in mindset is where meaningful progress begins. Mark shares practical guidance for organizations at different stages of their journey. Whether it is selecting a single cybersecurity framework, running realistic tabletop exercises with executive teams, or defining what a minimum viable company actually looks like during a crisis, the emphasis is on taking action now rather than waiting for legislation to dictate the pace. There is also an honest discussion about the limits of regulation. Laws and frameworks will always lag behind the speed of technological change, especially as AI begins to reshape how attacks are launched and executed. That puts the responsibility back on organizations to go further than compliance and build resilience that reflects their real-world risk. This episode is a reminder that cyber resilience is no longer about preventing every possible attack. It is about ensuring the business can continue when something goes wrong. So as new legislation begins to take shape and expectations rise, are you confident your organization could recover quickly from a serious cyber event, or are you still relying on assumptions that have yet to be tested? Please check the partners of the Tech Tech Talks Network Learn more about the NordLayer Browser Visit Denodo.com
E30
3 may 2026
30:58
Why Digital Identity Is Broken And How Ditto Plans To Fix It
What if the real problem with cybersecurity today is not the threats we see, but the way we prove who we are online? In this episode of the Business of Cybersecurity podcast, I sat down with Gonzalo Alonso, CEO of Ditto, to explore why digital identity has quietly become one of the most important and misunderstood challenges in our digital economy. Drawing on his experience at Microsoft, Google, and now Ditto, Gonzalo shares a perspective that challenges long-held assumptions about how identity works, who owns it, and why the current model is starting to break under pressure from AI, regulation, and evolving user expectations. We unpack what is changing across Europe with initiatives like the European Digital Identity Wallet and what that really means in practice for both consumers and businesses. Gonzalo explains how the shift toward user-controlled identity could reshape everything from onboarding and compliance to fraud prevention and cross-border trust. At the same time, he does not shy away from the complexity this creates for organizations that have historically treated identity data as an asset they control. Our conversation also looks at the deeper technical shift from trusting systems to relying on cryptographic proof. Gonzalo brings this to life with real-world examples, including how identity could travel with you across borders, unlock access to services, and even influence financial opportunities. But alongside the opportunity, we also discuss the risks, from device security to identity recovery, and why getting the model right matters just as much as the technology behind it. This episode offers a clear-eyed view of where digital identity is heading, why it matters now, and what leaders need to start thinking about before the rules change around them. So as identity moves from passwords and tokens to something far more personal and portable, are we ready to give control back to the individual, and what does that mean for the businesses built on the old model?
E29
17 abr 2026
35:17
Why Non Human Identities Are The Next Cybersecurity Challenge With Torii CEO Uri Haramati
How prepared are businesses for a world where AI agents are quietly becoming some of the most powerful users inside their systems? In this episode of Business of Cybersecurity, I sit down with Uri Haramati, CEO and co-founder of Torii, to unpack a shift that is happening faster than most organizations can keep up with. AI is no longer sitting on the sidelines as a productivity tool. It is now deeply embedded across platforms like Slack, Google Workspace, and CRM systems, often operating with levels of access that rival or even exceed human users. As Uri explains, that changes the entire security conversation, especially when many of these agents are effectively invisible to traditional identity and governance models. What stood out to me in this conversation is how quickly AI adoption has moved from experimentation to something far more operational. Uri shares insights from Torii’s 2026 SaaS Benchmark Report, which reveals that enterprises added nearly 700 new AI applications in just one year, with 61 percent of all apps operating outside of IT oversight. That creates a growing blind spot, where non-human identities, API tokens, and automated workflows are interacting with sensitive data without clear ownership or lifecycle management. It is a shift that feels familiar, echoing past waves like BYOD, but this time the scale and speed are on another level. We also explore why this is not simply a story about risk. There is a clear business driver behind this surge in AI adoption. Organizations are under pressure to control costs, reduce manual work, and get more value from their software stack. AI is stepping into that role, but it introduces new challenges around usage-based pricing, unexpected spend, and governance models that were designed for a much slower era of IT. Uri makes the case that the real issue is not adopting AI too quickly, but failing to evolve governance at the same pace. By the end of the conversation, one idea really stayed with me. Within the next couple of years, non-human identities could outnumber human ones inside most enterprises. That raises a simple but uncomfortable question. If every actor in your system needs to be treated as an identity, how many do you actually have, and how many are you truly managing? If this is a topic you are grappling with, I highly recommend checking out Torii’s 2026 SaaS Benchmark Report and connecting with Uri to continue the conversation. But for now, I would love to hear your perspective. Are we building the right guardrails for this new era of AI-driven access, or are we already further behind than we think?
E28
1 abr 2026
31:44
AI Security Teams That Work 24/7 With Machine Speed
What happens when AI makes your security teams faster, but leaves the same people carrying all the risk? In this episode of Business of Cybersecurity, I sit down with Shan Kulkarni, CEO of Nullify, to discuss a growing tension that many security leaders are already feeling. AI is helping developers ship code faster than ever. Still, for product security teams, that speed often creates even more alerts, more vulnerabilities to review, and more pressure on already stretched teams. Shan argues that the real issue is not productivity alone. It is accountability. When copilots increase output while ownership remains with the same engineers, the workload does not disappear. It multiplies. We explore why Shan believes the next phase of enterprise AI will be shaped by autonomous AI employees rather than assistant-style tools. He explains how Nullify is designed to onboard, reason, and act like a human security engineer, with access to code bases, ticketing systems, cloud environments, and internal documentation. From validating whether a vulnerability is truly exploitable to assigning fixes and following up with developers, Shan shows how AI workers could replace several disconnected security tools and the extensive manual coordination required. Our conversation also gets into trust, which remains one of the biggest barriers to adoption in high-risk environments. Shan talks openly about the safeguards needed before companies will feel comfortable allowing AI to take action instead of simply making suggestions. We discuss merge-ready patches, exploit confidence scores, the rising threat surface created by AI-generated code, and why authorization, authentication, and business logic flaws may become some of the biggest risks in modern software. It is a timely conversation about what security teams actually need right now: fewer dashboards, fewer false positives, and better ways to manage growing responsibility in a world of machine-speed software delivery. If you are trying to understand where AI fits inside security operations, and whether autonomous systems can truly ease the burden rather than increase it, this episode should give you plenty to think about. What do you think, are we heading toward a future of AI teammates in cybersecurity, and how much responsibility are you willing to hand over?
E27
25 mar 2026
29:38
1 de 4