CISO Series Podcast

All links and images can be found on CISO Series
This week's episode is hosted by David Spark, producer of CISO Series and Andy Ellis, principal of Duha. Joining is our sponsored guest, Danny Jenkins, CEO, ThreatLocker.
In this episode:
Permission creep at machine speed
The pattern we keep calling a mistake
Stop authenticating the human
Vibe coded out of existence
A huge thanks to our sponsor, ThreatLocker

ThreatLocker delivers Zero Trust Network Access and Zero Trust Cloud Access that verifies both user and device before granting access to specific applications. No broad access, nothing exposed, and no reliance on credentials alone. It's a smarter way to control access and reduce risk. Learn more at ThreatLocker.com/CISO.

Our Data Security Policy Is Transparent in That It Doesn't Exist
All links and images can be found on CISO Series
This week's episode is hosted by David Spark, producer of CISO Series, and Mike Johnson, CISO, Rivian. Joining is Mike Melo, CISO, TMX Group.
In this episode:
The weight of old controls
Data you can actually see
68 vendors and counting
Authority you never had to claim
A huge thanks to our sponsor, Vanta

Still stuck on the quarterly audit treadmill? Meet Calm-pliance. Vanta combines compliance, risk, and proof on one Agentic Trust Platform—and continuously monitors your controls, keeping you audit-ready all year round. Find your Calm-pliance here.

All links and images can be found on CISO Series
This week's episode is hosted by David Spark, producer of CISO Series, and Andy Ellis, principal of Duha. Joining them is their sponsored guest Amit Megiddo, CEO and founder, Native.
In this episode:
The CISO you don't need
Misconfigurations aren't a cloud problem
Secure by design means enforcing it
Finding bugs faster isn't the bottleneck
A huge thanks to our sponsor, Native

Native makes secure-by-design inherent to how the cloud operates. It's the control plane for built-in cloud security, unifying and governing native controls, so security intent is defined once and applied consistently across providers. Learn more at native.security.

All links and images can be found on CISO Series
This week's CISO Series Podcast features David Spark, producer of CISO Series, and Andy Ellis, principal of Duha. Joining us is our sponsored guest, Jadee Hanson, CISO, Vanta.
In this episode:
The compliance receipt nobody reads
Who signs off on the AI that wrote the code
The agent that wouldn't stop
The questionnaire that should not exist
A huge thanks to our sponsor, Vanta

Risk and regulation ramping up—and customers expect proof of security just to do business. Vanta's automation brings compliance, risk, and customer trust together on one AI-powered platform. So whether you're prepping for a SOC 2 or running an enterprise GRC program, Vanta keeps you secure—and keeps your deals moving. Learn more at vanta.com/ciso.

All links and images can be found on CISO Series
This week's episode is hosted by David Spark, producer of CISO Series and Mike Johnson, CISO, Rivian. Joining is Jean-Paul Calabio, vp and CISO, Grainger.
In this episode:
Scanning the map isn't securing the territory
CFOs don't fund faith
What your AI inherits
Nobody owns the gap
Thanks to Jonathan Waldrop, CISO, Acoustic for providing our "What's Worse" scenario.
A huge thanks to our sponsor, ThreatLocker

ThreatLocker makes Zero Trust practical. With Default Deny, Ringfencing, and Elevation Control, CISOs get real control that's easy to manage and built to scale. Stop threats before they execute and reduce operational noise without adding complexity. See how simple prevention can be at ThreatLocker.com/CISO.