Podcasts about Illumio

The Monday Microsegment for the week of June 22. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. A stolen password list leaves thousands of Fortinet firewalls wide open. Researchers crack Apple's A12 and A13 chips with an exploit no update can fix. And is the freeze on Anthropic's most powerful AI models starting to thaw? Plus, Trevor Dearing explains why organizations can't outsource risk.  Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification 

In this episode, Raghu Nandakumara sits down with Jen Ellis, founder of NextJenSecurity, for a sharp and wide-ranging conversation about why so many of cybersecurity's biggest debates keep missing the point. Just weeks after a major AI breakthrough sent shockwaves through the security industry, Jen brings her trademark candour to the questions everyone is asking: from the real mechanics of ransomware economics to a frank assessment of why the industry's approach to resilience may be fundamentally miscalibrated. The conversation explores what it actually means to defend in an era where vulnerability discovery is accelerating faster than vendors can patch, end users can respond, and policymakers can keep up. Jen argues that while the threat landscape has never been more urgent, the assumptions underpinning most proposed solutions,  from payment bans to AI-powered fixes, are more naive than the industry wants to admit. Raghu and Jen discuss: Why banning ransom payments won't end ransomware — and what a responsible policy glide path might actually look like How ransomware targeting really works, and why the "cut off the revenue stream" argument misreads the threat Why the vendor response piece of the AI vulnerability pipeline is being dangerously overlooked The legacy technology time bomb — and why developed economies are most exposed Why being trusted and being trustworthy are not the same thing What cyber insurance gets right, and why it isn't ready to save us yet Why there are no five-step fixes — and why pretending otherwise is part of the problem How the current moment of political and regulatory urgency may be the industry's best chance to act The episode closes with a dose of honest pragmatism: there are no five-step fixes, nothing is actually simple, and the attack surface is expanding faster than most organizations are moving. But there is real momentum — more policymakers, more collaboration, more urgency than the industry has ever seen. The question is whether we'll use it.   Stay connected with our host Raghu on LinkedIn For more information about Illumio, check out our website at illumio.com

The Monday Microsegment for the week of June 15. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. Patch me if you can. Microsoft releases its biggest Patch Tuesday in years. Meta says "I spy" to spyware firm NSO Group lurking in WhatsApp. And Chinese hackers are putting AI to use.  Plus, Gary Barlet joins us to discuss why AI is exposing a cybersecurity reality government agencies can no longer ignore. Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification 

The Monday Microsegment for the week of June 8. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. The White House puts AI security to the test. Passwords lose their starring role in cyberattacks. And IronWorm wriggles its way into npm packages. Plus, Aishwarya Ramani joins us to break down the takeaways from this year's Verizon DBIR.  Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification  2026 Verizon DBIR: https://www.verizon.com/business/resources/reports/dbir/

In this episode, Raghu Nandakumara sits down with two heavyweights in cybersecurity: Dr. Anton Chuvakin (Google Cloud) and Erik Bloch (Illumio), for a candid, often funny, and occasionally sobering look at why detection and response keeps fighting the same battles it was fighting 20 years ago. From the birth of SIEM and the coining of "EDR," to the short-lived reign of XDR, to today's AI hype cycle, Anton and Erik trace the full arc of the industry's evolution and interrogate why, despite decades of tooling investment, the fundamental outcomes haven't changed.  Alert fatigue, signal-to-noise ratios, and the needle-in-the-haystack problem remain as stubborn as ever –and the slides security teams are building in 2025 look suspiciously like the ones from 2003. Raghu, Anton, and Erik discuss: Why the SOC still largely runs on a 1990s operating model and what it would actually take to change that How compliance pulled SIEM away from detection for over a decade and why that hangover still lingers Why a handful of engineering-led organizations (Google, Netflix, a European bank) have cracked the code while nearly everyone else keeps applying band-aids The pharmaceutical industry analogy that explains why security startups keep building band-aids instead of solving root causes What MDRs are doing right and why enterprise SOCs have no incentive to learn from them Why AI is accelerating tooling but, for some organizations, actually slowing down the harder transformation work How securing AI is repeating the exact same mistakes made in the early days of cloud Stay connected with our host Raghu on LinkedIn For more information about Illumio, check out our website at illumio.com

The Monday Microsegment for the week of June 1. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. Iran's MuddyWater group steps up espionage efforts — without making a splash A botnet built to hunt software developers has been taken offline. And nearly six million cruise ship passengers' data just went overboard. Plus, Aishwarya Ramani joins us to break down the takeaways from this year's Verizon DBIR.  Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification  2026 Verizon DBIR: https://www.verizon.com/business/resources/reports/dbir/

The Monday Microsegment for the week of May 25. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. One compromised dev tool, 3800 stolen GitHub repos. Mythos is finding software bugs faster than humans can patch them. And the White House shelves a planned executive order on frontier AI models. Plus, hear what Christer Swartz declares as May's boo and bravo! Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification  2026 Verizon DBIR: https://www.verizon.com/business/resources/reports/dbir/

In this episode, Raghu Nandakumara sits down with Andrew Rubin, Founder & CEO of Illumio, for a candid conversation about the next phase of AI-driven cybersecurity risk. Just weeks after a major AI breakthrough sparked shockwaves across the security industry, Andrew shares his immediate reaction — from the sobering implications of machine-speed vulnerability discovery to a frank assessment of why the cybersecurity industry's fundamental model may already be broken. The conversation explores what actually changes in an era where vulnerabilities could be discovered and exploited faster than any human-driven operation could manage. Andrew argues that while segmentation as a concept is decades old, its role as a critical backstop has never been more urgent. If attackers begin operating at machine speed, defenders must rethink not just their tools, but their entire operating model — from how they assess risk to how quickly they can respond. Raghu and Andrew discuss: Why the cybersecurity industry has spent more every year while outcomes have gotten worse How AI creates an asymmetric threat unlike anything defenders have faced before Why patching alone won't solve the problem — and the COVID vaccine analogy that explains why The shift from prevention to resilience as the new security north star What the SolarWinds story reveals about how organizations miscalculate tail risk Why segmentation becomes one of the few reliable backstops in a model-driven world How the era of 12-month RFPs and POCs may be coming to a swift and necessary end Stay Connected with our host, Raghu on LinkedIn: https://www.linkedin.com/in/raghunandakumara/ For more information about Illumio, check out our website at illumio.com    Resources Mentioned: Hard Truths in Cybersecurity: Fear, Liability, and the Industry's Biggest Lies | RSAC 2026 Panel:  https://www.youtube.com/watch?v=88XjfZBYIw0

The Monday Microsegment for the week of May 18. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. Schools get their data back — but on what terms? Google catches the first AI-built cyber exploit in the wild. And lawmakers press Homeland Security to get ready for AI attacks — and fast. And Trevor Dearing joins us on Ask the Expert.  Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification 

The Monday Microsegment for the week of May 11. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. School's out, but not for summer. Hackers shut down finals week for thousands of universities.   An AI model found the most valuable target on a breached network. No one asked it to. A nine-year-old Linux flaw now has a public exploit — and no patch. And Erik Bloch joins us on Ask the Expert.  Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification 

In this episode, Raghu Nandakumara sits down with Neil Robinson for a candid look at how one of the industry's top security leaders is thinking about the next phase of AI-driven cybersecurity risk. Just weeks after a major AI breakthrough sparked shockwaves across the security industry, Neil shares his immediate reaction — from genuine excitement about the technology's progress to the sobering implications for defenders, attackers, and the pace of cyber risk. The conversation explores what actually changes in an era where vulnerabilities could be discovered and exploited faster than ever before. Neil argues that while the technology may be new, the core mission remains the same: disciplined execution, strong fundamentals, and protecting customers. But if attackers begin operating at machine speed, defenders must rethink how quickly they can respond. Raghu and Neil discuss: Why this moment feels different from previous technology shifts How AI may increase the likelihood and speed of exploitation Why security fundamentals matter more, not less, in the AI era The tension between faster development cycles and safe delivery What CISOs are prioritizing right now around risk, resilience, and readiness Why “reacting at machine speed” may become the new benchmark for defenders Throughout the episode, Neil brings a calm, practical perspective: yes, the road ahead may be uneven — but organizations that stay focused, modernize operations, and embrace the right tools can emerge stronger and more secure.   Stay Connected with our host, Raghu on LinkedIn For more information about Illumio, check out our website at illumio.com 

The Monday Microsegment for the week of May 4. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. Want access to the latest frontier AI models? Get on the invite list. Hackers are hijacking email accounts — I've got a bad feeling about this.  It's a trap! Attackers infiltrate popular software development environments. And John Kindervag joins us on Ask the Expert.  Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification 

Podcast: Error Code (LS 27 · TOP 10% what is this?)Episode: EP 85: From Colonial Pipeline to Agentic AI: What OT Security Actually RequiresPub date: 2026-04-28Get Podcast Transcript →powered by Listen411 - fast audio-to-text and summarizationLet's face it, the Purdue model's DMZ is gone. Trevor Dearing, Director of Critical Infrastructure Solutions at Illumio, explains how zero trust, micro-segmentation, and explicit policy are now the only reliable defense for critical infrastructure OT.The podcast and artwork embedded on this page are from Robert Vamosi, which is the property of its owner and not affiliated with or endorsed by Listen Notes, Inc.

Cybersecurity is no longer just about keeping attackers out. It is about what happens when they get in.Andrew Rubin, CEO and founder of Illumio, joins The Tech Trek to talk about the speed of modern attacks, why AI changes the security equation, and how companies should think about breach containment, micro segmentation, and guardrails for agentic AI.This conversation gets into a practical shift every technology leader needs to understand. As companies move faster with AI, security teams are being asked to protect more systems, more users, more tools, and eventually more agents. The old idea of perfect prevention is not enough. The better question is how quickly teams can detect, contain, and reduce the impact when something goes wrong.Key Takeaways• Cybersecurity is moving at the speed of technology. As AI accelerates product, engineering, and operations, attackers and defenders are both moving faster.• Prevention alone is not a complete strategy. Andrew makes the case for breach containment, where the goal is to stop a bad event from becoming a catastrophic one.• AI gives both sides more leverage. Attackers can move faster with fewer constraints, while defenders can use AI to automate routine security work and improve response time.• Agentic AI will create a new security challenge. Companies need guardrails that let teams use AI at scale without creating uncontrolled risk.• Cyber budgets need to map to risk. The conversation should start with what risk is being reduced, not what a tool can do.Timestamped Highlights00:30 Andrew explains what Illumio does and why micro segmentation is really about breach containment.02:36 Why cyber attacks are accelerating because the rest of the technology world is accelerating too.04:35 Andrew challenges the idea that any security company can promise perfect protection.09:46 How agentic AI could help security teams automate mundane work and monitor continuously.13:28 Why cyber spending often gets misaligned when teams focus on tools instead of risk reduction.16:55 Where human judgment still matters in cybersecurity, especially during moments of crisis.20:10 Why large organizations are struggling to let employees use AI aggressively while still putting meaningful guardrails in place.23:46 The parallel between cloud adoption and AI adoption, and why retrofitting legacy systems is harder than building for AI from the start.A Line That Stuck“Cyber is a math problem. The attackers are going after us, the defenders are trying to prevent it or stop it once it happens, and it becomes a math equation at many levels.”Practical Moves For Tech Leaders• Treat AI as a security and operating model shift, not just another tool rollout.• Start security conversations with risk reduction before product capability.• Look for areas where AI can automate repetitive monitoring and analysis without removing human judgment from high stakes decisions.• Build guardrails early, especially as AI becomes embedded into daily workflows for users and developers.Stay ConnectedFollow The Tech Trek for more conversations with founders, operators, and technology leaders building the next generation of AI, data, infrastructure, and security systems.Subscribe, follow, and share this episode with someone thinking about how AI changes the way modern technology teams build and protect systems.

Let's face it, the Purdue model's DMZ is gone. Trevor Dearing, Director of Critical Infrastructure Solutions at Illumio, explains how zero trust, micro-segmentation, and explicit policy are now the only reliable defense for critical infrastructure OT.

The Monday Microsegment for the week of April 27. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. Anthropic's restricted AI bug hunter just leaked. And now China has a rival of its own. Are Chinese hackers hiding behind your old router? And after thirteen months in limbo, Trump's pick to run CISA is walking away. And Christer Swartz joins us to discuss April's boos and bravos.  Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification 

Professional sports reward those who perform under pressure. In federal technology, the stakes are even higher.  This week on Feds At the Edge, we sit down with experts navigating the realities of securing federal systems in an environment where threats are constant and decisions carry real consequences. Gary Barlet, Public Sector CTO for Illumio, poses a critical question: "Do you have a plan for what happens when a malicious actor breaches your system?" He explains how segmentation can stop attackers from being able to "land and expand," and why "real-time" observability is essential to understanding actual network dependencies.   Mark Mitchell, Federal Security Architect at Netskope, highlights a familiar challenge: "If this alert is valid, what is my next step?" He introduces "Active User Coaching," which helps guide users with warnings and safer alternatives when risky actions occur.   Together, the conversation also explores aligning zero trust strategies with federal guidance and the importance of assuming breaches from the start.   Tune in on your favorite podcasting platform to hear how effective federal cybersecurity requires planning, real visibility, and clear action in the moments that matter most.            

Why have security awareness training programs failed? Maybe we need to understand human psychology. Humans don't like tricks, or to be shamed, or negative emotions. Humans want to be rewarded, but yet our training and phishing programs are not built for reward. Maybe it's time to rethink cyber literacy. Craig Taylor, CEO and Co-founder at CyberHoot, joins Business Security Weekly to discuss why we need to shift our Cyber Literacy industry from shame and punishment towards gamification, positive reinforcement, and small rewards. If we truly aspire to change behaviors, then we need a different approach. Craig will discuss how a multi-disciplinary approach rooted in science is the future of training and phishing programs. Segment Resources: Individual Registration (Free Personal Training for Life): https://cyberhoot.com/individuals/ Newsletter Registration: https://cyberhoot.com/newsletters/ Blog Articles: https://cyberhoot.com/blog/ Cybrary (Library of 1000+ Cybersecurity Terms in non-technical language): https://cyberhoot.com/cybrary/ Special Podcast Offer: 20% off CyberHoot for 1 year using the podcast's unique coupon code: "Business Security Weekly" From Reactive to Autonomous: Real-Time Endpoint Intelligence in the Age of AI As organizations experiment with agentic AI and autonomous security operations, many are discovering a difficult reality: AI is only as effective as the data and visibility behind it. Yet most enterprises still struggle to answer basic questions about their endpoints in real time. In this conversation, we'll explore how IT and security teams are evolving from reactive operations toward proactive, preventative, and ultimately autonomous models. The journey begins with real-time endpoint intelligence—the ability to see, understand, and act across every endpoint in seconds. This segment is sponsored by Tanium. Visit https://securityweekly.com/taniumrsac to learn more about them! Hard Truths: The Lies We Keep Buying in Cybersecurity Cybersecurity isn't broken because of a lack of technology—it's broken because the industry avoids hard truths. Fear still drives budgets. AI is oversold as a cure‑all while foundations remain weak, and CISOs are held accountable without the authority to change outcomes. In this conversation, Illumio CEO and founder Andrew Rubin breaks down what must change to build real resilience—because the next breach won't just impact the business, it could end a career. For more information about Illumio, please visit: https://securityweekly.com/illumiorsac Visit https://www.securityweekly.com/bsw for all the latest episodes! Show Notes: https://securityweekly.com/bsw-444

Why have security awareness training programs failed? Maybe we need to understand human psychology. Humans don't like tricks, or to be shamed, or negative emotions. Humans want to be rewarded, but yet our training and phishing programs are not built for reward. Maybe it's time to rethink cyber literacy. Craig Taylor, CEO and Co-founder at CyberHoot, joins Business Security Weekly to discuss why we need to shift our Cyber Literacy industry from shame and punishment towards gamification, positive reinforcement, and small rewards. If we truly aspire to change behaviors, then we need a different approach. Craig will discuss how a multi-disciplinary approach rooted in science is the future of training and phishing programs. Segment Resources: Individual Registration (Free Personal Training for Life): https://cyberhoot.com/individuals/ Newsletter Registration: https://cyberhoot.com/newsletters/ Blog Articles: https://cyberhoot.com/blog/ Cybrary (Library of 1000+ Cybersecurity Terms in non-technical language): https://cyberhoot.com/cybrary/ Special Podcast Offer: 20% off CyberHoot for 1 year using the podcast's unique coupon code: "Business Security Weekly" From Reactive to Autonomous: Real-Time Endpoint Intelligence in the Age of AI As organizations experiment with agentic AI and autonomous security operations, many are discovering a difficult reality: AI is only as effective as the data and visibility behind it. Yet most enterprises still struggle to answer basic questions about their endpoints in real time. In this conversation, we'll explore how IT and security teams are evolving from reactive operations toward proactive, preventative, and ultimately autonomous models. The journey begins with real-time endpoint intelligence—the ability to see, understand, and act across every endpoint in seconds. This segment is sponsored by Tanium. Visit https://securityweekly.com/taniumrsac to learn more about them! Hard Truths: The Lies We Keep Buying in Cybersecurity Cybersecurity isn't broken because of a lack of technology—it's broken because the industry avoids hard truths. Fear still drives budgets. AI is oversold as a cure‑all while foundations remain weak, and CISOs are held accountable without the authority to change outcomes. In this conversation, Illumio CEO and founder Andrew Rubin breaks down what must change to build real resilience—because the next breach won't just impact the business, it could end a career. For more information about Illumio, please visit: https://securityweekly.com/illumiorsac Show Notes: https://securityweekly.com/bsw-444

Why have security awareness training programs failed? Maybe we need to understand human psychology. Humans don't like tricks, or to be shamed, or negative emotions. Humans want to be rewarded, but yet our training and phishing programs are not built for reward. Maybe it's time to rethink cyber literacy. Craig Taylor, CEO and Co-founder at CyberHoot, joins Business Security Weekly to discuss why we need to shift our Cyber Literacy industry from shame and punishment towards gamification, positive reinforcement, and small rewards. If we truly aspire to change behaviors, then we need a different approach. Craig will discuss how a multi-disciplinary approach rooted in science is the future of training and phishing programs. Segment Resources: Individual Registration (Free Personal Training for Life): https://cyberhoot.com/individuals/ Newsletter Registration: https://cyberhoot.com/newsletters/ Blog Articles: https://cyberhoot.com/blog/ Cybrary (Library of 1000+ Cybersecurity Terms in non-technical language): https://cyberhoot.com/cybrary/ Special Podcast Offer: 20% off CyberHoot for 1 year using the podcast's unique coupon code: "Business Security Weekly" From Reactive to Autonomous: Real-Time Endpoint Intelligence in the Age of AI As organizations experiment with agentic AI and autonomous security operations, many are discovering a difficult reality: AI is only as effective as the data and visibility behind it. Yet most enterprises still struggle to answer basic questions about their endpoints in real time. In this conversation, we'll explore how IT and security teams are evolving from reactive operations toward proactive, preventative, and ultimately autonomous models. The journey begins with real-time endpoint intelligence—the ability to see, understand, and act across every endpoint in seconds. This segment is sponsored by Tanium. Visit https://securityweekly.com/taniumrsac to learn more about them! Hard Truths: The Lies We Keep Buying in Cybersecurity Cybersecurity isn't broken because of a lack of technology—it's broken because the industry avoids hard truths. Fear still drives budgets. AI is oversold as a cure‑all while foundations remain weak, and CISOs are held accountable without the authority to change outcomes. In this conversation, Illumio CEO and founder Andrew Rubin breaks down what must change to build real resilience—because the next breach won't just impact the business, it could end a career. For more information about Illumio, please visit: https://securityweekly.com/illumiorsac Visit https://www.securityweekly.com/bsw for all the latest episodes! Show Notes: https://securityweekly.com/bsw-444

Why have security awareness training programs failed? Maybe we need to understand human psychology. Humans don't like tricks, or to be shamed, or negative emotions. Humans want to be rewarded, but yet our training and phishing programs are not built for reward. Maybe it's time to rethink cyber literacy. Craig Taylor, CEO and Co-founder at CyberHoot, joins Business Security Weekly to discuss why we need to shift our Cyber Literacy industry from shame and punishment towards gamification, positive reinforcement, and small rewards. If we truly aspire to change behaviors, then we need a different approach. Craig will discuss how a multi-disciplinary approach rooted in science is the future of training and phishing programs. Segment Resources: Individual Registration (Free Personal Training for Life): https://cyberhoot.com/individuals/ Newsletter Registration: https://cyberhoot.com/newsletters/ Blog Articles: https://cyberhoot.com/blog/ Cybrary (Library of 1000+ Cybersecurity Terms in non-technical language): https://cyberhoot.com/cybrary/ Special Podcast Offer: 20% off CyberHoot for 1 year using the podcast's unique coupon code: "Business Security Weekly" From Reactive to Autonomous: Real-Time Endpoint Intelligence in the Age of AI As organizations experiment with agentic AI and autonomous security operations, many are discovering a difficult reality: AI is only as effective as the data and visibility behind it. Yet most enterprises still struggle to answer basic questions about their endpoints in real time. In this conversation, we'll explore how IT and security teams are evolving from reactive operations toward proactive, preventative, and ultimately autonomous models. The journey begins with real-time endpoint intelligence—the ability to see, understand, and act across every endpoint in seconds. This segment is sponsored by Tanium. Visit https://securityweekly.com/taniumrsac to learn more about them! Hard Truths: The Lies We Keep Buying in Cybersecurity Cybersecurity isn't broken because of a lack of technology—it's broken because the industry avoids hard truths. Fear still drives budgets. AI is oversold as a cure‑all while foundations remain weak, and CISOs are held accountable without the authority to change outcomes. In this conversation, Illumio CEO and founder Andrew Rubin breaks down what must change to build real resilience—because the next breach won't just impact the business, it could end a career. For more information about Illumio, please visit: https://securityweekly.com/illumiorsac Show Notes: https://securityweekly.com/bsw-444

Send me a text (I will personally respond)Ever feel like your cybersecurity marketing just isn't landing with CISOs? Wondering why, despite tons of spending, cybercrime is still on the rise? Or maybe you're looking for real ways to build trust and stand out in a crowded, AI-fueled marketplace? This episode dives straight into those questions, with honest takes and actionable ideas you can start using today.In this conversation we discuss:

The Monday Microsegment for the week of April 20. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. Microsoft's biggest patch day this year includes a live SharePoint exploit. Two million Amtrak records leak. Did the railroad choo-choo-choose not to pay a ransom? And researchers find malware aimed at Israel's water supply. New AI models like Anthropic's Mythos are changing cybersecurity fast. Erik Boch joins us to explain why defenders and attackers are both paying attention.  Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification 

The Monday Microsegment for the week of April 13. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. A new AI model upends everything you thought you knew about cybersecurity A dozen companies. Thousands of zero-days. One secret patch sprint. And state-sponsored hackers want what Mythos has — so they're already building it. And Trupti Shiralkar joins us to unpack trust and AI. Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification 

Recorded live at RSA Conference 2026, this episode of The Segment features a compelling conversation between host Raghu Nandakumara and Theresa Payton—the first female White House Chief Information Officer and a leading voice on cybersecurity, AI, and digital risk. They tackle a critical question: If organizations are spending more than ever on cybersecurity, why are outcomes getting worse? Drawing from her experience protecting some of the most sensitive systems in the world, Theresa challenges conventional thinking around security frameworks, compliance, and the industry's overreliance on checklists. The conversation dives into: Why the current cybersecurity model is fundamentally broken—and what needs to change The growing gap between security spending and real-world outcomes How AI is reshaping the threat landscape as both a powerful tool and a potential insider risk Why designing for the human user—not just the buyer—is key to better security The overlooked importance of data classification in a post-quantum future Practical ways teams can begin “reimagining” security, even with limited time and resources Theresa also shares behind-the-scenes insights from her time at the White House, including a surprising story that highlights just how personal—and nuanced—cybersecurity can be. At its core, this episode is a call to action: to move beyond compliance, rethink outdated approaches, and build a more human-centered, resilient future for cybersecurity.   Stay Connected with our host, Raghu on LinkedIn For more information about Illumio, check out our website at illumio.com 

The Monday Microsegment for the week of April 6. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. Your JavaScript library just phoned North Korea. New details on last year's banking software breach amid a flurry of lawsuits. And Team PCP hackers breach the EU through a tool…built to stop hackers.  John Kindervag joins to talk about the latest Zero Trust push out of Washington. Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification 

The Monday Microsegment for the week of March 30. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. ShinyHunters scales up its Salesforce extortion campaign, hitting major targets around the globe. Zero-day exploits aren't cool. Do you know what's cool? Negative-day exploits. And it's sunshine and cyber alerts for the Golden State as California municipalities face disruptive attacks. And Gary Barlet joins us to unpack RSAC 2026 and the AI buzz.  Head to The Zero Trust Hub: hub.illumio.com Get the Industry's First Vendor-Neutral Zero Trust Certification: https://www.illumio.com/zero-trust-certification   

Social engineering attacks may evolve with new technology, but the core tactic hasn't changed in decades: exploiting human trust. In this episode of The Segment, host Raghu Nandakumara sits down with Timothy Kromphardt, Senior Threat Researcher at Proofpoint to explore how modern scams actually work behind the scenes. Tim spends his days engaging directly with threat actors—sometimes for months at a time—to understand how fraud campaigns operate, how scammers build trust, and how they ultimately convince victims to hand over money or sensitive information. Together, they unpack the mechanics of today's most common scams, including TOAD (telephone-oriented attack delivery) attacks, business email compromise, and the increasingly sophisticated “pig butchering” investment scams that can drain victims' life savings after months of relationship-building. Together, Raghu and Tim unpack: Why social engineering continues to succeed—even as security technology improves   How pig butchering scams build trust over months before stealing massive sums   What happens when researchers directly engage with scammers   Why AI is helping attackers scale operations—but not necessarily replace humans   Practical steps organizations and individuals can take to reduce their risk   If you've ever wondered how scammers actually operate—or why even highly successful professionals sometimes fall victim—this episode offers a rare inside look at the human side of cybercrime.   Stay Connected with our host, Raghu on LinkedIn For more information about Illumio, check out our website at illumio.com 

The Monday Microsegment for the week of March 23. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. The 3.4 million records exposed in massive healthcare tech breach Federal officials hunt for answers in the wake of Iran's attack on Stryker Why cybercriminals are ditching malware for phone calls And Christer Swartz joins us for a Boos and Bravos segment!  Head to The Zero Trust Hub: hub.illumio.com Register for Hard Truths in Cybersecurity: Fear, Liability, and the Industry's Biggest Lies: https://www.illumio.com/resources/events/rsac-2026-registration

The Monday Microsegment for the week of March 16. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. As many as two hundred thousand devices wiped clean by Iranian hackers. A new class of malware uses AI to rewrite its own source code. And confidence vs. reality: New research shows that most security teams can't stop a breach in real-time. And John Kindervag argues that most cybersecurity incidents aren't caused by a lack of technology — they're caused by bad policy. Read his full article here: https://www.linkedin.com/pulse/cybersecurity-has-resilience-problem-tool-john-kindervag-hyxaf/?trackingId=jguODXNgCbhRZs5puz%2B18Q%3D%3D Head to The Zero Trust Hub: hub.illumio.com Register for Hard Truths in Cybersecurity: Fear, Liability, and the Industry's Biggest Lies: https://www.illumio.com/resources/events/rsac-2026-registration

AI is moving faster than any technology shift we've seen before—but security is still being treated as an afterthought.   In this episode of The Segment, host Raghu Nandakumara sits down with Joshua Woodruff, Founder & CEO of Massive Scale AI, to explore what it really takes to adopt AI, especially agentic AI, without putting your business at risk. Josh brings nearly 30 years of experience across security, cloud, and IT transformation, advising organizations from startups to Fortune 100 enterprises. As a zero trust thought leader, co-lead of the Cloud Security Alliance Zero Trust Working Group, and author of Agentic AI + Zero Trust, Josh shares why AI isn't just another tools-led transformation—it's a fundamental re-engineering of how work gets done. Together, Raghu and Josh unpack: Why AI should be viewed as “commoditized intelligence,” not a human replacement   The unique security challenges of stochastic, non-deterministic AI systems   How Zero Trust provides a business-aligned foundation for securing AI and data   What it means to treat AI agents like digital employees—with identities, guardrails, and codes of conduct   Real-world examples of AI agents going off the rails—and how to prevent it   Josh's five-question “Agentic Trust Framework” for securing autonomous AI systems   Why security teams have a rare opportunity to become true enablers of AI-driven transformation If you're a business leader, technologist, or security professional grappling with how to move fast on AI without breaking trust, this episode offers a clear, practical, and grounded roadmap for doing AI right—securely, responsibly, and at scale.     Resources Mentioned: https://www.amazon.com/Agentic-AI-Zero-Trust-Business-ebook/dp/B0FL2WJQVQ   Stay Connected with our host, Raghu on LinkedIn For more information about Illumio, check out our website at illumio.com 

AI presents such a dazzling set of opportunities that federal leaders can be tempted to dive in without careful planning.  This week on Feds At the Edge, we move past the hype to explore the tactical realities of deploying AI within the unique constraints of the federal environment. Ashley Billman, Cybersecurity Analyst, Pacific Northwest National Laboratory, explains why agencies must align AI architecture with mission and security needs, whether on-prem, hybrid, or cloud environments, and highlights a critical question: what's actually in the training data, and what might be missing? The discussion also explores emerging risks. Experts Gary Bartlett from Illumio and Mark Mitchell from Netskope join the conversation to warn against the "agent" trend, sharing cautionary tales of AI inadvertently accessing sensitive information and explaining why robust governance is the only way to ensure your AI's conclusions are actually valid. Tune in on your favorite podcast platform to learn why AI literacy is no longer an optional skill, but a strategic necessity for the future of federal cybersecurity. Stop chasing the headlines and start building a framework that turns AI from a risk into a mission-critical asset

The Monday Microsegment for the week of March 9. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. Google unmasks an advanced — maybe government-leaked — exploit kit targeting Apple devices. Iran's Muddy Waters hacking group is shaping up to be a clear threat to U.S. networks. And the White House signals that the best cyber defense might be cyber offense. And Aishwarya Ramani on this year's International Women's Day theme — and why empowering women in cybersecurity gives the entire industry momentum.  Head to The Zero Trust Hub: hub.illumio.com Register for Hard Truths in Cybersecurity: Fear, Liability, and the Industry's Biggest Lies: https://www.illumio.com/resources/events/rsac-2026-registration    

The Monday Microsegment for the week of March 2. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. Security leaders brace for an epic backlash to U.S. and Israeli attacks on Iran. Meanwhile, Iran's domestic internet cutoff provides a threat intel goldmine for defenders. And CISA gets a new leader as the agency navigates more than a year of internal turmoil. And Christer Swartz joins us to bust a cybersecurity myth!   Head to The Zero Trust Hub: hub.illumio.com Join us at RSAC in San Francisco: https://www.illumio.com/resources/events/rsac-2026-registration

What separates organizations that pass audits from those that survive real incidents? In this episode of The Segment, host Raghu Nandakumara sits down with Phil Park, global cybersecurity and risk leader at IBM. With more than 25 years advising financial institutions across the U.S., Europe, and Asia-Pacific, Phil brings a practical perspective on how supervision is rapidly evolving from compliance checklists to real-world operational readiness. Together, Raghu and Phil unpack the industry's biggest mindset shift: regulators no longer ask “Are you protected?” — they ask “Can you operate through disruption?” They explore why prevention alone is no longer enough, why containment and recovery now define security maturity, and how CISOs are moving from siloed operators to enterprise-wide risk leaders accountable to boards and regulators alike. The conversation also dives into: Why regulators evaluate response quality rather than technical perfection   How organizations are turning tabletop exercises into realistic resilience testing   The growing pressure created by third-party and supply-chain dependencies   Why evidence and outcomes matter more than policies and frameworks   How overlapping reporting requirements are reshaping incident response playbooks   The double-edged role of AI in both defense and attack, including deepfake risks   Why security fundamentals matter even more in the AI era   This episode is a must-listen for security leaders and executives navigating a world where passing the audit is no longer the goal — proving you can withstand disruption is. Also, if you're attending FSISAC, join Illumio, IBM, and Palo Alto Networks for an exclusive dinner at Capital Grille! Save your seat here: https://lp.illumio.com/20260302-Steak-And-Security-Dinner.html?utm_medium=email&utm_source=marketo

The Monday Microsegment for the week of February 23. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast. Hackers hijack nearly half a million dollars in New York school fraud. Government agencies breached after attackers exploit Ivanti zero-day vulnerability. And state-backed hackers weaponize generative AI to sharpen cyber operations. And Christer Swartz joins us to unpack this month's Boos and Bravos.  Head to The Zero Trust Hub: hub.illumio.com Join us at RSAC in San Francisco: https://www.illumio.com/resources/events/rsac-2026-registration

The Monday Microsegment for the week of February 16. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.Hackers hijack nearly half a million dollars in New York school fraud.Government agencies breached after attackers exploit Ivanti zero-day vulnerability.And state-backed hackers weaponize generative AI to sharpen cyber operations.And Michael Adjei explains why the cybersecurity “talent shortage” might actually be an allocation problem.Head to The Zero Trust Hub: hub.illumio.comJoin us at RSAC in San Francisco: https://www.illumio.com/resources/events/rsac-2026-registration

The perimeter will fail. What matters is whether your business turns one incident into a disaster. Andrew Rubin, Founder and CEO of Illumio, explains how breach containment reduces blast radius, why category timing is “luck,” and what leaders must do as AI speeds up attackers and defenders. Listen for a founder-level playbook on building security that scales with growth. Andrew: https://www.linkedin.com/in/andrewsrubin Illumio: https://www.illumio.com Jon: https://www.linkedin.com/in/jon-mclachlan Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich YSecurity: https://www.ysecurity.io

The Monday Microsegment for the week of February 9. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.A massive espionage campaign infiltrates government networks in 37 countries.Hackers go for the gold as the Winter Olympics and the Super Bowl create a perfect storm.And a new social engineering tactic crashes your browser to steal your data.And John Kindervag joins us to discuss why cybersecurity dashboards may be measuring the wrong things.  Head to The Zero Trust Hub: hub.illumio.comJoin us at RSAC in San Francisco: https://www.illumio.com/resources/events/rsac-2026-registration

The Monday Microsegment for the week of February 2nd. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.Major consumer brands caught in a fresh wave of cyberattacksNike scrambles as hackers leak years of prototype and R&D dataAnd the White House shelves proposed Biden-era software security rulesAnd Gary Barlet joins us to unpack the NSA's newly released Zero Trust Guideline PrimerHead to The Zero Trust Hub: hub.illumio.comJoin us at RSAC in San Francisco: https://www.illumio.com/resources/events/rsac-2026-registration

The Monday Microsegment for the week of January 26th. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.A critical vulnerability is being actively exploited in core infrastructure, VMware warns.Hackers looking for extortion payoff tell Nike to… just do it.And a massive database leak exposes 149 million stolen credentials.And Christer Swartz joins us for January's Boos and Bravos. Head to The Zero Trust Hub: hub.illumio.comDownload The 2025 Global Cloud Detection and Response Report: https://www.illumio.com/resource-center/global-cloud-detection-and-response-report-2025 

The Monday Microsegment for the week of January 19th. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.Europe's space agency suffers a massive data breach.Attackers keep cashing in on Oracle's old breach.And credit card skimmers go digital.And Aishwarya Ramani joins us to discuss executive sponsorship.  Head to The Zero Trust Hub: hub.illumio.comDownload The 2025 Global Cloud Detection and Response Report: https://www.illumio.com/resource-center/global-cloud-detection-and-response-report-2025 

What happens when we finally admit that stopping every cyberattack was never realistic in the first place? That is the thread running through this conversation, recorded at the start of the year when reflection tends to be more honest and the noise dial is turned down a little. I was joined by returning guest Raghu Nandakumara from Illumio, nearly three years after our last discussion, to pick up a question that has aged far too well. How do organizations talk about cybersecurity value when breaches keep happening anyway? This episode is less about shiny tools and more about uncomfortable truths. We spend time unpacking why security teams still struggle to show value, why prevention-only thinking keeps setting leaders up for disappointment, and why the conversation is slowly shifting toward resilience and containment. Raghu is refreshingly direct on why reducing cyber risk, rather than chasing impossible guarantees, is the only metric that really holds up under boardroom scrutiny. We also talk about the strange contradiction playing out across industries. Attackers are often using familiar paths like misconfigurations, excessive permissions, and missing patches, yet many organizations still fail to close those gaps. The issue, as Raghu explains, is rarely a lack of tools. It is usually fragmented coverage, outdated processes, and a talent pipeline that blocks capable people from entering the field while claiming there is a skills shortage. One of the most practical parts of this conversation centers on mindset. Instead of asking whether an attacker got in, Raghu argues that leaders should be asking how far they were able to go once inside. That shift alone changes how success is measured, how teams prepare for incidents, and how pressure-filled P1 moments are handled when boards want answers every fifteen minutes. We also touch on how legal action, public claims campaigns, and customer lawsuits are changing the stakes after a breach, forcing executives to rethink how they frame cyber investment. From there, Raghu shares how Illumio has been working with Microsoft to strengthen internal resilience at massive scale, and why visibility and segmentation are becoming harder to ignore. This is a conversation about realism, responsibility, and growing up as an industry. If cybersecurity is really about safety and not slogans, what would you want your organization to stop saying, and what would you rather hear instead? Please feel free to upload the podcast. Here are also the links we discussed on the call: Useful Links Connect with Raghu Nandakumara on LinkedIn and Twitter Learn more about Illumio Lateral Movement in Cyberattacks Illumio Podcast  Follow on Facebook, Twitter, LinkedIn, and YouTube   Thanks to our sponsors, Alcor, for supporting the show.

The Monday Microsegment for the week of January 12th. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.A cyber incident snarls operations at a major European port.Ransomware gangs go after cloud backups.And Ivanti warns that its VPN devices are being actively exploited.And Gary Barlet joins us to unpacks cyber warfare hitting critical infrastructure. https://www.wsj.com/articles/venezuela-raid-highlights-cyber-vulnerability-of-critical-infrastructure-28aed054?mod=author_content_page_1_pos_1Head to The Zero Trust Hub: hub.illumio.comDownload The 2025 Global Cloud Detection and Response Report: https://www.illumio.com/resource-center/global-cloud-detection-and-response-report-2025 

The Monday Microsegment for the week of January 5th. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.New year, new zero-day vulnerability in Windows Server.Ransomware rings in 2026 by hitting healthcare in Europe.And attackers cash in on holiday passwords.And Ashwarya Ramani joins us for a special Book Club segment! Head to The Zero Trust Hub: hub.illumio.comDownload The 2025 Global Cloud Detection and Response Report: https://www.illumio.com/resource-center/global-cloud-detection-and-response-report-2025 

The Monday Microsegment for the week of December 15th. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.Apple tells users not to ho-ho-hold off on emergency patches as it warns about state-backed spyware.Cyber grinches disrupt UK education and water services.And Microsoft flags a not-so-jolly zero-day flaw in SharePoint.And Christer Swartz joins us for a Boos and Bravos segment! Head to The Zero Trust Hub: hub.illumio.comDownload The 2025 Global Cloud Detection and Response Report: https://www.illumio.com/resource-center/global-cloud-detection-and-response-report-2025 

The Monday Microsegment for the week of December 8th. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.CISA uncovers a new Chinese backdoor in U.S. networks.A massive breach hits South Korea's largest e-commerce platform.And a record-breaking DDoS attack pounds the financial sectorAnd Gary Barlet joins us for his 2026 predictions! Head to The Zero Trust Hub: hub.illumio.comDownload The 2025 Global Cloud Detection and Response Report: https://www.illumio.com/resource-center/global-cloud-detection-and-response-report-2025 

Andrew Rubin is co-founder and CEO of Illumio. Illumio is a breach containment and network segmentation company that has become a mainstay in the cybersecurity market over the last decade. Illumio was last valued at almost $3 billion dollars and is now on the verge of going public as we discuss in the episode. Before Illumio, Andrew grew his career in sales at VoiceNet in the late 90s and early 2000s before moving to Cymtec, where he was VP of Sales for two years before taking over as CEO. That led him to love the CEO role and then start Illumio. In the episode, we discuss everything from redefining sales goals, meeting a co-founder (spoiler: in Andrew's case it was a lot of luck), preparing to IPO, including why the "IPO window" concept is silly, and more.Website

The Monday Microsegment for the week of November 17th. All the cybersecurity news you need to stay ahead, from Illumio's The Segment podcast.CISA flags new risks in both cloud and industrial systems.Congress calls Anthropic to explain AI-enabled threats.And a real-estate tech breach may spill into major U.S. banks.And John Kindervag joins us for his 2026 predictions! Head to The Zero Trust Hub: hub.illumio.comDownload The 2025 Global Cloud Detection and Response Report: https://www.illumio.com/resource-center/global-cloud-detection-and-response-report-2025 

All links and images can be found on CISO Series. This week's episode is hosted by David Spark, producer of CISO Series and Jerich Beason, CISO, WM. Joining them on stage is Jack Leidecker, CISO, Gong. This episode was recorded live at HOU SEC CON 2025. In this episode: The open source sustainability problem AI levels the geopolitical playing field Cutting through AI vendor hype Why the fundamentals still hurt Thanks to Erik Bloch from Illumio for providing our "What's Worse" scenario. Huge thanks to our sponsor, Vorlon Security SaaS data moves fast—Vorlon gives security teams the context to move faster. Vorlon combines posture and secrets management, data flow visibility, and detection and response —
so you can see the full picture: what's connected, what's at risk,
and what needs immediate action. Learn more at https://vorlon.io/