Podcast
Security Confidential
Hosted by Dark Rhiino Security · EN
Security Confidential provides weekly interviews and insights into the world of cybersecurity. Produced entirely in-house by MSSP & global risk management firm Dark Rhiino Security.
28episodes
Episodes
Newest firstAll episodes
S19 E05 The Future of Decentralized Data
1w ago00:37:18Tap to summarize#SecurityConfidential #DarkRhiinoSecurityMurphy John is the Chief Growth Officer at StorX Network, where he focuses on scaling decentralized data storage solutions and building strategic partnerships. Passionate about data security and privacy, Murphy works at the intersection of decentralization and distributed ledger technology (DLT), helping organizations rethink how data is stored, protected, and accessed globally. His work centers on enabling more secure, resilient, and privacy-first data infrastructure for the future.00:00 Intro01:17 Our Guest02:50 Shifting from On-premise to Cloud Computing09:30 Compliance and Data Privacy in Decentralized systems11:22 Data Recovery13:10 Ransomware and Data security15:31 AI on Cybersecurity19:25 Mindset Challenges in adopting technology26:01 Egress Cost Awareness33:15 Budgeting for Data backup Solutions35:00 More about John
Transcribe →S19 E04 What Good Is All This Cybersecurity Tech… If It Still Fails?
4w ago00:48:42Tap to summarize#SecurityConfidential #DarkRhiinoSecurityAndy Smith is the CEO and Co-Founder of Tracebit, a cybersecurity company building deception technology that deploys security canaries across cloud infrastructure, identity platforms, and SaaS environments to detect breaches with high fidelity. Before founding Tracebit, Andy was Head of Engineering at Tessian, where firsthand exposure to a widespread supply chain incident affecting thousands of companies sharpened his and Sam's conviction in the "assume breach" philosophy that underpins Tracebit today. Originally from the UK, Andy recently relocated to New York as Tracebit grows its US presence. 00:00 Intro02:17 Our Guest03:50 All Defenders get this wrong06:05 What good does all this technology do?09:48 My experience with a third party breach11:30 Deception technologies18:50 AI is not detecting properly 22:26 What about LLMs? Do they mirror that behavior?26:30 The Assume breach philosophy 35:38 What makes deployment of deception technology defective?40:40 Tracking Canaries 47:00 Learn about Tracebit----------------------------------------------------------------------To learn more about Andy visit https://www.linkedin.com/in/andy-m-smith/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com----------------------------------------------------------------------
Transcribe →S19 E03 Identity Attacks Are the #1 Threat
Apr 2900:51:26Tap to summarizeJasson Casey is the CEO & Co-Founder of Beyond Identity, the first and only identity security platform built to make identity-based attacks impossible. With 20+ years in security and networking, Jasson has built enterprise solutions that protect global organizations from credential-based threats. 00:00 Intro02:00 Our Guest10:37 The Identity and Access Management field is crowded16:11 How does your MFA know?45:34 What does the future look like for AI?49:48 Claude and Ceros
Transcribe →S19 E02 What the U.S.–Saudi Relationship Means for Cybersecurity
Apr 1500:45:31Tap to summarizeJason Roos is a globally recognized CIO, digital transformation leader with over 25 years of experience, and the CEO of TAITAN. Jason has led major initiatives across the U.S., Europe, and the Middle East, including serving as CIO for NEOM’s Education, Research & Innovation sector. He’s also been named one of the Top 10 CIOs in the Middle East multiple times. 00:00 Intro02:10 Our Guest11:38 How do you balance convenience vs Security17:30 De-provisioning gaps22:36 Are people more accepting of compliance rules in the Middle East?28:20 TAITAN34:20 The current administration’s relationship with Saudi Arabia 43:29 Connecting with Jason----------------------------------------------------------------------To learn more about Jason visit https://www.linkedin.com/in/jason-roos-9840933/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com
Transcribe →S19 E01 Who Really Controls Your Algorithm Data?
Apr 800:50:12Tap to summarizeKrisztian Kiraly is a specialist in AI-driven conversion rate optimization and personalization. Krisztian works at the intersection of AI, behavioral analytics, and digital strategy, helping businesses understand how artificial intelligence can predict user behavior and transform the way companies interact with customers online. He’s also known for making complex technology fun and engaging through his high-energy approach to education.00:00 Intro02:26 Our Guest03:54 How does a small business leverage digital marketing without a big budget?08:22 Top 5 KPI’s12:17 Return on Ad Spend18:09 Working with the Algorithm20:20 What motivates buyers to buy online?30:55 How do you get into the mind of the buyer?38:55 5 Seconds to show your company40:25 Who do you sell to?43:21 Optimonk
Transcribe →S19 E0 (VIDEO) How Hackers Exploit Hidden Vulnerabilities
Apr 200:40:06Tap to summarize#SecurityConfidential #DarkRhiinoSecurityDiyar Saadi Ali is a cybersecurity professional specializing in cybercrime investigations, SOC operations, and malware analysis. A contributor to the MITRE ATT&CK framework, Diyar has helped strengthen global threat intelligence efforts and defensive strategies. Diyar regularly speaks at international cybersecurity conferences including Arab Cyber Security, DeepSec, GISEC, BlackHat, and SulyCon, contributing to the advancement of the global cyber community.00:00 Intro02:26 Our Guest03:42 Learning Cybersecurity in Iraq07:40 The MITRE attack Framework: Is that all the knowledge we know? 11:30 There are still tons of unknown vulnerabilities13:30 You can’t fake motivation17:00 Defenders are to blame19:16 Who is coming up with Malware?22:10 Every crime leaves a trace24:12 AI is making malware easy29:00 Governance and Trust38:02 Presentations and News from Diyar----------------------------------------------------------------------To learn more about Diyar visit https://www.linkedin.com/in/diyarsaadi/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com
Transcribe →S19 E0 How Hackers Exploit Hidden Vulnerabilities
Apr 100:40:06Tap to summarizeDiyar Saadi Ali is a cybersecurity professional specializing in cybercrime investigations, SOC operations, and malware analysis. A contributor to the MITRE ATT&CK framework, Diyar has helped strengthen global threat intelligence efforts and defensive strategies. Diyar regularly speaks at international cybersecurity conferences, including Arab Cyber Security, DeepSec, GISEC, BlackHat, and SulyCon, contributing to the advancement of the global cyber community.00:00 Intro02:26 Our Guest03:42 Learning Cybersecurity in Iraq07:40 The MITRE attack Framework: Is that all the knowledge we know? 11:30 There are still tons of unknown vulnerabilities13:30 You can’t fake motivation17:00 Defenders are to blame19:16 Who is coming up with Malware?22:10 Every crime leaves a trace24:12 AI is making malware easy29:00 Governance and Trust38:02 Presentations and News from Diyar
Transcribe →S18 E10 Cyber Risk Starts at the Top
Mar 1800:45:17Tap to summarizeSara Ricci is a cybersecurity and enterprise risk executive with deep expertise in operational resilience, IT risk, and third-party risk management. She advises C-suite leaders on building stronger, more resilient organizations in the face of evolving cyber and operational threats. Sara is a frequent global speaker and mentor through the Executive Women’s Forum Lift program and is known for her cross-disciplinary approach to risk, combining cybersecurity, business continuity, privacy, and sustainability to help organizations stay resilient.00:00 Intro02:29 Our Guest06:12 Resilience across industry15:30 Data exists in many forms21:20 Is you see something, say something26:20 The attack surface changing with AI38:30 4th party risk42:15 Connecting with Sara--------------------------------------SOCIAL MEDIA:Stay connected with us on our social media pages where we'll give you snippets, alerts for new podcasts, and even behind the scenes of our studio!Instagram: @securityconfidential and @DarkrhiinosecurityFacebook: @Dark-Rhiino-Security-IncTwitter: @darkrhiinosecLinkedIn: @dark-rhiino-securityYoutube: @DarkRhiinoSecurity
Transcribe →S18 E09 (VIDEO) Does Compliance Actually Protect Your Company?
Mar 500:51:13Tap to summarize#SecurityConfidential #DarkRhiinoSecurityTiffini Smith is a strategic legal executive and board advisor with over 20 years of experience in privacy, cybersecurity, and AI governance. A U.S. Patent Attorney with bar admissions in the U.S. and England & Wales, she helps organizations navigate everything from breach preparedness to the EU AI Act. Tiffini has led global legal teams and provided global cybersecurity legal advice, including addressing issues such as incident response readiness, vendor risk programs, AI model risk reviews, and board-level briefings, and is known for translating complex legal and cyber risk into actionable guidance for executives. She also authors a newsletter.00:00 Intro02:28 Our Guest05:48 Regulation across states and countries09:48 Cybersecurity regulation culturally14:00 Employee training and teaching them the Why 23:07 How do you mitigate against AI?25:00 CISOs don’t understand how the business works29:11 Does being compliant actually reduce your exposure? 34:00 Regulations on AI in your business50:10 More about Tiffini----------------------------------------------------------------------To learn more about Tiffini visit https://www.linkedin.com/in/tiffini-smith/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com----------------------------------------------------------------------
Transcribe →S18 E09 Does Compliance Actually Protect Your Company?
Mar 400:51:13Tap to summarize#SecurityConfidential #DarkRhiinoSecurityTiffini Smith is a strategic legal executive and board advisor with over 20 years of experience in privacy, cybersecurity, and AI governance. A U.S. Patent Attorney with bar admissions in the U.S. and England & Wales, she helps organizations navigate everything from breach preparedness to the EU AI Act. Tiffini has led global legal teams and provided global cybersecurity legal advice, including addressing issues such as incident response readiness, vendor risk programs, AI model risk reviews, and board-level briefings, and is known for translating complex legal and cyber risk into actionable guidance for executives. She also authors a newsletter.00:00 Intro02:28 Our Guest05:48 Regulation across states and countries09:48 Cybersecurity regulation culturally14:00 Employee training and teaching them the Why 23:07 How do you mitigate against AI?25:00 CISOs don’t understand how the business works29:11 Does being compliant actually reduce your exposure? 34:00 Regulations on AI in your business50:10 More about Tiffini----------------------------------------------------------------------To learn more about Tiffini visit https://www.linkedin.com/in/tiffini-smith/To learn more about Dark Rhiino Security visit https://www.darkrhiinosecurity.com----------------------------------------------------------------------
Transcribe →