Episodes

  • What security teams should do to prepare for the quantum computing future

    What security teams should do to prepare for the quantum computing future
    Nov 13 2025
    Rebecca Krauthamer, CEO of QSecure, joins Safe Mode to delve into the rapidly shifting landscape of quantum computing and cybersecurity. The conversation covers the latest government and industry responses to the quantum threat, the urgency of adopting post-quantum encryption, and practical metrics for agencies and organizations. Listen in as the complexities and urgency of preparing for “Q-Day” are unpacked, offering key insights for policy makers, technologists, and anyone concerned with data security’s future.
    Show more Show less
    40 mins
  • How MSP's are dealing CISA changes

    How MSP's are dealing CISA changes
    Nov 6 2025
    On this week’s Safe Mode, Greg welcomes Jason Pufahl, VP of Security Services at Vancord. Jason shares deep insights into the evolving managed security landscape, focusing on challenges faced by small and mid-sized businesses and the practical fundamentals they need for strong cybersecurity. He also discusses the evolving role of CISA and the importance of making threat intelligence and resources broadly accessible to help organizations of all sizes strengthen their cybersecurity posture.
    Show more Show less
    33 mins
  • Mobilizing Main Street: Inside the Cyber Civic Engagement Program

    Mobilizing Main Street: Inside the Cyber Civic Engagement Program
    Oct 30 2025
    In this episode of Safe Mode, Betsy Cooper, founding director of the Aspen Institute’s Policy Academy, details a new initiative designed to mobilize ordinary citizens as cybersecurity policy advocates. The Cyber Civic Engagement program, supported by Craig Newmark Philanthropies’ Take9 campaign, offers virtual training sessions to equip participants with effective communication techniques, policy writing know-how, and access to one-on-one advocacy coaching. As digital threats multiply, Cooper argues that community storytelling and grassroots engagement are essential tools for prompting government action and ensuring critical local services are protected.
    Show more Show less
    30 mins
  • A reset on information sharing

    A reset on information sharing
    Oct 23 2025
    Kevin Greene, chief cybersecurity technologist for the public sector at BeyondTrust, joins Greg to unpack the fallout from the recent lapse of the CISA information sharing bill and what it means for both public and private sector cyber defenses. The conversation dives into how the threat landscape has shifted since the bill’s original passage, the limitations of relying solely on indicators of compromise, and the need for more proactive, behavior-based analytics. Kevin shares insights on identity management—including the challenges of both human and machine identities—and emphasizes that meaningful information sharing must be modernized to stay relevant.
    Show more Show less
    35 mins
  • Rethinking resilience with WatchTowr CEO Benjamin Harris

    Rethinking resilience with WatchTowr CEO Benjamin Harris
    Oct 16 2025
    This episode of Safe Mode features a nuanced conversation with Ben Harris, CEO of Watchtower, who delves into the complexities of vulnerability management in today’s threat landscape. Harris discusses why traditional patching is no longer a guarantee of security, revealing how sophisticated attackers are staying persistent even after organizations update and remediate systems—particularly in the challenging context of edge devices and black-box appliances. Drawing on real-world research and recent incidents involving vendors like Oracle, Cisco, and Avanti, the interview highlights the urgent need for resilience, increased transparency from companies, and a cultural shift toward proactive detection.
    Show more Show less
    36 mins
  • What's it like to go through the FedRAMP process?

    What's it like to go through the FedRAMP process?
    Oct 9 2025
    This week on Safe Mode, we talk with Scott Montgomery, VP of Federal at Island, about the realities of achieving FedRAMP authorization. Scott demystifies the often daunting FedRAMP process, shares lessons learned from real-world experience, and reveals the biggest pitfalls organizations face. From data sensitivity requirements to the growing importance of automation in security compliance, this episode is essential listening for anyone navigating federal cloud standards or considering a move into the government tech space. In our reporter chat, Greg talks with Matt Kapko about a whirlwind week around Clop's targeting of Oracle.
    Show more Show less
    31 mins
  • Andesite's Brian Carbaugh on how lessons from the CIA can power an AI-powered SOC

    Andesite's Brian Carbaugh on how lessons from the CIA can power an AI-powered SOC
    Oct 2 2025
    In this week's episode of Safe Mode, Greg Otto talks with Brian Carbaugh, CEO of Andesite, who reveals how lessons learned in the CIA are transforming Andesite’s unique, human-first approach to AI-driven cybersecurity. Carbaugh shares behind-the-scenes stories about building a “bionic SOC,” where cutting-edge artificial intelligence works seamlessly with analysts, amplifying their skills, streamlining investigations, and making security operations not just more efficient but genuinely exciting. In our reporter chat, Greg and Matt Kapko dive into a week's worth of critical vulnerabilities and government emergency directives, and how enterprises have responded in kind.
    Show more Show less
    27 mins
  • Censys’ Silas Cutler on how adversaries chain vulns together for big attacks

    Censys’ Silas Cutler on how adversaries chain vulns together for big attacks
    Sep 25 2025
    In this episode of Safe Mode, Greg talks with Silas Cutler, principal security researcher at Census, how ransomware attackers chain together overlooked vulnerabilities, especially in platforms like SharePoint, and why patch fatigue leaves defenders at risk. Silas breaks down advanced ways criminals maintain access even after patches, and explains what makes government and critical sectors prime targets. We discuss the real challenges of incident response, threat intelligence, and preventing long-term damage—especially in complex cloud and hybrid environments. In our reporter chat, Greg talks with Tim Starks about two marquee stories this week: a look at how the government information sharing law renewal has sputtered, and a new China-linked espionage campaign has researchers sounding the alarms. https://cyberscoop.com/cyber-threat-information-law-hurtles-toward-expiration-with-poor-prospects-for-renewal/
    Show more Show less
    27 mins