Shows
The FedNinjasEpisode 28: "AI Guardrails: Navigating Secure and Responsible AI Deployment"The AI revolution is here, but how do we ensure it's safe? Join Fed Ninjas and Birdie Green as we explore the critical concept of "AI guardrails." Discover what they are, why they're essential for secure adoption, and how organizations are implementing risk management, continuous monitoring, and ethical frameworks to build trustworthy AI systems.2025-05-2625 min
The FedNinjasEpisode 27: "Compliance as a Growth Strategy: Kenny Scott on Building Trust at Scale"In this episode, we sit down with Kenny Scott, CEO and Co-founder of Paramify, to explore how compliance is evolving from a regulatory burden into a powerful business enabler. Kenny shares insights from his journey through startups, enterprise sales, and leading a team that helps organizations operationalize frameworks like FedRAMP and NIST. Learn how Paramify is transforming manual security reviews into scalable, software-driven processes that build trust faster and unlock growth.2025-05-2649 min
The FedNinjasEpisode 26: "When Machines Outnumber People: Securing Non-Human Identities"Machine identities now outnumber human users, creating a massive, under-addressed cybersecurity risk. In this episode, Sagi Haas and Andrew Luhrmann of Clutch Security break down the critical need for non-human identity (NHI) management. We explore how unmanaged service accounts, API keys, and OAuth tokens drive real-world breaches — and what security teams can do about it. From gaining visibility to changing developer culture, learn why non-human identity management must become a core pillar of your cybersecurity strategy.2025-05-2621 min
The FedNinjasEpisode 25: "Defending the Cyber Frontier"In this episode of Fed Ninjas, we welcome cybersecurity expert Anthony Horn to discuss the fast-paced world of Security Operations Centers (SOCs). Anthony shares his journey from intern to SOC analyst, the importance of incident response, and the evolving tactics of cyber threats, including "living off the land" attacks. They explore the role of red and blue teams, AI-driven threats, and the critical need for cybersecurity awareness. Anthony also offers insights on career paths, networking, and hands-on learning to break into the field.2025-04-0125 min
The FedNinjasEpisode 24 "Revolutionizing Cybersecurity Education: A Conversation with Craig Taylor of CyberHoot"Discover how Craig Taylor, CEO of CyberHoot, is revolutionizing cybersecurity education with gamification and positive reinforcement. Learn how CyberHoot’s innovative training methods empower individuals and businesses to build cyber resilience.2025-03-3138 min
The FedNinjasEpisode 23 "AI, Cybersecurity & The Future of Data Protection"In this episode, Bertie Green joins us as we dive deep into the intersection of AI adoption, cybersecurity, and enterprise risk management. Our experts discuss the biggest challenges and opportunities organizations face when integrating AI into their workflows. Topics include: The AI Consumption Dilemma – Should companies build their own AI models or use off-the-shelf solutions? AI Security Risks – Data loss prevention, unauthorized access, and AI-powered threats. LLM Poisoning & Prompt Injection Attacks – How bad actors can manipulate AI models. 2025-03-3128 min
The FedNinjasEpisode 22 "Cyber Ready for 2025!"Maurice and Eric discuss cyber security issues that are top of mind for security leaders going into 2025 and give an overview of some of the upcoming topics to be expanded in the next episodes.2025-02-2516 min
The FedNinjasEpisode 21: "Navigating the AI Frontier: Practical Applications, Security, and Ethical AI Deployment - with Bertie Green"In this episode of Fed Ninjas, we discuss the emerging impact of AI tools like Google Notebook LM on modern workflows and how AI can transform content creation by turning documents into engaging podcast formats and discuss the practical applications and potential implications of these technologies in various professional settings. The conversation also touches upon the importance of responsible data stewardship and security, emphasizing the need for companies to balance innovation with safety. Lessons from historical technologies, such as the printing press and early digital cameras, are used to illustrate how disruptive tech can create new opportunities while maintaining...2024-11-0218 min
The FedNinjasEpisode 20: "Bridging Sales and Security - A CISSP Journey, Trust in Relationships, and Navigating Technological Challenges - with Bertie Green"In this discussion, Bertie shares his journey in studying for the CISSP certification and validates her learning method. The conversation dives into the potential disconnects between sales and customer needs, emphasizing the importance of relationships, trust, and governance in sales. The group discusses effective after-action reviews, leveraging AI in identity protection, and addressing shadow IT. They highlight the importance of policy, organizational culture, and maintaining communication within companies. Additionally, the conversation explores the role of fractional executives and strategies to avoid pitfalls in adopting new technologies or approaches.2024-11-0235 min
The FedNinjasEpisode 19: "Prioritizing Foundational Security Measures - with Bertie Green"Bertie Green joins us for our monthly round table to talk about diverse topics cybersecurity challenges, including leadership strategies, change management and the importance of prioritizing foundational security measures over advanced solutions, drawing parallels to human behavior and organizational dynamics. We also touch on risk management, adaptability, and effective communication within teams.2024-10-0325 min
The FedNinjasEpisode 18: "Framing Cybersecurity Risk for Business Professionals - with Merritt Baer"In this episode of Fed Ninjas, we were joined by cybersecurity expert Merritt Baer, whose experience includes advising both young startups and Fortune 100 banks on cloud security and go-to-market strategies. Her background includes roles at the Federal Communications Commission, the U.S. Department of Homeland Security, and more.In this episode we discuss framing cybersecurity in terms of business risk and outcomes to effectively communicate with C-suite executives; The growing emphasis on SaaS security and edge computing observed at the recent RSA conference; the need for innovative approaches to cybersecurity management, particularly in the face of rising...2024-05-2429 min
The FedNinjasEpisode 17: "Dr. Sin Ming Loo - Preparing the Next Generation of Cybersecurity Workers"In this episode, Dr. Sin Ming Loo of Boise State University discusses education and skill development for workforce readiness and its challenges, namely integrating theory with practice, especially in online programs. We also discuss the importance hands-on experience, beyond certifications. Dr. Loo also cautions against over-reliance on AI, emphasizing genuine learning and critical thinking. We also talk about the importance of resilience and attitude in making hires in cybersecurity, where real-world application and ongoing learning are critical, this includes the need for collaboration, fundamental education, and adapting to emerging trends, in the cybersecurity landscape. Thanks Dr. Loo, for your...2024-05-1542 min
The FedNinjasEpisode 16: "AI Innovation and Ethical Growth: A Conversation with Jasen Meece, CIO of Clutch Solutions - Pt. 2"In the second part of the discussion with Jasen Meese, we discuss how AI has ramped up the velocity of change; The need for academia and commerce to work with each other to address its effects on market competition and trends; The importance of constant experimentation and adaptation to remain competitive in the tech landscape; The challenges of the AI market and the importance of cultivating an innovative culture within teams. A future where innovation in AI is widespread and democratizes technological advancement, and more.2024-05-0825 min
The FedNinjasEpisode 15: "AI Innovation and Ethical Growth: A Conversation with Jasen Meece, CIO of Clutch Solutions - Pt. 1"In this episode, we visit with Jasen Meese, tech exec and CIO of Clutch Solutions, a Native American minority-owned company. We dive into leveraging AI for business growth and how AI can be integrated into operations, enhancing marketing, legal contract review, and cybersecurity. We also talk about some of the challenges that include ethical AI development, addressing bias, and data privacy and the balance between innovation and customer service. Other topics include: Measures in place for GDPR compliance, data security, and privacy protection; Continued collaboration with academia and industry for AI advancements; Exciting prospects in AI-driven solutions for customers...2024-05-0826 min
The FedNinjasEpisode 14: "Bertie Green - The Value of Diverse Experience"Bertie Green visits with the FedNinjas for a discussion about the importance of sales in cybersecurity and the value of diverse experiences; The misconception that success hinges solely on prestigious education rather than hard work and varied backgrounds; The importance of integrity, holistic understanding, and customer relationships; The risks of tech "Frankensteins" and short-term solutions that lead to tech debt; The need for thoughtful, intentional approaches in both sales strategies and security practices…and more!2024-05-0823 min
The FedNinjasEpisode 13: " Bindi Davé - What's Your Starting Point?"In this episode, we discuss the cybersecurity landscape with Bindi Davé, particularly why understanding your starting. She shares the equation of risk: Threat + Vulnerability, shedding light on how it dictates the trajectory of every organization's cybersecurity journey; the need of collaboration to navigate the dangers of assumptions in building robust relationships within and beyond organizational boundaries and much more! 2024-05-0835 min
The FedNinjasEpisode 12: "Drew Williams - The Fundamentals First"In this episode we delve into the world of cybersecurity and risk management with Drew Williams, a distinguished author, GRC & Cybersecurity Consulting Expert, and US Navy veteran. Drew's extensive experience includes contributing to the development of regulatory frameworks like HIPAA and Sarbanes Oxley. Throughout our conversation, Drew emphasizes the criticality of prioritizing protection against "the most likely" scenarios and underscores the significance of well-defined processes, heightened awareness, and robust controls. We also explore the evolving role of Chief Information Security Officers (CISOs) and the perilous consequences of prioritizing profits over essential risk mitigation measures for clients. Tune in as...2024-05-0826 min
The FedNinjasEpisode 11: "Embracing Continuous Learning - Featuring Bertie Green - Part 2"Join us for the next installment of our conversation with Bertie Green as we explore the indispensable value of continuous learning and its pivotal role in steering clear of irrelevance. In this episode, Eric and Bertie delve into their personal learning journey, offering insights helpful for cybersecurity professionals navigating the dynamic currents of today's ever-evolving landscape.2024-05-0831 min
The FedNinjasEpisode 10: "Embracing Continuous Learning - Featuring Bertie Green - Part 1"Welcome to Episode 10, where we dive into the vital role of continuous learning with Bertie Green. As a Chief Technologist and CISO advisor, Bertie sheds light on the critical role of education in safeguarding organizations against cyber threats. Join us as we explore topics ranging from the psychological tactics employed by hackers, such as leveraging emotion and exploiting phishing fatigue, to the imperative task of CISOs in establishing a unified language within their organizations. Tune in for a compelling discussion on the indispensable need for perpetual learning in the ever-evolving landscape of cybersecurity.2024-05-0827 min
The FedNinjasEpisode 9: "A Discussion on Artificial Intelligence (AI) with Joe Sullivan"Joe Sullivan is the former Chief Security Officer at industry giants like Cloudflare, Facebook, and Uber, joins us to share invaluable insights on the safe utilization of AI within companies. Throughout our discussion, we explore critical considerations such as monitoring and controls, security protocols, prompt injections, and more. Join us as we navigate the intricate landscape of AI implementation and safeguarding strategies.2024-05-0822 min
The FedNinjasEpisode 8: "The Essentials of FedRAMP Continuous Monitoring"In this episode, we explore the critical role of continuous monitoring within the FedRAMP framework, including the ongoing processes for system certification and accreditation, security event management, and other essential subjects required for effective monitoring.2024-05-0815 min
The FedNinjasEpisode 7: "Preparing for a FedRAMP SaaS Cloud Authorization with FedRAMP"If you're looking to break into the federal market with your SaaS application, this episode is your guide. We're diving into the FedRAMP authorization process, starting with securing management commitment, crafting your System Security Plan, and aligning with a federal agency to ensure you have a supportive customer for your journey. Join us as we lay down the roadmap for navigating the complexities of FedRAMP, ensuring your SaaS solution is ready for federal adoption2024-05-0813 min
The FedNinjasEpisode 6: "The Human Factor of Information Security"Eric and Maurice discuss the critical role of human elements in security systems, highlighting the importance of matching the right people with the right roles to prevent negative impacts on companies and their clients. They explore how human factors integrate with technological protections, stressing the need for thorough testing and alignment to ensure the safety of information and assets. The episode offers insightful perspectives on the relationship between security practices and human involvement, valuable for both professionals and enthusiasts.2024-05-0819 min
The FedNinjasEpisode 5: "What Can a College Student Expect in the Cybersecurity Job Market"In this episode, we're joined by college student Dillon Smith, who explores the current state of the cybersecurity job market and what students in this field need to know to get ready.2024-05-0825 min
The FedNinjasEpisode 4: "Crafting your IT Contingency Strategy"This episode delves into the crucial importance of I.T. contingency planning, underscored by historical events such as 9/11. We'll break down the essentials of preparing for the unexpected, focusing on two key components: disaster recovery and business continuity.2024-05-0816 min
The FedNinjasEpisode 3: "Understanding Federal Cloud Authorization: Dive into the distinctions between FedRAMP's Joint Authorization Board (JAB) authorization and an agency-sponsored Authority to Operate (ATO)"Joint Authorization Board (JAB) authorization or agency-sponsored Authority to Operate (ATO) - Which is preferable? Join us as we unravel the complexities of ATO, exploring the differences, required documentation, analysis, and key contacts necessary for success in the federal cloud authorization process.2024-05-0817 min
The FedNinjasEpisode 2: "The Evolving role of CISO's in the Marketplace"In this episode, we speak with Corey Epps, former CISO and current Consultant and Entrepreneur. With the average tenure of a CISO between 18-24 months, Corey shares some of the things CISOs will need to consider given today’s environment. This includes changes he has experienced in recent months; the benefits of Advisory roles; and thoughts on impactful prioritization.2024-05-0831 min
The FedNinjasEpisode 1: "What's Needed to See Cloud Services to Government Agencies?"Welcome to the inaugural episode of FedNinjas. In this episode we talk about FedRAMP, the process your company must go through in order to be authorized to sell cloud services to government agencies. Some of the topics government entities will need include the type of security the cloud system has to secure their data; contractual language of security measures; security survey to be completed; industry standard security certifications, and more.2024-05-0817 min