Look for any podcast host, guest or anyone
Showing episodes and shows of

Raj Krishnamurthy

Shows

Security & GRC Decoded
Security & GRC DecodedScaling GRC Without the Chaos: How to Build Programs That Don’t Break ft Tom Scuderi, Senior Manager of Security & GRC @ LTKIn this episode of Security & GRC Decoded, host Raj Krishnamurthy sits down with Tom Scuderi, Senior Manager of Security & GRC at LTK and a veteran practitioner who has spent his career building governance functions at QTS, Tableau, Salesforce, and LTK. Tom shares how to scale GRC in high-growth environments by designing processes that resemble engineering workflows, reducing friction with stakeholders, and shifting from reactive audits to continuous visibility. He breaks down why curated visibility beats blanket access, why SOC 2 should sharpen—not dilute—your security program, and how...
2025-12-1656 minSecurity & GRC Decoded
Security & GRC DecodedControls Are Promises: Rethinking GRC for Modern Security ft Sergio Alonso @ Rapid7In this episode of Security & GRC Decoded, host Raj Krishnamurthy sits down with Sergio Alonso, a seasoned GRC and information security leader at Rapid7, whose 17–year career spans auditing, high-regulation banking, blockchain innovation at Akamai, privacy GRC at Twitter, and now trust and governance in cybersecurity. Sergio breaks down how to translate legacy compliance thinking into modern engineering-aligned practices, why automation is the only scalable path forward, and how controls should be treated as “promises” that teams must honor every day. This conversation explores scaling GRC in high-velocity environments, reducing compliance fatigu...
2025-12-0256 minSecurity & GRC Decoded
Security & GRC DecodedHow Pragmatic Controls Build Trust Between GRC, Security, and Engineering ft Mukund Sarma, Deputy CISO @ ChimeIn this episode of Security & GRC Decoded, host Raj Krishnamurthy sits down with Mukund Sarma, Deputy CISO and Head of Product Security at Chime, to explore what happens when governance, risk, and compliance teams work with engineering instead of against it. Mukund shares real-world lessons from a decade in security, explaining how to balance shift-left initiatives, build paved paths that reduce friction, and make compliance a natural byproduct of great engineering. This is a masterclass in aligning security, GRC, and DevOps for scale and sanity.5 Key Takeaways
2025-11-1356 minSecurity & GRC Decoded
Security & GRC DecodedHow to Build Trust Between GRC and Engineering ft Tristan Ingold, Security GRC Program Manager at MetaHow do you build real trust between GRC and engineering? In this episode of Security & GRC Decoded, host Raj Krishnamurthy welcomes Tristan Ingold, Security GRC Program Manager at Meta. Tristan shares how consulting shaped his approach, why “policing” doesn’t work, and how GRC earns influence by acting as a partner to engineering -- not a blocker.He discusses the cultural friction between audit, security, and product teams, how to communicate in the language of engineering, and why the right role for GRC is a “sparring partner” that helps teams ship safer, fas...
2025-10-3057 minSecurity & GRC Decoded
Security & GRC DecodedRethinking Risk: Data-Driven Decisions for Modern CISOs ft Tony Martin-VegueIn this episode, Raj Krishnamurthy speaks with Tony Martin-Vegue, seasoned risk practitioner, speaker, and co-chair of the FAIR Institute San Francisco chapter. Tony shares decades of lessons learned from leading cyber risk management at Netflix, Gap, and other major enterprises—showing how to move from qualitative heat maps to quantitative insights that drive smarter business decisions.He breaks down Monte Carlo simulations, risk modeling, and the six levers that influence risk—all through a practical, approachable lens. Tony also explores how generative AI is transforming risk...
2025-10-161h 00Security & GRC Decoded
Security & GRC DecodedWhy GRC Is More Than Compliance with Kenneth Moras | Head of Security GRC | PlaidIn this episode of Security & GRC Decoded, host Raj Krishnamurthy sits down with Kenneth Moras, Head of Security GRC at Plaid. Kenneth shares his journey from web developer and pen tester to building GRC and assurance teams at scale across leading companies like Adobe, Meta, and now Plaid.The conversation explores how GRC must balance governance, risk, and compliance as distinct but interdependent functions — and why great programs require clarity, collaboration, and simplicity. Kenneth also di...
2025-10-021h 19Security & GRC Decoded
Security & GRC Decoded“This GRC Space is Hot!” with Varun Gurnaney, Staff Security Engineer at AppleHow does a software engineer become a GRC leader? In this episode of Security & GRC Decoded, host Raj Krishnamurthy welcomes Varun Gurnaney, Staff Security Engineer at Apple. Varun shares his journey from writing janky Python scripts for compliance evidence collection to shaping the discipline of GRC engineering at some of the world’s biggest companies.He discusses the cultural and technical gaps between security, engineering, GRC, and audit — and how automation can bridge them. From building one control really well to proving value through audit automation, Varun lays out why the GRC space is hotter than...
2025-09-1153 minSecurity & GRC Decoded
Security & GRC DecodedRisk in Dollars: The Future of GRC MeasurementHow does a network engineer become a GRC leader? Ramya Subramanian’s journey spans nearly two decades across IT, security, and governance. Now serving as Director of GRC & Privacy Operations at Freshworks, she joins Raj to unpack the evolving role of GRC: from quantifying risk and managing compliance debt to building automation that doesn’t slow engineering down.Ramya also shares how storytelling, PR-style evangelism, and simplifying policies can shift the perception of GRC from policing to business enabler. This episode is a playbook for anyone trying to modernize risk and compliance in fast...
2025-09-0454 minSecurity & GRC Decoded
Security & GRC DecodedCompliance ≠ Security: It Sets the Foundation ft Evan Millman, Security GRC Manager @ Abnormal AIWhat’s the true relationship between compliance and security? According to Evan Millman, compliance may not be security—but it’s the necessary starting point for building it.In this episode, Raj sits down with Evan to explore how organizations can shift their GRC approach from reactive checkbox checking to a proactive and risk-informed security practice. Evan shares stories from his work at Abnormal.AI, lessons from scaling GRC in fast-moving environments, and practical advice for anyone trying to align controls with business objectives.5 Key Takeaways:Compliance is not th...
2025-08-211h 13Security & GRC Decoded
Security & GRC DecodedCyber Economics and Keeping Up with Innovation ft Trupti Shiralkar (Cybersecurity Leader & Advisor)What trade-offs are you willing to make in cybersecurity? In this episode of Security & GRC Decoded, host Raj Krishnamurthy is joined by Trupti Shiralkar, a seasoned cybersecurity leader and Advisory Board Member at Backslash Security, to explore how risk, ROI, and real-world constraints shape modern security programs. With decades of experience across AppSec, security architecture, and risk governance, Trupti brings a rare blend of deep technical insight and strategic thinking.They dive into cyber economics, AI-driven tooling, and why security storytelling may soon m...
2025-08-0759 minSecurity & GRC Decoded
Security & GRC DecodedWhy Security And GRC Teams Must Act Like Service Teams ft Jiphun Satapathy from MedalliaJiphun Satapathy has built and scaled security organizations at AWS, Snowflake, and now Medallia. In this episode, he joins our host Raj to explore the evolving role of CISOs as strategic business leaders. They discuss the importance of treating security as a service organization, how to handle vendor noise, and why insider risk is often overlooked. You’ll hear practical advice for security and GRC leaders working in AI-first, high-growth environments—and how...
2025-08-051h 13Security & GRC Decoded
Security & GRC DecodedPreetam Joshi Breaks Down ML, LLMs, AI Agents, and Governance ChallengesHow do you make sense of security, governance, and risk in an age of black-box AI? This week, Raj is joined by Preetam Joshi, founder of Aimon Labs and machine learning veteran with experience at DRDO, Yahoo, Netflix, and Thumbtack. Together, they break down the technical evolution behind large language models (LLMs), explore the real challenges of explainability, and discuss why GRC teams must rethink risk in the age of autonomous reasoning systems.Preetam brings a rare mix of hands-on ML expertise and...
2025-07-1058 minSecurity & GRC Decoded
Security & GRC DecodedRGC, Not GRC: Why Risk Comes First ft Ricky WaldronWhat if compliance wasn't just about passing audits—but about building trust from the ground up?In this powerful episode of Security & GRC Decoded, Raj sits down with Ricky Waldron, Director of Security Audit & GRC at Navan, whose GRC experience spans tech giants like Microsoft, Disney, Oracle, and Smartsheet. Ricky shares how GRC is evolving into a strategic business partner, why automation and technical fluency are no longer optional, and what it takes to make compliance an engine of tr...
2025-06-261h 19Security & GRC Decoded
Security & GRC DecodedWhat Does ‘Technical’ Even Mean in GRC? ft Alan Luk @ GrammarlyIs it time to stop pretending GRC is technical? Alan Luk makes the case for a new kind of compliance leader—and it might surprise you.In this sharp and unfiltered episode of Security & GRC Decoded, Alan Luk, Director of GRC at Grammarly (and former Microsoft and PwC leader), joins Raj to dismantle common myths about GRC—and why even your engineers might be thinking about it all wrong.Drawing from over 20 years of experience, Alan makes the case for why GRC should be seen as a program management function, not a technical one—...
2025-06-121h 10Security & GRC Decoded
Security & GRC DecodedNo More Compliance Theater: Meet Real Security Compliance with Adam BrennickIs it time to rethink SOC 2? (Spoiler: Adam thinks so—and he’s got the receipts.) In this insightful episode of Security & GRC Decoded, Adam Brennick, Director of Security Risk & Compliance at Cockroach Labs, joins Raj to challenge the status quo of SOC 2, compliance culture, and how GRC teams should operate in a modern, engineering-driven world.With a unique perspective from leading both security and GRC functions, Adam shares why today’s compliance efforts often miss the mark—and how we can fix that. From his...
2025-05-291h 19Security & GRC Decoded
Security & GRC DecodedCan Compliance Be Cool? Harness's Andrew Spangler Thinks SoIn this episode of Security and GRC Decoded, Raj Krishnamurthy sits down with Andrew Spangler, Director of Security and GRC at Harness, to explore how compliance engineering can go far beyond checkboxes—and actually drive innovation.Andrew shares his journey from building the compliance engineering function at Datadog to scaling automation and visibility across the SDLC at Harness. He dives into how using internal platforms for security workflows (aka “drinking your own champagne”) can unlock time savings and risk reduction, especially in areas...
2025-05-1554 minSecurity & GRC Decoded
Security & GRC DecodedFrom Compliance to SBOMs: Josh Bressers’ Take on SecurityIn this episode, Raj Krishnamurthy sits down with Josh Bressers, VP of Security at Anchore and longtime leader in the open source security space. With decades of experience, Josh brings a candid and compelling perspective on everything from the chaos of early cybersecurity days to the nuanced challenges of SBOMs and compliance in today’s world.Josh reflects on how he entered the security world before there were formal certifications or programs, how community and curiosity fuel innovation in open source, and why the relationships you build are often the most va...
2025-05-011h 05Security & GRC Decoded
Security & GRC DecodedFrom Cruise to Whatnot: Kieran Pierman’s GRC PlaybookIn this episode, Raj Krishnamurthy sits down with Kieran Pierman, GRC & Security at Whatnot, and a former security, risk and compliance leader at Cruise and Dropbox, to explore fresh perspectives on Security & GRC. Kieran opens with a bold stance: data breaches, while critical, aren't the top threat they used to be. Instead, he argues, maintaining availability and service uptime is now paramount. Drawing from his unique experience building the foundational GRC program at Cruise, a pioneering self-driving car company, Kieran reveals how managing cybersecurity risks took on profound urgency—literally life-and-death implications—when securing autonomous vehicles. Th...
2025-04-171h 02Security & GRC Decoded
Security & GRC DecodedIs Your GRC Team Technical Enough? (Probably Not...) ft. Jeevan Singh @ RipplingEver wondered if your GRC team should be writing code? (Spoiler alert: Jeevan thinks they probably should.) In this eye-opening episode of Security & GRC Decoded, Jeevan Singh, Director of Security Engineering at Rippling, joins Raj to challenge traditional views of Governance, Risk, and Compliance (GRC). Jeevan passionately argues why GRC teams must become more technical, automated, and deeply integrated into engineering processes to truly protect and enable businesses. Drawing from his experience at Segment and Rippling, he provides actionable insights and real-world examples to transform compliance from a bureaucratic burden into a proactive, engineering-driven function. ...
2025-04-031h 09Raj Shamani\'s Figuring Out
Raj Shamani's Figuring OutWhat Makes Toppers Different, JEE vs NEET & Future of EdTech - Ujjwal Singh | FO333 Raj ShamaniCheck Out Infinity Learn: https://tinyurl.com/rswb25Guest Suggestion Form: https://forms.gle/bnaeY3FpoFU9ZjA47Disclaimer: This video is intended solely for educational purposes and opinions shared by the guest are his personal views. We do not intent to defame or harm any person/ brand/ product/ country/ profession mentioned in the video. Our goal is to provide information to help audience make informed choices.Order 'Build, Don't Talk' (in English) here...
2025-03-251h 25Security & GRC Decoded
Security & GRC DecodedWhy GRC Teams Are Failing — And How to Fix It with Shobhit MehtaIn this episode, Raj Krishnamurthy interviews Shobhit Mehta, Director of Security and Compliance at Headspace, to uncover valuable insights into the evolving world of Governance, Risk, and Compliance (GRC). Shobhit shares his controversial perspective on GRC teams overburdening themselves, emphasizing the need for GRC professionals to expand their technical expertise and embrace a product management mindset. The conversation dives into proactive strategies for GRC success, the importance of integrating privacy into compliance frameworks, and actionable tips for achieving High Trust certification on a budget. Shobhit also reflects on how his endurance sports journey has shaped his approach...
2025-03-2055 minSecurity & GRC Decoded
Security & GRC DecodedEngineering Better Relationships: Why We Should Shift GRC Left w/ Ayoub Fandi @ GitlabIn this episode of Security & GRC Decoded, host Raj Krishnamurthy (CEO of ComplianceCow) sits down with Ayoub Fandi, a Staff Security Assurance Engineer at GitLab and co-author of the GRC Engineering Manifesto, for a deep dive into the evolution of GRC through an engineering lens. Ayoub shares how his background in consulting and cloud-native startups led him to question the traditional, checklist-heavy approach to GRC—and why embracing real-time data, automation, and developer-friendly processes is the key to building stronger security and compliance programs. He also reveals his controversial perspective on external certifications—explaining why they can some...
2025-03-0652 minSecurity & GRC Decoded
Security & GRC DecodedSecurity Unfiltered: Carlos Batista on GRC, Leadership, and Risk RealitiesIn this episode of Security & GRC Decoded, host Raj Krishnamurthy, CEO of ComplianceCow, sits down with Carlos Batista—former CISO and AWS Security Engineering Leader—to explore the evolving landscape of security, governance, and risk management. Carlos shares his journey from leading security in highly regulated industries like banking and energy to championing large-scale security engineering at AWS. Together, they discuss how effective GRC programs can move beyond “checkbox” compliance to become true business enablers—accelerating growth, deepening customer trust, and supporting innovation across the enterprise. Key takeaways include: ✅ Security Awareness & Practical Investments: Why Carlos belie...
2025-02-201h 02Security & GRC Decoded
Security & GRC DecodedSecurity, Compliance & Customer Trust: The Evolution of GRC at Scale | feat. Abhay Kshirsagar from SalesforceIn this episode of Security & GRC Decoded, host Raj Krishnamurthy, CEO of ComplianceCow, sits down with Abhay Kshirsagar, Director of Security Services and Tools at Salesforce, to explore the evolving landscape of security, compliance, and customer assurance. Abhay shares his journey from IT audit and risk advisory to leading compliance automation, continuous monitoring, and customer assurance at industry giants like Cisco and now Salesforce. They discuss how compliance programs can move beyond checkboxes to become strategic enablers of business growth, unlocking new markets, influencing revenue, and strengthening customer trust. Key takeaways include: ✅ Compliance Automation & Ris...
2025-02-0652 minSecurity & GRC Decoded
Security & GRC DecodedNavigating DeepSeek’s AI Risks: Insights for Security & Compliance TeamsIn this episode of Security & GRC Decoded, Raj Krishnamurthy, CEO of ComplianceCow, sits down with Walter Haydock, CEO of StackAware, to discuss the evolving landscape of AI security, governance, risk, and compliance (GRC). Walter shares insights on emerging AI threats, the importance of ISO 42001 certification, and the challenges organizations face when integrating AI into their security and compliance programs. Key topics include: DeepSeek and AI Privacy Risks Regulatory Challenges in AI Security & Compliance The Intersection of AI Governance and GRC Building a Business Case for AI Security Programs How Security & GRC Teams Can Adapt to Rapid...
2025-02-0640 minSecurity & GRC Decoded
Security & GRC DecodedFrom Risk-Based to Trust-Based: Evolving GRC with Netflix’s Mosi PlattIn the premiere episode of Security & GRC Decoded, host Raj Krishnamurthy sits down with Mosi Platt, Senior Security Compliance Engineer at Netflix, to explore his unconventional journey into security and governance, risk, and compliance (GRC). From his first exposure to computers in his aunt’s home lab to becoming a leader in IT audits and compliance, Mosi shares the pivotal moments that shaped his career. Together, they unpack the realities vs. myths of security governance, why risk quantification is still an unresolved debate, and how security and GRC teams can move from reactive compliance to proactive trust-building. Th...
2025-02-061h 03Work Made Easy
Work Made EasyEpisode 9 | John HoffmireThis month’s episode features John Hoffmire, Chairman of Cadence Innova and co-author of the book 'Work Made Easy'. John's journey from academia to consulting enriches the discussion on workplace dynamics. Reflecting on his collaboration with co-authors Parthajeet Sarma and Raj Krishnamurthy, John shares insights on employee ownership, AI at the workplace, and financial implications of hybrid work models. With a blend of theory and practice, he unveils strategies for effective workplaces and offers advice on future-proofing careers. From productivity hacks to career gambits, this episode packs in enlightening perspectives and actionable insights. Tune in. SHARE YOUR ST...
2024-05-0120 minThe Morning Brief
The Morning BriefIndia’s First Lady of ForensicsThe Morning Brief interviews India’s first woman forensic scientist Dr. Rukmani Krishnamurthy.Dr. Krishnamurthy was a feminist before feminism was a thing.When she got three job options: a clerical position at RBI, a teacher and a forensic scientist, she took up the last one because of one question asked during the interview “What will a woman do in forensics?” From detecting hazardous material as the root of a train accident to finding out critical details in the 26/11 terror attacks, Krishnamurthy’s story is many bestselling thrillers bound into one.  About six...
2023-03-0725 minCineulagam
CineulagamPonniyin Selvan-க்கு வந்த புது பிரச்சனை... | Chiyaan Vikram | Trisha | Aiswarya Rai | ManiratnamWATCH THE VIDEO HERE~https://youtu.be/ZAPt6YG-wPsPonniyin Selvan-க்கு வந்த புது பிரச்சனை... | Chiyaan Vikram | Trisha | Aiswarya Rai | Maniratnam  #PonniyinSelvan #Maniratnam #Karthi #ChiyaanVikram #Trisha #AiswaryaRai This is Cineulagam's Exclusive Video of Tamil Cinema Latest News & Updates, Cinema News, Celebrity Lifestyle News & Updates, etc. This Video Is About the Latest Update Of Ponniyin Selvan Movie. Ponniyin Selvan I also known as PS-I, is an upcoming Indian Tamil-language epic period drama film directed and co-produced by Mani Ratnam, under his production studio Madras Talkies, along with Allirajah Subaskaran under the banner Lyca Productions. It is the first of two cinematic parts based on Kalki Krish...
2022-05-2102 minThe DNA of Work
The DNA of WorkSwiss cheese buildingsDid the IPCC climate assessment report shock you? Are you wondering what your organisation can do to address carbon emissions and reduce your impact on the planet? There is undoubtedly an emergency but there are things we can do. In the face of new ways of working, with less people in the office, organisations are thinking about and planning for different levels of occupancy and trying to balance the ability to be flexible and responsive, with the need for some certainty around the requirements of those coming into the office. People are wondering how to make sure t...
2021-08-3129 minThe Virtual CISO Podcast
The Virtual CISO PodcastBridging the Gap Between Traditional Compliance & DevOPs w/ Raj KrishnamurthyTraditional compliance approaches have served us well for years… But they just don’t cut it anymore. We need an approach to compliance that moves at the speed of DevOps. Our guest today, Raj Krishnamurthy, is Founder, CEO and Engineer at ContiNube, where he is helping to bridge the gap between traditional compliance techniques and the agile, fast-paced world of DevOps. In this episode, we discuss: - Why traditional compliance tools are outdated to manage today’s rapidly shifting risks - The 5 pillars of bridging compliance and DevOps - How Raj and ContiNube are helping to tackle...
2021-08-1836 minRunning and Fitness With Raj
Running and Fitness With Raj# 23 – Patrick McKeown, world famous breathing expert, discusses nasal & Buteyko breathing methods, “BOLT” score, techniques to improve breathing and Covid-19 related breathing exercisesEpisode SummaryPatrick McKeown, world famous breathing expert, discusses nasal & Buteyko breathing methods, “BOLT” score, techniques to improve breathing and Covid-19 related breathing exercisesShow Notes01:50 – Patrick introduces himself and talks about the benefits of nasal breathing and Buteyko breathing method 08:45 – Concept of functional breathing13:45 – Patrick discusses the importance of carbon dioxide in breathing16:55 – “BOLT” score or Body Oxygen Level Test and how to measure it23:10 – How to transition to nasal breathing30:00 – Improving breathing techniques before races and pre-important workouts39:35 – Covid-19 related breathing exercises 45:00 – Quiz Time!48:45 – Rec...
2020-10-1152 minWork Inspired - A BOS Podcast
Work Inspired - A BOS PodcastSensor Technology Transforming the New Workplace - Raj Krishnamurthy, CEO, FreespaceThe world around us is changing and evolving at a rate that has never been seen; what does this mean for the office? Offices of all layouts are going to have to change their layouts one way or another to comply with CDC health and safety guidelines. Luckily, there is workplace technology to help guide this change. Raj Krishnamurthy, the CEO of Freespace, a workplace sensor technology company, walks us through the challenges that companies are facing and how something like Freespace can help guide the process for a new and safe office.
2020-06-2223 minStumped
StumpedIs mixed-gender cricket a good idea?How India's incredible victory over the mighty West Indies in the 1983 World Cup final ignited a nation's love affair with the game. Plus, is it a risky PR stunt or a worthy campaign? We speak to the organisers of a controversial mixed-gender match which is setting out to transform perceptions of the women's game in India.Photo: Veda Krishnamurthy, Harmanpreet Kaur, Mithali Raj and Virat Kohli (Credit: RCBTweets)
2019-04-2649 minVisionary Lifestyle Podcast
Visionary Lifestyle PodcastVLP S7 4 Krishnamurthy Mohan Raj: Yoga in ChinaGreetings Rainbow Warriors, I’m coming to you from beautiful Bali, Indonesia today. Happy Samhain, If you’re not familiar with this special day, listen up. "Samhain involves the celebration and festival of death and transformation. It occurs in late October and early November and is most popularly known as Halloween, All Hallows Eve, All Saints & All Souls including Day of the Dead. This is also a celebration for the new year in other practices of the world. Like many cultures celebrating the New Year is a time for letting go of the old and looking ahead to t...
2018-10-3134 min