Shows
Resilient CyberResilient Cyber w/ Wade Baker - Data Driven Incident Impact AnalysisIn this episode, I sit down with longtime industry researcher Wade Baker to dive into Cyentia's latest IRIS report. The report provides a data-driven look at incident trends, impacts, costs, and more.Are cyber incidents becoming more or less frequent? Are specific industries doing better than others? What does the average incident impact actually look like?Tune in to learn the answers, along with many other interesting insights!The report found that the number of security incidents continue to climb YoY, which isn’t a surprise, although there has been peaks an...2025-06-2345 min
The Elephant in AppSecCompliance in Cyber: Can Regulation and Innovation coexist?⎜Chris HughesToday, I’m joined by Chris Hughes, the CEO & Co-Founder of Aquia, a cybersecurity consulting firm supporting secure digital transformation for U.S. federal, state, and defense agencies. He previously served as a Cyber Innovation Fellow at CISA.Chris is also the co-author of Software Transparency and Effective Vulnerability Management (Wiley) books, and hosts the Resilient Cyber podcast and Substack. He's also a frequent speaker and commentator on AppSec, software supply chain security, and DevSecOps.In this episode, we unpack why compliance doesn’t equal security- but in its absence, the state of cybersecurity would be worse. We explore how...2025-05-2338 min
Inside the NetworkAndy Cao and Hugh Thompson: Inside RSAC 2025’s biggest moments and boldest ideasIn this RSAC special episode of Inside the Network, we sit down not with one, but two remarkable guests from the center of the cybersecurity world.First, we’re joined by Andy Cao, COO of ProjectDiscovery, a company focused on open-source vulnerability management tools, which won the "Most Innovative Startup" award at the RSA Conference 2025 Innovation Sandbox. Andy shares how ProjectDiscovery is reimagining vulnerability management in an AI-driven world, what set their pitch apart in the Innovation Sandbox, and how their attacker-first mindset is reshaping how security teams discover and fix real-world exposures. With over 1 million us...2025-05-2152 min
Be Fearless Podcast by SquareXSecurity Goes Mainstream: Hackers, Headlines & What's Next | Sid Trivedi & Ross HaleliukJoin us as we welcome Sid Trivedi (Partner at Foundation Capital) and Ross Haleliuk (Founder of a Stealth Security Startup and Author of Cyber for Builders), co-hosts of the "Inside the Network" podcast! In this conversation, they share investor and operator perspectives on cybersecurity trends and its evolution from technical obscurity to mainstream concern. Sid and Ross also explore how major incidents have changed public perception, why browsers are becoming critical battlegrounds, and what separates lasting innovation from opportunistic ventures in the security landscape.0:00 About Sid and Ross4:07 How cybersecurity awareness has evolved over 5 years8:42...2025-05-131h 04
Inside the NetworkDug Song: Values over valuation—reflections on building Duo Security and leading with purposeIn this episode of Inside the Network, we sit down with Dug Song, the legendary co-founder and former CEO of Duo Security. Dug's journey is nothing short of iconic—he turned a side project into a cybersecurity powerhouse with over 50,000 customers and a $2.35 billion exit to Cisco. In a world obsessed with unicorn status and funding hype, Dug stands out as a founder who stayed grounded in values, culture, and customer empathy.We explore Dug’s early years—from doing data entry in his father’s liquor store in West Baltimore to cutting his teeth at...2025-04-061h 25
Cybersecurity News & Analysis by Cyber Sidekicks - Your Weekly Update’S1E9 - $32 billion?? Gee Wiz! Cyber Sidekicks EP#9Episode Notes
SPECIAL EPISODE
This week is devoted to a deep-dive discussion about Google's announcement that it plans to acquire Wiz for $32 billion...!
The news has been reported extensively (like... everywhere), so we take a deeper dive into what may (or may not) be behind the move, what it means for Google, its cybersecurity strategy and more...
Links to some additional sources we reference:
Security Tinkerer Ross Haleliuk’s blog post from July 2024: The Wizard Of Cyber: what is behind Wiz's success and what got the security industry craving for magic...2025-03-2534 min
Keyboard SamuraiRoss Haleliuk - Emerging Business in CybersecurityRoss author of "Cyber for Creators" and host of Inside the Network sits down with Wil to discuss the emerging markets for cybersecurity, the VC landscape, product creation and a ton more in this episode.Find Ross: -Linkedin: https://www.linkedin.com/in/rosshaleliuk/-blog: https://ventureinsecurity.net/-podcast: https://insidethenetwork.co/Grab his amazon best seller: https://www.amazon.com/dp/173823410X/ref=tsm_1_fb_lk2025-03-1325 min
Inside the NetworkJeetu Patel: Cisco’s AI-powered cybersecurity futureIn this episode of Inside the Network, we sit down with Jeetu Patel, Cisco’s Executive Vice President and Chief Product Officer. Jeetu previously led Cisco’s Security and Collaboration business units. Under his leadership, these divisions have become major growth engines fueled by AI-driven innovation, strategic acquisitions, and a renewed focus on user experience.With a market cap of $250 billion and a security business generating $10 billion in revenue, Cisco is evolving into a different kind of startup, one that moves with speed and urgency. Jeetu shares why he joined Cisco to spearhead this tran...2025-03-051h 02
Inside the NetworkShlomo Kramer: A playbook for building three multi billion-dollar cybersecurity companies - Cato Networks, Check Point, and ImpervaShlomo Kramer, CEO and co-founder of Cato Networks is a rare bird in the cybersecurity industry, having built three unicorns in his career. For many in the cybersecurity industry, Sholmo needs no introduction. One of the early pioneers in Israel’s cybersecurity startup ecosystem, what makes Shlomo remarkable is his ability to repeatedly build category-defining companies. He first co-founded Check Point, which pioneered the firewall category and today commands a $20 billion market cap. Then, seeing the shift to the cloud, he launched Imperva, focusing on web application security (WAF). That was his second IPO. Now with Cato Networks, he's cr...2025-02-0347 min
Cloud Security PodcastCybersecurity Isn’t Crowded: Security Engineering and the 5,000 Vendor ProblemIn this episode our host Ashish Rajan sat down with Ross Haleliuk, author of Cybersecurity for Builders and creator of the Venture in Security blog, to explore the current state and future of the cybersecurity industry. From understanding the challenges of building a cybersecurity startup to the dynamics of security engineering and market trends for 2025. Ross and Ashish explore why the cybersecurity industry isn’t as crowded as it seems and the divide between companies that build in-house security and those that rely on vendors.
Ross also unpacks why sales and marketing aren’t “dirty words” in cybersec...2025-01-101h 10
CISO Tradecraft®#213 - How to Build a Successful Cybersecurity Startup (with Ross Haleliuk)In this episode of CISO Tradecraft, host G Mark Hardy interviews Ross Haleliuk, author of 'Cyber for Builders: The Essential Guide to Building a Cybersecurity Startup.' Ross shares valuable insights on starting a cybersecurity company, and emphasizes the importance of understanding market needs, customer engagement, and trust in the industry. They discuss the role of angel investors, the differences between product and service companies, and the challenges founders face. The episode also includes an announcement about CISO Tradecraft's partnership with CruiseCon for an upcoming cybersecurity conference. Additionally, Ross provides a glimpse into his non-traditional background and journey into...2024-12-3045 min
Inside the NetworkHamza Fodderwala: The future of cybersecurity — 2024 retrospective, 2025 predictions and what founders need to knowIn this holiday episode special, we’re joined by Hamza Fodderwala, Executive Director at Morgan Stanley, where he leads cybersecurity equity coverage. He joined Morgan Stanley's software research team in early 2016 and leads coverage for public cybersecurity companies like Palo Alto Networks, CrowdStrike, Fortinet, SentinelOne, Okta, Zscaler, Cloudflare, Rapid7, Check Point, Qualys, Varonis and Tenable. Before Morgan Stanley, Hamza was an equity research associate at Susquehanna International Group covering the financial technology sector. Hamza graduated from New York University, with a Bachelor of Arts in Economics.We dive into Hamza’s insights on the majo...2024-12-2957 min
Inside the NetworkKumar Saurabh: Building Sumo Logic, LogicHub, and AirMDR and why immigrants make great entrepreneursIn this episode, we sit down with Kumar Saurabh, CEO and co-founder of AirMDR, which provides a new approach to managed detection and response with an AI-powered virtual security analyst. A serial entrepreneur, Kumar has been at it for two decades. Before AirMDR, he co-founded Sumo Logic, the first cloud-based SIEM, and LogicHub, one of the pioneers of SOAR.Kumar’s journey as an immigrant founder offers a unique perspective on why immigrants often succeed as entrepreneurs and how institutions like the Indian Institutes of Technology (IIT) have produced some of the world’s most...2024-12-1252 min
Defense in DepthThe Argument For More Cybersecurity StartupsAll links and images for this episode can be found on CISO Series. Check out these posts for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Ross Haleliuk, author, Venture in Security. Be sure to check out Ross's podcast, Inside the Network, and his book Cyber for Builders: The Essential Guide to Building a Cybersecurity Startup. In this episode: A market response to industry failure Is this a business or a feature? The economics of startups Pr...2024-11-1432 min
Inside the NetworkRick Snyder: How a Founder, VC and Governor is building a safer digital futureIn this special election episode, we sit down with Gov. Rick Snyder, an entrepreneur, a former VC, and a leader whose career is unique in depth and breadth, spanning both the public and private sectors. Rick Snyder initially made his mark as COO of Gateway, where he helped the company grow revenue from $600 million to $6 billion to IPO. He then co-founded venture firm Ardesta, which stands for “spark” in Greek. After two fund cycles, he transitioned from business to politics, serving two terms as Governor of Michigan. Post-governorship, Rick Snyder returned to the entrepreneurial world...2024-11-0248 min
Hacker Valley StudioHow to Become a True Security Leader with Nathan CaseHow does one become a true security leader? According to Nathan Case, it’s not about titles—it’s about impact.
In this episode, Nathan Case, VP of Cloud Security at Clarity, shares his journey through security leadership, including stories from his time at AWS and his approach to building mission-driven teams. Nathan discusses balancing family with leadership, the future of AI in cybersecurity, and what it takes to become a real leader in the security space. He also reflects on the importance of being chosen as a leader, rather than striving for the title.
Impac...2024-10-1536 min
Inside the NetworkSlavik Markovich: Building Descope & Demisto—brewing coffee and connections in the US-Israel tech sceneIn this episode, we sit down with Slavik Markovich, CEO and co-founder of Descope, a low-code/no-code Customer Identity Access Management (CIAM) platform. A serial entrepreneur, Slavik has been at it for two decades and over this time built three companies.Before Descope, he was co-founder and CEO at Demisto, a leader in the SOAR industry that was acquired by Palo Alto Networks for $560 million. Before co-founding Demisto, Slavik was VP & CTO of database technologies at McAfee (Intel Security). He joined McAfee via the acquisition of Sentrigo, a database security startup, where he was...2024-10-051h 01
Inside the NetworkDoug Merritt: Creating a decacorn in Splunk and identifying trendsIn this episode we have a special guest - Doug Merritt - who has shaped not a unicorn but a decacorn - a company valued at more than $10 billion. As the former CEO of Splunk, he steered this big data company to extraordinary heights. In just six years under Doug's leadership, Splunk's market cap soared past $25 billion, and its annual recurring revenue skyrocketed from $200 million to a staggering $3 billion. At its peak, over 50% of Splunk revenues came from security applications.Doug's journey began as a coder and developer before transitioning to sales leadership and...2024-08-3057 min
All AboardAnalyzing Success in Cybersecurity with Ross HaleliukIn this episode of All Aboard, Alex Bovee is joined by Ross Haleliuk, Head of Product at LimaCharlie and writer of one of the best newsletters covering the cybersecurity space, Venture in Security.Together, Alex and Ross analyze what success looks like in the security industry, weighing in on the platform vs. point solution debate and discussing the importance of hiring strategically at startups. Finally, Ross shares his predictions for the near future of the security space. This episode has a little something for everyone—don’t miss it!What’s inside:A deep dive i...2024-08-2739 min
AI Rising PodcastNavigating Cybersecurity Challenges in the Age of AIIn the latest episode of AI Rising, our hosts Leslie D’Monte and Jayanth N Kolla moderated the Accel Cybersecurity Summit roundtable discussion discussing the latest trends and concerns in cybersecurity, particularly in light of recent high-profile incidents and the growing influence of AI.
The discussion features cybersecurity experts and industry professionals including Prayank Swaroop, Partner at Accel, Jossef Harush, Head of Supply Chain Security at Checkmarx, and Ross Haleliuk, Product Manager at LimaCharlie. The conversation covers a wide range of topics, from recent cyber attacks and the increasing sophistication of modern threats to the impact of AI...2024-08-0838 min
Inside the NetworkJon Gelsey: Building Auth0, the only PLG company in cybersecurity to achieve a multi-billion dollar exitOur guest in this episode is Jon Gelsey. Jon was the first CEO of Auth0, a leading identity-as-a-service platform, which grew from 5 to 300 employees during his four years at the helm. Auth0 was acquired by Okta in February 2021 for $6.5B. After Auth0, Jon served as CEO of Xnor, a computer vision and machine learning spinoff of the Allen Institute. The company was acquired by Apple for ~$200M in January 2020. When Auth0 first started in 2013, there were already several authentication vendors in the market. Okta, ForgeRock, and OneLogin had all built considerable scale by the t...2024-08-0157 min
The Application Security PodcastDerek Fisher -- Hiring in Cyber/AppSecDerek Fisher, an expert in hardware, software, and cybersecurity with over 25 years of experience is back on the podcast. Derek shares his advice on cybersecurity hiring, specifically in application security, and dives into the challenges of entry-level roles in the industry. We discuss the value of certifications, the necessity of lifelong learning, and the importance of networking. Listen along for good advice on getting noticed in cybersecurity, resume tips, and the evolving landscape of AppSec careers.Mentioned in this episode:The Application Security Handbook by Derek FisherWith the Old Breed by E.B...2024-07-161h 01
Inside the NetworkMarty Roesch: Scaling Sourcefire and creating a new way to monetize open source security softwareIn this episode, we sit down with Marty Roesch, founder of Sourcefire. Sourcefire led the intrusion detection and protection (IDS/IPS) wave, raised four rounds of financing from leading VCs like NEA, Sierra Ventures, and Sequoia, and went public, later to be acquired by Cisco for $2.7 billion.Founders often believe that their first few customers cannot be large enterprises. Marty took the contrarian path. Sourcefire’s first few customers were all six-figure deals - PWC, Intel, SAIC, and International Paper. In addition to that, Sourcefire was incredibly successful in working with industry research firms li...2024-07-071h 07
Detection at ScaleCheck Point’s Daniel Wiley on Balancing Technology and Human Analytics in CybersecurityIn this episode of the Detection at Scale podcast, Jack speaks to Daniel Wiley, Head of Threat Management and Chief Security Advisor at Check Point Software, to discuss the intricacies of balancing technology and human analytics in cybersecurity.
Daniel shares his experiences in building three successful internal startups at Check Point and emphasizes the importance of continuous learning throughout one’s career. He also touches on effective incident response strategies for small- to medium-sized businesses, and the vital role of adaptable data schemas in managing large-scale security operations.
Topics discussed:
The highs and lows expe...2024-06-1144 min
Inside the NetworkRon Gula: Bootstrapping Tenable to $100M revenue and becoming an influencerFew cybersecurity companies have been able to bootstrap their way to success – Tenable stands above the rest in this category. The company raised its first round of funding after 10 years of operations. It had $90M of revenue at the time. In the venture world, “Tenable was the best cybersecurity business that nobody had ever heard of.” Today, it is the leading cyber exposure and vulnerability management company with $800M in revenue and over 44,000 customers globally.In our second episode of ‘Inside the Network’ we sit down with Ron Gula, co-founder and former CEO of Tenable. We learn abou...2024-06-031h 00
Security Weekly Podcast Network (Audio)This Week: short on funding, long on research and analysis & RSAC Interviews - ESW #363Only one funding announcement this week, so we dive deep into Thoma Bravo's past and present portfolio. They recently announced a sale of Venafi to Cyberark and no one is quite sure how much of a hand they had in the LogRhythm/Exabeam merger, and whether or not they sold their stake in the process. We also have a crazy stat Ross Haleliuk spotted in Bessemer's analysis: "13 out of 14 cybersecurity companies acquired in the past year for over $100M were from Israel". Is this an anomaly? Does it just mean that Israel wasn't shy about selling when...2024-05-242h 39
Enterprise Security Weekly (Audio)This Week: short on funding, long on research and analysis & RSAC Interviews - ESW #363Only one funding announcement this week, so we dive deep into Thoma Bravo's past and present portfolio. They recently announced a sale of Venafi to Cyberark and no one is quite sure how much of a hand they had in the LogRhythm/Exabeam merger, and whether or not they sold their stake in the process. We also have a crazy stat Ross Haleliuk spotted in Bessemer's analysis: "13 out of 14 cybersecurity companies acquired in the past year for over $100M were from Israel". Is this an anomaly? Does it just mean that Israel wasn't shy about selling when...2024-05-242h 39
Enterprise Security Weekly (Video)This Week: short on funding, long on research and analysis - ESW #363Only one funding announcement this week, so we dive deep into Thoma Bravo's past and present portfolio. They recently announced a sale of Venafi to Cyberark and no one is quite sure how much of a hand they had in the LogRhythm/Exabeam merger, and whether or not they sold their stake in the process. We also have a crazy stat Ross Haleliuk spotted in Bessemer's analysis: "13 out of 14 cybersecurity companies acquired in the past year for over $100M were from Israel". Is this an anomaly? Does it just mean that Israel wasn't shy about selling when...2024-05-241h 05
The Cyber Go-To-Market podcast for cybersecurity sales and marketing teams. Save Cybr Donut!Questions to answer before you scale a cybersecurity company with Ross Haleliuk, author of Cyber for BuildersAre your cybersecurity solutions truly addressing the market’s top concerns? Can early-stage startups convincingly meet the security demands of large enterprises? How does cultural background influence a cybersecurity leader’s success?In this conversation, we discuss: Challenges faced by early-stage startups in aligning their products to market needs.Understanding the role and impact of diverse cultural backgrounds in cybersecurity.The significance of practical experience in founding successful security operations.About our guest:Ross Haleliuk, head of product at Lima Charlie and author of "Cyber for Builders", is a disti...2024-05-1448 min
Inside the NetworkDmitri Alperovitch: Building CrowdStrike and defending against nation statesThere are plenty of great startups solving impactful problems in security. Very few, however, ever grow to achieve the scale of CrowdStrike - a company that has rightfully become a household name in the industry. Today, CrowdStrike has a market cap of over $70 billion, making it one of the world's 300 most valuable companies. In the inaugural episode of ‘Inside the Network,’ we sit down with Dmitri Alperovitch, Co-Founder and former CTO of CrowdStrike, to discuss his journey before, during, and after building this iconic company. Dmitri walks us through his childhood, immigrating from Russia to the US, a...2024-05-0358 min
The ForgecastA Blueprint for Building Cybersecurity Startups with Ross Haleliuk | The ForgecastThe deck is stacked against you when you build a cybersecurity startup. Entrepreneurs navigate a maze of technical and business hurdles to turn their vision into a successful company.
Ross Haleliuk’s pragmatic approach to company building is a gold mine for founders, practitioners, and investors alike.
In this episode, Forgepoint Capital Managing Director Ernie Bio sits down with Ross to discuss his early career, starting the popular Venture in Security blog, launching an angel investing syndicate for security practitioners, his bestselling book Cyber for Builders, unique challenges in starting a cybersecurity company, successful partnerships, how...2024-04-2759 min
Cyber InspirationEpisode 69 - Ross Haleliuk - Author of Cyber for BuildersIn this episode, Ross Haleliuk joins us to discuss his book 'Cyber for Builders'. Ross shares his background in technology and product management, leading into his journey in cybersecurity. His book is tailored for cybersecurity builders, offering a business perspective on the industry.Ross delves into industry trends, fundraising, and building a cybersecurity company. He also shares insights into his writing process, challenges faced during the book's creation, and the decision to self-publish.The episode concludes with Ross offering advice for aspiring writers and directing listeners to find 'Cyber for Builders' on Amazon....2024-04-2531 min
Enterprise Security Weekly (Video)The AI-est news segment ever, now with even more AI! - ESW #357This week, Tyler and Adrian discuss Cyera's $300M Series C, which lands them a $1.4B valuation! But is that still a unicorn? Aileen Lee of Cowboy Ventures, who coined the term back in 2013, recently wrote a piece celebrating the 10th anniversary of the term, and revisiting what it means. We HIGHLY recommend checking it out: https://www.cowboy.vc/news/welcome-back-to-the-unicorn-club-10-years-later They discuss a few other companies that have raised funding or just come out of stealth, including Scrut Automation, Allure Security, TrojAI, Knostic, Prompt Armor. They discuss Eclipsium's binary analysis tooling, and what...2024-04-121h 06
Security Weekly Podcast Network (Audio)Understanding KillNet and Recent Waves of DDoS Attacks - Michael Smith - ESW #357In the days when Mirai emerged and took down DynDNS, along with what seemed like half the Internet, DDoS was as active a topic in the headlines as it was behind the scenes (check out Andy Greenberg's amazing story on Mirai on Wired). We don't hear about DDoS attacks as much anymore. What happened? Well, they didn't go away. DDoS attacks are a more common and varied tool of cybercriminals than ever. Today, Michael Smith is going to catch us up on the state of DDoS attacks in 2024, and we'll focus particularly on one cybercrime actor, KillNet.2024-04-121h 42
Enterprise Security Weekly (Audio)Understanding KillNet and Recent Waves of DDoS Attacks - Michael Smith - ESW #357In the days when Mirai emerged and took down DynDNS, along with what seemed like half the Internet, DDoS was as active a topic in the headlines as it was behind the scenes (check out Andy Greenberg's amazing story on Mirai on Wired). We don't hear about DDoS attacks as much anymore. What happened? Well, they didn't go away. DDoS attacks are a more common and varied tool of cybercriminals than ever. Today, Michael Smith is going to catch us up on the state of DDoS attacks in 2024, and we'll focus particularly on one cybercrime actor, KillNet.2024-04-121h 42
Business Security Weekly (Video)Understanding the Cybersecurity Ecosystem, Part 1 - Ross Haleliuk - BSW #345In this discussion, we focus on vendor/tool challenges in infosec, from a security leader's perspective. To quote our guest, Ross, "running a security program is often confused with shopping". You can't buy an effective security program any more than you can buy respect, or a black belt in kung fu (there might be holes in these examples, but you hopefully get the point). In fact, buying too much can often create more problems than it solves, especially if you're struggling to fill your staffing needs. In part 1 of this 2-part episode, we'll discuss: ...2024-04-0930 min
Business Security Weekly (Video)Understanding the Cybersecurity Ecosystem, Part 2 - Ross Haleliuk - BSW #345In this discussion, we focus on vendor/tool challenges in infosec, from a security leader's perspective. To quote our guest, Ross, "running a security program is often confused with shopping". You can't buy an effective security program any more than you can buy respect, or a black belt in kung fu (there might be holes in these examples, but you hopefully get the point). In fact, buying too much can often create more problems than it solves, especially if you're struggling to fill your staffing needs. In part 2 of this 2-part episode, we'll discuss: ...2024-04-0929 minThe Application Security PodcastFrancesco Cipollone -- Application Security Posture Management and the Power of Working with the BusinessFrancesco Cipollone, CEO of Phoenix Security, joins Chris and Robert to discuss security and explain Application Security Posture Management (ASPM). Francesco shares his journey from developer to cybersecurity leader, revealing the origins and importance of ASPM. The discussion covers the distinction between application security and product security, the evolution of ASPM from SIEM solutions, and ASPM's role in managing asset vulnerabilities and software security holistically. Francesco emphasizes the necessity of involving the business side in security decisions and explains how ASPM enables actionable, risk-based decision-making. The episode also touches on the impact of AI on ASPM. It concludes with...2024-04-0938 min
Security Weekly Podcast Network (Audio)Understanding the Cybersecurity Ecosystem - Ross Haleliuk - BSW #345In this discussion, we focus on vendor/tool challenges in infosec, from a security leader's perspective. To quote our guest, Ross, "running a security program is often confused with shopping". You can't buy an effective security program any more than you can buy respect, or a black belt in kung fu (there might be holes in these examples, but you hopefully get the point). In fact, buying too much can often create more problems than it solves, especially if you're struggling to fill your staffing needs. In this 2-part episode, we'll discuss: - The current...2024-04-081h 00
Business Security Weekly (Audio)Understanding the Cybersecurity Ecosystem - Ross Haleliuk - BSW #345In this discussion, we focus on vendor/tool challenges in infosec, from a security leader's perspective. To quote our guest, Ross, "running a security program is often confused with shopping". You can't buy an effective security program any more than you can buy respect, or a black belt in kung fu (there might be holes in these examples, but you hopefully get the point). In fact, buying too much can often create more problems than it solves, especially if you're struggling to fill your staffing needs. In this 2-part episode, we'll discuss: - The current...2024-04-081h 00
Enterprise Security Weekly (Video)Fake IDs threaten ID verification services, PANW hits $100B valuation, and other news - ESW #349This week, we discussed how a quick (minutes) and cheap ($15 a pop) fake ID service creates VERY convincing IDs that are possibly good enough to fool ID verification services, HR, and a load of other scenarios where it's common to share images of an ID. Kudos to 404Media's work there. In the security market, we discuss who might be the first cybersecurity unicorn to go public in 2024, Oasis Security and Tenchi's funding rounds, Protect AI's acquisition of Laiyer AI and their FOSS project, LLM Guard. We discussed the seemingly inevitable M&A activity as unfunded security startups...2024-02-0953 min
Security Weekly Podcast Network (Audio)Zero-Trust is Meaningless if Your Cryptography is Flakey - Vincent Berk - ESW #349Legacy systems are riddled with outdated and unreliable cryptographic standards. So much so that recent proprietary research found 61 percent of the traffic was unencrypted, and up to 80% of encrypted network traffic has some defeatable flaw in its encryption No longer can enterprises take their cryptography for granted, rarely evaluated or checked. Knowing when, where and what type of cryptography is used throughout the enterprise and by which applications is critical to your overall security policy, zero-trust approach, and risk management strategy. After all, zero-trust is meaningless if your cryptography isn't working. Segment Resources...2024-02-091h 38
Enterprise Security Weekly (Audio)Zero-Trust is Meaningless if Your Cryptography is Flakey - Vincent Berk - ESW #349Legacy systems are riddled with outdated and unreliable cryptographic standards. So much so that recent proprietary research found 61 percent of the traffic was unencrypted, and up to 80% of encrypted network traffic has some defeatable flaw in its encryption No longer can enterprises take their cryptography for granted, rarely evaluated or checked. Knowing when, where and what type of cryptography is used throughout the enterprise and by which applications is critical to your overall security policy, zero-trust approach, and risk management strategy. After all, zero-trust is meaningless if your cryptography isn't working. Segment Resources...2024-02-091h 38
Enterprise Security Weekly (Video)Fake IDs threaten ID verification services, PANW hits $100B valuation, and other news - ESW #349This week, we discussed how a quick (minutes) and cheap ($15 a pop) fake ID service creates VERY convincing IDs that are possibly good enough to fool ID verification services, HR, and a load of other scenarios where it's common to share images of an ID. Kudos to 404Media's work there. In the security market, we discuss who might be the first cybersecurity unicorn to go public in 2024, Oasis Security and Tenchi's funding rounds, Protect AI's acquisition of Laiyer AI and their FOSS project, LLM Guard. We discussed the seemingly inevitable M&A activity as unfunded security startups...2024-02-0952 min
Cybersecurity StandupInside The Cyber Builders Mind: Navigating Business Realities With Ross HaleliukRoss Haleliuk, the author of 'Cyber for Builders,' dives into the essentials of starting a cybersecurity business in his book. Tailored for industry veterans and curious minds alike, the book sheds light on the business dynamics, key players, and evolving trends in cybersecurity.
Ross doesn't just stop at literature; he shares real-world insights on product management, the pitfalls of the 'hero culture' in cybersecurity, and the unique challenges small businesses face in this domain. He advocates for straightforward, user-friendly security solutions and underscores the significance of continuous learning and customer understanding in driving the industry forward.2024-01-3035 min
Bare Knuckles and Brass TacksCyber for Builders, a guide for innovating, building trust, and standing out with Ross Haleliuk!Ross Haleliuk jumps into the ring to talk about his new book, Cyber for Builders,” and the lessons he’s learned from building products and talking with practitioners over the years. George K and George A talk to Ross about:🛠️ How new founders should approach building security products🔍 Why security buyers will now demand more transparency, and what that trend means for product and GTM teams🤝 Why the trust that comes with transparency is critical to growth💸 When and how to raise money in the financial climate👊⚡️ You can now support the show for...2024-01-2257 minResilient CyberS6E3 - Ross Haleliuk - Cyber for Builders & The Cyber Ecosystem- First off, tell us a bit about your background and how you got to where you are now in your career- What led you to write the book? Tell us a bit about the process and the experience so far, given you didn't take a traditional route with a standard publisher etc- Your book is broken into different sections, such as security as an industry, understanding the ecosystem and trends shaping the future of cyber. Lets dive into some of those- You talk about how Cyber is horizontal, not...2024-01-201h 02
Cloud Security TodayThe Talent Shortage That Doesn’t ExistSend us a textEpisode SummaryOn this episode, Best Selling author of Cyber for Builders and blogger Ross Haleliuk joins the show to talk about his writing on the cybersecurity industry. Ross is active in the cybersecurity ecosystem as a startup advisor and angel investor, currently leading the VIS Angel Syndicate. He often writes about cybersecurity, security investment, growth, and building security startups on TechCrunch, in other leading industry media, and in his blog, Venture in Security, read by tens of thousands of security leaders every month.Today, Ross...2024-01-2045 min
Audience 1stThe Cyber Market’s Harsh Truth: A Vendor Vs. Buyer Reality Check | Ross HaleliukRoss Haleliuk joins the Audience 1st Podcast to discuss his background and his work in the cybersecurity industry. He shares his motivation for creating his blog, Venture in Security, and explains how he aims to simplify complex cybersecurity concepts for readers. Ross also discusses the challenges and opportunities in the industry, including the need for better evaluation methods for security tools. He highlights the importance of building relationships with security practitioners and the need for more diversity of experiences in the industry. Ross concludes by introducing his new book, "Cyber for Builders," which provides insights and guidance for building...2024-01-1151 min
The Cybersecurity Defenders Podcast#62 - Cybersecurity industry trends with Ross Haleliuk, Co-Lead of the Venture in Security Angel SyndicateOn this episode of The Cybersecurity Defenders Podcast, we chat with Ross Haleliuk, Co-Lead of the Venture in Security Angel Syndicate, and Head of Product at LimaCharlie.Ross is a head of product at LimaCharlie - a startup that enables organisations to detect & respond to threats, automate processes, and future-proof their security operations. His areas of expertise include go-to-market and product strategy, B2B product-led growth, strategic positioning, product-market fit expansion, and growth. Outside of work, Ross is a startup advisor, angel investor, frequent contributor to TechCrunch, Forbes, and VentureBeat, and author of VentureinSecurity.net...2023-09-0740 min
Risk GrustlersDe*Romanticizing the Cybersecurity ComplexityJoin us as Ross Haleliuk, Head of Product at LimaCharlie breaks down the notion of complexity that surrounds cybersecurity. Ross's journey into cybersecurity began with a unique path. He had been involved in various tech fields for over a decade, including e-commerce, retail, and financial technology. He joined a cybersecurity startup as a product leader despite his initial hesitation due to the complexity and jargon associated with the field.And this episode uncovers exactly that. With a rather refreshing take on the cybersecurity landscape today, Ross is de-romanticizing the complexity, one day at...2023-08-3044 minThe Cybersecurity Defenders Podcast#60 - Building scalable security products quickly with the SecOps Cloud PlatformA hosted panel discussion with industry leaders to explore the advantages of the SecOps Cloud Platform for product builders.The panel is moderated by LimaCharlie's Head of Product, Ross Haleliuk. The panel participants are:Founder & CTO of Recon InfoSec, Eric CapuanoLead Incident Detection Engineer at Blumira, Amanda BerlinWhat is the SecOps Cloud Platform?The SecOps Cloud Platform is a construct for delivering the core components needed to secure and monitor any given organization: things like, deploying endpoint capabilities through a single agent regardless of...2023-08-2925 min
Securing Our FutureSOF 012: Navigating the Cybersecurity Landscape with Ross HaleliukHost Jeremy Hitchcock sits down with Ross Haleliuk, head of product at LimaCharlie - a California-based cybersecurity company that enables organizations to detect & respond to threats, automate processes, reduce the number of vendors, and future-proof their security operations.Ross began his journey as a co-founder of a B2B edtech before building a decade-long career as a product leader across multiple industries and ending up in cybersecurity. His areas of expertise include go-to-market and product strategy, B2B product-led growth, strategic positioning, product-market fit expansion, and growth.Ross is active in the cybersecurity ecosystem as...2023-06-0633 min
Cribl: The Stream LifeIndustry Experts Discuss Cybersecurity Trends and a New Fund to Shape the FutureIn this live stream discussion, angel investor Ross Haleliuk joins Cribl's Ed Bailey to make a big announcement about his new fund to shape the future of the cybersecurity industry. Ross is a big believer in focusing on the security practitioner to provide practical solutions to common issues by making early investments in companies that will promote these values. Ed and Ross also discuss trends in the industry and common struggles that both Cribl and his new fund seek to address by adding value and giving security practitioners choice and control over how they run their security program. 2023-05-0430 min
Dark Mode Podcast#44 - Product Development and Evangelising a Cyber Community - Ross HaleliukIn this episode @GabeMarzano & @BenSullivan host Ross Haleliuk who is the Head of Product at LimaCharlie, Founder of Venture in Security and Official Member of the Forbes Technology Council.
// SUPPORT THIS CHANNEL //
📧 Subscribe to the Marza-notes, and receive a copy of my favourite mental models
🌏 Website
🎬 YouTube
🎙 Download Our Podcast
👾 LinkedIn
🌪 Ben Sullivan
🌪 Gabe Marzano
Show Notes:
00:00 - Introductions and Forbes Technology Council
07:20 - Cyber new discipline and Infrastructure
12:36 - Data gravity
15:23 - Product Development in cyber security
23:42 - Venture capital in cyber security
27:30 - Product led growth
33:48 - Open source software
39:12 - Posting on social media & stayi...2023-04-2350 min
Enterprise Security Weekly (Audio)ESW #308 - Roland Diaz, Ross HaleliukYou know SBOMs can help you keep track of your software assets and therefore, their vulnerabilities. Despite even the White House pressing the issue, many vendors aren't forthcoming with SBOMs, and you can't afford to wait. With Tanium's Roland Diaz, we'll discuss the most important considerations when generating your own SBOMs (which is now something their product can also do!). This segment is sponsored by Tanium. Visit https://securityweekly.com/tanium to learn more! Looking at topics around go-to-market strategy and product management, including: how building products is unique in cybersecurity compared to ot...2023-03-102h 22
Security Weekly Podcast Network (Audio)ESW #308 - Roland Diaz, Ross HaleliukYou know SBOMs can help you keep track of your software assets and therefore, their vulnerabilities. Despite even the White House pressing the issue, many vendors aren't forthcoming with SBOMs, and you can't afford to wait. With Tanium's Roland Diaz, we'll discuss the most important considerations when generating your own SBOMs (which is now something their product can also do!). This segment is sponsored by Tanium. Visit https://securityweekly.com/tanium to learn more! Looking at topics around go-to-market strategy and product management, including: how building products is unique in cybersecurity compared to ot...2023-03-102h 22
Enterprise Security Weekly (Video)Product-Led Growth and Building Products in Cybersecurity - Ross Haleliuk - ESW #308Looking at topics around go-to-market strategy and product management, including: how building products is unique in cybersecurity compared to other industries, what is product-led growth and what shape it takes in security, and how to do it right. Touching on the broader and adjacent topics of writing, supporting cybersecurity startups, investing, and the like. Segment Resources: Venture in Security blog: https://ventureinsecurity.net/ Venture in Security Angel Syndicate: https://www.visangels.com/ Building Cyber Collective: https://ventureinsecurity.net/p/buildingcyber Top Venture in Security Articles: https://ventureinsecurity.net/p...2023-03-1056 min