KBKAST

• Episode 340 Deep Dive: Paul Davis | JFrog’s First Step Towards AppTrust and DevGovOps

  In this episode, we sit down with Paul Davis, Field CISO at JFrog, as he explores JFrog’s approach to building trust in software development pipelines and the evolution towards DevGovOps. Paul shares his perspective on elevating trust from the granular level of software releases to the broader application layer, emphasising the need for consistent, automated, and reliable methodologies in development. He discusses the critical role of automation in balancing speed and security, tackling tool sprawl, and mitigating risks posed by open source dependencies. The conversation touches on the realities of legacy tech debt, the challenges of integrating and consolidating security tooling, and the importance of having a single source of truth. Paul is an experienced IT Security Executive who, as Field CISO at JFrog, works to help CISOs, IT execs and security teams, enhance protection of their software supply chain. Additionally, he advises IT security startups, mentors security leaders, and provides guidance on various IT security trends.

  --------  

  44:00

  --------

  44:00
• Episode 339 Deep Dive: M.K. Palmore | Leading Through Uncertainty: Security, Safety, and Cyber Awareness in a Time of Crisis

  In this episode, we sit down with M.K. Palmore, Chief Executive Officer at Apogee Global RMS, as he explores strategies for leading through uncertainty with a focus on security, safety, and cyber awareness in times of crisis. M.K. emphasises the critical importance of practicing security response scenarios, noting that organisations truly respond better in real-world incidents when they’ve regularly rehearsed decision-making with their teams. He discusses the value of people-centric leadership, the need for strong relationships with both internal stakeholders and external partners, and the dangers of letting practice fall to the bottom of the priority list. As security concerns grow globally—particularly for government officials and public leaders—M.K. reflects on the heightened threat landscape, the impact of political divisiveness, and the role of leadership in lowering tensions. He concludes by highlighting the enduring need for leaders to maintain humanity and remain diligent, ensuring decisions are always made with people at the centre. M.K. Palmore is an award-winning cybersecurity executive, military veteran, public speaker, and leadership advisor with more than 30 years of combined public- and private-sector experience. He is the Founder and CEO of Apogee Global RMS, a veteran-owned enterprise risk management advisory firm delivering solutions across cyber and physical risk landscapes. Through Apogee, he also leads the Apogee Speakers Bureau, a premier platform showcasing more than 40 diverse experts at the intersection of technology, leadership, and security. Palmore’s distinguished career includes service as a commissioned officer in the U.S. Marine Corps, leadership as head of the Cyber Security Branch at the FBI’s San Francisco Field Office, and senior executive roles in the private sector, including VP/Field CSO at Palo Alto Networks and Director in Google Cloud’s Office of the CISO. A graduate of the U.S. Naval Academy, Palmore also holds an MBA from Pepperdine University. His expertise spans cybersecurity strategy, executive risk management, leadership, digital transformation, cloud security, and national security. He is widely sought after as a keynote speaker and advisor to boards and senior executives navigating today’s complex threat landscape. Through Apogee Global RMS and its Speakers Bureau, Palmore is advancing his mission to amplify diverse voices and perspectives shaping the future of technology, leadership, and security.

  --------  

  39:59

  --------

  39:59
• Episode 338 Deep Dive: Eric Stride | Securing the Aviation Industry in the Modern Age

  In this episode, we sit down with Eric Stride, Chief Security Officer at Huntress, to discuss the escalating cybersecurity challenges facing the aviation industry. Eric highlights the alarming 600% year-over-year surge in cyberattacks targeting the sector, emphasising how attackers are exploiting the interconnected and fragile aviation supply chain—most notably seen in recent incidents like the ransomware strike on Collins Aerospace. He explores the growing risk posed by both IT and OT system convergence, the shift in regulation tying cybersecurity readiness directly to airworthiness, and the increasing adoption of robust frameworks to mitigate operational disruptions and data breaches. Eric also highlights the critical need for holistic supply chain security, the importance of regulatory enforcement, and a cultural shift in the industry toward prioritising safety and cyber resilience to restore public trust in air travel. Eric Stride is the Chief Security Officer at Huntress, where he oversees the company’s 24/7 Global Security Operations Center, Detection Engineering, Adversary Tactics, IT Operations, and Internal Security. A 20+ year cybersecurity leader, Eric has held senior roles spanning the U.S. Air Force, NSA, and private sector.  During his 12 years on active duty, Eric helped architect the Air Force’s first cyber combat mission team, co-authored its first offensive cyber operations manual, and rose to Deputy Chief for Cyber Operations at NSA Georgia. He continues to serve as a Colonel in the Air Force Reserve, where he established its first cyber range squadron.  In the private sector, Eric co-founded Atlas Cybersecurity, advised defense and enterprise clients as an independent consultant, and led Deloitte’s Advanced Cyber Training portfolio, generating $135M+ in new business. He holds an M.S. in Information Technology Management, a B.S. in Computer Science, and multiple cybersecurity certifications (CISSP, GCIH, CEH). 

  --------  

  38:12

  --------

  38:12
• Episode 337 Deep Dive: Christine Gadsby | Why Mobile Espionage is a Critical National Security Threat to Australia and Globally

  In this episode, we sit down with Christine Gadsby, Chief Security Advisor at BlackBerry, as she explores why mobile espionage has become a critical national security threat in Australia and globally. Christine unpacks the mounting risks posed by outdated telco infrastructure, the vulnerability of mobile communications, and the rapid evolution of attacker tactics—fueled by AI, automation, and the expansive attack surface created by free messaging apps. She highlights the real-world impact of scams, cultural differences in social engineering, and the challenges faced by both consumers and organizations in protecting sensitive information. Christine Gadsby is the Vice President and Chief Information Security Officer for BlackBerry Secure Communications. With over 20 years of experience in mobile and information security, Christine is known for her strategic vision and leadership skills, with a proven track record of developing and implementing robust strategies that protect organizations from evolving risks and digital threats – particularly in the areas of communications security and critical event management. Gadsby is a visionary who helped pioneer secure software supply chain efforts and SDLC capabilities influencing industry and government-driven security frameworks in use by the world’s most security-conscious industries. She is a sought-after panelist, moderator, and keynote speaker with several awards for challenging security mindsets and leading Diversity efforts, including Cybersecurity Woman of the Year, Power 100 Women in Security, and Top 10 Women Leading Cybersecurity. She is a well-known contributor, including RSA, CES, Black Hat and has been quoted in notable media outlets Fox News, CBS, Yahoo, MSN, CSO Magazine, CyberScoop, and Dark Reading.

  --------  

  40:57

  --------

  40:57
• Episode 336 Deep Dive: Joe Cozzupoli | The Boardroom View of CTI and Speaking the Language of Risk

  Joe Cozzupoli is a Principal Security Advisor / Field CISO at Cosive with a focus on helping clients operationalise Cyber Threat Intelligence and Security Operations to reduce risk and deliver measurable business outcomes. With over 20 years in cyber security, Joe has led strategy and delivery for enterprises and government, translating board priorities into executable security programs and aligning identity, data protection, and cloud controls with organisational goals. Equally comfortable in the boardroom and at the whiteboard, he bridges business, architecture, and operations across Australia and internationally. Prior to joining Cosive, Joe held senior roles at Microsoft, Citrix, Palo Alto Networks, and Cisco where he focused on AI and Data Security, cloud security, risk management, and executive engagement. He has served as a Virtual CISO and Security Architecture Advisor for complex transformations, including industrial and mining clients undergoing separation programs and Azure cloud migrations. Joe works extensively with Australian frameworks and regulations including the ACSC Essential Eight, APRA CPS 234, the SOCI Act, the PSPF, and ISO/IEC 27001, and partners with boards, CISOs, and delivery teams to operationalise pragmatic controls. A committed mentor to the next generation of practitioners, Joe has also completed ISACA training in AI Governance, AI Risk, and Auditing AI.

  --------  

  38:32

  --------

  38:32

More Business podcasts

Trending Business podcasts

About KBKAST

KBKAST: Podcasts in Family