Episodes
Honest conversations with CISOs, founders, and security innovators about what’s working, and what’s not, in risk management today.
Ep 12 - AI Is Changing Cybersecurity Faster Than Most Teams Realize | Conor Sherman
AI is rapidly changing the speed and scale of cyber attacks. Nate Lee sits down with Conor Sherman, CISO in Residence at Sysdig, to discuss machine speed attacks, AI driven threats, and why security teams must rethink how they detect and respond in an AI powered world.
Ep. 11 —The Real Risk of AI: Moving Too Fast or Too Slow? | Jacob DePriest, CISO 1Password
In this episode, Jacob DePriest examines the business and security risks of AI adoption, from agent auditability challenges to the importance of least privilege in an AI-driven enterprise.
Ep. 10 —Agentic GRC, SOC 2, and Why Data Beats Compliance with Jake Bernardes
Jake Bernardes, CISO at Anecdotes, joins the TPRM Podcast to break down agentic GRC, the real limitations of SOC 2, and why security programs built on real data, not checklists, are the future of third-party risk and compliance.
Ep. 9 — Security Without Waste with Ross Young (Former CISO: Capital One, Caterpillar Financial)
Ross Young joins the TPRM Podcast to explain why most cybersecurity budgets fail to reduce real risk, how legacy assumptions drive waste, and what security leaders can do differently without simply asking for more money.
Ep. 8 — Security by Design with Bob Lord (Former CSO: Yahoo, DNC, CISA)
Bob Lord joins the TPRM Podcast to explain why much of today’s security advice fails, how Hack Lore distracts teams from what actually reduces risk, and why vendors, not users, need to own security outcomes.
Ep. 7 — Security at AI Speed with Mike Johnson (Security Leader: Salesforce, Lyft, Fastly, Rivian)
Mike Johnson, longtime security leader across Salesforce, Lyft, Fastly, and Rivian, breaks down AI-speed attacks, software supply chain risk, big-data detection, and why traditional security questionnaires completely miss the point.
Ep. 6 — Paved Roads, Guardrails & the Future of Security with Jason Chan (VP Security, former Netflix)
Jason Chan, former VP of Security at Netflix, breaks down the paved road, guardrails, identity, vulnerability management, and how to scale modern security programs without slowing engineering.
Ep. 5 — Building Cybersecurity at Runtime with Rinki Sethi (CISO, Upwind Security & Founding Partner, Lockstep Ventures)
Rinki Sethi joins Nate Lee to discuss the future of runtime security, identity, and AI in cybersecurity — and why every area of security is ready for disruption. From Twitter to venture investing, she shares lessons on innovation, leadership, and scaling security.
Ep. 4 — Building Security That Scales with Aaron Stanley (VP of Security, dbt Labs)
Security doesn’t have to slow down innovation. Aaron Stanley, VP of Security at dbt Labs, joins Nate Lee to talk about building security programs that grow with the business, not against it.
Ep. 3 — Security Through Transparency with Alex Rice (Co-Founder & CTO, HackerOne)
The best security programs aren’t built on secrecy — they’re built on trust. Alex Rice, Co-Founder and CTO of HackerOne, joins Nate Lee to talk about how transparency is transforming the way organizations think about risk, vulnerability, and collaboration.
Ep. 2 — Security vs. Compliance: What Actually Matters with Andrew Becherer (Sublime Security and former Datadog CISO)
Most companies still confuse compliance with real security. In this episode, Andrew Becherer joins Nate Lee to unpack why that mindset holds teams back — and how to build security programs that actually scale.
Ep. 1 — Beyond the Checklist: Continuous Vendor Oversight with Jadee Hanson (CISO, Vanta)
Most companies still treat vendor reviews like a once-a-year checkbox. Jadee Hanson, CISO at Vanta, joins Nate to talk about what it really takes to build trust, accountability, and continuous oversight across the modern security landscape.