Claim OwnershipDown the Security Rabbithole Podcast (DtSR)
Subscribed: 2,963Played: 68,089
Subscribe
© 2025 Down the Security Rabbithole Podcast (DtSR)
Description
This is Cybersecurity's premier podcast. Running strong since 2011 Rafal Los, James Jardine, and Jim Tiller bring a no-nonsense, non-commercial approach to our profession. DtSR brings interviews and discussion with people you want to meet, and stories you have to hear. So whether you're just starting out, or are decades deep into your career, you'll always learn something on this show.
On Twitter/X: https://twitter.com/@DtSR_Podcast
On YouTube: https://youtube.com/playlist?list=PLyo0dkKRvfVtWXjRxNISrhme1MgBj3C2U&si=scHDiTuLXSEQ9qHq
On LinkedIn: https://www.linkedin.com/company/down-the-security-rabbithole-podcast/
706 Episodes
Reverse
Send the hosts a message - try it now! TL;DR: This week's pod features our favorite former analyst Anton Chuvakin, and an AppSec OG Jeff Williams as we tackle the subject of AppSec's favorite new acronym - ADR. What is it? Why is it? Should it be? We answer all these questions and more, and laugh along the way a bit too. YouTube Video: https://youtube.com/live/69xeGDoDYbU Links Contrast's latest threat report (referenced in the show)An in-depth ADR Explainer (helpful!)Run-Time Security Explai...
Send the hosts a message - try it now! TL;DR: This week's returning guest is the man, the myth, the Alpaca farmer, Philippe Humeau of CrowdSec. Life comes at you fast, threats come at you faster. The good news is - defenses can keep up. Listen in, then go check out CrowdSec! YouTube video: https://youtube.com/live/7Xc99bXCfwQ Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= ...
Send the hosts a message - try it now! TL;DR: This week's guest is Dr Sam Liles - who's been CISO'ing since most of us have been in the industry. Sam gets it, and he has some perspective on what's going on with all this market consolidation. What is it good for? He's got some things to say, and he's not shy about it. YouTube: https://youtube.com/live/ROEA6z5Q-sk Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-...
Send the hosts a message - try it now! TL;DR: This week's show is a testament to surviving a week of Hacker Summer Camp out in Las Vegas. I have an interview with Ray Canzanese, Jr. (again, because y'all love him) and a bit of my take-away / rant from the week I spent out in the desert. Enjoy, I hope you made it home safe and learned something. Good God it was hot. YouTube Video: ( standby, waiting on me to edit ) Thanks again to my friends at Netskope! Support the show >>&g...
Send the hosts a message - try it now! ** Early release, due to Black Hat Conference and RaffCon XVIII. TL;DR: This episode is all about #RaffCon. Ever wanted to know what the heck it is? Well, Raffael Marty and I break it down, give you a little history, and reminisce. As we got into Black Hat week, this is the perfect precursor to #RaffCon XVIII. YouTube video: https://youtube.com/live/jwArV_EwuZc Support the show >>> Please consider clicking the link above to support the sh...
Send the hosts a message - try it now! TL;DR: This is one of the most important episodes we've done on this podcast. The CISO and CIO have a complicated, dynamic, and often ugly relationship - but what should it be like? How can the two work together and evolve their roles together, for the benefit of everyone in the business? Larry Whiteside, Jr. ( Co-Founder and President at Confide) and Dennis McDonald ( Chief Information & Security Officer at Jack Henry ) lay down a conversation ...
Send the hosts a message - try it now! TL;DR: This week's conversation is all about the Customer Success team featuring Nick Puetz and Steve Dakhe. These guys have significant seat time building, operating, and perfecting the CSM role - and we're here to talk about it. What is a CSM? Why do they exist? And what is their role in customer engagement? Listen in, find out! YouTube: https://youtube.com/live/lCen-1Vt_K8 Support the show >>> Please consider clicking the link above to s...
Send the hosts a message - try it now! TL;DR: This week we took a sit-down with serial entrepreneur, Will Gragido. Will has been a part of several innovative start-ups, and is now onto his next one. He's a product innovator with a pragmatic sense of what customers need, and he's here to give you the run-down of what drives him, what got him here, and things you should think about if you're thinking of setting off on your own. YouTube video: https://youtube.com/live/qkAi6Nj8kII Show Spons...
Send the hosts a message - try it now! TL;DR: Did you miss us? Yes, we're back with Sam Masiello and we're talking about whatever is on his mind. Well ...there's geopolitics and Iranian hackers and frankly we need to talk about what it means for your security program. Thanks for joining us, Sam! YouTube Video: https://youtube.com/live/H-4ZktBIUDE Show Sponsor: ThreatLockerAllow what you need, block everything else... Including ransomware.Disclaimer: This post contains affiliate links. If...
Send the hosts a message - try it now! TL;DR: This week's episode came from my (Rafal) brain. I've been reading far too much LinkedIn, and the "influencer" postings have been making me crazy. So, here we are. We talk through some of these posts, many of which are AI generated I think, and have a little fun with it. Call it...therapy. YouTube Video: https://youtube.com/live/uZVfkge8bQE Support the show >>> Please consider clicking the link above to support the show! -=-=-=-...
Send the hosts a message - try it now! TL;DR: On this episode, part 4 of our AI series, we are once again joined by Raja Mukerji, Jeff Collins, and John Dickson to discuss what it means to think about security for AI. Is it something completely different? Is it something same-'ol? Or - is it a bit of both. And what aren't we thinking about when it comes to securing AI? YouTube video: https://youtube.com/live/vUJIOrX0kHc Support the show >>> Please consider clicking the link abov...
Send the hosts a message - try it now! TL;DR: This week I bring John Dickson back to join Jeff Collins and Raja Mukerji as we talk through the following: What can AI do, for cyber security, that we can't do with current tools?What is the model for incorporating AI into cybersecurity - are we replacing people? augmenting people? both? neither?Where is AI the strongest in these use-cases today, and where is the promise for 12 - 36 months out?What are the LIMITATIONS for AI in cybersecurity? Are...
Send the hosts a message - try it now! TL;DR: This week John Dickson returns to go deeper down the AI rabbit hole with special guest Erik Bloch as we dive into a more technical explanation of AI, how this innovation differs from other similar concepts, previous tech innovations, and some of the commercial vs consumer use-cases where AI is best suited. It's a deeper discussion, and we will for sure have a part 3, and likely 4 coming soon. YouTube video: https://youtube.com/live/QXi6ed2NKhc Sup...
Send the hosts a message - try it now! TL;DR: So - Artificial Intelligence (AI)...incomprehensible good, or catastrophic evil? Both? And what does that depend on? This episode is the start of a series wherein we explore the potential good or bad of AI, what the dependencies are. and what kinds of branches of discussion there could be. Join us as we discuss a generational topic, with some of our best guests starting with John Dickson. Required listening: Episode 654 w/Sounil Yu ( htt...
Send the hosts a message - try it now! TL;DR: This week's episode asks the question - is it possible to give AI "discretion" (which feels like a uniquely human concept)? And if so - what would that look like, and how can this help a society that's hurling headlong into an AI future from destroying secrecy as we know it? Sounil Yu from Knostic joins Rafal & James to think through the problem - complete with visuals! If that sounds a little dramatic, you'll enjoy the episode, because this p...
Send the hosts a message - try it now! TL;DR: On this "live on the scene" episode from Zero Trust World 2025 sponsored by Threat Locker - I have the distinct pleasure to speak with Rich Latayan about his career leading big-company security programs as CISO and his current endeavor. YouTube: <coming soon> Support the show >>> Please consider clicking the link above to support the show! -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= YouTube home: https:/...
Send the hosts a message - try it now! TL;DR: As per the usual, this year's RSA Conference 2025 wrap-up is with my friend Ray Canzanese, Jr. We sit in the beautiful sunshine atop the Moscone Center (gardens) and have an interesting, conversation about a number of interesting topics not the least of which is the puppies and baby goats at this year's event (well played, vendors, well played). YouTube Video: https://youtu.be/LSdEMlKRZmw Support the show >>> Please consider clicking the ...
Send the hosts a message - try it now! TL;DR: Sometimes LinkedIn gives us an opportunity to record something meaningful - and in this episode we find a conversation with Ross Hosman's perspective on how to address the strained relationship between buyer and seller, CISO and vendor - in a meaningful way that you'll hopefully benefit from. Sales people, take notes. CISOs ... you too. YouTube video: https://youtube.com/live/e_SbcB2ZsD8 Support the show >>> Please consider clicking the...
Send the hosts a message - try it now! TL;DR: This episode is a follow-up on two episodes, building up to this conversation. On episode 629 Hed Kovetz introduced us to "Identity Security" (https://dtsr.buzzsprout.com/2153215/episodes/16174464-dtsr-episode-629-what-the-hell-is-identity-security) and then on episode 646 Ward Pyles started the conversation about how security tools really aren't set up to protect from the identity perspective (https://dtsr.buzzsprout.com/2153215/episodes/168...
Send the hosts a message - try it now! TL;DR: This week's guest is BugCrowd's founder Casey Ellis. Casey's a pioneer in the security space and has some tremendous insights on how he started his business and what the future holds. Casey explains why it's important to think like a criminal, and why the 'locksmith' version of a hacker (versus 'burglar') is so important to today's security programs. YouTube video: https://youtube.com/live/8BLGfUqbOKQ Support the show >>> Please cons...
Download from Google Play
Download from App Store
United States
Worst episode ever... (Okay I haven't listened to all 400), but..
You're talking about "hacker summer camp" but you don't go. That feels off.
wow you guys need to visit defcon again. Your impressions are off