All links and images can be found on CISO Series

This week's episode is hosted by David Spark, producer of CISO Series and Mike Johnson, CISO, Rivian. Joining is Jean-Paul Calabio, vp and CISO, Grainger.

In this episode:

• Scanning the map isn't securing the territory
• CFOs don't fund faith
• What your AI inherits
• Nobody owns the gap

Thanks to Jonathan Waldrop, CISO, Acoustic for providing our "What's Worse" scenario.

A huge thanks to our sponsor, ThreatLocker

ThreatLocker makes Zero Trust practical. With Default Deny, Ringfencing, and Elevation Control, CISOs get real control that's easy to manage and built to scale. Stop threats before they execute and reduce operational noise without adding complexity. See how simple prevention can be at ThreatLocker.com/CISO.

All links and images can be found on CISO Series

This week's episode is hosted by David Spark, producer of CISO Series and Mike Johnson, CISO, Rivian. Joining is Sara Madden, CISO, Convera. This episode was recorded live at BSidesSF 2026.

In this episode:

• Playing vendor roulette
• Confident and wrong
• Making conferences count
• The stakes problem in tabletops

A huge thanks to our sponsor, QuilrAI

Can you tell if an action in your environment was performed by a human — or an AI agent? QuilrAI's Decision Engine evaluates content, context, and intent before actions complete — across browsers, endpoints, SaaS, LLMs, and agents. Not more alerts. Better decisions, in real time. Visit quilr.ai.

A huge thanks to our sponsor, Nudge Security

Get a full inventory of AI assets on Day One of your free trial, even those introduced before you started using Nudge. Get started.

A huge thanks to our sponsor, Zenity

Help shape the future of AI agent security. On May 27th, the AI Agent Security Summit returns to San Francisco. Hear from leading researchers and security pioneers, and usher in the new age of secure AI deployment across the enterprise. Register at zenity.io/ai-security-summit.

All links and images can be found on CISO Series

This week's episode is hosted by David Spark, producer of CISO Series and Michelle Wilson, CISO, Movement Mortgage. Joining is sponsored guest Rob Allen, chief product officer, ThreatLocker.

This show was recorded in front of a live audience at ThreatLocker's conference, Zero Trust World 2026.

In this episode:

• Risk as a daily habit
• AI agents talking to AI agents
• The code on the lock
• Words that shape decisions

A huge thanks to our sponsor, ThreatLocker

ThreatLocker makes Zero Trust practical. With Default Deny, Ringfencing, and Elevation Control, CISOs get real control that's easy to manage and built to scale. Stop threats before they execute and reduce operational noise without adding complexity. See how simple prevention can be at ThreatLocker.com/CISO.

All links and images can be found on CISO Series

This week's episode is hosted by David Spark, producer of CISO Series and Andy Ellis, principal of Duha. Joining is Paul Drapeau, head of global information security, New Balance.

In this episode:

• The logo trap
• Immunity through exposure
• The synthesis edge
• The cost of holding tight

A huge thanks to our sponsor, Doppel

This episode is sponsored by Doppel, the AI-native social engineering defense platform. Doppel strengthens human risk management by training employees to recognize deception, while our digital risk protection detects and disrupts attacks across every channel. Learn more at doppel.com

Our Theoretical Controls Work Great Against Hypothetical Attacks

All links and images can be found on CISO Series

This week's episode is hosted by David Spark, producer of CISO Series and Andy Ellis, principal of Duha. Joining is David Nolan, former CISO, Asurion.

In this episode:

• Influence, not control
• The initiative gap
• Skip the framework, patch the server
• Confident code with no owner

A huge thanks to our sponsor, ThreatLocker

ThreatLocker makes Zero Trust practical. With Default Deny, Ringfencing, and Elevation Control, CISOs get real control that's easy to manage and built to scale. Stop threats before they execute and reduce operational noise without adding complexity. See how simple prevention can be at ThreatLocker.com/CISO.

All links and images can be found on CISO Series.

This week's episode is hosted by me, David Spark, producer of CISO Series and Andy Ellis, principal of Duha. Joining us is Hilik Kotler, svp, CISO and IT, Expedia Group.

In this episode:

• The numbers game
• What makes a vendor worth your time
• Humanity in the loop
• Alignment is a prerequisite, not a nice-to-have

A huge thanks to our sponsor, Vanta

Risk and regulation ramping up—and customers expect proof of security just to do business. Vanta's automation brings compliance, risk, and customer trust together on one AI-powered platform. So whether you're prepping for a SOC 2 or running an enterprise GRC program, Vanta keeps you secure—and keeps your deals moving. Learn more at vanta.com/ciso.

All links and images can be found on CISO Series.

This week's episode is hosted by David Spark, producer of CISO Series and Mike Johnson, CISO, Rivian. Joining is Julie Myerholtz, CISO, Brunswick Corporation.

In this episode:

• Your cloud, your problem
• Kill your sacred cows
• AI broke your vendor math
• Feedback is a gift. Open it.

A huge thanks to our sponsor, Vanta

Risk and regulation ramping up—and customers expect proof of security just to do business. Vanta's automation brings compliance, risk, and customer trust together on one AI-powered platform. So whether you're prepping for a SOC 2 or running an enterprise GRC program, Vanta keeps you secure—and keeps your deals moving. Learn more at vanta.com/ciso.