mnemonic security podcast

mnemonic
  • 5.0 (3)
  • TECHNOLOGY
  • UPDATED MONTHLY

The mnemonic security podcast is a place where IT Security professionals can go to obtain insight into what their peers are working with and thinking about.

  1. FEB 9

    Cloud Detection and Response

    "We are not really seeing as many attacks in the cloud where people hack in. It's more likely that they simply log in." In this episode of the mnemonic security podcast, we're exploring Cloud Detection & Response (CDR) together with Brian Contos; returning guest, fellow podcast host, author, and serial security entrepreneur. In his conversation with Robby, he shares from his new role as Field CISO for the Cloud Detection & Response platform Mitiga. They discuss the Salesforce supply chain attack and the challenges of protecting interconnected cloud ecosystems, the evolution of Cloud Detection & Response so far, and what we should expect in the near future. Send us a text

    32 min

  2. JAN 26

    Pentesting anno 2026

    Pentesting anno 2026 Erica Burgess, an experienced penetration tester and security consultant, joins us for this episode of the mnemonic security podcast to deliver a state of the union on penetration testing in 2026. Drawing on her Black Hat Europe AI Security Summit keynote, “Never Break the Chain: Attack Chaining for 0-Days,” Erica breaks down how seemingly low-severity or “informational” findings can be chained together into full system compromises.     Erica details her practical approach to using customized AI agents for subtasking, from validating dynamic scanner results to finding obscure commands that bypass blacklists. Tasks that once required three days of manual research can now be completed in minutes, dramatically increasing the volume and sophistication of findings during time-constrained engagements.   They also explore the broader implications of AI-assisted hacking: the risk of new blind spots when everyone leans on similar models, and the uncomfortable questions this raises about creativity, labor, and the future of junior talent in cybersecurity. Erica emphasizes the importance of maintaining human intuition and critical thinking, warning that over-reliance on AI can literally reduce brain activity, while acknowledging that pen testers who don't adapt to these tools risk being left behind. Send us a text

    33 min

  3. JAN 5

    LLMalware

    We’re kicking off the new year by taking a closer look at some of the threats that will shape 2026, and how they impact defenders. In this episode of the mnemonic security podcast, Robby welcomes Candid Wüest, Principal Security Advocate at xorlab, drawing on more than 25 years of experience in the field. After seeing Candid's talk “The Rise of AI-Driven Malware: Threats, Myths, and Defenses” at BlackHat Europe, Robby invited him to share his research and perspectives on the current state of AI-driven malware. They talk about the most common misunderstandings around AI-powered, AI-generated and AI-supported threats, as well as which types of LLM-related attacks Candid expects to make the news, and actually be effective, in 2026. Candid also shares his thoughts on how defenders’ roles are evolving, where he has seen organisations successfully implement AI in defense, and why going back to basics still matters. They also explore some of the biggest topics from Black Hat Europe in December, including AI-enabled SOCs. Send us a text

    52 min

  4. 12/01/2025

    Present and Future of MDR

    What is the future of MDR? In this episode of the mnemonic security podcast, Robby is joined by Migjen Hakaj from mnemonic's Innovation & Emerging Technologies Department and Amine Besson, Director at Behemoth Security. They've joined forces by collecting their shared extensive experience with security monitoring, and published a popular three-part blog series on what Managed Detection and Response (MDR) really is on a deep level, where they examine the past, present, and future challenges within the field. In their conversation they talk about the evolution of the SOC space, what main forms of security operations they are seeing today, and why they believe the SOC needs to change. They also explain why it's hard to define what MDR really is today, the main value proposition of MDR providers, and what the next big differentiators for MDR providers will be. As well as in what ways they've seen that the industry has matured over the last few years, where the industry needs radical change, and where AI SOC has a place and where its main challenges lie. Interested in more? Visit their blog series: The Present and Future of Managed Detection and Response: https://detect.fyi/the-present-and-future-of-managed-detection-and-response-01a72088e6f6 The missing link in MDR. Spoiler, it starts with a Detection Engineering framework: https://detect.fyi/the-missing-link-in-mdr-spoiler-it-starts-with-a-detection-engineering-framework-5f836347c92f Beyond Detections : Scaling Analysis & Response to keep MDR relevant: https://detect.fyi/beyond-detections-scaling-analysis-response-to-keep-mdr-relevant-592285d0fd25 Send us a text

    55 min

  5. 11/24/2025

    Agentic Browsers

    In this short and sweet episode on agentic browsers, we’re joined by Helen Kearney, a leader in helping humanitarian and non-profit organisations use technology strategically, responsibly, and with real impact. Robby and Helen discuss the challenges and opportunities posed by these new browsers, where their "agentic" abilities create new risks, raise questions about ethical AI use, and heighten concerns around safeguarding sensitive data. Helen also shares the conversations she’s having across the humanitarian sector as AI tools go mainstream - what’s inspiring, what’s misunderstood, and the developments she believes deserve far more attention. Send us a text

    19 min

  6. 11/10/2025

    Dark Web Roast

    Start your week with a laugh. And yes, it’s work-relevant. Today’s guests, John Fokker, Head of Threat Intelligence, and Jambul Tologonov, Security Researcher at Trellix, have spent years monitoring the dark web and have quite a few stories to tell. They are joining Robby to talk about their concept "Dark Web Roast", a satirical look at cyber criminals and their world of crime, aiming to show that at the end of the day, these threat actors are just human beings, messing up just like anyone else. In the episode, they take us behind the scenes of the dark web: exposing failures among cybercriminals, uncovering ransomware-group drama, and revealing the vanity and rivalries fueling it all.   Send us a text

    45 min

  7. 10/27/2025

    The Quiet Conflict

    In this episode of the mnemonic security podcast, we take a closer look at a tension that remains invisible to most of us, yet is very real: the quiet conflict unfolding within our critical infrastructure. This topic gave us the perfect excuse to once again invite one of our favorite guests, for the fourth time, Joe Slowik. Joe brings over 15 years of experience in cyber threat intelligence (CTI), detection engineering, and incident response, with expertise in industrial control systems (ICS), operational technology (OT), and critical infrastructure environments. He currently serves as Director of Cybersecurity Alerting Strategy at Dataminr. In his conversation with Robby, Joe explores the threats posed by Volt Typhoon, a state-sponsored Chinese cyber operation known for targeting critical infrastructure, primarily in the United States. They discuss the origins and activities of the group, recent operations, and Joe also shares his research into what this group has the potential to achieve based on their current operations and proven capabilities. The discussion also covers Joe’s broader research into China’s cyber eco-system and how it has evolved, including the country’s extensive network of research institutions, companies, and lesser known contractors. Joe also shares his observations about current trends in the OT industry, insights into his upcoming areas of research within OT, and his perspective on where the field is heading. Send us a text

    40 min

  8. 10/06/2025

    Prompt Engineering

    In this episode, Robby welcomes Dan Cleary, Co-founder and CEO of PromptHub, an organisation focused on enhancing LLM-based applications. He’s also one of the organisers behind the Prompt Engineering Conference, the world’s first event exclusively dedicated to prompt engineering, taking place in London on October 16th. They discuss prompt engineering and management, what to expect from the upcoming conference, and what this emerging field means for enterprise AI and security. Cleary also shares why centralised prompt management matters, how AI’s role in enterprise adoption is evolving, and what security professionals should explore to stay ahead. Send us a text

    26 min
See All (154)

Ratings & Reviews

5
out of 5
3 Ratings

About

The mnemonic security podcast is a place where IT Security professionals can go to obtain insight into what their peers are working with and thinking about.

Information

  • Creator
    mnemonic
  • Years Active
    2019 - 2026
  • Episodes
    154
  • Rating
    Clean
  • Copyright
    © 2026 mnemonic security podcast
  • Show Website
    mnemonic security podcast