And Security For All

Kim Hakim
  • 0.0 (0)
  • BUSINESS
  • UPDATED WEEKLY

Cyber security is not only important to everyone, it is critical to the future of every American. Each show details specific points in history and provides guidance and insights of both a technical and societal nature to help you understand and address cyber security issues more effectively. Our approach makes the often misunderstood and highly technical jargon of cyber security advisories, and popular media digestible for anyone that listens.brbr Anyone that leverages or uses internet and cyber related services, which in today’s world is basically everyone, stands to benefit from the show. You’ll gain insight into the reality of the space around cyber security and learn more details and truths on what is actually necessary to operate and be more secure at both the business and personal levels in an ever-changing technology space. We can help you truly understand a vast technology space and be better prepared in a dynamic technology ecosystem.

  1. Welcome to the Runtime Era & the Rapid Shift in AppSec 📈

    4D AGO

    Welcome to the Runtime Era & the Rapid Shift in AppSec 📈

    In this episode of And Security For All, host Kim Hakim sits down with Jeff Williams, Founder and CTO of Contrast Security, for a deep dive into why application security is undergoing its most dramatic shift in decades. Jeff shares his journey from helping create the OWASP Top Ten to building one of the leading runtime application security platforms, and explains why traditional AppSec approaches are no longer keeping up with modern software development. 🎙️ In this episode, we cover: Why 2026 is shaping up to be the year of runtime securityHow traditional AppSec tools create noise instead of clarityWhat runtime security reveals that static and perimeter tools cannotWhere AI truly helps in AppSec—and where the hype falls shortHow European regulatory changes are redefining software liabilityWhy security teams must prioritize context over volumeWhat developers, CISOs, and security leaders should focus on nextThis conversation breaks down complex topics like runtime protection, AI-driven remediation, regulatory pressure, and developer enablement into clear, practical insights for today’s security practitioners. Whether you’re a CISO, AppSec leader, developer, or security architect, this episode offers a forward-looking perspective on how application security is evolving—and what it takes to stay ahead.

    48 min
  2. Securing Intelligence: AI’s Impact on Cyber Risk

    JAN 28

    Securing Intelligence: AI’s Impact on Cyber Risk

    In this episode of And Security For All, host Kim Hakim is joined by Jessica Couto, VP of Channels & Alliances at Harmonic Security, for an in-depth conversation on Securing Intelligence: AI’s Impact on Cyber Risk. Together, they explore how generative AI has rapidly shifted from a productivity tool to a new source of organizational risk—and why blocking AI outright is no longer a viable strategy. Jessica shares real-world insights on how employees are using AI both inside and outside corporate environments, the growing risks of data exposure, phishing, deepfakes, and shadow AI usage, and what security leaders must do to regain visibility and control. The discussion also covers how organizations can safely enable AI without sacrificing productivity, the evolving role of the CISO, the rise of fractional CISOs, and how security teams can communicate AI risk in business terms that resonate with leadership. Topics include: How AI is changing the cyber threat landscapeWhy blocking generative AI puts organizations at risk of falling behindData leakage, shadow AI, and employee behaviorDeepfakes, phishing, and AI-driven social engineeringAI governance, visibility, and policy challengesThe future of the CISO role and cybersecurity careers This episode is a must-listen for CISOs, security leaders, IT professionals, and anyone navigating the fast-changing intersection of AI, cyber risk, governance, and workforce impact.

    45 min
  3. Inside The Lion’s Den: Part 2

    11/25/2025

    Inside The Lion’s Den: Part 2

    In this follow-up episode, guest host Jonathan Kimmitt sits down again with Matthew Maynard, Security Operations Specialist at BJC HealthCare and Dark Web Researcher, to take an even deeper dive into the inner workings of ransomware crews and the people behind them. Matthew takes listeners deeper into the “lion’s den,” revealing what he has learned from directly engaging with threat actors on the dark web—how they think, how they operate, and why the human element inside these criminal ecosystems matters more than most organizations realize. In this episode, they break down: What motivated Matthew to enter ransomware intelligence and begin infiltrating criminal groupsHow ransomware crews recruit, organize, and operate like legitimate businessesKey differences between the clear web and dark web, and common misconceptionsEssential OPSEC practices and how both researchers and criminals protect their identitiesHow personas are created and maintained when engaging directly with threat actorsHuman drivers of cybercrime—from financial incentive to desperation and coercionInsider risks, layoffs, and how human vulnerability contributes to modern breachesMajor intelligence wins and insights that help organizations make stronger security decisions This episode offers rare, firsthand insight into the techniques, mindset, and operational flow of active cybercriminals—paired with practical guidance for defenders. Whether you’re in security leadership, incident response, threat intel, or simply curious about the dark web, this conversation will challenge your assumptions and expand your understanding of today’s most dangerous threats. Listen now and hear why knowing your adversary is one of the most powerful defenses in cybersecurity.

    46 min
  4. Inside The Lion’s Den: Infiltrating Ransomware Groups

    11/18/2025

    Inside The Lion’s Den: Infiltrating Ransomware Groups

    In this eye-opening episode of And Security For All, host Kim Hakim sits down with Matthew Maynard, Information Security Operations Specialist at BJC HealthCare and dark web researcher who has spent the last year doing the unthinkable—infiltrating active ransomware groups from the inside. Matthew shares how he entered closed cybercriminal communities, built trust, gathered intelligence, and passed critical findings to government agencies—all while maintaining a full-time role protecting one of the largest healthcare systems in the Midwest. His research provides a rare, real-time window into ransomware crews, their structure, their onboarding process, their business platforms, and the tactics they use to select, study, and strike their victims. What You’ll Learn in This Episode How ransomware groups actually operate behind closed doorsWhat “initial access brokers” are and why they’re the real first step in most attacksHow threat actors select targets, test stolen credentials, and prepare for exploitationWhy holidays and long weekends remain prime attack windowsWhat defenders consistently overlook—and the fixes that matter mostHow Matthew manages OPSEC, safety, and reporting while undercoverWhy MFA gaps, vendor access, phishing, and unpatched systems remain the top entry pointsThe surprising internal rules, ethics, and boundaries some threat groups enforceHow organizations should rethink backups, insurance, and negotiating ransom demands Matthew also discusses the psychological side of this work—the fear, the risk, and the personal motivation that keeps him in the fight. His insights provide actionable takeaways for CISOs, SOC teams, and anyone responsible for protecting an enterprise today. This is a rare interview with someone who has seen ransomware operations from the inside. It’s a conversation every cybersecurity leader should hear.

    44 min
  5. SOTI Fraud & Abuse Report: Charting a Course Through AI’s Murky Waters

    11/12/2025

    SOTI Fraud & Abuse Report: Charting a Course Through AI’s Murky Waters

    In this episode of And Security For All, guest host Steve Winterfeld, Advisory CISO at Akamai Technologies, teams up with Tricia Howard, Security Evangelist and “Scrybe of Cybersecurity Magicks,” to unpack Akamai’s State of the Internet: Fraud & Abuse Report 2025. They explore how AI-driven bots are reshaping the landscape of digital fraud—surging over 300% in the past year—and what that means for businesses, defenders, and everyday users. From ad fraud and data scraping to compliance challenges and the ethics of AI, this conversation dives deep into the tension between innovation and exploitation in cybersecurity. Listen as Steve and Tricia discuss: The explosive growth of AI bots and their impact on digital operationsAd fraud, zero-click searches, and the dark economy of stolen dataWhy healthcare and commerce are prime targets for automated attacksThe evolving balance between compliance, risk, and real securityHow organizations can defend against this new wave of AI-powered fraud With insights from Akamai’s global research team, this episode offers a grounded look at how to navigate the rise of generative AI, protect brand integrity, and build trust in a rapidly changing threat environment.

    45 min

  6. 11/10/2025

    The Current State of Cyber and AI in the Workforce

    In this episode of And Security For All, host Kim Hakim sits down with cybersecurity expert Ken Foster to explore how artificial intelligence is reshaping the modern workforce — and what that means for security professionals, organizations, and the future of work. From layoffs and talent shortages to the rise of agentic AI, Kim and Ken break down how automation, machine learning, and new attack surfaces are changing the cybersecurity landscape in real time. They discuss: How AI is transforming security operations and workforce dynamicsThe growing risk of over-automation and the loss of human oversightWhy data governance and validation are critical to AI successThe double-edged sword of AI in threat detection — and how bad actors are using it tooThe looming impact of quantum computing and what it means for encryption and defense strategiesThe importance of Zero Trust, segmentation, and continuous monitoring in today’s AI-driven worldKen also shares candid insights on hiring trends, upskilling the next generation of cybersecurity professionals, and how leaders can prepare for a workforce that increasingly depends on — and is challenged by — artificial intelligence. Whether you’re a CISO, IT leader, or security practitioner, this conversation offers practical perspective on where AI, automation, and human expertise intersect — and how to stay ahead in a rapidly evolving cyber landscape.

    43 min
  7. AWS Outage – Lessons in Digital Dependency

    10/21/2025

    AWS Outage – Lessons in Digital Dependency

    When Amazon Web Services (AWS) experienced a major outage, it wasn’t just a brief inconvenience—it exposed how dependent our digital world has become on a handful of cloud providers. From e-commerce and banking to communication tools, gaming platforms, and smart homes, the disruption highlighted the fragility of modern infrastructure and the need for true resilience. In this episode of Security for All, host Kim Hakim explores what really happened during the AWS outage and what it means for organizations, consumers, and cybersecurity professionals. Kim welcomes Tahjar Roamartinez, MBA, CISSP, ITIL, CEH—former U.S. Army officer and cybersecurity executive with extensive experience in IT governance, risk management, and cloud security. Together, they examine both the technical root causes and the broader business and societal impacts of the outage. Discussion Topics Include: The technical breakdown of the AWS outage and how a DNS failure rippled across industriesHow overreliance on a single cloud provider creates systemic riskThe importance of redundancy, resilience, and multi-cloud strategiesHow to prepare and respond using playbooks, tabletop exercises, and recovery planningThe growing digital dependency of individuals, families, and organizationsHow security leaders can balance innovation with risk managementLessons learned for CISOs, IT leaders, and business owners moving forwardTahjar and Kim also discuss how this event should serve as a wake-up call for every organization, regardless of size or budget. From small businesses to large enterprises, no one is immune from the ripple effects of an outage in today’s interconnected digital ecosystem. Listeners will gain practical insights into strengthening cyber resilience, building awareness, and preparing for future disruptions—because in cybersecurity, it’s not a question of if, but when.

    45 min
  8. Workplace Culture & Leadership: Why Balance Beats Burnout

    10/15/2025

    Workplace Culture & Leadership: Why Balance Beats Burnout

    In this episode of And Security For All, host Kim Hakim is joined by Eva Benn, Principal Security Program Manager, MSRC at Microsoft, keynote speaker, and one of the world’s Top 20 Women in Cybersecurity. Together, they dive deep into the realities of burnout in high-pressure industries — and how balance, empathy, and authenticity in leadership can change everything. Drawing from her own experience in cybersecurity and human behavior, Eva shares how burnout isn’t just a personal problem — it’s a security risk. They discuss how the human element remains the weakest link in cyber defense, and why emotional resilience and psychological regulation are as essential as technical skills. The conversation also explores gender balance and leadership energy, challenging the traditional “hustle harder” mindset. As they reflect on outdated workplace beliefs, the two discuss the importance of alignment: how working in tune with your authentic self prevents exhaustion and unlocks creativity. They also examine the double-edged nature of AI — a tool that can either amplify burnout or help professionals regain time and focus when used with intention. From redefining what success really looks like to cultivating workplaces where people can thrive, this episode is an honest, insightful, and empowering reminder that true leadership begins with balance — not burnout. If you’ve ever struggled with burnout, leadership fatigue, or the constant push to keep up in a hyper-digital world, this conversation will inspire you to slow down, realign, and find drive from a place of strength and humanity.

    47 min
See All (169)

About

Cyber security is not only important to everyone, it is critical to the future of every American. Each show details specific points in history and provides guidance and insights of both a technical and societal nature to help you understand and address cyber security issues more effectively. Our approach makes the often misunderstood and highly technical jargon of cyber security advisories, and popular media digestible for anyone that listens.brbr Anyone that leverages or uses internet and cyber related services, which in today’s world is basically everyone, stands to benefit from the show. You’ll gain insight into the reality of the space around cyber security and learn more details and truths on what is actually necessary to operate and be more secure at both the business and personal levels in an ever-changing technology space. We can help you truly understand a vast technology space and be better prepared in a dynamic technology ecosystem.

Information

  • Creator
    Kim Hakim
  • Years Active
    2025 - 2026
  • Episodes
    169
  • Rating
    Clean
  • Copyright
    © Kim Hakim
  • Show Website
    And Security For All