Seiso Side-Up

Seiso, LLC.

Here we cut through the noise in cybersecurity. This isn’t a show about perfect frameworks or polished slide decks. It’s a place for honest conversations about security strategy, governance, and risk as they actually exist inside real organizations - messy, evolving, and deeply tied to how the business runs. Each episode explores what it really takes to build, operate, and sustain security programs that don’t get ignored, overcomplicated, or treated as a once-a-year exercise. We focus on clarity, ownership, and practical decision-making - especially for people early in their security careers or stepping into leadership for the first time. Seiso works with mid-sized, regulated organizations that need cybersecurity to function day-to-day - not just during audits or incidents. Our customers bring us in early, at the leadership level, because security decisions shape how the business grows, sells, and operates. We’re trusted as long-term operating partners, helping teams run, stabilize, and mature security programs over time. That practitioner-driven, real-world experience is what shapes every conversation on Side-Up.  

  1. APR 28

    Episode 19 - Hacklore and Friends

    The conversation explores the concept of 'hack lore' and its impact on cybersecurity, focusing on the disconnect between perceived security and actual security. It delves into the myths and misconceptions surrounding security, the role of AI in creating new hack lore, and the need to address the mundane aspects of security. The discussion also highlights the importance of holding companies accountable for customer security outcomes and the challenges of AI in cybersecurity. The conversation delves into the challenges of implementing AI and security in modern workflows, highlighting the need for a secure-by-design approach and the importance of understanding customer security outcomes. It also emphasizes the role of leadership in taking ownership of security and risk. Takeaways Hack lore: The conversation sheds light on the concept of 'hack lore' and its impact on cybersecurity, emphasizing the need to retire bad advice and focus on the basics.AI and Hack Lore: The emergence of AI in cybersecurity introduces new challenges and misconceptions, leading to the creation of new hack lore around AI security advice and frameworks. Secure-by-design approach is crucial for AI and cloud systemsLeadership must take ownership of security and risk Chapters 00:00 AI and Hack Lore: The New Frontier25:26 Security as an Afterthought in AI Implementation31:11 Cultural Perspective on Applying Security Basics to AI39:31 Secure by Design in Real-world AI Environments45:25 Ownership of Risk and Accountability50:53 Implementing Secure by Design Principles

    50 min

  2. MAR 30

    Episode 18 - vGRC Evolution Part II of II

    The conversation delves into the evolving role of GRC professionals, emphasizing the non-negotiable skills, challenges, and the shift from compliance operators to strategic partners. It also explores the influence of GRC on business decisions, burnout prevention, and the importance of continuous learning and risk-based decision-making. Takeaways Technical understanding and fluency are non-negotiable skills for modern GRC professionals.Risk management, continuous learning, and business context understanding are crucial for GRC professionals.Data analytics and risk visualization play a significant role in GRC responsibilities.GRC professionals are evolving from compliance operators to strategic partners, influencing business decisions earlier in the planning stage.Challenges for GRC teams include continuous learning, resistance from within GRC and the business, and burnout prevention.Leadership can better support evolving GRC roles by involving GRC professionals in strategic conversations early and building trust.Prioritizing cloud hosting, security, and AI technology skills is essential for GRC professionals.A risk-based approach and proactive decision-making are crucial mindset shifts for modern GRC teams. Chapters 00:00 Skills for Modern GRC Professionals11:08 GRC as a Strategic Partner17:20 Challenges and Growing Pains22:37 Preventing Burnout

    31 min

  3. MAR 4

    Episode 18 - vGRC Evolution Part I of II

    The podcast episode explores the evolution of GRC roles, the impact of automation on GRC tasks, and the strategic shift in GRC expectations. It also delves into the measurement of the value of GRC beyond passing audits. The conversation highlights the expanding nature of GRC roles and the significant impact of automation on GRC tasks. Takeaways GRC roles are expandingAutomation has significantly impacted GRC tasks Chapters 00:00 Evolution of GRC Roles05:31 Impact of Automation on GRC Tasks21:31 Measuring the Value of GRC

    27 min

  4. JAN 14

    Episode 17 - New Year, Same AI Risks

    AI is no longer experimental—it’s embedded in enterprise systems, security operations, and everyday business tools. In this episode of The Seiso Side-Up Podcast, host Lauren Shaffer joins Seiso COO Eric Lansbery and co-host Heidi Patrick to discuss why AI security, AI governance, and risk management are now critical priorities. The conversation covers the evolution of AI adoption and the real risks organizations face, including model poisoning, data leakage, hallucinations, and unmanaged GenAI use. Eric shares practical guidance on applying NIST AI Risk Management Framework, ISO/IEC standards, ethical AI, and GRC best practices to build secure, compliant, and resilient AI programs. This episode delivers key 2026 AI governance takeaways for security leaders, GRC professionals, and executives looking to manage AI risk, meet regulatory expectations, and strengthen enterprise trust.

    19 min

  5. 12/01/2025

    Episode 16 - How to Become a Human Firewall

    In this episode, Joe Wynn and Taylor Lee join Lauren to discuss How to Win Friends and Influence People and Crucial Conversations books. They discuss how to correctly communication phishing attacks, how to listen with empathy and how to lead by example.  Listen to this episode to learn how to become a human firewall.

    20 min

  6. 10/28/2025

    Episode 15 - Building Trust and Compliance: Guiding a Client to CMMC Level 2 Certification

    In this episode, we take you behind the scenes of how our team helped a client successfully achieve CMMC Level 2 certification. From assessing gaps and aligning controls to overcoming legacy system challenges and navigating the audit process, we break down each step of the journey. You’ll hear how collaboration, governance, and a clear security roadmap turned a complex compliance goal into a milestone achievement. Whether you’re preparing for your own certification or just curious about how CMMC impacts business resilience, this episode offers practical insights and lessons learned straight from the field.

    13 min

  7. 08/03/2025

    Episode 14 - Tackling Business Growth with GCC and vGRC

    On this episode, we have a special guest, Sourabh Moharil, Managing Director and Co-Founder of the Global Capability Center (GCC) company Agilite. Seiso CEO Joe Wynn joins our co-hosts, Lauren Shaffer and Eric Lansbery, to navigate the value behind establishing a GCC while integrating with a vGRC model to develop, maintain, and continuously improve compliance at that scale of business growth operations. Listen in on this very special episode and learn more about how GCC and vGRC can help to simplify security while upscaling your company strategically - for start-ups and well-established businesses alike.

    27 min

  8. 05/30/2025

    Episode 13 - HIPAA Security Rule Updates

    In this episode, we'll review the proposed updates to the HIPAA Security Rule and discuss the challenges that organizations encounter when becoming HIPAA compliant or maintaining HIPAA compliance through these changes. We also dive into the complexities and differences between HIPAA compliance in the cloud, versus on-prem, and how compliance automation can be a game changer in keeping up with these changes. #vGRC #HIPAA #cybersecurity #riskmanagement

    37 min
See All (21)

Ratings & Reviews

5
out of 5
2 Ratings

About

Here we cut through the noise in cybersecurity. This isn’t a show about perfect frameworks or polished slide decks. It’s a place for honest conversations about security strategy, governance, and risk as they actually exist inside real organizations - messy, evolving, and deeply tied to how the business runs. Each episode explores what it really takes to build, operate, and sustain security programs that don’t get ignored, overcomplicated, or treated as a once-a-year exercise. We focus on clarity, ownership, and practical decision-making - especially for people early in their security careers or stepping into leadership for the first time. Seiso works with mid-sized, regulated organizations that need cybersecurity to function day-to-day - not just during audits or incidents. Our customers bring us in early, at the leadership level, because security decisions shape how the business grows, sells, and operates. We’re trusted as long-term operating partners, helping teams run, stabilize, and mature security programs over time. That practitioner-driven, real-world experience is what shapes every conversation on Side-Up.  

Information

  • Creator
    Seiso, LLC.
  • Years Active
    2024 - 2026
  • Episodes
    21
  • Rating
    Clean
  • Copyright
    © 2026 Seiso, LLC.
  • Show Website
    Seiso Side-Up

You Might Also Like