Subscribe Share Full episode and show notes Ransomware , Security Architecture , AI benefits/risks Rethinking Security from the OS Up in the Age of AI and more RSAC 2026 Interviews – Craig Sanderson, Sachin Jade, Travis Wong, Phil Calvin, Karen Heart – ESW #456 Interview with Karen Heart Rethinking Security from the OS Up in the Age of AI Karen Heart discusses a file-system–first approach to security, arguing that most modern attacks—including ransomware and supply chain compromises—succeed because they inherit user permissions and operate inside overly trusted system structures. She explains how limiting file access, socket (network) access, and privilege escalation at the operating system level can reduce entire classes of attacks. Rather than relying on reactive detection, her approach emphasizes immutable, allowlisted controls embedded close to the kernel layer, designed to prevent both data exfiltration and malicious code execution at the sour... April 27, 2026 This episode is sponsored by Full Segment Notes Interview with Karen Heart Rethinking Security from the OS Up in the Age of AI Karen Heart discusses a file-system–first approach to security, arguing that most modern attacks—including ransomware and supply chain compromises—succeed because they inherit user permissions and operate inside overly trusted system structures. She explains how limiting file access, socket (network) access, and privilege escalation at the operating system level can reduce entire classes of attacks. Rather than relying on reactive detection, her approach emphasizes immutable, allowlisted controls embedded close to the kernel layer, designed to prevent both data exfiltration and malicious code execution at the source. The conversation also explores how AI agents and contractors expand the attack surface, reinforcing the need for strict isolation, backup protection, and deterministic system boundaries. Segment Resources: https://www.simonandschuster.com/books/Zero-Day-Secure/Karen-Heart/9781968865078 RSAC Executive Interviews, Part 1 ​The New Era of DNS Resilience: Breaking down the newly finalized NIST SP 800-81 Craig Sanderson from Infoblox will dive into the newly finalized NIST SP 800-81 as it marks a pivotal shift in DNS security, emphasizing resilience through modernized practices tailored for today’s distributed, cloud-driven, and threat-laden environments. This update provides actionable guidance for organizations to strengthen DNS infrastructure against evolving threats like ransomware and data exfiltration, while prioritizing initiatives like DNSSEC, encryption, and protective DNS for immediate risk reduction. This segment is sponsored by Infoblox. Visit https://securityweekly.com/infobloxrsac to learn more about them! Agentic AI and the Future of Threat Intelligence Operations Security teams collect large volumes of threat intelligence but often struggle to translate that information into coordinated operational response. This discussion explores how organizations are embedding intelligence directly into security workflows and introducing AI agents to support investigation, enrichment and response. Sachin will discuss Cyware’s Agentic Fabric approach and the evolution toward an agent-centric model, where a portfolio of specialized agents assists analysts across threat intelligence, detection engineering and response workflows. The conversation will focus on how AI can support security teams while maintaining human oversight and operational control. This segment is sponsored by Cyware. Visit https://securityweekly.com/cywarersac to learn more about them! RSAC Executive Interviews, Part 2 Beyond the Audit: Making Cyber Risk Continuous, Quantified, and Actionable Most companies assess cyber risk once a year and call it done — but for organizations managing dozens of subsidiaries or portfolio companies, that's a costly blind spot. In this RSA interview, Resilience's VP of Customer Engagement explores why measuring risk in dollars (not color-coded charts) changes the conversation at the board level, and why the organizations best positioned to prevent losses are the ones treating cyber risk as a continuous discipline rather than an annual exercise. See it in action. Request a demo at https://securityweekly.com/resiliencersac . Delinea: Redefining Identity Security for the Agentic AI Era As enterprises scale agentic AI and automation, privileged access is increasingly required by non-human identities (NHIs) that operate autonomously across hybrid and cloud-native environments, introducing risks that static, credential-based models were never designed to govern. Delinea's recent of acquisition of StrongDM. This segment is sponsored by Delinea. Visit https://securityweekly.com/delinearsac to learn more about them! Guests Craig Sanderson Principal Cyber Security Strategist at Infoblox Craig Sanderson is the Principal Cyber Security Strategist at Infoblox. Craig has over 25 years of experience in the CyberSecurity industry with a broad array of roles ranging from consultancy, security architecture, business development and product management. Over the last seven years, Craig has been responsible for creating the vision, strategy and delivered the execution of the Infoblox BloxOne Threat Defense solution. He continues to be passionate about the role that DNS can play in delivering world class cyber security with a particular emphasis on how DNS can become the foundation for national and governmental Protective DNS solutions. Sachin Jade Chief Product Officer at Cyware Sachin Jade is Chief Product Officer at Cyware, where he leads product strategy for the company’s threat intelligence and security operations platform. His work focuses on helping organizations operationalize threat intelligence by integrating intelligence workflows directly into detection and response environments. Sachin works with enterprises, government organizations and information sharing communities to advance automation, intelligence collaboration and the practical application of AI within security operations. Travis Wong VP, Customer Engagement at Resilience Travis Wong is the VP of Customer Engagement at Resilience. He leads the Security and Risk Services and Customer Success teams and brings over 15 years of experience in risk management consulting, helping clients assess, measure, and manage their risk effectively. Phil Calvin Chief Product Officer at Delinea Phil Calvin brings more than 25 years of software development, technical leadership and entrepreneurial experience to Delinea. His areas of expertise include technical strategy, cloud architecture, and engineering executive management. Prior to Delinea, Phil spent nearly a decade at Salesforce in a variety of architectural and engineering leadership roles, most recently leading the Platform Engineering organization and focusing on making the Salesforce platform trusted, accessible, and scalable. Karen Heart CTO at Heart Security Suite, LLC Karen is CTO of Heart Security Suite, LLC and a computer science instructor at DePaul University, where her research focuses on building fundamentally secure systems. Her work bridges operating system design, distributed systems, and cybersecurity, and serves as the foundation for HSS’s platform, including the upcoming HeartSuite Joint File System. She is the author of Zero Day Secure: A Radical Guide to Successful Computer Security, which lays out a practical blueprint for eliminating entire classes of vulnerabilities at the operating system level. Karen has developed software across the stack—from end-user applications to distributed architectures—serving industries such as banking, insurance, logistics, and publishing. In addition to her engineering background, Karen is a licensed attorney in Illinois, with experience in intellectual property and litigation. Her combined perspective informs her current research into system security, digital forensics, and the legal and regulatory dimensions of cybersecurity. Hosts Adrian Sanabria @sawaba https://adriansanabria.com Doug White https://securedigitallife.com/ Joshua Marpet https://www.cyturus.com Katie Teitler-Santullo https://thereformedanalyst.substack.com/ Matt Alderman Tyler Shields https://www.90degree.vc/ Show More Stay in the Know, No Smoke and Mirrors – Join Our Newsletter Get expert insights and technical breakdowns straight to your inbox. Join Now Related Segments Vulnerability Management Scylla &Charybdis, Kyber, Trigonia, Namastex, GitHub, Crypto, Cables, Aaran Leyland – SWN #575 Leadership Not All CISO Gigs Are Created Equal and RSAC Interviews from ESET and Mimecast – Joanna Chen, Tony Anscombe, Rob Juncker – BSW #443 Ransomware Ransomware in 2025: How Cybercriminals Operate & How to Stop Them – WC #1 Related Content Application security ‘AiFrame’ browser attacks continue with fake authenticator, converter extensions Ransomware UNC6692 impersonates help desk employees to drop SNOW malware via Teams Ransomware Ransomware supply chain untangled by RAMP forum leak You can skip this ad in 5 seconds