CISO Tradecraft®
by G Mark Hardy & Ross Young
You are not years away from accomplishing your career goals, you are skills away. Learn the Tradecraft to Take Your Cybersecurity Skills to the Executive Level.
© Copyright 2025, National Security Corporation. All Rights Reserved
© Copyright 2025, National Security Corporation. All Rights Reserved
May 4, 2026Recent reviews on Apple Podcasts (4)
So informative and logically organized
This podcast has been instrumental in transforming how I think about cyber and business risk. There’s not a lot of other podcasts that I’ve seen or heard from that enables you to go wider or deeper in your understanding. Thank you for the effort y’all put into these and what you’re doing for our community.
JoshSommers ·
Critical Information for Our Critical Infrastructure
The nature of the internet makes it incumbent on every organization to prevent intrusions, be they foreign or domestic. Corporate cybersecurity is not a business concern. It is a national Security concern. For this reason, the information conveyed in this podcast should be on every cybersecurity professional’s listening list , from CISO to entry level security associateS just beginning their career. There is no unimportant person when it comes to cybersecurity. Anyone who uses a computer connected to the internet can reign down catastrophe on an organization. It is up to cybersecurity personnel to prevent that from happening. G. Mark Hardy seems almost chosen to be the one that helps corporations stay safe. It doesn’t hurt that he has a calm, reassuring, voice that conveys a message that this is doable, and that you are the one who can do it.
PBinNewJ ·
A great resource for those in the cyber world
This is such a great casual podcast for those looking to work their way into management in the cyber world. I recommend this to anyone who is interested!!
idavis7 ·
Really interesting podcast for people wanting to be a CISO
There are a lot of podcasts on cyber security. This one has something unique. The creators have a natural energy that resonates well and I enjoy their thoughts. What is most impressive is learning how to become a ciso. There is no silver bullet but the points they bring up are really interesting. I look forward to hearing more episodes
Financialadventure ·
Episodes (282)
#282 - Top 10 Agentic AI Attacks (with Rock Lambros)
May 4, 202645m#282
In this CISO Tradecraft episode, host G Mark Hardy interviews recovering CISO Rock Lambros (Zenity) about securing Agentic AI and the emerging risks beyond LLM hallucinations. Lambros recounts his path from Oracle develo
#281 - SIEM Secrets They Don’t Tell You (with Anton Chuvakin & Alex Hurtado)
Apr 27, 202648m#281
In this CISO Tradecraft episode, host G Mark Hardy talks with Anton Chuvakin and Alex Hurtado about how SIEM programs fail and how organizations overspend when implementations prioritize dashboards or compliance over act
#280 - Mythos and the Future of Vulnerability Operations (with Gadi Evron)
Apr 20, 202643m#280
In this episode of CISO Tradecraft, host G Mark Hardy speaks with Gadi Evron about the paper “The AI Vulnerability Storm Building: A Mythos Ready Security Program,” a community-driven draft produced in days with extensiv
#279 - AI Readiness (with JP Bourget)
Apr 13, 202644m#279
On CISO Tradecraft, host G Mark Hardy welcomes back JP Bourgeet to discuss what “AI readiness” means for organizations, framing it as both a data governance challenge and a change-management problem. JP defines readiness
#278 - RSAC Takeaways: AI SOC, Agent Security, and What Cyber Marketing Gets Wrong
Apr 7, 202645m#278
In this CISO Tradecraft episode, G Mark Hardy, Ross Young, and Andy Ellis share RSAC insights from the vendor floor, including Andy’s effort to visit about 607 booths. They highlight dominant themes like AI SOC offerings
#277 - From SaaS to AI Agents: Gone in 60 Seconds
Mar 30, 202639m#277
In this CISO Tradecraft episode, co-hosts G Mark Hardy and Ross Young discuss how large language models are transforming software development and shifting cybersecurity from buying Software as a Service to “Service as So
#276 - How is AI Reshaping Fraud (with Brian Long)
Mar 23, 202640m#276
In this episode of CISO Tradecraft, host G Mark Hardy speaks with Brian Long, CEO and co-founder of Adaptive Security, about how AI is accelerating and scaling social engineering through deepfakes, OSINT-driven personali
#275 - How to Secure Vibe Code (with Shahar Man)
Mar 16, 202645m#275
In this CISO Tradecraft episode, host G Mark Hardy interviews Shahar Man of Backslash Security about the rapidly expanding attack surface created by AI-driven “vibe coding” tools like Claude Code, Cursor, and Copilot. Sh
#274 - The State of Stress in Cyber (with Steve Shelton)
Mar 9, 202644m#274
In this CISO Tradecraft episode, host G Mark Hardy interviews Steve Shelton ( https://www.linkedin.com/in/greenshoesteve/ ) of Green Shoe Consulting about the “State of Stress in Cybersecurity 2025” report and why burnou
#273 - Creating a Wisdom-Led SOC (with Oren Saban)
Mar 2, 202645m#273
Your SOC is drowning in alerts, false positives, and static tuning, while attackers evolve faster than your team can respond. Analysts burn out chasing noise. Real threats slip through. And traditional metrics reward tic
#272 - Data Centric Platform Play (with EJ Pappas)
Feb 23, 202659m#272
In this episode of CISO Tradecraft, host G Mark Hardy speaks with EJ Pappas of PKWARE and Ross Young about why AI-driven threats demand a shift from platform-centric security to a data-centric strategy . CISOs still stru
#271 - A Life of Service (with Chris Inglis)
Feb 16, 202652m#271
In this special episode of CISO Tradecraft, host G Mark Hardy welcomes Chris Inglis, former National Cyber Director and career public servant, to delve into a wide-ranging conversation about cybersecurity leadership, pub
#270 - And What is Truth?
Feb 3, 202631m#270
Can you still tell what’s true on the internet or does everything feel questionable now? That confusion isn’t accidental. Disinformation, deepfakes, and cyber deception are being used deliberately to manipulate attention
#269 - Changing Third Party Risk Management (with Nate Lee)
Jan 26, 202634m#269
Third-party risk management has become a time-consuming, frustrating exercise. Security teams and vendors alike are buried under long, repetitive TPRM questionnaires that often miss what actually matters. Buyers struggle
#268 - Zero Trust isn't a product (with George Finney)
Jan 19, 202645m#268
Everyone talks about Zero Trust — but very few organizations actually know how to implement it successfully. In this episode of CISO Tradecraft , host G. Mark Hardy is joined by George Finney , a practicing CISO who lite
#267 - Busy is the New Stupid (with Ross Young)
Jan 12, 202646m#267
You’re working longer hours than ever… yet somehow getting less done. Sound familiar? In this episode of CISO Tradecraft, we break down why busy has become the enemy of effectiveness and why “Busy is the New Stupid.” Thi
#266 - Why CISOs Miss The Next Big Security Challenge (with Richard Stiennon)
Jan 5, 202644m#266
CISOs are expected to anticipate the next major security failure, yet the cybersecurity market is moving too fast, too fragmented, and too noisily for any leader to clearly see what’s coming next. AI is accelerating vend
#265 - 12 CISO Templates (with Ross Young)
Dec 29, 202545m#265
In this episode of CISO Tradecraft, hosts G Mark Hardy and Ross Young discuss the extensive redesign at CISO Tradecraft and introduce a series of free cybersecurity tools and templates available on their website. The too
#264 - Behavioral Insights (with Dr. Dustin Sachs)
Dec 22, 202546m#264
Most cybersecurity programs are built on rigid “best practices” that assume people will behave rationally, consistently, and exactly as policy dictates; even under stress, time pressure, and uncertainty. In reality, huma
#263 - Stopping Attacks To Your Cloud Office Environment (with Rajan Kapoor)
Dec 15, 202544m#263
In this episode of CISO Tradecraft, host G Mark Hardy welcomes special guest Rajan Kapoor, VP of Security at Material Security, to discuss critical topics in cloud workspace security. From discussing the increased attack
#262 - AI Mastery for CISOs: What You Must Know
Dec 8, 202546m#262
Dive into the rapidly evolving world of AI with G Mark Hardy and Ross Young in this episode of CISO Tradecraft. Explore how AI is transforming business processes, the critical need for cybersecurity leadership in AI depl
#261 - Vibe Coding Security (with Neatsun Ziv)
Dec 1, 202545m#261
In this episode of CISO Tradecraft, host G Mark Hardy is joined by Neatsun Ziv from Ox Security to discuss the evolving landscape of vibe coding and its security implications. The conversation delves into the risks and o
#260 - Mastering Defense Against Configurations ( with Yuriy Tsibere)
Nov 24, 202535m#260
In this episode of CISO Tradecraft, host G Mark Hardy is joined by Yuriy Tsibere from ThreatLocker to discuss an essential topic for cybersecurity leaders: Defense Against Configurations (DAC). With a focus on the signif
#259 - Transforming Security Operations (with Brian Carbaugh and William Macmillan)
Nov 17, 202540m#259
Join host G Mark Hardy in an exciting episode of CISO Tradecraft where we delve into the cutting-edge world of Human AI Security Operation Centers (SOCs). With special guests Brian Carbaugh and William McMillan, former C
#258 - From Invention to Entrepreneurship (with Jeri Ellsworth)
Nov 10, 202543m#258
In this captivating episode of CISO Tradecraft, hosted by G. Mark Hardy, we delve into the incredible life journey of Jeri Ellsworth—a renowned inventor and tech entrepreneur. From her early fascination with electronics