Security Boulevard Podcast

Email your questions and topics to the podcast here.
The gap between what AI vendors build and what customers actually need has reached a breaking point in 2026.
In this episode of Security Boulevard, hosts Tom Hollingsworth, Mitch Ashley, and Fernando Montenegro discuss the growing tension between vendor roadmaps and user reality.
The team dives deep into the "Spring of Agentic 2026," discussing how the meteoric rise of OpenClaw disrupted the industry and forced major vendors to pivot toward real-world utility. From the rise of "vibe coding" and shadow AI to the critical need for faster OODA loops in cybersecurity, they explore how organizations are struggling to govern a world where anyone with a credit card and a browser can deploy an agent.
Are security teams leading the charge or just trying to keep up with the 10,000 RPM speed of AI development? This and more on Security Boulevard Podcast.
Hosts:
Tom Hollingsworth, Event Lead at Tech Field Day and Analyst for The Futurum Group
Fernando Montenegro, VP and Practice Lead for Cybersecurity at The Futurum Group
Mitch Ashley, VP and Practice Lead for Software Lifecycle Development at The Futurum Group
Alan Shimel, CEO of Techstrong Group
 

Email your questions and topics to the podcast here.
Modern cybersecurity risks aren’t always obvious, often hiding in plain sight.
This week on Security Boulevard, Tom Hollingsworth, Fernando Montenegro, and Jack Poller discuss the growing challenges of developer account terminations, shadow IT, and “shadow AI” across modern organizations.
The panel breaks down how cloud dependencies and third-party relationships are creating hidden risk surfaces that many companies aren’t fully prepared for.
From incident response planning to governance gaps, the conversation highlights why security teams need to think beyond traditional boundaries and prepare for failures before they happen.
This and more on the Security Boulevard Podcast, part of The Futurum Podcast Network.

Email your questions and topics to the podcast here.
What if the next major security breach comes from something hidden in your software supply chain?
In this episode of the Security Boulevard Podcast, Tom Hollingsworth is joined by Jay Cuthrell, Zoë Rose, and Devashri Datta to break down SBOM and VEX and why they matter more than ever.
The panel explores how these tools help teams identify real risks, respond faster to incidents like Log4j, and improve vulnerability management. They also discuss the growing impact of AI, open source software, and regulatory pressure across industries like automotive and healthcare.
This and more on the Security Boulevard Podcast, part of The Futurum Group's family of podcasts.
Guest:
Devashri Datta, Sr. Program Manager, Compliance and Cybersecurity
Panelists:
Zoë Rose, CSIRT manager at Canon EMEA
Jay Cuthrell, Chief Product Officer at NexusTek
Host: Tom Hollingsworth, Event Lead at Tech Field Day and Analyst for The Futurum Group
#SecurityBoulevard #CybersecurityPodcast #Cybersecurity #SBOM #VEX #SoftwareSecurity #DevSecOps #OpenSource #VulnerabilityManagement #InfoSec #TechPodcast #AppSec 

A single source code leak can ripple through the entire AI security ecosystem.
This week on the Security Boulevard Podcast, Tom Hollingsworth, Mitch Ashley, and Fernando Montenegro dive into what happened with the Anthropic source code exposure and why it matters for the future of AI security.
The discussion breaks down the cybersecurity, legal, and supply chain risks surrounding AI-generated code, including whether models like Claude introduce new intellectual property challenges and how organizations should rethink security by design.
This and more on the Security Boulevard Podcast.
Email your questions, comments, or topics to the podcast.
Learn more on The Futurum Group's website.
#SecurityBoulevard #CybersecurityPodcast #Cybersecurity #AI #AISecurity #Anthropic #ClaudeAI #DevSecOps #SupplyChainSecurity #CloudSecurity

What does a cybersecurity score of 76 really mean?
In this episode of Security Boulevard, Tom Hollingsworth, Fernando Montenegro, and Jay Cuthrell tackle one of the most persistent challenges in cybersecurity: reducing complex risk to a single number on a dashboard.
They unpack why so many security scores lack context, give a false sense of precision, and often mislead the very executives they’re meant to inform. The discussion dives into the pitfalls of oversimplified risk scoring models, the risks of relying on color-coded dashboards, and why metrics like CVSS often fail without proper business and environmental context.
The panel also contrasts proprietary “secret sauce” scoring systems with more defensible approaches to risk quantification, including frameworks like FAIR.
From misleading executive dashboards to the real challenge of communicating cyber risk in business terms, this episode provides a clear, critical look at why effective security metrics require much more than just a number.
#Cybersecurity #RiskManagement #CISO #CVSS #FAIR #SecurityBoulevard

NVIDIA is no longer just selling chips—it is becoming a central force in the future of AI infrastructure and security.
On this episode of the Security Boulevard podcast, Tom Hollingsworth, Alan Shimel, and Mitch Ashley break down NVIDIA’s growing security ecosystem and what it means for the enterprise.
The conversation explores NVIDIA’s partnerships with major players including CrowdStrike, HPE, and Cisco, and why the company’s role as an AI infrastructure provider puts it at the center of the next wave of cybersecurity strategy.
The trio also examines the urgent need to secure both AI development pipelines and AI-generated outcomes, as organizations race to deploy models, agents, and new AI-driven workflows. They also discuss the promise of NVIDIA OpenClaw and what toolkits like it could signal for the future of secure AI operations.
As AI adoption accelerates, one question becomes impossible to ignore: who will secure the infrastructure powering it all?
#Cybersecurity #AI #NVIDIA #AISecurity #EnterpriseAI #SecurityBoulevard

When a cyberattack moves from "pay us" to "destroy everything," the rules of digital warfare have officially changed.
In this episode of Security Boulevard, Tom Hollingsworth, Fernando Montenegro, and Jack Poller break down the devastating "wipe" attack on healthcare giant Stryker.
Unlike typical ransomware focused on financial gain, this attack saw laptops, phones, and entire systems systematically erased, signaling a chilling shift toward non-financially motivated nation-state aggression. The team explores why healthcare remains a "soft target," the critical importance of network segregation (which saved Stryker’s medical devices), and why identity security is the last line of defense in an era of destructive hacking.
From the "cybersecurity poverty line" to the dangers of weaponizing management tools like MDMs, this conversation is a must-watch for IT professionals and executives navigating today's perilous geopolitical landscape.
#CyberSecurity #StrykerHack #HealthcareIT #Infosec #SecurityBoulevard #NationStateActors #DigitalWarfare #IdentitySecurity #TechFieldDay #CISO #BusinessContinuity

Is the era of "wild west" AI development finally coming to an end, or are we just building taller fences?
In this episode of the Security Boulevard Podcast, Tom Hollingsworth, Mitch Ashley, and Fernando Montenegro dive into why AI regulation has shifted from a "nice-to-have" ethical debate to an urgent cybersecurity mandate.
As the industry prepares to descend on San Francisco, the trio breaks down the high-stakes collision between lightning-fast innovation and the tightening grip of global governance. They examine the growing need for explicit, enforceable rules in a world of autonomous agents and "Shadow AI."
Emerging standards like ISO 42001 and the NIST AI Framework are becoming the new blueprints for enterprise trust, and why traditional law continues to struggle with the velocity of tech. From the economic pressures of global compliance to the grassroots power of community-led safety, this discussion provides a definitive roadmap for navigating today’s most complex security landscape.
See why "trust but verify" has evolved from a simple catchphrase into the ultimate survival strategy for the intelligence era.
#SecurityBoulevard #Cybersecurity #AIRegulation #AIGovernance #EnterpriseAI #AIRisk #ResponsibleAI #RSAC #TechPolicy

If we can't see what AI is actually doing, how can we ever hope to secure it?
In this episode of the Security Boulevard Podcast, hosts Tom Hollingsworth, Mitch Ashley, and Fernando Montenegro break down the complex intersection of Artificial Intelligence and modern cybersecurity.
As AI continues to reshape software development, the team explores why observability has become the critical foundation for establishing accountability and trust in automated systems. They dive into the challenges of governing autonomous agents, the necessity of building "observability-native" architectures, and why transparency is often the missing link in current AI operations.
Whether you're a developer, a security practitioner, or a tech leader, this conversation provides essential insights into integrating security into the DNA of AI-driven environments to ensure that as we innovate, we remain in control.
For more cybersecurity content, visit the Security Boulevard website and subscribe on YouTube.
#SecurityBoulevard #Cybersecurity #ArtificialIntelligence #Observability #SecurityPodcast #InfoSec #TechGovernance #SoftwareDevelopment #AIPathways

AI agents are accelerating discovery, automation, and operational change—but enterprise security teams are still operating on human-speed processes.
In this episode of Security Boulevard, Mitch Ashley joins Tom Hollingsworth and Fernando Montenegro to examine what happens when AI-driven systems begin operating at machine speed while traditional security workflows remain constrained by governance, patch cycles, and change management controls.
The conversation explores: 
How AI agents compress vulnerability discovery timelines 
Why automation without operational maturity increases risk 
Whether enterprise security programs are structurally prepared for AI-era velocity 
The growing tension between innovation and control
As AI capabilities expand, the real challenge isn’t just technical—it’s organizational. Security leaders must rethink processes, prioritization, and response frameworks to avoid widening exposure. AI is scaling. Is your security program?
Subscribe to Security Boulevard for weekly enterprise cybersecurity analysis.
#SecurityBoulevard #CyberSecurity #AI #ArtificialIntelligence #EnterpriseSecurity #SecurityLeadership #Automation #AIagents #CISO #SecurityStrategy #SecurityBoulevard #DigitalTransformation #RiskManagement #Infosec #TechPodcast #Governance