Security Done Different

AI has gone fully consumer, from voice recipes in the kitchen to bots that schedule your day. But when that same tech walks into the office, what happens to privacy, security and trust?In this episode, we explore the blurred line between consumer AI convenience and enterprise AI chaos. What starts as smart personalisation quickly becomes a compliance headache when staff bring ChatGPT habits to corporate data.We break down the risks of this “BYO AI” culture, data exposure, false confidence and shadow automation. We talk about AI guardrails, hallucinations and why secure model design is more than a checkbox. From testing and drift to the reality of training your own models, this is what actually separates safe adoption from reckless hype.We also dig into AI agents, data sovereignty and the emerging trend of digital twins. where automation starts acting with your tone, your style and sometimes your credentials.AI isn’t the enemy, but uncontrolled AI is a threat surface.If you care about how AI really fits into modern security, beyond the buzzwords, this one’s worth your attention.𝗘𝗻𝗷𝗼𝘆𝗲𝗱 𝘁𝗵𝗲 𝗲𝗽𝗶𝘀𝗼𝗱𝗲? 𝗦𝘂𝗯𝘀𝗰𝗿𝗶𝗯𝗲 𝗵𝗲𝗿𝗲𝗦𝘁𝗮𝘆 𝗰𝗼𝗻𝗻𝗲𝗰𝘁𝗲𝗱 𝘄𝗶𝘁𝗵 𝘂𝘀Visit the CloudGuard websiteFollow CloudGuard on social𝗟𝗶𝗸𝗲𝗱 𝗼𝘂𝗿 𝘀𝗽𝗲𝗮𝗸𝗲𝗿𝘀?Follow Javid KhanFollow Yakub DesaiCHAPTERS00:00 – Intro03:30 – How people are bringing their personal AI habits into work 06:40 – What’s real innovation vs. pure marketing theatre?10:30 – When Consumer AI Meets Corporate Data15:00 – Building Secure AI: Guardrails, Models & Mistakes20:30 – Fighting AI with AI25:30 – The Future: AI Colleagues, Deepfakes & Digital Twins

AI is everywhere, but how much of it is real, and how much is just lipstick on a prompt?In this episode, we cut through the noise around AI in cybersecurity. There’s a difference between genuine innovation and a glorified wrapper around ChatGPT. And right now, the hype is drowning out the people actually building meaningful tech.We talk about the evolution of AI at CloudGuard, from early automation and orchestration to where things are heading with agentic AI. Think less "magic black box", more modular intelligence that mirrors how real analysts work: triage, enrich, remediate, repeat.We also dig into small vs large language models, the illusion of intelligence in GenAI, and why prompt engineering is both powerful *and* deeply limited.Javid lays out a blunt truth: slapping “AI-powered” on your landing page doesn’t make it so. The real work is hard, expensive, and often invisible, but it’s where the real impact happens.If you're tired of AI vaporware and want to understand what good actually looks like, this one’s for you.Expect raw insights and real-world context. Hype fades, capability doesn’t.𝗘𝗻𝗷𝗼𝘆𝗲𝗱 𝘁𝗵𝗲 𝗲𝗽𝗶𝘀𝗼𝗱𝗲? 𝗦𝘂𝗯𝘀𝗰𝗿𝗶𝗯𝗲 𝗵𝗲𝗿𝗲𝗦𝘁𝗮𝘆 𝗰𝗼𝗻𝗻𝗲𝗰𝘁𝗲𝗱 𝘄𝗶𝘁𝗵 𝘂𝘀Visit the CloudGuard websiteFollow CloudGuard on social𝗟𝗶𝗸𝗲𝗱 𝗼𝘂𝗿 𝘀𝗽𝗲𝗮𝗸𝗲𝗿𝘀?Follow Javid KhanFollow Yakub Desai00:00 - Intro01:00 - The AI Hype Train: What's Real and What's Buzz?03:40 - CloudGuard's Early Vision for AI & Automation06:25 - How Most AI Apps Are Just Wrapped GPT08:50 - The Misunderstanding of Generative AI11:10 - Prompt Engineering: A Growing Discipline13:30 - AI Agents Explained: Breaking Down SOC Workflows18:10 - Personal AI Experiments: Where It Falls Short20:05 - LLMs vs. SLMs: Why Context Matters22:10 - Building True Agentic AI Systems24:35 - Proactive vs. Reactive SOC with AI26:55 - Advice for AI Buyers: Ask These Questions28:55 - Future of AI in Security: Context, Signals & Real-Time Action33:25 - Final Advice for AI Developers & Buyers

Law firms have a cyber problem, and it’s bigger than most people think.We’re not just talking about ransomware or lost USB sticks. Insider risk, social engineering, and yes, deepfakes, are reshaping the threat landscape. And the legal sector, with all its sensitive data and overworked professionals is firmly in the firing line.In this episode, we break down why human error is still the #1 cause of breaches, how compliance fatigue is quietly opening the door to attackers, and why basic security hygiene often gets overlooked until it’s too late.We also get into the legal grey zones around AI and deepfakes. The tech is moving fast, but regulation? Not so much. That’s a problem, especially when your firm’s reputation (and client trust) is on the line.This isn’t just a checklist episode. We talk about culture, communication, and the moments of pause that could prevent your next incident. And we ask a tough but necessary question: is your firm secure… or just lucky?Expect blunt insights, practical takeaways, and a clear message, security doesn’t have to be complicated, but it does have to be intentional.𝗘𝗻𝗷𝗼𝘆𝗲𝗱 𝘁𝗵𝗲 𝗲𝗽𝗶𝘀𝗼𝗱𝗲? 𝗦𝘂𝗯𝘀𝗰𝗿𝗶𝗯𝗲 𝗵𝗲𝗿𝗲𝗦𝘁𝗮𝘆 𝗰𝗼𝗻𝗻𝗲𝗰𝘁𝗲𝗱 𝘄𝗶𝘁𝗵 𝘂𝘀Visit the CloudGuard websiteFollow CloudGuard on social𝗟𝗶𝗸𝗲𝗱 𝗼𝘂𝗿 𝘀𝗽𝗲𝗮𝗸𝗲𝗿𝘀?Follow Steve KuncewiczFollow Matt Lovell𝗖𝗛𝗔𝗣𝗧𝗘𝗥𝗦00:00 Introduction to Data Protection and Compliance02:48 The Role of Human Error in Cybersecurity05:45 Compliance Fatigue and Its Impact on Firms08:27 Understanding Insider Risk and Social Engineering11:22 Real-World Examples of Data Breaches and Lessons Learned12:45 Information Overload14:22 Data Compliance Essentials16:59 Measuring Compliance Effectively19:33 How Data Protection Is Changing22:23 The Future of AI and Data Legislation

Cyberattacks aren’t what they used to be. It’s not just ransomware anymore. We’re seeing full-on extortion campaigns, with attackers naming and shaming victims on public forums. We break down real examples, including high-impact breaches in healthcare and critical infrastructure, showing how quickly things can spiral without a solid incident response plan in place.We also look at how AI and automation are changing the game. Not just for attackers, but for defenders too. These tools can help you respond faster, cut through the noise, and make smarter decisions when every second counts.This conversation isn’t only about tech. We talk about the human side of breaches, the stress, the public scrutiny (thanks, social media), and the pressure to meet regulatory demands quickly and cleanly.If you take one thing from this episode, it’s this: start simple, build from there, and don’t overcomplicate it. Whether you're running a team of 10 or 10,000, having a clear, tested plan and knowing who does what and when can make all the difference in a crisis.Expect practical takeaways, a no-BS tone, and a healthy dose of “get real” advice for anyone responsible for keeping their organisation safe and sane when the heat is on.Stay up to date:👉 CloudGuard LinkedIn👉 Yak👉 Conor

Today I am joined by Vaughan, SOC leader at CloudGuard. We're taking a deep dive into the challenges faced by Security Operations Centres (SOCs), particularly analyst burnout and the role of automation in alleviating these issues. The big question is: How exactly do you approach automation in something as complex and delicate as a SOC?We'll cover the traditional operations of SOCs, the impact of repetitive tasks on analysts, and how automation can enhance efficiency and allow for more complex tasks like threat hunting. So whether you're building a next-gen SOC, or you’re just curious, this episode is packed with insights.Let’s get into it.SUBSCRIBE TO SECURITY DONE DIFFERENT🎙 https://feeds.buzzsprout.com/2428164.rssLISTEN ON SPOTIFY🎙 https://open.spotify.com/show/4gjIP7HKIAPaClN3Ql1apQFOLLOW US:👉 CloudGuard: https://www.linkedin.com/company/cloudguardai/👉 Yak: https://www.linkedin.com/in/yakub-desai👉 Vaughan: https://www.linkedin.com/in/vaughanc/👉 Visit the CloudGuard website: www.cloudguard.ai

In this episode of Security Done Different we are joined by Michael Knight, Chief Information Security Officer for NHS South East London.Matt and Michael discuss the challenges and opportunities within the NHS's cybersecurity landscape, particularly in relation the Cyber Assessment Framework (CAF) objective D: incident response.Michael highlights the critical need for a thorough understanding of essential services, the complexities of multi-agency collaboration, and the importance of proactive risk treatment. He also emphasises the role of simulation tools in preparing for cyber incidents, the integration of AI-driven technologies, and the cross-disciplinary cooperation required to strengthen NHS cybersecurity frameworks.With a focus on governance and incident preparedness, it’s clear the importance of improving documentation processes and using technology to automate triage and recovery efforts will be a must going forward.If you’re interested in gaining deeper insights into how the NHS is changing its approach to cybersecurity and resilience, this conversation is a must-listen!𝐖𝐡𝐚𝐭 𝐭𝐡𝐞𝐲 𝐜𝐨𝐯𝐞𝐫:A deeper dive into the Cyber Assessment Framework (Objective D)The integration of AI and automation in cybersecurity for the NHSBalancing operational and clinical demands with cybersecurity prioritiesThe challenges of multi-agency collaboration in incident responseStrategies for improving incident preparedness and governance in healthcare organisationsEnjoyed the episode? Subscribe here: https://feeds.buzzsprout.com/2428164.rssFollow us on social:Visit the CloudGuard website: www.cloudguard.aiFollow CloudGuard on social: https://www.linkedin.com/company/cloudguardai

In a lively discussion, Sean Tickle and Yakub Desai delve into shifts in cybersecurity, particularly the impact of automation and generative AI.They explore how automation boosts security operations efficiency, dispelling misconceptions that it replaces analysts, instead, it empowers them.Amid rising cyber threats, they address the need to balance automation with human expertise while preparing for potential system failures. They also look toward the future of cybersecurity, particularly in operational technology and incident response.If you're looking to learn more about the future of automation cybersecurity, this is one not to be missed!What they cover:Confronting the buzzwords: automation and generative AIWill automation replace security analysts? Especially tier one analysts?Anticipating and addressing automated attack sophisticationImplementing automation thoughtfully and focusing on quality over quantityFollow CloudGuard on social: https://www.linkedin.com/company/cloudguardaiVisit the CloudGuard website: www.cloudguard.aiFollow Yakub here: https://www.linkedin.com/in/yakub-desaiFollow Sean here: https://www.linkedin.com/in/sean-tickle