The Balancing Act

Most security teams can prove they're busy. Patching, scanning, phishing simulations, awareness training — the list is long. But ask them if they're actually better protected than they were last year, and the answer gets uncomfortable.In this episode, In Balance IT's VP of Security Strategy Ryan O'Halloran sits down with Field CISO David Malcom to dig into why so many security programs are anchored to last year's threats — and what it takes to build one that keeps pace with today's AI-driven attackers.They introduce Adaptive Defense, In Balance IT's framework for continuous, outcome-based security that evolves with the threat landscape instead of the compliance calendar.What we cover:Why compliance and security have never been the same thing — and why that gap is wider than everHow AI-powered attackers are operating at machine speed while most defenses are still staticThe three core principles of Adaptive Defense: continuous compliance, consultant-led engagements, and phased implementationHow the framework scales from mid-market to large enterpriseWhat a free 45-minute security briefing with In Balance IT looks likeThink your security program needs a closer look? Request a no-cost 45-minute briefing at InBalanceIT.com

In this episode, Ryan O’Halloran and Chief Technology Officer Michael Caplan examine the specific economic pressures currently hitting enterprise IT environments. They discuss how a $600 billion capital expenditure wave from AI and cloud providers is consuming the global supply of NAND, DRAM, and hard disk drives, leading to 3–4x price hikes and 6–12 month lead times. The conversation provides a strategic roadmap for IT leaders dealing with canceled OEM contracts and budget overruns that have turned traditional infrastructure planning upside down.Key TakeawaysThe AI Allocation Squeeze: Massive commitments from public and "neocloud" providers are leaving enterprise customers with fully allocated supply chains for server memory and storage.Contractual Volatility: Some OEMs have updated terms and conditions, allowing them to cancel purchase orders or request new ones at higher prices even after a deal is executed.The Death of the 5-Year Refresh: Traditional long-term planning is being replaced by a need for 12–18 month strategic windows and "burst" environments.Optimization as a Defense: Implementing FinOps-style right-sizing on-premises can reclaim wasted CPU and RAM, buying organizations time to navigate the crisis.

Broadcom's VMware licensing changes have left many organizations facing up to 10x increases in renewal costs. How do you find a path forward without being held to "ransom"?In Episode 17 of The Balancing Act, Ryan O’Halloran (VP of Security Strategy) and Michael Caplan (CTO) dive into the reality of "VMware Freedom." They break down what happened to the vSphere Standard and Enterprise Plus tiers and share the specific strategies In Balance IT is using to help clients buy time, reduce TCO, and evaluate viable alternatives like Nutanix and Hyper-V.Key Discussion Points:The 2026 Shift: Why Broadcom’s decisions with lower-tier licensing is a game-changer for IT budgets.Buying Time: How to leverage third-party partnerships to extend the life of your vSphere 7 or 8 environment.The TCO Flip: Why moving away from VMware now offers a better ROI than it did just six months ago.The Migration Path: Practical steps for evaluating Nutanix and Hyper-V without a total hardware overhaul.Strategic Freedom: Moving beyond the hypervisor to build a resilient, multi-year IT roadmap.Stop paying the Broadcom ransom. Visit InBalanceIT.com to schedule a VMware Freedom strategy session.

AI-enabled attacks are no longer theoretical—they’re here. In this episode, Ryan O’Halloran of In Balance IT sits down with Shane Harsch of SentinelOne to break down the first large-scale AI-orchestrated cyber espionage campaign and what it means for today’s security leaders.They explore how attackers are accelerating the kill chain through automation, why human-speed investigation is no longer viable, and the architectural shifts organizations must make to defend at machine speed. From identity blind spots to modular automation, Shane outlines the capabilities modern SOCs need to shorten response time, detect novel threats, and recover quickly.What we cover:How AI is reshaping attacker tradecraft and shrinking dwell timeWhy machine-speed attacks force a rethinking of SOC workflowsThe critical role of identity visibility and anomaly detectionWhy automation is now essential—not optional—for defenseHow SentinelOne is approaching hyper-automation and AI-native securityWhat leaders must do to prepare for attacks that outpace human responseIf you're asking how to build automation, regain visibility, or harden identity in a world of AI-driven threats, this episode offers a clear path forward.Learn more: In Balance IT → inbalanceit.com SentinelOne → sentinelone.com

In Episode 15 of The Balancing Act Podcast “Calling All APIs”, Ryan O'Halloran (VP of Security Strategy at In Balance) invites special guest Tim Erlin (VP of Product at Wallarm) to discuss the state of API security in the threat landscape and how incredibly important APIs are to generating business revenue. Ryan and Tim also cover the trends in protecting API’s and the relationship with AI that fits hand in glove.

In Episode 14 of The Balancing Act Podcast, Ryan O'Halloran (VP of Security Strategy at In Balance) and Michael Caplan (CTO at In Balance) discuss an overview of the latest developments on securing end users in the age of AI and contrasting the advantages and disadvantages of performing security operations either in a traditional cloud proxy network (SSE) versus natively inside of the end users web browser (Enterprise Browser), and how that leads to security outcomes the business desires.

In Episode 13 of The Balancing Act Podcast, Ryan O'Halloran (VP of Security Strategy at In Balance) and David Malcom (CEO at Malcom Risk Advisors) discuss an overview of what makes a strategic cybersecurity advisor aka a “Virtual CISO” a fit for your organization’s security compliance readiness and posture improvement needs. David and Ryan then provide insights into how to strategically evaluate an advisor based on the ever-changing requirements of data privacy regulations and AI threats.

In Episode 12 of The Balancing Act Podcast, Ryan O'Halloran (VP of Security Strategy at In Balance) and Michael Caplan (Chief Technology Officer at In Balance) discuss what’s driving the market to explore alternatives to VMware by Broadcom for data center virtualization and cloud computing. Michael then provides insights into how to strategically evaluate the competitive landscape and plan for a successful migration over time if an offramp from VMware makes sense for your business.

In Episode 11 of The Balancing Act Podcast, Ryan O'Halloran (VP of Security Strategy at In Balance) and Michael Caplan (Chief Technology Officer at In Balance) discuss an overview of artificial intelligence threats, protections and future of AI security in the current state of the IT landscape.

In Episode 10 of The Balancing Act Podcast, Ryan O'Halloran (VP of Security Strategy at In Balance), Michael Caplan (Chief Technology Officer at In Balance), and Abhishek Pathak (Founding Partner at Lucidity) explore the role of FinOps in optimizing cloud storage costs. The conversation centers on the often-overlooked challenge of overprovisioned and underutilized block storage in the cloud. Abhishek shares how Lucidity’s automated solution helps organizations address these inefficiencies by right-sizing and tiering storage to reduce spend and boost performance. The episode also highlights the limitations of native cloud tools in managing storage and underscores the need for cross-functional collaboration and actionable insights to drive effective FinOps practices.

In Episode 9 of The Balancing Act Podcast, Ryan O'Halloran (VP of Security Strategy at In Balance), Michael Caplan (Chief Technology Officer at In Balance), and Jason Cook (Field CTO at Rubrik) discuss the shift from focusing solely on preventing attacks to emphasizing robust recovery capabilities. They highlight the importance of secure backups, data analytics for threat detection within backups, and rapid service resumption. The experts emphasize the evolving threat landscape, where breaches are inevitable, making quick and effective recovery essential for business resilience.

In Episode 8 of The Balancing Act Podcast, Ryan O'Halloran (VP of Security Strategy at In Balance) and Jeremy Smolik (Director, Solution Architecture, Americas at Crowdstrike) discuss the crucial role of combining human expertise with AI to tackle sophisticated cyber threats. CrowdStrike utilizes AI to streamline tasks for analysts and enhance decision-making, but the human element is still essential for data classification and fine-tuning AI models. A key focus is reducing "breakout time" — the speed at which attackers can move through a system post-compromise — by concentrating on identity security and cloud-native defenses. Defenders are encouraged to accelerate data analysis and automate responses to swiftly address potential risks, emphasizing a proactive approach to cybersecurity. Ultimately, a unified platform is necessary to integrate data and deploy automated tools that effectively counter and neutralize threats.

In Episode 7 of The Balancing Act Podcast, Ryan O'Halloran (VP of Security Strategy at In Balance) and Jeff Warren (CTO at Netwrix) discuss Data Security Posture Management (DSPM), a modern approach to continuously discover, classify, and secure sensitive data across on-premises, datacenter and hybrid cloud environments. The speakers advocate for an automated security approach with enhanced visibility and business collaboration, highlighting the growing urgency amid increasing AI adoption, data breaches and compliance demands.

In Episode 6 of The Balancing Act Podcast, Ryan O'Halloran (VP of Security Strategy at In Balance) and Jason Trunk (Field CTO at Island) dive into how the enterprise browser is addressing the challenges of securing BYOD, 3rd party contractors and M&A onboarding. They explore how the enterprise browser provides a secure endpoint, integrates seamlessly with zero trust networks, and includes advanced features like inline DLP without breaking SSL encryption. The conversation also highlights how these capabilities are transforming user experience and security across industries, including healthcare. Tune in to hear how these innovations are shaping the future of enterprise security.

In Episode 5 of The Balancing Act Podcast, Ryan O'Halloran (VP of Security Strategy at In Balance) and Craig Pfister (Global VP of Solutions Engineering at KiteWorks) discuss the complexities of data security in cloud computing, particularly regarding government access and the implications of the CLOUD Act. They explore the challenges posed by emerging technologies like AI and quantum computing, emphasizing the need for strong digital rights management and proactive data management strategies. The dialogue highlights the importance of maintaining control over sensitive information while navigating a rapidly changing technological landscape.

In Episode 4, Ryan O'Halloran (VP of Security Strategy at In Balance) and Mick Leach (Field CISO at Abnormal Security) discuss key cybersecurity practices like strong passwords, multi-factor authentication, and system updates. They explore the rise of sophisticated social engineering attacks, including phishing with malicious links and QR codes. Mick highlights the role of AI-powered behavioral analysis in detecting anomalies and preventing new threats, emphasizing the need for proactive security that focuses on expected behavior.

In Episode 3, Ryan O'Halloran (VP of Security Strategy at In Balance) and Sean Deuby (Principal Technologist North America at Semperis) discuss the importance of securing hybrid identities and adopting a zero-trust approach. It emphasizes the challenges of recovery from attacks like ransomware and the need for effective management of both Active Directory and Entra ID.

In Episode 2, Ryan O'Halloran (VP of Security Strategy at In Balance) and David Primor (Founder & CEO at Cynomi) discuss the evolving role of virtual Chief Information Security Officers (vCISOs) and the impact of AI on cybersecurity management. They explore how vCISOs assist businesses in navigating complex security frameworks and compliance requirements, and how AI technologies, like Cynomi’s platform, can enhance the effectiveness and efficiency of cybersecurity strategies.

In Episode 1, Ryan O'Halloran (VP of Security Strategy at In Balance) and Randy Watkins (CTO at Critical Start) discuss the evolution of the managed detection and response marketplace and overcoming the challenges that may prevent organizations from achieving their desired results. Ryan and Randy will overview the essential signals for threat detection, the relevance of SIEM, Microsoft E5 Security, and recommended benchmarks for an effective time to response (TTR).