Cybersecurity News & Analysis by Cyber Sidekicks - Your Weekly Update’

Episode #5 Show Notes
Hello!
Episode #5 continues our chats with cybersecurity practitioners, this week with Adriana Duarte, a SIEM Engineer with NDM Technologies based in Spokane, WA.
An MSP and MSSP, NDM Technologies specialises in application software, cloud computing, data center, networking, security, storage, unified communication, virtualization, and managed services.
Christina and I also have the first part of our discussion on Continuous Threat Exposure Management (aka CTEM) as outlined by Gartner's framework - https://www.gartner.com/en/articles/how-to-manage-cybersecurity-threats-not-episodes
Part 2 will follow in the next episode. Richmond Advisory Group will be publishing a paper on the topic of CTEM in advance of RSAC 2025.
Let us know if you have any feedback, suggestions or comments.
All the best from Rory & Christina
Leave us a message! Want to leave some feedback and suggestions but would prefer not to write an email? You can leave us a voicemail (90 seconds max). We will share any that are not too spicy in the following episode. SpeakPipe link - https://www.speakpipe.com/Cyber_Sidekicks Or, send us an email: Christina Richmond – christina@richmondadvisorygroup.com Rory Duncan – rory@richmondadvisorygroup.com Subscribe to our Newsletter - "Signal, not noise"Our monthly newsletter is free to subscribers! Sign-up now at Richmond Advisory Group.   Technology we use Podcast Recording Platform – Cleanfeed.com Cyber Sidekicks Show Host – Podbean.com Edited & mastered in GarageBand

Episode Notes
TODAY’S GUEST
We’re very happy to have George Werbacher, Director of Information Security at Live Oak Bank on the show.
We had a wide-ranging discussion, but George summed-up the challenge of dealing with the continuing emergence of new technologies: “The existential crisis from a security standpoint is going to be, are we going to let all this transformative stuff take away our attention from what’s foundational”
If you would like to be a guest on the show, let us know! We are always interested in hearing from cyber security 'sidekicks' - the CISO's, engineers, IT directors and the many others on the cyber frontlines.
NEWS
UK Government rebrands AI Safety Institute .... drops "Safety" and substitutes "Security" in the title?
Researcher gets $10,000 bug bounty for disclosing vulnerability in YouTube ... attackers could have potentially access email addresses by exploiting a design flaw in Google APIs.
RSAC LATEST
Security Tinkerers To Host “Pitch for Charity” Event cosponsored by Okta and SentinelOne
CLOSING COMMENTS
Please get in touch if you have any comments, questions, suggestions or would simply like to say "hi"!
Rory & Christina
Leave us a message! Want to leave some feedback and suggestions but would prefer not to write an email? You can leave us a voicemail (90 seconds max). We will share any that are not too spicy in the following episode. SpeakPipe link - https://www.speakpipe.com/Cyber_Sidekicks Or, send us an email: Christina Richmond – christina@richmondadvisorygroup.com Rory Duncan – rory@richmondadvisorygroup.com Subscribe to our Newsletter - "Signal, not noise"Our monthly newsletter is free to subscribers! Sign-up now at Richmond Advisory Group.   Technology we use Podcast Recording Platform – Cleanfeed.com Cyber Sidekicks Show Host – Podbean.com Edited & mastered in GarageBand

Episode Notes
A special episode this week where we are joined by a special guest: Adam Brennick, Director of Security, Risk and Compliance at Cockroach Labs.
We talk about a bunch of different cyber-related things including DeepSeek (again!); the challenge of keeping up with technology development and security threats; advice from Adam on where to learn about - and be kept informed about - what's happening in the security industry, and; the correct meat choices for BBQ’ing depending on State....
To learn more, take a look at Cockroach University (yes, that's right!) for lots of information around distributed databases, cloud-native applications, general purpose SQL databases & much more!
Leave us a message! Want to leave some feedback and suggestions but would prefer not to write an email? You can leave us a voicemail (90 seconds max). We will share any that are not too spicy in the following episode. SpeakPipe link - https://www.speakpipe.com/Cyber_Sidekicks Or, send us an email: Christina Richmond – christina@richmondadvisorygroup.com Rory Duncan – rory@richmondadvisorygroup.com Subscribe to our Newsletter - "Signal, not noise"Our monthly newsletter is free to subscribers! Sign-up now at Richmond Advisory Group.   Technology we use Podcast Recording Platform – Cleanfeed.com Cyber Sidekicks Show Host – Podbean.com Edited & mastered in GarageBand

Episode Notes
NEWS
Our trailer gained us some attention! Cyber Sidekicks was briefly at #4 in the Apple Podcasts Technology section in… Hungary! For our Hungarian listeners out there: Köszönöm, hogy meghallgattál !!!!
DeepSeek'ing Missile? Open source Chinese AI model causes waves in the US tech industry. We have a long discussion. Christina attended a LaunchPad INW event last where DeepSeek was the hot topic of discussion.
Josh Bernoff's blog from January 29: No-one Whines Louder Than A Disrupted Disruptor
NVIDIA stock takes a nosedive
What now for US federal cybersecurity oversight? New US administration sacking members of the Cyber Safety Review Board (CSRB)
RSA LATEST
Reminder: RSAC 2025 – April 28 to May 1 – Moscone Center, San Francisco
We’ll be there, so please reach out if you would like to meet us
Vendors: we are always happy to have a chat
Newcomers to the industry: let’s grab a coffee and talk.
RSAC has been doing a series of webinars: One coming on the 7th February: The Spy Who Hacked Us: Espionage, Cybersecurity, and the Supply Chain
A shout out to the Security Tinkerers: https://www.securitytinkerers.org/about
"Pitch For Charity" – donating to Code Path and Hack In the Woods.
Leave us a message! Want to leave some feedback and suggestions but would prefer not to write an email? You can leave us a voicemail (90 seconds max). We will share any that are not too spicy in the following episode. SpeakPipe link - https://www.speakpipe.com/Cyber_Sidekicks Or, send us an email: Christina Richmond – christina@richmondadvisorygroup.com Rory Duncan – rory@richmondadvisorygroup.com Subscribe to our Newsletter - "Signal, not noise"Our monthly newsletter is free to subscribers! Sign-up now at Richmond Advisory Group.   Technology we use Podcast Recording Platform – Cleanfeed.com Cyber Sidekicks Show Host – Podbean.com Edited & mastered in GarageBand

Episode Notes
Episode #1 of Cyber Sidekicks - your go-to partner for understanding the cybersecurity market, industry trends, and the real-world challenges of protecting organizations today.
Hosted by Christina Richmond & Rory Duncan, Principal Analysts with Richmond Advisory Group
https://www.richmondadvisorygroup.com/
In this episode we cover:
NEWS
Trellix CEO Bryan Palmer steps down
Conduent confirms cybersecurity incident behind recent outagehttps://www.bleepingcomputer.com/news/security/conduent-confirms-cybersecurity-incident-behind-recent-outage/
Threat Actors Delivering Ransomware Via Microsoft Teams Using Voice Callshttps://cybersecuritynews.com/threat-actors-delivering-ransomware-via-microsoft-teams/
Cyber risks sound alarm for energy firmshttps://www.insurancebusinessmag.com/uk/news/cyber/cyber-risks-sound-alarm-for-energy-firms--report-521737.aspx
RSAC 2025
We’ll be there!
Reach out if you would like to meet us
Vendors & Service Providers: we are always happy to have a chat
Look out for us vlogging from the show floor!
FEATURE - M&A ACTIVITY IN 2024
After a relatively quiet 2023, 2024 ramped-up!https://www.infosecurity-magazine.com/news-features/top-cybersecurity-mergers/
Sophos’ intended purchase of SecureWorks for $859m
CyberArk’s $1.5bn acquisition of Venafi
Thoma Bravo’s $5.3bn deal to purchase UK-based Darktrace in October 2024.
Arctic Wolf buys Cylance (Nov 2024) – shameless plug for our analysis!
New episode every Tuesday!
Leave us a message! Want to leave some feedback and suggestions but would prefer not to write an email? You can leave us a voicemail (90 seconds max). We will share any that are not too spicy in the following episode. SpeakPipe link - https://www.speakpipe.com/Cyber_Sidekicks Or, send us an email: Christina Richmond – christina@richmondadvisorygroup.com Rory Duncan – rory@richmondadvisorygroup.com Subscribe to our Newsletter - "Signal, not noise"Our monthly newsletter is free to subscribers! Sign-up now at Richmond Advisory Group.   Technology we use Podcast Recording Platform – Cleanfeed.com Cyber Sidekicks Show Host – Podbean.com Edited & mastered in GarageBand

Episode Notes
Welcome to Cyber Sidekicks – the weekly podcast that brings fresh perspectives and essential insights to the world of cybersecurity.
Hosted by Rory Duncan and Christina Richmond, two dynamic co-hosts who are each other’s trusted sidekicks, this podcast is your go-to partner for understanding the cybersecurity market, industry trends, and the real-world challenges of protecting organizations today.
But we don’t stop there. At Cyber Sidekicks, we go beyond the surface by spotlighting not just the top executives and leaders driving security programs and vendor innovation—but also their indispensable sidekicks: the behind-the-scenes heroes whose expertise and efforts often go unrecognized.
Whether you’re designing products and services, leading a security program, supporting one, or just passionate about cybersecurity, we’re here to be your sidekick—delivering relatable conversations, actionable insights, and a fresh take on what it takes to navigate the fast-evolving cyber landscape.
Tune in weekly on Tuesdays to Cyber Sidekicks: where the unsung heroes take center stage, and everyone gets the insights they need to thrive.
Leave us a message! Want to leave some feedback and suggestions but would prefer not to write an email? You can leave us a voicemail (90 seconds max). We will share any that are not too spicy in the following episode. SpeakPipe link - https://www.speakpipe.com/Cyber_Sidekicks Or, send us an email: Christina Richmond – christina@richmondadvisorygroup.com Rory Duncan – rory@richmondadvisorygroup.com Subscribe to our Newsletter - "Signal, not noise"Our monthly newsletter is free to subscribers! Sign-up now at Richmond Advisory Group.   Technology we use Podcast Recording Platform – Cleanfeed.com Cyber Sidekicks Show Host – Podbean.com Edited & mastered in GarageBand