Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

In this week’s episode of The Future of Security Operations podcast, I'm joined by Mark Hillick, CISO at Brex. Mark’s experience in the security industry spans more than two decades. He started out as a security engineer at Allied Irish Banks before advancing through companies like MongoDB to become Director and Head of Security at Riot Games. His book, The Security Path, features over 70 interviews with security professionals on their career journeys. Mark and I discuss.

In today's security and IT landscape, the workflows that power your operations are not merely convenient tools—they're essential infrastructure. When a phishing detection workflow fails or an access control process malfunctions, the consequences can be severe: security incidents remain undetected, response times suffer, and organizational risk escalates significantly. This reality creates a paradox for teams.

A risk register is a GRC tool used by teams to identify, assess, and manage various risks within an organization. It acts as a centralized repository and looks at the impact and probability of a risk to prioritize its management. In cyber security, a risk register helps maintain compliance with various standards like the ISO 27001 Information Security Management System (ISMS), NIST SP800-30 Guide for Conducting Risk Assessments, or the new European NIS 2 directive.

In this week’s episode of The Future of Security Operations podcast, I'm joined by Joe McCallister. Joe’s journey in security is truly unique - in less than a decade, he pivoted from selling BMWs to his current role as Senior Manager of Cybersecurity Operations at The Trade Desk. He’s also led impactful initiatives in risk management, threat hunting, and incident response at Synoptek.

In this guest post, Jason English, Director and Principal Analyst at Intellyx explores how GenAI is moving beyond chat to orchestrate real action for SOC teams. As my colleague Eric Newcomer mentioned in the previous chapter of this series, GenAI changes the security automation game, with multi-system discovery, documentation, and task execution capabilities that can reduce cognitive load and toil for security analysts.

At Tines, we're committed to making workflow building as easy and efficient as possible. That’s why we’re so proud of our library, which reached an exciting milestone today when it officially became home to over 1000 pre-built workflows. These pre-built workflows, known to many Tines users as stories, are designed to foster knowledge sharing across the security and IT community, providing inspiration and shortcuts to help users build faster and more effectively.

The Future of Security Operations podcast has officially returned for its sixth season and I can't think of a better guest to kick things off than Christofer Hoff. Christofer has over 30 years of experience in network and information security architecture, development, engineering, operations, and management, including security leadership roles at Bank of America, Citadel, and Juniper Networks.

If you were keeping an eye on our What’s New, you noticed that March 6th saw a lot of activity! Our Product team was together for a “same-day-shipping” event where everyone collaborated on various projects to see what we could ship in just one day! Some key highlights from that day include: View the list of the Mar 6 updates →

In today's world, data is king, but it's also a source of risk. Companies face a constant barrage of threats that can lead to devastating data loss. These include everything from simple hardware and software failures to natural disasters and major cyber attacks. The consequences of data loss can be severe, impacting revenue, operations, reputation, and legal compliance, so planning for these worst-case scenarios is an important part of an IT team’s playbook.

When we first introduced Pages, it started with a few updates to our forms tool. We took a simple form and added more dynamic page elements and a formal page editor. That led to granular access, customization, and so much more to make it the powerful feature it is today. Now, teams can build polished and efficient apps for stronger collaboration and communication across the entire organization.