Episodes

  • Spotting Malicious Remote IT Applicants with Michael Puckridge and Jamie Lindsay

    Spotting Malicious Remote IT Applicants with Michael Puckridge and Jamie Lindsay
    Oct 29 2025
    In this gripping episode of Cyber Voices, we delve into the intricate web of North Korean cyber operations, revealing how the nation operates more like an international criminal network than a traditional state entity. Michael Puckridge and Jamie Lindsay from DTEX discuss their investigations into North Korea's covert cyber workforce. These malevolent actors pose as legitimate IT professionals to penetrate organizations, siphoning funds back to their homeland. This episode uncovers how these operatives exploit the remote work trend to bypass security and steal advanced intellectual property, showing the nuances of modern cyber warfare in a world still grappling with the aftermath of the pandemic.
    Show More Show Less
    30 mins
  • From White House to CyberCon: Theresa Payton's Impactful Journey

    From White House to CyberCon: Theresa Payton's Impactful Journey
    Oct 23 2025
    In an engaging session at CyberCon Melbourne 2025, Theresa Payton shared insights from her pivotal career spanning from her role as the first female White House CIO to becoming the CEO of Fortalice. Payton captivated the audience by discussing her innovative approaches to cybersecurity, emphasising the importance of understanding human factors. She shares the success of her 'White House Happy Meal' initiative, a creative strategy to enhance cybersecurity training participation at the White House. Her keynote not only highlighted the serious cybersecurity work happening in Australia but also offered inventive solutions to global challenges.
    Show More Show Less
    34 mins
  • The Trident Exercise Series Explained with Tom Huth & Ryan Mclaren

    The Trident Exercise Series Explained with Tom Huth & Ryan Mclaren
    Oct 15 2025
    Tom Huth and Ryan Mclaren stop by to discuss the Trident exercise series, a collaborative effort by the Australian Energy Market Operator (AEMO) and Retrospect Labs, is a large-scale cybersecurity exercise designed to enhance incident response in the energy sector. With participation from over 27 organizations and 560 individuals, the exercises simulate real-world cyber threats to practice and strengthen response capabilities. Through a flexible scenario framework, the exercises cater to varying maturity levels, focusing on delivering technically credible scenarios that participants can customize to fit their environments. This initiative not only boosts sector-wide resilience but also fosters collaboration across different organisations.
    Show More Show Less
    38 mins
  • Meet The Incident Response Champions

    Meet The Incident Response Champions
    Oct 8 2025
    In this episode of Cyber Voices, David Willett chats with former participants of the Australian Women in Security Network (AWSN) and Retrospect Labs Incident Response Competition. The panelists, including competition winners and runners-up, share their transformative experiences in this hands-on, teamwork-based event. The competition, which simulates real-world cybersecurity incidents, highlights the importance of both technical and non-technical skills. Participants discuss how this immersive experience has propelled their careers in cybersecurity and fostered personal growth, while offering networking opportunities. The episode captures the competition's potential to redefine career paths and nurture talent in Australia’s cybersecurity landscape.

    Register for this years competition here: https://events.humanitix.com/2025-awsn-incident-response-competition

    Get more detailed information here: https://www.retrospectlabs.com/events/awsn-2025-incident-response-competition

    Or, Chek out the AWSN Events Page: https://www.awsn.org.au/initiatives/incident-response-competition/
    Show More Show Less
    36 mins
  • The Invisible Backbone: Why APIs Matter More Than Ever with Jeremy Snyder

    The Invisible Backbone: Why APIs Matter More Than Ever with Jeremy Snyder
    Oct 1 2025
    In this episode of Cyber Voices, David discusses with Jeremy Snyder, founder and CEO of Firetail, the critical yet often overlooked significance of API security in the modern digital landscape. Jeremy explains how APIs underpin most online interactions, from mobile apps to AI systems, and the large volume of personal data transferred through these gateways. Despite the rise of AI topics, API security should remain a primary focus due to its central role in Internet infrastructure. The discussion also highlights common security oversights, such as unauthenticated endpoints and unretired zombie APIs, stressing the need for diligence and organizational alignment.
    Show More Show Less
    42 mins
  • The Future of Non-Human Identities with Abbas Kudrati

    The Future of Non-Human Identities with Abbas Kudrati
    Sep 24 2025
    In this episode of Cyber Voices, cybersecurity expert Abbas Kudrati discusses the emerging challenge of non-human identities in the digital landscape. These identities, which include API keys, machine identities, and AI agents, are becoming crucial security concerns as technological advancements accelerate. Abbas shares insights into how non-human identities are defined, their inherent risks, and the shift towards them as major targets for cyber attackers. He explains the necessity of visibility and governance over these identities. He offers some strategies for securing them, emphasising the need for a proactive approach in an increasingly complex cyber environment.
    Show More Show Less
    42 mins
  • Beyond the Questionnaire with Yvonne Sears

    Beyond the Questionnaire with Yvonne Sears
    Sep 17 2025
    Yvonne Sears discusses innovative strategies for rethinking third-party risk assessments. Moving beyond traditional checklists, Yvonne emphasises the importance of aligning assessments with organisational goals and risk profiles. By focusing on specific objectives and measurable outcomes using OKRs, organisations can enhance trust, transparency, and resilience across their supply chains. The conversation highlights the limitations of standard questionnaires and advocates for a risk-based approach tailored to individual vendors and service providers, paving the way for more meaningful and effective partnerships.
    Show More Show Less
    26 mins
  • Stop Playing Whack-A-Mole with Karl Sellmann

    Stop Playing Whack-A-Mole with Karl Sellmann
    Sep 10 2025
    In this episode of Cyber Voices, host David Willett sits down with Karl Sellmann, Chief Information Security Officer at Flinders University, to discuss the ongoing challenges in cybersecurity. Sellmann emphasises the importance of moving away from a reactive, 'whack-a-mole' approach to a more strategic, long-term plan that incorporates quick wins as building blocks.

    By focusing on broader strategies and risk management, organisations can better align their efforts with emerging threats and maintain resilience. This involves leadership engagement, understanding organisational complexities, and ensuring ongoing adaptability and transparency in cybersecurity operations.
    Show More Show Less
    27 mins