Bare Metal Cyber

In this audio edition of “Machine Identity Riot: Certificates, Tokens, and Bots Gone Wild,” we walk leaders through the trust fabric that actually runs their business. You will hear how certificates, tokens, API keys, service accounts, and bots have quietly become the dominant identity layer in most organizations, far outnumbering human users. The episode explains where this machine identity surface comes from, how it is stitched together across PKI, identity providers, cloud platforms, and automation tools, and why it has become such a powerful driver of both outages and attacker leverage.
 
From there, the narration moves through the key sections of the Headline article: the common failure modes that accumulate risk without constant explosions, the shift to lifecycle thinking for issuance, rotation, and revocation, and the case for running machine identity as a shared platform instead of a series of one-off projects. It also looks ahead to AI agents, software supply chain signing, and edge deployments, showing how today’s decisions about authorities, key lifetimes, and automation interfaces will either calm or fuel the next machine identity riot. This episode is based on the Wednesday “Headline” feature from Bare Metal Cyber Magazine.

This narrated episode explores DevSecOps in CI/CD pipelines as a practical way to build security into the same paths your code already takes from commit to production. You’ll hear what DevSecOps in CI/CD pipelines really means, where it fits in modern delivery stacks, and how security checks can live alongside familiar build, test, and deploy stages. The episode walks through the flow of a typical change, showing how tools, pipelines, and people work together to catch issues earlier without turning every release into a negotiation.
 
We also dig into everyday use cases and patterns, from simple “shift-left” hygiene checks on pull requests to more advanced policy-as-code and standardized secure pipeline templates. Along the way, the episode unpacks key benefits, the trade-offs between speed and safety, and the failure modes that make DevSecOps feel like empty buzzwords when it is not done well. This audio is developed by Bare Metal Cyber and is based on my Tuesday “Insights” feature in Bare Metal Cyber Magazine, so you get a clear, vendor-neutral view designed for real-world teams.

The GIAC Security Essentials (GSEC) narrated episode walks you through what this certification really is, who it serves, and why it sits in that sweet spot between basic awareness and deep specialization. You’ll hear a clear breakdown of how GSEC treats security as a practical, hands-on discipline: reading logs, understanding network behavior, and recognizing the early signs that something is wrong. The episode is based on my Monday “Certified” feature in Bare Metal Cyber Magazine, so the structure matches what you’d see in the written breakdown while staying friendly for listeners who are newer to the field.
 
From there, the narration explores what the GSEC exam actually tests, the kinds of scenarios you can expect, and how this certification fits into a bigger career path across roles like SOC analyst, security engineer, or security-focused sysadmin. You’ll also hear guidance on how to think about your own starting point, whether you are coming from help desk, general IT, or a career change into cyber. To go deeper, you can pair this episode with the full audio course for GSEC inside the Bare Metal Cyber Audio Academy, which is built to support focused exam preparation over time.

In this audio edition of Cyber Leadership in the Age of AI Coworkers, we explore what changes when artificial intelligence (AI) stops being a sidecar and starts acting like part of your team. As coding assistants, ops copilots, and AI agents shape code, incidents, and risk narratives, leaders are left with a harder question than “where can we use AI?”—they have to decide how much agency to grant these systems and how to stay accountable for their decisions. This narration is designed for security and technology leaders who already see AI in their workflows and need a clearer mental model for owning the risk.
Across this episode, we walk through the key moves from the Wednesday “Headline” feature in Bare Metal Cyber Magazine. You will hear how the shift from tools to teammates changes basic assumptions about identity, access, and logs; why giving AI coworkers distinct “badges” and lifecycles matters; and how human over-delegation shows up as quiet erosion of judgment. We also dig into what real guardrails look like in architecture and process, and how to lead the culture shift so AI coworkers extend human judgment instead of replacing it.

Threat-informed defense can feel abstract until you connect it directly to how real attackers move through your environment. In this narrated breakdown, we walk through how to use the MITRE ATT&CK framework (ATT&CK) as a practical map for planning security improvements. You will hear plain-language explanations of what threat-informed defense is, where ATT&CK fits in a modern stack, and how to use tactics and techniques as the backbone for a more focused roadmap. The goal is to help you see past marketing labels and start thinking in terms of concrete attacker behaviors you can actually see, block, and respond to.
From there, the episode moves into everyday use: how teams use ATT&CK to organize detections, tune alerts, sharpen incident response, and align architecture changes with real threat scenarios. We talk through quick wins for smaller teams, deeper program ideas for more mature environments, and the real benefits, trade-offs, and limits of this approach. You will also hear common failure modes, like “matrix theater,” and the healthy signals that show threat-informed defense is truly driving decisions. The narration is developed from my Tuesday “Insights” feature in Bare Metal Cyber Magazine so you can listen, reflect, and bring the ideas back to your own environment.