Tines’ Field CISO Matt Muller on security’s communications problem and the future of the SOC
In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Matt Muller, Field CISO at Tines. With over a decade of experience at companies like Material Security, Coinbase, and Inflection, Matt’s got a strong track record of scaling SecOps teams, building threat detection and mitigation programs, and driving trust and safety initiatives. His knowledge impressed Thomas and the Tines team so much that they invited him to become the company's first Field CISO.
In this episode:
[02:41] The origins of Matt’s insatiable appetite for all things security
[04:05] Matt's path from business degree to Director of Trust at Inflection
[07:07] Scaling Coinbase’s security team from 3 to 50
[08:41] Addressing security’s long-standing communication problem
[10:55] Why “failure wasn’t an option” when managing risk at Coinbase
[14:14] What led Matt to a product role on Material Security’s phishing protection team
[17:31] Building what customers ask for vs. actually solving their problems
[21:14] How Matt stays up to date with industry developments
[22:35] Matt’s favorite use cases for security automation
[25:25] Matt’s go-to automation best practices
[27:33] Cutting through AI hype to drive meaningful adoption
[30:32] How Matt keeps himself honest as a Field CISO
[32:21] Why the traditional SOC is broken - and what needs to change
[35:30] The role of diverse hiring in building a resilient security strategy
[39:00] What security teams will look like in 2030
[41:35] How CISOs are evolving to become chief risk advisors to the business
[43:30] Connect with Matt
Where to find Matt:
LinkedIn
Building SecOps newsletter
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
Blue Team Con
Material Security's Ryan Noon on the Future of Security Operations podcast
-------- Â
44:39
--------
44:39
RegScale’s Travis Howerton on taking the pain out of compliance in highly-regulated industries
In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Travis Howerton, Co-founder and CEO of RegScale. Travis began his security career with roles at government and regulated organizations, including the National Nuclear Security Administration and Oak Ridge National Laboratory, before being inspired by inefficiencies in compliance processes to co-found RegScale. As CEO of RegScale, he oversees their Continuous Controls Monitoring platform, which enables rapid GRC outcomes for organizations like Wiz, Keybank, and the US Department of Energy.
In this episode:
[02:15] How an interest in computer science led Travis to pursue a career in security
[03:20] Working in “the Major Leagues of cyber” at the National Nuclear Security Administration
[06:20] Moving fast in highly-regulated environments
[07:10] Securing the world’s fastest supercomputer at Oak Ridge National Laboratory
[10:30] Supporting digital transformation at enormous scale at Bechtel Corp
[15:15] How outdated compliance processes inspired Travis to co-found RegScale
[18:15] How RegScale acquired its first high-profile clients through "hustle and luck"
[19:20] The challenges of building the first version of RegScale
[21:15] Taking the pain out of compliance
[23:20] The biggest GRC roadblocks teams are facing right now
[25:10] Practical advice for moving the needle on your automation program
[27:33] Eliminating redundancy and inefficiency in federal compliance programs
[32:30] What’s next for RegScale
[33:45] The best applications of AI (and which decisions should "never" be made AI)
[35:45] Navigating regulatory uncertainty when it affects your whole business model
[38:40] What SecOps and compliance teams might look like in the future
[40:20] What the best compliance teams do to build rapport with security, IT and other business functions
[43:30] Why AI adoption is a risk-based conversation every organization should be having with their CISO
[46:00] Connect with Travis
Where to find Travis Howerton:
LinkedIn
RegScale
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
The CISO Society 2025 State of Continuous Control Monitoring Report
-------- Â
47:37
--------
47:37
Huntabil.IT’s Raymond Schippers on scaling IR during Canva’s hypergrowth
In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Raymond Schippers. With 15 years of experience leading detection and response teams, Raymond is a seasoned security leader with high-impact roles at Check Point and Canva under his belt. He recently became co-founder of Huntabil.IT, a Melbourne-based company providing organizations with tailored advisory services to align with their unique threat landscapes and business goals.
In this episode:
[02:27] Landing his first security internship at Siemens as a teenager
[03:18] Reflecting on some state-sponsored attacks he encountered while working IR at Check Point
[04:45] Working with government partners to attribute and dismantle APTs
[08:10] The challenges of remediating threats for anonymized customers
[09:30] What inspired Raymond’s move from Check Point to Canva
[10:35] Building Canva’s blue team during the company’s phase of hypergrowth
[12:40] Rethinking the interview process to prioritize diversity in hiring
[18:02] Proven strategies for reducing burnout and alert fatigue in IR
[21:09] How Raymond's team used automation to scale security operations at Canva
[23:16] The state of AI in security - and its most effective use cases
[28:53] What inspired Raymond to found Huntabil.IT
[31:09] Raymond’s approach to working with non-profit organizations
[39:15] The under-reported threats that could reshape the future of SecOps
[44:06] Anticipating the biggest challenges security teams will face over the next five years
[46:42] Connect with Raymond
Where to find Raymond Schippers:
LinkedIn
Huntabil.IT
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
Cyber Threat Alliance
Raymond's talk on avoiding team burnout at BSides Perth
-------- Â
48:01
--------
48:01
Circle’s Dane VandenBerg on the future of security copilots and the evolution of threat intel
In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Dane VandenBerg. Dane’s 16-year security career includes product-focused roles with vendors like Qintel and more recently, Microsoft, where he was Principal Technical Specialist supporting the development of their security copilot. He’s also spent a lot of time in fintech, serving as Vice President of Information Security at Prime Trust and, currently, Senior Director of Security Operations at Circle.
In this episode:
[02:05] How Dane went from researching women’s health and animal cloning to public relations to security
[06:25] Why security teams are still fighting the same battles they were 15 years ago
[09:24] How Dane’s vendor-side threat intel work shapes his thinking as a SecOps leader
[12:00] What’s working - and what’s not - about how companies approach threat intelligence today
[12:51] Why threat intel should be an in-house function, not just a reporting feed
[15:30] What motivated Dane to move into the finance and crypto industry
[19:30] How parenthood reshaped the way Dane thinks about risk
[22:50] Tips for encouraging employees to report their security concerns
[26:00] What a great security-vendor customer experience look like - and what too many vendors get wrong
[29:10] The security tools and solutions Dane is most excited about right now
[32:45] Balancing the hype and potential of security copilots
[38:30] What cyberattacks might look like five years from now
[41:30] Connect with Dane
Where to find Dane:
LinkedIn
Circle
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
National Cyber Forensics and Training Alliance
-------- Â
42:47
--------
42:47
GitLab’s CISO Josh Lemos on the pros and cons of making security practices public
In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Josh Lemos, CISO at GitLab.
Throughout his 15-year career in security, Josh has led teams at ServiceNow, Cylance, and Square. Known for his expertise in AI-driven security strategies, Josh is also a board member with HiddenLayer. He drives innovation at GitLab with a relentless focus on offensive security, identity management, and automation.
In this episode:
[02:05] His early career path from mechanic to electrical engineer to security leader
[03:35] Josh’s philosophy on hiring and mentoring, plus his tips for creating networking opportunities
[05:30] How he applies technical foundations from his practitioner days to his work as CISO
[07:40] Building product security at ServiceNow from the ground up
[10:40] “Down and in” versus “up and out” - adopting a new leadership style as CISO at Square
[12:17] Josh’s experience as an early AI and security researcher at Cylance
[16:15] What’s surprised Josh most about the evolution of AI
[18:50] Why Josh calls today’s models “AI version 1.0” - and what he thinks it will take to upgrade to version 2.0
[22:45] The LLM security threats Josh is most worried about, as a board member with Hidden Layer
[26:30] “Expressing exponential value” - what excited Josh most about becoming CISO at GitLab
[27:45] Why GitLab prioritizes “intentional transparency”
[32:45] How GitLab automates and orchestrates its Tier 1 and Tier 2 security processes
[34:10] How GitLab’s security team uses GitLab internally
[37:35] The secret to recruiting, hiring, and managing a remote, global team
[39:45] The importance of in-person collaboration for building trust and connection
[41:45] Downsizing, bootstrapping, and problem-solving: Josh’s predictions for the future of SecOps
[46:10] Connect with Josh
Where to find Josh:
LinkedIn
GitLab
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
GitLab's Security Handbook
GitLab’s GUARD Framework
Netskope's security blog
Jobs at GitLab
Haroon Meer
The Future of Security Operations Podcast is dedicated to empowering SecOps leaders to reimagine how their teams work so they can scale their security efforts and build a team that achieves more with less.
New Zealand