20.1K
Downloads
94
Episodes
The Security Podcast of Silicon Valley invites founders, engineers, and security leaders to share how they tackle compliance, growth, and real-world security challenges—turning obstacles into strategic advantages. Brought to you by YSecurity.
Episodes
2 days ago
2 days ago
Your printers know your passwords. They store credentials for your email server, your file shares, and your LDAP. Jim LaRoe, founder of Symphion, explains why 99% of enterprise printers sit at factory defaults, and what a single forgotten device actually costs you.
Jim: www.linkedin.com/in/jim-laroe
Symphion: www.symphion.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io
🔒 Sponsored by YSecurity
Closing a big deal and getting hit with a vendor questionnaire, SOC 2 request, or pen test requirement? That's exactly what we handle.
YSecurity embeds a team of security engineers with backgrounds from Apple, Uber, Microsoft, Robinhood, and Brex directly into your company. No full-time hire, no bloated retainer. You set a monthly cap and we handle everything.
Book a free strategy call and we'll tell you exactly where you stand.
👉 Book your free call: 30 Min Meeting | YSecurity.io | Cal.com
👉 Learn more: YSecurity | On-Demand Cybersecurity Team for Startups — SOC 2 in 5 Months
Tuesday Apr 21, 2026
Tuesday Apr 21, 2026
The biggest AI mistake companies make isn't picking the wrong tool, it's not understanding the dependencies underneath it. Jacob and Stephen from Talbot West share how they map entire organizations to find the right AI entry point, why LLMs are overhyped, and what technologies are actually underrated right now.
Jacob: www.linkedin.com/in/jacobandra
Stephen: www.linkedin.com/in/stephenkarafiath
Talbot West: www.talbotwest.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io
Tuesday Apr 07, 2026
Tuesday Apr 07, 2026
You can have perfect infrastructure—and still be talking to the wrong person.
In this episode, Jasson Casey (Beyond Identity) breaks down why identity—not infrastructure—is the real security boundary, how passwords created today’s vulnerabilities, and what a future without “moving secrets” looks like. If you’re building or scaling a company, this is a shift you can’t ignore. Listen now.
Jasson: www.linkedin.com/in/jassoncasey
Beyond Identity: www.beyondidentity.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io
Tuesday Mar 24, 2026
Tuesday Mar 24, 2026
Is your security team drowning in noise while your developers struggle to keep up? Neatsun Ziv, CEO of Ox Security, explains why traditional "Shift Left" strategies have failed and how applying business context can help your team focus on the vulnerabilities that actually matter. Listen to the full episode to learn how to turn security into a competitive advantage.
Neatsun: https://www.linkedin.com/in/neatsun-ziv-ab7394/
Ox Security: http://www.ox.security/
Jon: https://www.linkedin.com/in/jon-mclachlan
Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: https://www.ysecurity.io
Tuesday Mar 10, 2026
Tuesday Mar 10, 2026
Most security decisions fail when the people doing the work don’t have the information they need. Garrett Smith, Founder and CEO of Reveal Technology and a Marine Corps Reserve Lieutenant Colonel, explains how bottom-up product design changes defense outcomes—and what business leaders can learn about building technology people actually adopt. Listen to learn how compliance, procurement, and mission pressure shape what ships and what stalls.
Garrett: https://www.linkedin.com/in/wgarrettsmith/
Reveal Technology: https://www.revealtech.ai
Jon: https://www.linkedin.com/in/jon-mclachlan
Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: https://www.ysecurity.io
Tuesday Feb 24, 2026
Tuesday Feb 24, 2026
AI agents can delete your production database and tell you everything is fine. Graham Neray, Co-Founder and CEO of Oso, breaks down why AI agents introduce a new level of risk for growing SaaS companies. If you’re adding AI to your product, moving upmarket, or selling into regulated industries, your authorization model is no longer a backend detail—it’s a growth dependency. Listen in to learn how automating least privilege protects your product, your customers, and your revenue.
Graham: https://www.linkedin.com/in/grahamneray/
Oso: http://www.osohq.com
Jon: https://www.linkedin.com/in/jon-mclachlan
Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: https://www.ysecurity.io
Tuesday Feb 10, 2026
Tuesday Feb 10, 2026
The perimeter will fail. What matters is whether your business turns one incident into a disaster. Andrew Rubin, Founder and CEO of Illumio, explains how breach containment reduces blast radius, why category timing is “luck,” and what leaders must do as AI speeds up attackers and defenders. Listen for a founder-level playbook on building security that scales with growth.
Andrew: https://www.linkedin.com/in/andrewsrubin
Illumio: https://www.illumio.com
Jon: https://www.linkedin.com/in/jon-mclachlan
Sasha: https://www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: https://www.ysecurity.io
Tuesday Jan 27, 2026
Tuesday Jan 27, 2026
AI won’t save your startup. Unless it can ship changes safely. Venkat Thiruvengadam breaks down why the real value isn’t the model, it’s the orchestration: guardrails, permissions, context, and human-in-the-loop workflows that let agents do more than “read-only.” Tune in for a practical conversation on scaling DevOps, security, and compliance without slowing the business.
Venkat: www.linkedin.com/in/venkat-thiruvengadam
DuploCloud: www.duplocloud.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io
Tuesday Jan 13, 2026
Tuesday Jan 13, 2026
Trevor Hilligoss, Head of Security Research at SpyCloud and former FBI agent, joins the show to discuss why humans remain the biggest security risk facing organizations today. From reused credentials to commoditized cybercrime tools, Trevor breaks down how attackers actually gain access — and why focusing on real-world human behavior is more effective than worrying about sophisticated nation-state threats.
Trevor: www.linkedin.com/in/thilligoss/
SpyCloud: spycloud.com
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io
Tuesday Dec 30, 2025
Tuesday Dec 30, 2025
What if 90% of “secured” smart contracts were still exploitable? That’s the reality Olympix founder and CEO Channi Greenwall is seeing on-chain today. She breaks down why traditional audits are failing Web3 teams, why the attack surface is bigger than most founders realize, and how automated security is starting to close the gap.
You’ll learn:
- Why Web3 security is closer to medical devices and aviation than typical SaaS risk
- How one exploit can wipe out years of startup effort in seconds
- The hidden overlap between Web2 and Web3 attack surfaces that founders underestimate
- What it actually looks like to automate 60–80% of what human auditors do today
Listen to the full episode on your favorite platform.
Channi: www.linkedin.com/in/channi-greenwall
Olympix: www.olympix.security/
Jon: www.linkedin.com/in/jon-mclachlan
Sasha: www.linkedin.com/in/aliaksandr-sinkevich
YSecurity: www.ysecurity.io