Ignacio Sbampato

The latest episode of Scaling Cyber is out, with Cody Barrow, CEO of @EclecticIQ: youtu.be/W44lETuB1x0

The map of Europe is slowly filling up with the guests we had in Scaling Cyber. Which country will have a new logo next? Besides these guests, we also had companies from United States and South Africa, @it_harvest and @Sendmarc!

@SymoneBeez That’s really interesting and slightly unexpected. Who is going to implement if they cut on integrators?

Focus on Cybersecurity, Cloud, and Infrastructure

@donalgreene That sounds about right :)

@ignaciosb Building a product to exactly solve problems created by an incoming EU regulation :)

What makes a company truly European? Not just headquartered here. Built for this market, this regulation, this customer mindset. I spoke with two founders trying to answer that. Interesting conversation. What is your answer?

A CEO that is building the Threat Intelligence Platform he would have want to have when he was an Intelligence Officer. In the latest episode of Scaling Cyber: scalingcyber.bridgerwise.com

@DFIRTraining That’s one of the things that Mathias Fucks said in this @SANSInstitute paper: tandemtrace.ai/papers/sans-ai…

"AI isn’t the biggest risk in digital forensics, but not using AI could be"

Explainability and Auditability. That’s the biggest concern for SOC professionals in Europe when it comes to using AI in their workflows according to recent research: research.bridgerwise.com/research/ai-so…

@SCavanna Me gusta como compartís estas estadísticas!

En serio les parecerá normal y saludable que durante la RSA 2026 aparezcan mas de 320 startups de seguridad? ok, no todas arrancaron ayer, algunas ya llevan lo suficiente como para dejar de ser startups, pero igual cuando le vas a contar las costillas, son empresas de menos de 25 empleados / y todo bien con eso tambien, pero a mi, me hace ruido. jakee.vc/rsa-2026-lands… Hay mas de 4000 vendors (ww) de cyber con una tasa de refresh de 400 anual. Ese es el camino (cambiar de tool, cambiar de vendor, seguir buscando la bala de plata)?

@ZackKorman That’s the way EPP/EDR solutions are expected to work for decades…

SentinelOne has a blog post about how they stopped the malicious LiteLLM code from executing by looking at the behavior of the script. They claim this is proof of their "AI-native defense". Isn't this just expected of any decent EDR, not using AI at all?

@DanielMiessler One day I feel like you, another day I feel how my productivity is up. I see it with SOC L1 Analysts: they complain about the manual work they need to do to triage, yet they don’t like to hear about AI-driven alert triage….

Nobody wants to tell the truth about where all this pressure to use AI is coming from. The vast majority of it is simply that companies are not happy with their human workforces, because they're tremendously expensive and not very good. And they would rather own that labor in-house, like a bulldozer (which replaces n number of jobs). AI is being pushed by boards and CE/FOs not because it's so magical and perfect. It's not (yet). AI is being pushed by leadership because ~60-90% of their human workforces are just really, really bad at their jobs. The bar required to come out net-ahead after replacing them with AI is on...the...floor. THIS is why companies are spending billions on AI. And this is why they're not being super public with the reason. They literally can't wait to fire 95% of their people, while keeping the A+ players and enabling them to become super-employees using AI. And maybe even find more of those types. This is also why there's so much confusion about ... wait, so companies will still want to hire people? Yes, but only super-humans. The best of the best, who are the best of the best with AI. It's like hiring 10 or 100 or 1000 employees with one person. But that's .01-2% of knowledge workers. That's not most people. So, it'll be a boon for these folks. They can work anywhere. They're sought after. But most everyone is fired over the next 1-5 years (40-80%?) replaced by AI workflows and AI products that do their jobs as good or better than they were.

@prettycyb3rgirl Thank you! Excellent list!

40 cybersecurity podcasts to listen during your commute Save this for your next drive/workout 🔖🔁 Add the tech podcast you listen to in the comments. TRUE CRIME & STORYTELLING 1. Darknet Diaries - Jack Rhysider darknetdiaries.com 2. Malicious Life - Ran Levi malicious.life 3. CYBER - VICE Motherboard vice.com/en/topic/cyber 4. Reply All (Archived) - Gimlet gimletmedia.com/shows/reply-all DAILY NEWS BRIEFINGS 5. The CyberWire Daily thecyberwire.com/podcasts/daily… 6. Risky Business risky.biz 7. Security Now - Steve Gibson & Leo Laporte twit.tv/shows/security… 8. Smashing Security smashingsecurity.com TECHNICAL DEEP DIVES 9. Security Weekly - Paul Asadoorian securityweekly.com 10. Defensive Security Podcast defensivesecurity.org 11. Brakeing Down Security brakeingsecurity.com 12. Hacking Humans thecyberwire.com/podcasts/hacki… 13. The Privacy, Security, & OSINT Show inteltechniques.com/podcast.html 14. Paul's Security Weekly securityweekly.com/shows/paul-sec… CAREER & PROFESSIONAL DEVELOPMENT 15. Cyber Security Interviews cybersecurityinterviews.com 16. Cyber Work Podcast - Infosec infosecinstitute.com/podcast/ 17. Breaking Into Cybersecurity Podcast christopherimpey.com/podcast 18. Security Champions - Tom Brennan securitychampions.com CLOUD & MODERN INFRASTRUCTURE 19. Cloud Security Podcast cloudsecuritypodcast.tv 20. The Cloudcast thecloudcast.net 21. AWS Security Podcast - Ashish Rajan ashishrajan.com/aws-security-p… 22. Kubernetes Podcast kubernetespodcast.com APPLICATION SECURITY 23. Application Security Weekly securityweekly.com/shows/applicat… 24. The Secure Developer mydevsecops.io 25. DevSecOps Podcast devsecops.com 26. Open Source Security Podcast opensourcesecurity.io INCIDENT RESPONSE & FORENSICS 27. SANS Internet Storm Center isc.sans.edu/podcast.html 28. Forensic Lunch forensiclunch.com 29. 401 Access Denied delinea.com/resources/401-… 30. Down the Security Rabbithole podcast.wh1t3rabbit.net GOVERNANCE, RISK & COMPLIANCE 31. RSA Conference Podcast rsaconference.com/library/podcast 32. Privacy Please invoca.com/podcast 33. CISO Series Podcast cisoseries.com 34. Cyber Security Sauna withsecure.com/en/whats-new/p… SPECIALIZED TOPICS 35. Cybercrime Investigations Podcast cybercrimepod.com 36. What the Shell? whattheshell.buzzsprout.com 37. Click Here - BBC bbc.co.uk/programmes/p00… 38. IRL: Online Life is Real Life - Mozilla irlpodcast.org 39. Unsupervised Learning - Daniel Miessler danielmiessler.com/podcast/ 40. Security Unlocked - Microsoft microsoft.com/security/blog/…

Most security vendors still do POCs. Three months evaluating something the customer had no hand in building. Then they wonder why adoption is low. Design partnerships flip this. The customer co-builds before the contract exists. The result: they actually use it.

@Kostastsale Oh man... this is exactly what they were discussing in the latest episode of the @cisoseries but in a completely new level!

Palo Alto just reached a whole new level, reaching analysts directly through their user agents 😂

“We are missing a European playbook. We are trying to mimic the US, and that’s exactly the wrong move.” Laurent Hausermann said this. I think it is the most honest diagnosis of where European cyber is right now. We discussed this at length: scalingcyber.substack.com/p/europe-doesn…

@freeduhmglobal Happy to have participated on this piece!

Global cyber warfare is reshaping how organizations defend their networks, data, and operations against sophisticated state-sponsored threats. We compiled 20 expert-backed strategies that security teams are implementing. Learn More: freeduhm.com/cybersecurity-…

Europe imports 70% of the cybersecurity products it uses. That is not a trade statistic. It is a strategic vulnerability. A small group of builders in France is working to change that. Not by copying the US playbook. By writing a new one. More on this: scalingcyber.substack.com/p/europe-doesn…

@RexorVc0 Very interesting! I think I will order it! Congratulations!

🚨 Big news: New TH Book 🏹 After years in Threat Hunting, I wrote the book I always wanted when I started. The Art of Threat Hunting, practical, technical, no fluff. ⚡Hypothesis generation, queries & adaptation stuff, CTI-driven programs, documentation, team alignment. The full lifecycle. 🦖Full breakdown on the blog: rexorvc0.com 🔗Available on Amazon: amazon.com/Art-Threat-Hun… #ThreatHunting #BlueTeam #Cybersecurity #Research #CTI #Malware #threat

If you never listened to a Scaling Cyber episode, this is the one that you can't miss. Cody Barrow is the CEO of @EclecticIQ, and he is leading a European cybersecurity company at American speed with a customer-centric approach rarely seen in this space: scalingcyber.bridgerwise.com

@HackingDave What’s the most interest application of AI in cybersecurity that you see these days?

What I see in cybersecurity: AI has re-invigorated an industry that was largely stale for the past ten years. Complete new green field. Changes everything. New innovation happening everyday. Need to adapt or be left behind. This reminds me of the early 2000s, it’s exciting, addicting, and it’s going to be fun as hell.