The Future of Security Operations

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Raymond Schippers. With 15 years of experience leading detection and response teams, Raymond is a seasoned security leader with high-impact roles at Check Point and Canva under his belt. He recently became co-founder of Huntabil.IT, a Melbourne-based company providing organizations with tailored advisory services to align with their unique threat landscapes and business goals.
In this episode:
[02:27] Landing his first security internship at Siemens as a teenager
[03:18] Reflecting on some state-sponsored attacks he encountered while working IR at Check Point
[04:45] Working with government partners to attribute and dismantle APTs
[08:10] The challenges of remediating threats for anonymized customers
[09:30] What inspired Raymond’s move from Check Point to Canva
[10:35] Building Canva’s blue team during the company’s phase of hypergrowth
[12:40] Rethinking the interview process to prioritize diversity in hiring
[18:02] Proven strategies for reducing burnout and alert fatigue in IR
[21:09] How Raymond's team used automation to scale security operations at Canva
[23:16] The state of AI in security - and its most effective use cases
[28:53] What inspired Raymond to found Huntabil.IT
[31:09] Raymond’s approach to working with non-profit organizations
[39:15] The under-reported threats that could reshape the future of SecOps
[44:06] Anticipating the biggest challenges security teams will face over the next five years
[46:42] Connect with Raymond
Where to find Raymond Schippers:
LinkedIn
Huntabil.IT
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
Cyber Threat Alliance
Raymond's talk on avoiding team burnout at BSides Perth

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Dane VandenBerg. Dane’s 16-year security career includes product-focused roles with vendors like Qintel and more recently, Microsoft, where he was Principal Technical Specialist supporting the development of their security copilot. He’s also spent a lot of time in fintech, serving as Vice President of Information Security at Prime Trust and, currently, Senior Director of Security Operations at Circle.
In this episode:
[02:05] How Dane went from researching women’s health and animal cloning to public relations to security
[06:25] Why security teams are still fighting the same battles they were 15 years ago
[09:24] How Dane’s vendor-side threat intel work shapes his thinking as a SecOps leader
[12:00] What’s working - and what’s not - about how companies approach threat intelligence today
[12:51] Why threat intel should be an in-house function, not just a reporting feed
[15:30] What motivated Dane to move into the finance and crypto industry
[19:30] How parenthood reshaped the way Dane thinks about risk
[22:50] Tips for encouraging employees to report their security concerns
[26:00] What a great security-vendor customer experience look like - and what too many vendors get wrong
[29:10] The security tools and solutions Dane is most excited about right now
[32:45] Balancing the hype and potential of security copilots
[38:30] What cyberattacks might look like five years from now
[41:30] Connect with Dane
Where to find Dane:
LinkedIn
Circle
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
National Cyber Forensics and Training Alliance

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Josh Lemos, CISO at GitLab.
Throughout his 15-year career in security, Josh has led teams at ServiceNow, Cylance, and Square. Known for his expertise in AI-driven security strategies, Josh is also a board member with HiddenLayer. He drives innovation at GitLab with a relentless focus on offensive security, identity management, and automation.
In this episode:
[02:05] His early career path from mechanic to electrical engineer to security leader
[03:35] Josh’s philosophy on hiring and mentoring, plus his tips for creating networking opportunities
[05:30] How he applies technical foundations from his practitioner days to his work as CISO
[07:40] Building product security at ServiceNow from the ground up
[10:40] “Down and in” versus “up and out” - adopting a new leadership style as CISO at Square
[12:17] Josh’s experience as an early AI and security researcher at Cylance
[16:15] What’s surprised Josh most about the evolution of AI
[18:50] Why Josh calls today’s models “AI version 1.0” - and what he thinks it will take to upgrade to version 2.0
[22:45] The LLM security threats Josh is most worried about, as a board member with Hidden Layer
[26:30] “Expressing exponential value” - what excited Josh most about becoming CISO at GitLab
[27:45] Why GitLab prioritizes “intentional transparency”
[32:45] How GitLab automates and orchestrates its Tier 1 and Tier 2 security processes
[34:10] How GitLab’s security team uses GitLab internally
[37:35] The secret to recruiting, hiring, and managing a remote, global team
[39:45] The importance of in-person collaboration for building trust and connection
[41:45] Downsizing, bootstrapping, and problem-solving: Josh’s predictions for the future of SecOps
[46:10] Connect with Josh
Where to find Josh:
LinkedIn
GitLab
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
GitLab's Security Handbook
GitLab’s GUARD Framework
Netskope's security blog
Jobs at GitLab
Haroon Meer

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Mark Hillick, CISO at Brex. Mark’s experience in the security industry spans more than two decades. He started out as a security engineer at Allied Irish Banks before advancing through companies like MongoDB to become Director and Head of Security at Riot Games. His book, The Security Path, features over 70 interviews with security professionals on their career journeys.
In this episode:
[02:06] His early career journey - from a mathematics background to building early online banking systems[03:32] What’s kept Mark excited about security for over two decades[04:40] The compound benefits of growing within a company over time[07:20] Mark’s leadership style - defined by transparency, directness, and genuine care for his teammates[12:45] Communicating the business trade-off between risk and return[16:45] Reflecting on the team’s response to major incidents at Riot Games[21:00] The unique challenges of securing gaming platforms[26:30] How Mark approaches strategy and planning in the fintech space[28:08] The case for building strong, partnership-driven vendor relationships[31:13] Creating space for creativity - without spreading the team too thin[34:35] Empowering his team to speak openly - even if it means calling him out[36:35] The inspiration behind Mark’s books Digital Safety for Parents and The Security Path[40:20] Connect with Mark
Where to find Mark:
LinkedIn
Brex
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
The Security Path - click here to redeem a free copy for podcast listeners (first come, first serve)
Digital Safety for Parents - click here to redeem a free copy for podcast listeners (first come, first serve)
Mark's talk during his time at Riot Games in 2016

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Mollie Chard. Mollie’s career spans 10+ years in technical SOC and leadership roles at organizations like the UK’s Met Office, Capgemini, and OVO. She’s recently accepted a new role as Head of Cyber Guidance & Monitoring at Ofgem, the UK’s Office of Gas and Electricity Markets. A passionate advocate for diversity, she’s also the Chief Advisor for Women in Cybersecurity UK and Ireland.
In this episode:
[02:00] Mollie’s journey from arts graduate to security leader
[04:00] Her previous role developing emerging security talent for CIS UK
[05:00] Tips and techniques for hiring diverse talent
[11:20] The problem with management being the default career path
[15:25] The biggest tech mistake that budget-strapped companies make
[19:23] Solving unique systems and operational technology challenges in the energy sector
[21:30] The ethical considerations and impact of AI for security and other industries
[27:30] Making space in boardroom discussions for diversity and how it can enhance resilience
[32:00] How to stay aligned when working with remote or dispersed team
[35:00] What Mollie thinks cybersecurity will look like in five years
[37:00] AI as a threat to human cognitive abilities within and beyond security
[42:40] Connect with Mollie
The Future of Security Operations is brought to you by Tines, the orchestration, automation, and AI platform that powers some of the world’s most important workflows. 
Where to find Mollie:
LinkedIn
Medium
Substack
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
Capslock Bootcamp
UK Department for Work and Pensions's Disability Confident employer scheme
More career growth tips from Mollie on the Trident Talks podcast

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Joe McCallister. Joe’s journey in security is truly unique - in less than a decade, he pivoted from selling BMWs to his current role as Senior Manager of Cybersecurity Operations at The Trade Desk. He’s also led impactful initiatives in risk management, threat hunting, and incident response at Synoptek.
In this episode:
[02:18] Transitioning from selling BMWs to leading a security team
[06:14] Moving from practitioner to manager and leaning into the role of the "communications guy"
[09:52] Balancing security team priorities with company goals
[11:40] The threats that keep Joe up at night
[14:06] How The Trade Desk's rapid growth has affected day-to-day operations
[16:10] Ensuring security stays top of mind for other business units
[19:32] Practical tips for strengthening collaboration with IT and other teams
[22:13] Joe’s approach to hiring and building a resilient team
[26:30] Enabling his incident response team to thrive, even when he's not there
[30:58] Joe’s top three leadership principles
[33:22] Tips for salary negotiation, both as a practitioner and a manager
[39:58] Navigating imposter syndrome and anxiety
[42:37] How AI is fueling Joe’s optimism for the future of SecOps
[44:29] Connect with Joe
The Future of Security Operations is brought to you by Tines, the orchestration, automation, and AI platform that powers some of the world’s most important workflows. 
Where to find Joe:
LinkedIn
Rocky Mountain Information Security Conference (May 28 - 30, 2025)
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
Colorado=Security Annual Salary Surveys & Resources

The Future of Security Operations podcast is back for a sixth season, and, to kick it off, Thomas is joined by Christofer Hoff.
Christofer has over 30 years of experience in network and information security architecture, development, engineering, operations, and management, including security leadership roles at Bank of America, Citadel, and Juniper Networks. He’s currently Chief Secure Technology Officer at LastPass, a unique role that combines the duties of CSO and CTO, while also serving on the board at FIDO Alliance.
In this episode:
[02:00] How blogging landed Christofer his first couple of jobs in security
[06:50] Taking a more holistic approach to security through collaboration
[09:40] Rebuilding LastPass's security org from scratch
[12:03] Reflecting on incidents - what LastPass did right
[16:12] Communicating with customers and the broader community during incidents
[20:15] Navigating tech debt as a security leader
[23:55] The biggest challenges AI has produced for his team
[25:16] How LastPass uses an AI working group for decision-making
[29:00] The evolving challenges of browser security
[35:05] Passkeys, passwords and the future of secure authentication
[41:40] Tips on hiring and structuring effective security teams
[46:47] How LastPass creates efficiency through automation
[50:38] The biggest changes he'd like to see in security
[54:44] Connect with Chris
The Future of Security Operations is brought to you by Tines, the orchestration, automation, and AI platform that powers some of the world’s most important workflows.
Where to find Christofer Hoff:
LinkedIn
Chris's Rational Survivability blog
Where to find Thomas Kinsella:
LinkedIn
Tines
Resources mentioned:
Chris on Google’s Cloud Security Podcast
LastPass Security Incident Summary

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Brent Deterding. Brent has over 25 years of experience in security, both on the vendor side and now as a security leader. He spent a big part of his career with cloud-native security analytics platform SecureWorks, and he’s currently the CISO of Afni, a global provider of contact center solutions in the U.S., Philippines, and Mexico.
Brent and Thomas discuss:
- His unconventional path to becoming a CISO
- Building a security team with zero attrition
- Removing the burden of stress in incident response
- Strategies for risk prioritization
- Facing off against cybercriminal group Scattered Spider
- Why prioritization and leadership are among security's biggest challenges
- Being dubbed "the happy CISO" after reporting high levels of job satisfaction
- Brent's four security non-negotiables
- The right way to approach CISOs as a security vendor
- Measuring success when you're metrics-averse
- What the SOC will - and should - look like in five years
The Future of Security Operations is brought to you by Tines, the smart, secure workflow builder that powers some of the world’s most important workflows. https://www.tines.com/solutions/security
Where to find Brent Deterding:
LinkedIn: https://www.linkedin.com/in/brent-deterding/
Afni: https://www.afni.com/
Where to find Thomas Kinsella: 
LinkedIn: https://www.linkedin.com/in/thomas-kinsella/
Twitter/X: https://twitter.com/thomasksec
Tines: https://www.tines.com/
Resources mentioned:
How to connect with me as a vendor by Brent Deterding on LinkedIn: https://www.linkedin.com/feed/update/urn:li:activity:7146566282128076800/
In this episode:
[01:56] Brent's unconventional path to becoming a CISO
[04:10] Finding the right fit at Afni
[06:09] Separating his identity from his job and removing the burden of stress
[10:22] Why Brent sees risk prioritization and leadership as security's biggest challenges
[13:02] Brent's first steps as CISO at Afni including deploying MFA across 10,000 employees
[16:29] Going up against threat group Scattered Spider
[17:43] Brent's custom risk frameworks
[23:03] Measuring success as someone who's metrics-averse
[26:19] How Brent developed his unique leadership style
[29:13] Supporting his team to do their best work
[31:55] Brent's tips for security vendors
[36:07] Using AI for resilience and protection
[39:20] What security could and should look like in five years
[42:53] Connect with Brent

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Nicolas Chaillan. Nicolas is a security leader who has held several high-profile roles in US federal agencies including Chief Software Officer for the US Air Force and Space Force, Special Advisor for Cloud Security and DevSecOps at the Department of Defense (DOD), and Special Advisor for Cybersecurity and Chief Architect for Cyber.gov at the Department of Homeland Security. He is also the founder of no less than 13 companies, including Ask Sage, a GPT-powered platform that brings Generative AI capabilities to government teams.
Nicolas and Thomas discuss:
- Building the US government's first zero trust implementation
- Putting Kubernetes on jets and space systems
- The challenges of bringing new technologies to the federal government
- How the threat landscape will continue to evolve for US federal agencies
- The biggest mistakes entrepreneurs make
- How cross-team collaboration helped him create meaningful change at the DOD
- The future of AI in security
- The inspiration behind his AI-powered platform, Ask Sage
The Future of Security Operations is brought to you by Tines, the smart, secure workflow builder that powers some of the world’s most important workflows. https://www.tines.com/solutions/security
Where to find Nicolas Chaillan:
LinkedIn: https://www.linkedin.com/in/nicolaschaillan/
Twitter/X: https://twitter.com/NicolasChaillan
Nic's YouTube channel: https://www.youtube.com/channel/UCt7jKHaxWS8W_4rcKGg7X9w
Ask Sage: https://www.asksage.ai/
Where to find Thomas Kinsella: 
LinkedIn: https://www.linkedin.com/in/thomas-kinsella/
Twitter/X: https://twitter.com/thomasksec
Tines: https://www.tines.com/
Resources mentioned:
Making An Impact: Nicolas Chaillan, CEO Magazine: https://www.theceomagazine.com/executive-interviews/government-defence/nicolas-chaillan/
In this episode:
[02:20] Becoming a self-taught coder at 7 and founding his first company at 15
[05:02] Shipping 187+ technology products as a founder, in verticals as varied as healthcare, retail and banking
[07:08] The biggest mistakes entrepreneurs make
[08:40] His latest product, generative AI platform Ask Sage
[11:30] The challenges of bringing a new product to the US government
[13:45] Building the first zero trust implementation in the government as Special Advisor for Cybersecurity at the Department of Homeland Security
[15:20] Advocating for new technologies at federal agencies
[19:40] Deploying Kubernetes on 50-year-old hardware on the F16 jet at the Department of Defense
[22:02] Dealing with pushback and internal resistance to change
[24:50] Recruiting internal help to establish force-wide DevSecOps at the DOD
[29:00] Becoming Federal Chief Technology Officer at Qualys
[30:30] Reflecting on the changes he implemented while working for the US government
[33:12] Deciding which companies to work with as an advisory board member
[36:40] How the threat landscape will continue to evolve for US federal agencies
[40:50] TikTok as a channel for misinformation and national security weapon
[44:18] Nicolas' predictions for the future of security
[47: 10] Connect with Nicolas

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by George Griesler. George has been working in cybersecurity since 1997, when he assumed the role of Senior Network administrator at the United States Golf Association (USGA), eventually advancing to Director of Information Security. He currently serves as the Senior Director of Cybersecurity at the National Football League (NFL), where he works to secure events like the Super Bowl, which in 2024 was the most-watched telecast ever.
George and Thomas discuss:
- What security operations looked like in 1997
- Protecting the secrets of regulation golf equipment at the USGA
- The shift in security and privacy needs at live sports events
- Securing scents, flavors, and other chemical formulations at IFF
- Preparing for Super Bowl LXXVIII in the wake of the MGM Resorts cyber attack
- The Super Bowl threat profile, from scoreboard hacking to stadium credentials
- Collaborating with cybersecurity experts from CISA, the FBI, Caesars Palace, and the MGM Grand.
- Aligning security operations with physical security
- The reality of working on high-pressure events
- The benefits of knowledge sharing with other teams working on live sports events
- The importance of relationship building across internal security teams:
- The potential of automation, orchestration, and AI in incident response
The Future of Security Operations is brought to you by Tines, the smart, secure workflow builder that powers some of the world’s most important workflows. https://www.tines.com/solutions/security
Where to find George Griesler:
NFL: https://www.nfl.com/
LinkedIn: https://www.linkedin.com/in/georgegriesler/
Where to find Thomas Kinsella: 
Twitter/X: https://twitter.com/thomasksec
LinkedIn: https://www.linkedin.com/in/thomas-kinsella/
Tines: https://www.tines.com/
Resources mentioned:
A Cyberattack Shuts Down MGM Resorts In Las Vegas And Other Cities: https://www.forbes.com/sites/suzannerowankelleher/2023/09/12/a-cyberattack-mgm-resorts-las-vegas/?sh=c1b5096505c0
The 1,000-ton screen bringing Super Bowl LVI to the lucky fans inside the stadium: https://edition.cnn.com/2022/02/11/sport/super-bowl-lvi-samsung-infinity-screen-sofi-stadium-tech-spc-intl/index.html
In this episode:
[01:50] What infrastructure management and incident response looked like in 1997
[03:30] His projects at the United States Golf Association (USGA), including securing a golf handicap information network
[06:05] Witnessing the digital transformation of live sports events
[08:40] Securing flavors, scents and other chemical formulations at IFF
[13:20] Building a threat model for large OT environments
[15:30] Increasing security awareness and culture across the organization
[17:45] Moving to the NFL
[21:20] How George's team prepare for the Super Bowl
[24:10] Partnering with cybersecurity experts at CISA, the FBI, and local partners in Las Vegas like Caesars Palace and the MGM Grand.
[27:00] The Super Bowl's threat profile, from scoreboard hacking to stadium credentials to online identities of individual players
[29:20] Inside the NFL's Super Bowl command centre
[30:40] Ensuring the team is supported to handle high-pressure events
[32:55] Knowledge sharing with security teams on other live sports events, from The Olympics to the World Cup
[37:00] Reducing risk through collaboration across the security team
[38:35] AI as a defender tool and attacker tool
[41:50] The future of the SOC
[43:15] Connect with George