The Balancing Act

Why Your Cybersecurity Program Is Busy But Not Secure | Adaptive Defense Explained

Most security teams can prove they're busy. Patching, scanning, phishing simulations, awareness training — the list is long. But ask them if they're actually better protected than they were last year, and the answer gets uncomfortable. In this episode, In Balance IT's VP of Security Strategy Ryan O'Halloran sits down with Field CISO David Malcom to dig into why so many security programs are anchored to last year's threats — and what it takes to build one that keeps pace with today's AI-driven attackers. They introduce Adaptive Defense, In Balance IT's framework for continuous, outcome-based security that evolves with the threat landscape instead of the compliance calendar. What we cover: * Why compliance and security have never been the same thing — and why that gap is wider than ever * How AI-powered attackers are operating at machine speed while most defenses are still static * The three core principles of Adaptive Defense: continuous compliance, consultant-led engagements, and phased implementation * How the framework scales from mid-market to large enterprise * What a free 45-minute security briefing with In Balance IT looks like Think your security program needs a closer look? Request a no-cost 45-minute briefing at InBalanceIT.com [http://inbalanceit.com]

Ep. 18 - Managing the Supply Chain Crisis: NAND, DRAM, and the AI Infrastructure Squeeze

In this episode, Ryan O’Halloran and Chief Technology Officer Michael Caplan examine the specific economic pressures currently hitting enterprise IT environments. They discuss how a $600 billion capital expenditure wave from AI and cloud providers is consuming the global supply of NAND, DRAM, and hard disk drives, leading to 3–4x price hikes and 6–12 month lead times. The conversation provides a strategic roadmap for IT leaders dealing with canceled OEM contracts and budget overruns that have turned traditional infrastructure planning upside down. Key Takeaways * The AI Allocation Squeeze: Massive commitments from public and "neocloud" providers are leaving enterprise customers with fully allocated supply chains for server memory and storage. * Contractual Volatility: Some OEMs have updated terms and conditions, allowing them to cancel purchase orders or request new ones at higher prices even after a deal is executed. * The Death of the 5-Year Refresh: Traditional long-term planning is being replaced by a need for 12–18 month strategic windows and "burst" environments. * Optimization as a Defense: Implementing FinOps-style right-sizing on-premises can reclaim wasted CPU and RAM, buying organizations time to navigate the crisis.

Ep. 17 - 3 Strategies for VMware Freedom with CTO Michael Caplan

Broadcom's VMware licensing changes have left many organizations facing up to 10x increases in renewal costs. How do you find a path forward without being held to "ransom"? In Episode 17 of The Balancing Act, Ryan O’Halloran (VP of Security Strategy) and Michael Caplan (CTO) dive into the reality of "VMware Freedom." They break down what happened to the vSphere Standard and Enterprise Plus tiers and share the specific strategies In Balance IT is using to help clients buy time, reduce TCO, and evaluate viable alternatives like Nutanix and Hyper-V. Key Discussion Points: * The 2026 Shift: Why Broadcom’s decisions with lower-tier licensing is a game-changer for IT budgets. * Buying Time: How to leverage third-party partnerships to extend the life of your vSphere 7 or 8 environment. * The TCO Flip: Why moving away from VMware now offers a better ROI than it did just six months ago. * The Migration Path: Practical steps for evaluating Nutanix and Hyper-V without a total hardware overhaul. * Strategic Freedom: Moving beyond the hypervisor to build a resilient, multi-year IT roadmap. Stop paying the Broadcom ransom. Visit InBalanceIT.com [http://InBalanceIT.com] to schedule a VMware Freedom strategy session.

Ep. 16 - AI-Enabled Attacks: Why Human-Speed Security Can’t Keep Up

AI-enabled attacks are no longer theoretical—they’re here. In this episode, Ryan O’Halloran of In Balance IT sits down with Shane Harsch of SentinelOne to break down the first large-scale AI-orchestrated cyber espionage campaign and what it means for today’s security leaders. They explore how attackers are accelerating the kill chain through automation, why human-speed investigation is no longer viable, and the architectural shifts organizations must make to defend at machine speed. From identity blind spots to modular automation, Shane outlines the capabilities modern SOCs need to shorten response time, detect novel threats, and recover quickly. What we cover: * How AI is reshaping attacker tradecraft and shrinking dwell time * Why machine-speed attacks force a rethinking of SOC workflows * The critical role of identity visibility and anomaly detection * Why automation is now essential—not optional—for defense * How SentinelOne is approaching hyper-automation and AI-native security * What leaders must do to prepare for attacks that outpace human response If you're asking how to build automation, regain visibility, or harden identity in a world of AI-driven threats, this episode offers a clear path forward. Learn more: In Balance IT → inbalanceit.com [http://inbalanceit.com] SentinelOne → sentinelone.com [http://sentinelone.com]

Ep. 15 - Calling All APIs

In Episode 15 of The Balancing Act Podcast “Calling All APIs”, Ryan O'Halloran (VP of Security Strategy at In Balance) invites special guest Tim Erlin (VP of Product at Wallarm) to discuss the state of API security in the threat landscape and how incredibly important APIs are to generating business revenue. Ryan and Tim also cover the trends in protecting API’s and the relationship with AI that fits hand in glove.