CISO Insights: Voices in Cybersecurity

Beyond the Prompt: Navigating (MCP) Model Context Protocol Security

49 min · 15. juli 2026
episode Beyond the Prompt: Navigating (MCP) Model Context Protocol Security cover

Description

As AI agents evolve into autonomous orchestrators, the Model Context Protocol (MCP) has rapidly become the standard for connecting them to sensitive enterprise data and external tools. However, this architectural shift introduces novel attack vectors—such as tool description poisoning, shadow MCP servers, and the confused deputy problem—that bypass traditional perimeter defenses. In this episode, we explore the latest threat modeling frameworks, zero-trust delegation strategies, and hardware-based confidential computing solutions required to safely operationalize your agentic infrastructure.   Sponsors: www.vibehack.dev [http://www.vibehack.dev] www.airiskassess.com [http://www.airiskassess.com]

Comments

0

Be the first to comment

Sign up now and become a member of the CISO Insights: Voices in Cybersecurity community!

Get Started

1 month for 9 kr.

Then 99 kr. / month · Cancel anytime.

  • Podcasts kun på Podimo
  • 20 lydbogstimer pr. måned
  • Gratis podcasts

All episodes

498 episodes

episode The Convergence: Decoding the OWASP 2025 Security Shift for Web, Mobile, and AI artwork

The Convergence: Decoding the OWASP 2025 Security Shift for Web, Mobile, and AI

In this episode, we explore the massive architectural shift reshaping application security between 2025 and 2026, driven by the updated OWASP Top 10 frameworks for Web, Mobile, and Large Language Models. We discuss how the rise of autonomous AI agents, complex Retrieval-Augmented Generation (RAG) pipelines, and hyper-distributed ecosystems have rendered traditional, perimeter-based defenses obsolete. Finally, we examine how organizations must adapt by implementing unified infrastructure-level controls—such as AI Gateways and zero-trust architectures—to defend against new semantic threats and overlapping vulnerabilities.   Sponsors: www.vibehack.dev [http://www.vibehack.dev] www.airiskassess.com [http://www.airiskassess.com]

15. juli 202643 min
episode Strategiczny CISO: Nawigowanie wśród wymogów SEC i ryzyka cybernetycznego artwork

Strategiczny CISO: Nawigowanie wśród wymogów SEC i ryzyka cybernetycznego

Nowe przepisy SEC dotyczące ujawniania informacji o cyberbezpieczeństwie fundamentalnie przekształciły rolę dyrektora ds. bezpieczeństwa informacji (CISO) z technicznego menedżera w kluczowego dyrektora biznesowego. W tym podcaście sprawdzamy, jak nowocześni CISO muszą współpracować z zespołami międzyfunkcyjnymi, aby budować ogólnofirmowe ramy istotności i w sposób uzasadniony prognozować długoterminowe skutki finansowe naruszeń cybernetycznych. Posłuchaj, aby dowiedzieć się, jak zniwelować przepaść między operacjami bezpieczeństwa a oczekiwaniami zarządu, jednocześnie chroniąc siebie i swoją organizację przed rosnącą odpowiedzialnością prawną i regulacyjną.   English Version: https://podcast.cisomarketplace.com/e/the-strategic-ciso-navigating-sec-mandates-and-cyber-risk/ [https://podcast.cisomarketplace.com/e/the-strategic-ciso-navigating-sec-mandates-and-cyber-risk/]   Sponsor: www.cisomarketplace.com [http://www.cisomarketplace.com] www.cisomarketplace.services [http://www.cisomarketplace.services]

12. juli 202617 min
episode O CISO Estratégico: Navegando pelos Mandatos da SEC e o Risco Cibernético artwork

O CISO Estratégico: Navegando pelos Mandatos da SEC e o Risco Cibernético

As novas regras de divulgação de cibersegurança da SEC transformaram fundamentalmente o papel do Chief Information Security Officer (CISO), que deixou de ser um gerente técnico focado apenas em sistemas para se tornar um executivo de negócios de alto escalão. Neste podcast, exploramos como os CISOs modernos devem colaborar com equipes multifuncionais para construir estruturas de materialidade corporativa e projetar de forma defensável os impactos financeiros a longo prazo das violações cibernéticas. Sintonize para aprender como alinhar as operações de segurança às expectativas da diretoria e do conselho, enquanto protege a si mesmo e à sua organização contra as crescentes responsabilidades legais e multas regulatórias.   English Version: https://podcast.cisomarketplace.com/e/the-strategic-ciso-navigating-sec-mandates-and-cyber-risk/ [https://podcast.cisomarketplace.com/e/the-strategic-ciso-navigating-sec-mandates-and-cyber-risk/]   Sponsor: www.cisomarketplace.com [http://www.cisomarketplace.com] www.cisomarketplace.services [http://www.cisomarketplace.services]

12. juli 202621 min
episode De Strategische CISO: Navigeren door SEC-richtlijnen en Cyberrisico's artwork

De Strategische CISO: Navigeren door SEC-richtlijnen en Cyberrisico's

De nieuwe SEC-regels voor de openbaarmaking van cyberbeveiliging hebben de rol van de Chief Information Security Officer (CISO) fundamenteel getransformeerd van een technische beheerder naar een zakelijke topmanager. In deze podcast verkennen we hoe moderne CISO's moeten samenwerken met multifunctionele teams om bedrijfsbrede materialiteitskaders op te bouwen en de financiële langetermijneffecten van cyberincidenten verdedigbaar te voorspellen. Luister mee en leer hoe u de kloof tussen beveiligingsoperaties en de verwachtingen van de raad van bestuur kunt overbruggen, terwijl u uzelf en uw organisatie beschermt tegen groeiende wettelijke en regelgevende risico's.   English Version: https://podcast.cisomarketplace.com/e/the-strategic-ciso-navigating-sec-mandates-and-cyber-risk/ [https://podcast.cisomarketplace.com/e/the-strategic-ciso-navigating-sec-mandates-and-cyber-risk/]   Sponsor: www.cisomarketplace.com [http://www.cisomarketplace.com] www.cisomarketplace.services [http://www.cisomarketplace.services]

11. juli 202619 min