Securing the Browser for Humans & AI Agents with Menlo Security

AI vs. CMMC: Can Zifino's Automation Solve the Compliance Bottleneck?

On this episode we focus on CMMC Level 2 as an immediate operational bottleneck for DoD contract eligibility involving CUI, affecting over 300,000 defense industrial base organizations while fewer than 1% are certified due to limited auditors, ~$60K assessments, and manual workflows that can take 6–8 months. It highlights Zifino’s new AI-native compliance platform, built to automate document ingestion, control mapping to CMMC/NIST 800-171, gap analysis, remediation paths, and audit-ready outputs (including SSPs) with deterministic, traceable evidence mapping and human-in-the-loop judgment. Zifino claims readiness in weeks, up to 3x auditor throughput, continuous verification, and integrations (Microsoft 365, AWS, Azure, ServiceNow, CrowdStrike), using a hybrid SaaS readiness model plus deployment in customer-controlled enclaves to respect CUI and secure environments, and notes ATPGov can help implement and operationalize these solutions. 00:00 Introduction 00:38 CMMC Crisis Now 01:17 Why Certification Stalls 02:48 AI Native Zifino Shift 04:22 Deterministic Evidence Mapping 04:42 Auditor Workflow Breakthrough 05:37 Connect Map Verify Attest 06:28 Continuous Compliance Model 07:08 Beyond CMMC Frameworks 07:36 Hybrid SaaS Enclave Architecture 08:13 Bottom Line Key Takeaways 10:12 Wrap Up and Contact This episode is brought to you by ATP Gov. Visit us online at www.atpgov.com [http://www.atpgov.com] or follow us on LinkedIn.

Rancher + Portworx: Making Kubernetes “Stateful & Survivable”

This podcast episode of The Bottom Line Up Front breaks down the functionalities of SUSE Rancher Prime for Kubernetes management and Portworx from EverPure (formerly Pure Storage) for stateful data management. The episode highlights the comprehensive tools offered by Rancher Prime for deploying, managing, and operating Kubernetes clusters across various environments, emphasizing ease of use through a unified console. Similarly, Portworx provides enhanced storage solutions for Kubernetes, ensuring high availability, disaster recovery, and efficient data management. The podcast emphasizes the significance of these technologies in terms of federal and DoD operational needs such as Zero Trust, RMF sustainment, and cost savings, while offering advice on implementing these tools with the help of ATP Gov. 00:00 Introduction 00:51 Deep Dive into Suse Rancher Prime 02:33 Hands-On with Rancher Prime 03:43 Portworx from EverPure (formerly Pure Storage) 04:35 Portworx in Action 06:20 Federal and DOD Implications 07:01 Implementation Considerations 08:23 Conclusion and Contact Information This episode is brought to you by ATP Gov. Visit us online at www.atpgov.com [http://www.atpgov.com] or follow us on LinkedIn.

On Prem S3 Done Right: Cloudian + HPE for Mission Ready Object Storage (with AI Data Platform)

This episode focuses on addressing pain points in object storage such as log data, backup sprawl, and ransomware risks, by introducing Cloudian (+HPE) software-defined, S3-compatible storage solutions. These solutions offer cloud-native workflows on-premises, with capabilities for ransomware-resilient backups, Splunk Smart Store integrations, and AI workflow support. Cloudian provides flexible topologies including replication and erasure coding, ensures mission data security with FIPs aligned features, and supports non-disruptive upgrades. The podcast emphasizes how these solutions can meet varied data storage needs efficiently and securely. 00:00 Pain Points in Object Storage 00:59 Introducing Cloudian Hyperstore 01:38 Key Benefits of Cloudian  02:57 Mission Use Cases and Compatibility 04:17 Architectural Notes for Storage Practitioners 06:01 Conclusion and Contact Information This episode is brought to you by ATP Gov. Visit us online at www.atpgov.com [http://www.atpgov.com] or follow us on LinkedIn.

Securing the Browser for Humans & AI Agents with Menlo Security

This episode of Bottom Line Up Front features Jacqueline Biggio of Menlo Security discussing how AI agents are becoming the “next billion users,” shifting from copilots to autonomous actors that browse, transact, and make decisions at machine speed, expanding browser-based risk. Citing that 98% of attacks originate from internet usage and 80% target the browser, she explains why isolation-based browser security can stop threats before execution for both humans and AI agents by keeping web activity containerized and preventing untrusted content from reaching endpoints. She outlines four pillars—stop threats, connect and control applications, protect data without blocking work (including real-time CDR), and govern the entire workforce under requirements like Zero Trust and CMMC—emphasizing that compliance and governance must extend to non-human users. 00:00 Guest Intro: Jacqueline Biggio, Menlo Security 01:41 Menlo Isolation Overview 02:37 AI Agents Expand Risk 04:07 Hidden Content and Poisoning 04:31 Four Pillars Framework: Access, Control, Protect & Governance 08:04 Bottom Line & Key Takeaways 10:02 Wrap Up, Thanks and Call to Action This episode is brought to you by ATP Gov. Visit us online at www.atpgov.com [http://www.atpgov.com] or follow us on LinkedIn.

What Changed? - The Case Against Legacy VPN!

This episode of The Bottom Line Up Front provides a concise review of a Zero Trust Table Talk session focusing on cybersecurity for federal and military IT leaders. The discussion covers the transition from traditional VPNs to Zero Trust Network Access (ZTNA), emphasizing the increased security against AI-accelerated exploits and zero-day vulnerabilities. The session highlights ZTNA benefits like reducing attack surfaces, improving user experience through direct routing, and providing granular logging for compliance, all without needing to replace existing systems. Practical steps for implementing ZTNA are detailed, underscoring its role as a critical overlay for securing remote access in federal missions. 00:00 Introduction 00:37 Zero Trust Table Talk Insights 01:30 The Evolution of Remote Access Strategies 02:02 The Case Against Legacy VPNs 03:50 Understanding Zero Trust Network Access (ZTNA) 05:05 Operational Wins with ZTNA 09:16 Implementing ZTNA: Steps and Best Practices 10:19 Conclusion and Call to Action This episode is brought to you by ATP Gov. Visit us online at www.atpgov.com [http://www.atpgov.com] or follow us on LinkedIn.