Ink8r (in· cu· ba· tor) Podcast

Episode #53 - Productivity Through Self-Awareness

In this compelling episode of The Incubator Podcast, hosts Satbir Sran and Darren Boyd dive into the theme of productivity with TJ Walia, Founder and CEO of ZenTek Solutions. TJ shares his transformative journey from burnout to balance, sparked by a severe panic attack during his high-pressure career at Microsoft. His story unveils practical strategies for reclaiming productivity through self-awareness and intentional boundaries. Key takeaways include: Recognize Burnout: Monitor behavior for signs of chronic stress, like agitation or strained relationships, and pause to assess sustainability. Set Boundaries: Use tools like calendars to prioritize tasks, block personal time, and avoid multitasking. TJ emphasizes focusing on three key stakeholders and projects to filter out noise. Embrace Mindfulness: Simple practices, like observing nature or doing nothing, can quiet the mind and boost creativity. Leverage Technology: Tools like Outlook rules and AI can streamline workflows, saving hours daily. Communicate Priorities: Proactively reschedule with clients to ensure quality delivery, balancing their needs with personal capacity. TJ’s approach, now shared through ZenTek, empowers organizations with team-building, morale-boosting strategies, and AI-driven productivity hacks. Connect with him on LinkedIn for corporate development services or to learn how to save 2-4 hours daily. This episode is a must-listen for anyone seeking to escape the rat race and thrive with purpose.

Episode #52 - Exploring Cybersecurity Strategies for 2025

In this episode of the Incubator Podcast, hosts Satbir Sran and Darren Boyd sit down with Daniel Hooper, a cybersecurity expert with over 25 years of experience, including a decade as a CISO. They dive into the evolving world of cybersecurity, exploring key challenges and strategies for 2025. Daniel shares his journey from technical roles to a business-focused CISO, emphasizing the need to align security with organizational goals. He highlights AI as a game-changer for enhancing security operations, like investigations in Security Operations Centers, and enabling safe business innovations, such as secure chatbots. However, AI’s accessibility also empowers adversaries, pushing CISOs to stay vigilant through threat modeling and risk assessments. Looking ahead, Daniel identifies identity management, attack surface, third-party risk, and vulnerability management as top priorities. He advocates for proactive, automated solutions over reactive fixes. On the talent front, he suggests addressing skill gaps with training, promotions, or contractors before hiring full-time staff, ensuring resources match business needs. Third-party risk, driven by booming SaaS and API integrations, is a growing concern. Daniel calls for standardized risk assessments to cut redundant due diligence, urging focus on business-specific needs like GDPR compliance. He also reflects on the CISO’s increasing accountability, with legal scrutiny from regulators like the SEC adding pressure. Despite this, Daniel remains motivated by the challenge of safeguarding organizations. Daniel envisions security teams evolving into integrated “Centers of Excellence,” focusing on identity as the new perimeter and proactive risk management over alert-driven responses. Daniel's parting call is for the cybersecurity community to collaborate on streamlined third-party risk frameworks, saving time and sharpening focus on unique business requirements.

Episode #51 - Securing the API Frontier with Salt Security

In this episode of the Incubator Podcast, hosts Satbir Sran and Darren Boyd sit down with Nick Rago, Vice President of Product Strategy at Salt Security, a leading firm in API security.  The conversation dives into the evolution of API security, the pioneering role of Salt Security, and the innovative approaches the company takes to address the growing challenges in the API landscape. Rago shares the origins of Salt Security and how the company is shaping the future of API governance and protection. *API Security Challenges* - Evolving Threat Landscape: APIs have become a prevalent attack vector, with adversaries exploiting business logic flaws that traditional edge defenses (e.g., WAFs, CDNs) cannot detect. Approximately 80% of API breaches are schema-compliant, bypassing conventional security measures. - Visibility and Governance: Many enterprises lack visibility into their API attack surface, treating APIs as untracked IT assets. This leads to misconfigurations, which account for 70% of API breaches, often requiring minimal technical skill to exploit. - Industry Awakening: Gartner’s 2024 report highlights API breaches as a top security priority. Enterprises are beginning to treat APIs as critical IT assets, integrating them into CMDBs and establishing governance frameworks. *Salt Security’s Unique Approach* - Intent Analysis: Unlike traditional behavioral analysis, Salt’s patented technology focuses on intent analysis, identifying malicious activities with high fidelity (only 0.02% of behavioral anomalies are malicious). This prevents SOC overload and enables confident blocking states. - Comprehensive Governance: Salt emphasizes posture governance, helping organizations define and enforce API standards across their ecosystem. This includes integrating with API gateways and management platforms like Kong to ensure consistency. - Ease of Deployment: Salt’s platform is designed for quick deployment and delivers deep insights rapidly, identifying top attack vectors, vulnerable endpoints, and usage concentrations. Its policy engine is intuitive, with out-of-the-box policies tailored to various industries. - Ecosystem Integration: Recent innovations, such as integration with CrowdStrike’s Falcon Foundry, allow for API discovery within minutes by leveraging existing EDR footprints, accelerating time to value. *Innovations and Future Directions* - SaltSurface Technology: Introduced last year, this reconnaissance tool identifies externally facing API endpoints, uncovering rogue APIs (e.g., exposed HVAC systems in hotels). - Data Security and Governance: Salt is expanding its platform to address data security, helping organizations understand what data flows through their APIs and enforce data governance policies. - AI and LLM Integration: Leveraging advanced machine learning and large language models, Salt’s platform now provides automated SOC feedback, explaining why specific actions (e.g., blocking) are recommended. - Upcoming Releases: In the first half of 2025, Salt plans to roll out new technologies to further simplify deployment, enhance data governance, and address AI-driven API sprawl.

Episode #3 - Democratizing Telemetry Collection with Morgan McLean

In this episode, we speak with Morgan McLean, Director of Product Management for Splunk Observability Cloud, and co-founder of OpenCensus and OpenTelemetry.  As a governance committee member of the OpenTelemetry project, Morgan is shaping how to democratize the collection of telemetry signals (metrics, logs, traces) into a single braid based on context propagation.   Listen as Morgan provides a perspective on Observability and OpenTelemetry, shares how concepts in OpenTelemetry provide support to distributed applications, and lends practical implementation guidance for introducing signal collection standards in the enterprise.

Episode #50 - Building a Data Security Foundation with Bedrock Security

In this episode of the Incubator podcast, co-hosts Satbir Sran and Darren Boyd sit down with Bruno Kurtic, the CEO and co-founder of Bedrock Security, to discuss his journey in enterprise software. Bruno shares his experience building Sumo Logic, a cloud-native log analytics platform that went public, and how those lessons drive innovations at Bedrock Security.  Bruno explains that the core of Bedrock Security’s approach is a "metadata link," which builds a comprehensive data inventory from creation to consumption. This helps organizations discover, classify, and manage data effectively—the foundational step before any security can be implemented. He discusses how Bedrock’s platform leverages generative AI for accurate, scalable, and real-time data analysis, setting it apart from traditional solutions.  The conversation touches on the intersection of data security and AI, advising CXOs and security leaders to focus on data discovery first to create a strong foundation. Bruno emphasizes that when organizations understand their data, they unlock opportunities for smarter security, better compliance, and even cost savings. Bedrock’s focus on data classification, access control, and proactive security measures positions it as a critical tool in managing enterprise data security. The episode concludes with Bruno highlighting new use cases in AI and evolving customer needs.  This discussion is essential for understanding the future of data-centric security and how to approach it strategically within any organization.