AI Agents & Cybersecurity: Identity, Compliance, and the New Risks Facing IT and OT

AI, Cybersecurity & Career Growth: Why Curiosity Matters More Than Credentials

The future of cybersecurity belongs to people who can adapt - not just those with the longest list of certifications. In this episode of Protect It All, host Aaron Crow sits down with Peter Schawacker for a candid conversation about the evolving intersection of AI, cybersecurity, talent, and career growth. With nearly 30 years of experience in cybersecurity and technology leadership, Peter shares real-world insights on what organizations are getting wrong about hiring, why curiosity often matters more than credentials, and how AI is reshaping both technical work and the future of security teams. Together, Aaron and Peter unpack the changing role of CISOs, the dangers of checkbox-driven hiring, and why nontraditional talent may hold the key to solving the industry’s growing skills gap. You’ll learn: * Why soft skills and curiosity are becoming critical cybersecurity assets * How AI is transforming cybersecurity recruiting and technical roles * The growing challenges around technical debt and workforce readiness * Why traditional credentials don’t always predict success * How CISOs and leaders should think differently about talent and culture * Practical career advice for cybersecurity professionals navigating rapid change Whether you’re building a cyber team, hiring talent, or planning your next career move, this episode delivers honest insights into what it really takes to thrive in the AI-driven future of cybersecurity. Tune in to learn why adaptability, curiosity, and human ingenuity still matter most - only on Protect It All.. Key Moments:  04:08 The role of security in business 09:24 Managing Aramis online security 11:22 Hiring mindset for troubleshooting skills 13:55 Evaluating AI talent challenges 16:26 Discussing vulnerabilities in software 22:24 Early days of hacking and tech 25:55 Realizing the power of soft skills 28:15 Browsing eclectic book collections 32:13 Recent grads and AI opportunities 33:24 Getting into cybersecurity careers 37:22 Unexpected paths into security careers 40:41 Importance of critical thinking 44:35 Explaining tech's evolution over time About the Guest : Peter Schawacker is the Founder & CEO of Nearshore Cyber and a cybersecurity executive with more than 25 years of experience across multiple industries. A former CISO in four sectors, Peter specializes in cyber risk, AI governance, and workforce development. He is the creator of ARAMIS Insight, an AI-powered cybersecurity workforce competency platform aligned to the NIST NICE framework, and author of Governing AI at the Edge: An Operating Model for Citizen Development in the Enterprise. How to connect Peter:  LinkedIn: https://www.linkedin.com/in/schawacker [https://www.linkedin.com/in/schawacker]  Nearshore Cyber: https://nearshorecyber.com.mx [https://nearshorecyber.com.mx/] | ARAMIS Insight: https://project-aramis.com/insight [https://project-aramis.com/insight]  Email: peter@nearshorecyber.com.mx [peter@nearshorecyber.com.mx] Phone: +1 (760) 880-4258 Connect With Aaron Crow: * Website: www.corvosec.com [http://www.corvosec.com]  * LinkedIn: https://www.linkedin.com/in/aaronccrow [https://www.linkedin.com/in/aaronccrow] Learn more about PrOTect IT All: * Email: info@protectitall.co  * Website: https://protectitall.co/ [https://protectitall.co/]  * X: https://twitter.com/protectitall [https://twitter.com/protectitall]  * YouTube: https://www.youtube.com/@PrOTectITAll [https://www.youtube.com/@PrOTectITAll]  * FaceBook:  https://facebook.com/protectitallpodcast [https://facebook.com/protectitallpodcast] To be a guest or suggest a guest/episode, please email us at info@protectitall.co [info@protectitall.co] Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 [https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124] Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4 [https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4]

AI in OT Cybersecurity: Real-World Risks, Smarter Defenses & the Future of Critical Infrastructure

AI is rapidly transforming cybersecurity but are critical infrastructure environments ready for what comes next? In this episode of Protect It All, host Aaron Crow sits down with longtime colleague and cybersecurity expert Clark Liu to explore how artificial intelligence is reshaping both IT and OT security operations. From incident response and compliance frameworks to workforce shifts and operational resilience, Aaron and Clark unpack the real-world opportunities and very real risks of integrating AI into industrial environments. Together, they tackle the evolving role of frameworks like NERC CIP and NIST, the challenges of balancing compliance with actual security outcomes, and how organizations can responsibly adopt AI without increasing exposure. You’ll learn: * How AI is changing OT and IT cybersecurity operations * The role of AI in incident response, documentation, and monitoring * Why compliance frameworks alone don’t guarantee resilience * The risks of adopting AI without strong operational foundations * How organizations can prepare for AI-powered threats and workforce changes * Practical insights for balancing innovation, budgets, and security priorities Whether you’re leading OT security, managing critical infrastructure, or evaluating AI adoption in your organization, this episode delivers practical guidance for navigating cybersecurity’s next major shift. Tune in to learn how AI is transforming cyber defense and what organizations must do to stay resilient only on Protect It All. Key Moments;  05:33 Understanding cybersecurity compliance frameworks 07:11 Overlooked vulnerabilities in systems 09:59 Balancing multiple firewall vendors 15:17 Delegating tasks to AI 19:11 Importance of documenting commits 21:51 Hospital system shutdown crisis 25:11 AI uncovering software vulnerabilities 26:37 Engineers implementing AI in automation 31:26 AI tools and personal security 32:55 Password security practices 36:46 Using AI for basic tasks 39:38 Transition to off-the-shelf software 42:29 Going back to basics with appliances 47:02 Excitement About Future AI Capabilities Guest Profile :  Clark Liu is a veteran OT cybersecurity expert and one of the original contributors to the NERC CIP standards. With nearly two decades in energy and critical infrastructure security - including leadership roles at EY and GALLO - Clark specializes in OT risk management, compliance strategy, and securing industrial operations from the plant floor to the cloud. How to connect Clark:  LinkedIn :  https://www.linkedin.com/in/clarkliu/ [https://www.linkedin.com/in/clarkliu/] Connect With Aaron Crow: * Website: www.corvosec.com [http://www.corvosec.com]  * LinkedIn: https://www.linkedin.com/in/aaronccrow [https://www.linkedin.com/in/aaronccrow] Learn more about PrOTect IT All: * Email: info@protectitall.co  * Website: https://protectitall.co/ [https://protectitall.co/]  * X: https://twitter.com/protectitall [https://twitter.com/protectitall]  * YouTube: https://www.youtube.com/@PrOTectITAll [https://www.youtube.com/@PrOTectITAll]  * FaceBook:  https://facebook.com/protectitallpodcast [https://facebook.com/protectitallpodcast] To be a guest or suggest a guest/episode, please email us at info@protectitall.co [info@protectitall.co] Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 [https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124] Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4 [https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4]

AI Agents & Cybersecurity: Identity, Compliance, and the New Risks Facing IT and OT

AI agents are changing cybersecurity faster than most organizations can adapt. In this episode of Protect It All, host Aaron Crow welcomes back cybersecurity veteran Ken Foster for a deep dive into how AI is reshaping risk, identity, and resilience across IT and OT environments. With more than 30 years of experience spanning the Navy, manufacturing, fintech, government programs, and startups, Ken brings a grounded, real-world perspective on what organizations are getting right and dangerously wrong about AI adoption. Together, Aaron and Ken explore the growing challenges around AI agents, identity governance, shadow AI, compliance, and attribution in highly regulated industries. As AI tools become embedded into workflows and decision-making, organizations must rethink how they manage access, monitor activity, and maintain resilience against rapidly evolving threats. You’ll learn: * Why AI agents introduce new identity and governance risks * The dangers of shadow AI inside enterprise environments * How AI impacts compliance, attribution, and accountability * Why foundational practices like patching, segmentation, and documentation still matter * The role of continuous monitoring in AI-driven environments * How organizations can balance innovation with resilience and control Whether you’re leading cybersecurity strategy, managing critical infrastructure, or navigating AI adoption inside regulated environments, this episode delivers practical insights for securing the next generation of digital operations. Tune in to learn how AI is transforming cybersecurity - and what leaders must do to stay ahead - only on Protect It All. Key Moments:  07:47 AI guardrails discussion 12:02 Patching and network segmentation 20:44 AI changing job roles 24:24 FISMA and FedRAMP concerns 29:18 Emergency response planning 35:36 Choosing the right tech team 37:14 Discussing accountability and risk 46:31 Developer access problems 51:50 AI Dependence Risks 57:36 AI in pen testing 58:55 AI in risk prevention About the guest : Ken Foster is a veteran cybersecurity leader with 25+ years of experience in enterprise security, risk governance, and global infrastructure strategy. Currently Head of Global Architecture at Adient, Ken has previously led cybersecurity and compliance programs at Fleetcor and Fiserv, specializing in IAM, cloud security, regulatory compliance, and risk-based cybersecurity strategy. He is known for helping organizations balance innovation, resilience, and operational execution in highly regulated environments. How to connect Ken: http://linkedin.com/in/kennethfoster/ [http://linkedin.com/in/kennethfoster/] Connect With Aaron Crow: * Website: www.corvosec.com [http://www.corvosec.com]  * LinkedIn: https://www.linkedin.com/in/aaronccrow [https://www.linkedin.com/in/aaronccrow] Learn more about PrOTect IT All: * Email: info@protectitall.co  * Website: https://protectitall.co/ [https://protectitall.co/]  * X: https://twitter.com/protectitall [https://twitter.com/protectitall]  * YouTube: https://www.youtube.com/@PrOTectITAll [https://www.youtube.com/@PrOTectITAll]  * FaceBook:  https://facebook.com/protectitallpodcast [https://facebook.com/protectitallpodcast]   To be a guest or suggest a guest/episode, please email us at info@protectitall.co [info@protectitall.co] Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 [https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124] Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4 [https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4]

From NFL to OT Cybersecurity Why Trust and Teamwork Matter More Than Tools | Aaron Crow

Cybersecurity isn’t just about technology - it’s about people. In this episode of Protect It All, host Aaron Crow sits down with Sean Tufts for a conversation that goes far beyond tools and tactics. From the locker room to control rooms, Sean shares how his journey from professional football to OT cybersecurity shaped his approach to trust, teamwork, and leadership. Together, they unpack one of the biggest challenges in OT environments: building trust between IT and OT teams. Because without trust, even the best tools fail. You’ll learn: * Why trust is the foundation of OT cybersecurity success * How to bridge the gap between IT teams and engineers * The role of communication and empathy in security programs * Real-world lessons from segmentation failures and hidden network risks * Why diversity and teamwork drive stronger security outcomes * How leadership mindset shapes resilience in high-stakes environments Whether you’re leading cybersecurity, working in OT environments, or building cross-functional teams, this episode delivers practical insights on the human side of security—where real progress happens. Tune in to learn why the strongest cybersecurity programs are built on people, not just platforms only on Protect It All. Key Moments:  05:11 Importance of communication in tech 06:58 Learning from early career mistakes 11:40 Implementing network scanning in OT environments 15:50 Debating project priorities in cybersecurity 18:24 Improving system reliability and ROI 20:28 Convincing plants to self-fund projects 26:21 Creating layered RACI charts 26:57 Discussing people, process, and technology 31:15 Easy validations and big risks 34:35 Operators' productivity challenges 37:21 Network security in hospitals 42:25 Creating a safe network environment 43:10 Addressing network configuration issues 46:55 Different types of AI users About the guest :  Sean Tufts is Field CTO at Claroty and a cybersecurity leader with deep expertise in industrial environments. With leadership roles at GE and Optiv, he has helped asset-intensive industries navigate the intersection of OT, IT, and cyber risk. Before cybersecurity, Sean was a standout linebacker and team captain at the University of Colorado and went on to play in the NFL with the Carolina Panthers bringing the same discipline, teamwork, and leadership mindset to securing critical infrastructure today. How to connect Sean :  LinkedIn: https://www.linkedin.com/in/sean-tufts-36b4909/ [https://www.linkedin.com/in/sean-tufts-36b4909/] Website: https://claroty.com/ [https://claroty.com/] Connect With Aaron Crow: * Website: www.corvosec.com [http://www.corvosec.com]  * LinkedIn: https://www.linkedin.com/in/aaronccrow [https://www.linkedin.com/in/aaronccrow] Learn more about PrOTect IT All: * Email: info@protectitall.co  * Website: https://protectitall.co/ [https://protectitall.co/]  * X: https://twitter.com/protectitall [https://twitter.com/protectitall]  * YouTube: https://www.youtube.com/@PrOTectITAll [https://www.youtube.com/@PrOTectITAll]  * FaceBook:  https://facebook.com/protectitallpodcast [https://facebook.com/protectitallpodcast]  To be a guest or suggest a guest/episode, please email us at info@protectitall.co [info@protectitall.co] Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 [https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124] Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4 [https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4]

Cyber Risk in Construction: Securing AEC Projects in a Digital, AI-Driven World

Construction sites are no longer just physical - they’re digital, connected, and increasingly vulnerable. In this episode of Protect It All, host Aaron Crow sits down with Lee Carsten to explore the rising cyber risks across the architecture, engineering, and construction (AEC) industry. As digital transformation accelerates - with AI, digital twins, and connected building systems becoming standard - construction projects are expanding their attack surface in ways many organizations don’t fully understand. Aaron and Lee unpack the unique challenges facing AEC environments, from fragmented systems and evolving workflows to the growing need for integrating cybersecurity into business decisions - not just IT functions. You’ll learn: * Why construction and infrastructure projects are becoming prime cyber targets * How digital transformation and AI are reshaping risk in AEC environments * The role of building management systems (BMS) and OT in modern projects * Why foundational controls and human awareness still matter most * How to align cybersecurity with real-world construction workflows * Practical strategies to build resilience into projects from day one Whether you’re in construction, engineering, IT, or OT security, this episode delivers real-world insights to help you protect the infrastructure we rely on every day. Tune in to learn how to secure modern construction in a connected world - only on Protect It All. Key Moments:  05:39 Importance of interpersonal skills 08:08 Construction security and recent projects 11:46 Challenges in AEC industry adoption 19:30 Importance of disaster recovery 20:31 Discussing costs of business interruptions 24:06 RFP process and bid management 27:25 Complexity of building projects 32:02 FBI investigation triggers and readiness 36:55 Managing complex building assets 39:37 Choosing durable equipment and future tech 42:01 Understanding OT data for security About the guest :  Lee Carsten’s journey in technology began in the era of punch cards - painstakingly sorted and fed into compilers, where a single fumble could mean hours' worth of work undone. Lee studied COBOL in college, envisioning a future as a programmer. That path nearly led to Walmart, where Lee’s mother worked on the company’s pioneering buyer decision support system under Randy Mott. While the family connection and an offer from Kevin Turner to join a new team were tempting, Lee ultimately decided against moving to Bentonville and working for $18,000 annually. This early exposure to large-scale business technology, combined with pivotal career choices, shaped Lee Carsten’s perspective on IT and the evolving world of software development. How to connect Lee: https://www.linkedin.com/in/leecarsten/ [https://www.linkedin.com/in/leecarsten/] Website: https://whitecaprisk.com/ [https://whitecaprisk.com/] Connect With Aaron Crow: * Website: www.corvosec.com [http://www.corvosec.com]  * LinkedIn: https://www.linkedin.com/in/aaronccrow [https://www.linkedin.com/in/aaronccrow] Learn more about PrOTect IT All: * Email: info@protectitall.co  * Website: https://protectitall.co/ [https://protectitall.co/]  * X: https://twitter.com/protectitall [https://twitter.com/protectitall]  * YouTube: https://www.youtube.com/@PrOTectITAll [https://www.youtube.com/@PrOTectITAll]  * FaceBook:  https://facebook.com/protectitallpodcast [https://facebook.com/protectitallpodcast] To be a guest or suggest a guest/episode, please email us at info@protectitall.co [info@protectitall.co] Please leave us a review on Apple/Spotify Podcasts: Apple   - https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124 [https://podcasts.apple.com/us/podcast/protect-it-all/id1727211124] Spotify - https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4 [https://open.spotify.com/show/1Vvi0euj3rE8xObK0yvYi4]