"AI is making attacks faster, more efficient, and more convincing, and that's something everyone needs to be paying attention to."

Notable Moments
[01:27] AI accelerating attacks and phishing
[02:34] Prompt injection and assistant abuse
[04:19] Shadow AI and access monitoring
[04:55] Ransomware and extortion trends
[07:30] Nation-state activity overview
[08:32] Overseas hiring scams

AI is speeding up attacks, cybercrime isn't slowing down, and nation-state threats are evolving in subtle ways. This episode is a quick check-in on what's changing, what's staying the same, and where attention really matters right now.

Resources

www.redoxengine.com

Past Podcast Episodes

https://redoxengine.com/solutions/platform-security

Have feedback or a topic suggestion? Submit it using this linked form.

Matt Mock mmock@redoxengine.com

"The main reason people get into trouble is they don't deal with things when they're small."

Episode Highlights

[00:01:22] Why time management, empathy, and discipline are inseparable
[00:02:04] The "layering effect" and how unresolved issues create anxiety
[00:04:35] Why dealing with problems immediately reduces long-term stress
[00:07:17] Daily planning, reflection, and anticipation as leadership tools
[00:10:33] Understanding urgent, important, and vital work
[00:13:22] Empathy and discipline as the two levers of leadership
[00:16:20] Psychological safety and its role in performance and trust
[00:35:11] The "fly story" and what it reveals about responsibility
[00:43:10] The Morning Magic Planner and building sustainable habits

Unaddressed responsibilities don't disappear. They stack up, creating stress and eroding trust. Lee Cockerell, retired Executive Vice President of Walt Disney World, joins the conversation to share why time management is really about responsibility and leadership. He shares stories and his experience to share how planning, reflection, empathy, and discipline work together to create psychological safety and stronger performance.

Resources

www.redoxengine.com

Past Podcast Episodes

https://redoxengine.com/solutions/platform-security

Have feedback or a topic suggestion? Submit it using this linked form.

Matt Mock mmock@redoxengine.com

"Good security habits should reduce stress, not add to it."

Notable Moments

[0:00–2:17] Holiday phishing scams and why "too good to be true" usually is

[2:33–3:53] AI voice cloning and the rise of deepfake phone scams

[4:06–5:20] Personal vs. work data and accidental cloud uploads

[5:35–7:05] Shoulder surfing risks and protecting your screen in public

[7:23–9:26] Public Wi-Fi safety, fake networks and VPN realities

[9:44–10:52] Password managers and eliminating risky password habits

[11:12–12:34] Passphrases, XKCD wisdom and stronger password strategy

[12:52–13:25] Podcast update and what's coming next

This episode brings together members of Redox's security team to share holiday-specific security guidance. Topics include phishing awareness, AI-powered voice scams, separating personal and work data, device safety in public spaces, secure use of public Wi-Fi, password managers, and building stronger passphrases. The focus is on practical habits that reduce risk during a high-distraction season.

Resources

www.redoxengine.com

Past Podcast Episodes

https://redoxengine.com/solutions/platform-security

Have feedback or a topic suggestion? Submit it using this linked form.

Matt Mock mmock@redoxengine.com

"Third parties are a common entry point for cyber attacks. This is something you really want to make sure you have under control."

Notable Moments

[00:01:15] Third-party due diligence and security reviews.

[00:03:25] How regulatory requirements like HIPAA, PCI DSS, GDPR shape due diligence.

[00:05:28] Ongoing monitoring and review expectations.

[00:06:19] Physical access risks: background checks for on-site vendor personnel.

[00:07:44] Company's responsibility to vet vendors, especially as AI evolves.

[00:09:42] What documentation to request and how to evaluate red flags.

[00:12:27] Common red flags: incomplete training, high-severity pen-test findings, litigation.

[00:17:07] Dawn-Marie's "core four" steps for starting a third-party review program.

In this episode Dawn-Marie Dalsass, Compliance and Risk Management Director at Redox, discusses the truth behind third-party security. Our conversation exposes the hidden gaps organizations overlook and the simple first steps that make all the difference. Take a listen to hear common red flags, documentation to request, review frequency, financial and operational considerations, and the surprising basics every organization should verify before engaging a vendor.

Resources

www.redoxengine.com

Past Podcast Episodes

https://redoxengine.com/solutions/platform-security

Have feedback or a topic suggestion? Submit it using this linked form.

Matt Mock mmock@redoxengine.com

"Cybersecurity is a shared responsibility. One organization's defense can strengthen an entire community."

Notable Moments

00:01:00 – What an ISAC is and how it began

00:02:40 – How Health ISAC has grown globally

00:04:44 – Top threats facing healthcare today

00:09:25 – AI's role in both defense and attacks

00:13:45 – Impact of the Cybersecurity Information Sharing Act

00:18:03 – Why information sharing builds community trust

00:19:28 – Government collaboration challenges

00:23:49 – Final proactive cybersecurity advice

Errol Weiss, Chief Security Officer of Health ISAC, joins Jody Mayberry and Megan McCloud to explore how collaboration fuels cybersecurity resilience in healthcare. They discuss evolving threats like ransomware and AI-driven attacks, the importance of information-sharing networks, and how global cooperation keeps patient data safe.

Resources

www.redoxengine.com

Past Podcast Episodes

https://redoxengine.com/solutions/platform-security

Have feedback or a topic suggestion? Submit it using this linked form.

Matt Mock mmock@redoxengine.com

"We're not trying to avoid AI because of the scary security issues; we're trying to deploy it securely so we can unlock its true potential."

Notable Moments

01:09 – Rene Brandel on why he began hacking Y Combinator AI agents to find security gaps.

02:30 – How quickly AI systems can be breached without strong security oversight.

03:51 – The risk of cross-user data access and violating HIPAA's minimum necessary standard.

07:05 – Understanding permissions creep and why AI agents should be treated like individual users.

10:23 – How malicious actors can use code execution capabilities to manipulate AI systems.

13:44 – Sandboxing AI agents and why "don't roll your own security" is the new rule.

15:23 – Three areas of AI procurement to prioritize: authentication, capabilities, and integration.

18:11 – Why traditional pen tests miss AI-specific threats and the need for continuous testing.

21:21 – Meghan reflects on the speed of AI advancement and the importance of security champions.

Rene Brandel, CEO of Casco and a Y Combinator founder, shares his team's findings after testing AI agents from leading startups. He reveals how quickly AI systems can be exploited through prompt injection, permissions creep, and code execution flaws. Our conversation explores why healthcare must treat AI as a regulated entity, not a novelty. The episode dives into sandboxing solutions, authentication strategies, and how to build a new generation of AI security champions.

Resources

www.redoxengine.com

Past Podcast Episodes

https://redoxengine.com/solutions/platform-security

Have feedback or a topic suggestion? Submit it using this linked form.

Matt Mock mmock@redoxengine.com

"There aren't that many things that really are impossible. We just have to set aside boundaries and figure out how to make them real."

Episode Highlights

[02:53] Bob on managing creativity and building environments where big ideas thrive

[05:27] Disney embedding safety and security into their culture

[10:20] Brainstorming approach for tackling "impossible" challenges

[17:03] Balancing creativity and connection in remote work

[28:25] Cross-disciplinary collaboration sparking new ideas

[31:09] Tackling massive projects with limited resources

[46:48] Internal marketing to gain buy-in for creative and security initiatives

[50:00] Building a culture of information security

Former Walt Disney Imagineering President Bob Weis joins Jody, Meghan, and Matt to explore the surprising parallels between Imagineering and healthcare security. They discuss building a culture of safety, leveraging creativity through charrettes, sparking innovation in remote teams, and gaining buy-in for security as a shared responsibility.

Resources

www.redoxengine.com

Past Podcast Episodes

https://redoxengine.com/solutions/platform-security

Have feedback or a topic suggestion? Submit it using this linked form.

Matt Mock mmock@redoxengine.com

"If we can scale AI for better use, it can make the world a better place rather than just your daily personal life."

Notable Moments:

[01:27] Marina explains her AI project with indigenous communities in New Zealand

[03:26] Researching AI responses in abortion counseling

[07:43] Ten weeks in Namibia studying environmental science and conservation

[10:46] Using machine learning to study tree pod dynamics and herbivore consumption

[12:24] Expanding AI research into plant growth and climate variability

[13:25] Marina's perspective on scaling AI to make the world better

In this bonus episode, Jody and Meghan talk with Redox intern Marina Frayre about her innovative work at the intersection of AI, healthcare, and environmental science. From empowering indigenous communities in New Zealand to studying conservation in Namibia, Marina shares how AI can both protect ecosystems and influence patient care. She emphasizes the importance of cultural respect, accuracy, and using technology to create meaningful global impact.

Resources

www.redoxengine.com

Past Podcast Episodes

https://redoxengine.com/solutions/platform-security

Have feedback or a topic suggestion? Submit it using this linked form.

Matt Mock mmock@redoxengine.com