Welcome to the only raw and gritty podcast built for intelligence and security professionals!

In this episode of Unspoken Security, host AJ Nash sits down with Ken Bagnall, Founder and CEO at Silent Push. They explore how modern attackers spin up vast amounts of infrastructure and why traditional, reactive approaches to detection fall short. Ken explains how focusing on the origins and infrastructure of threats—rather than chasing endless indicators—lets defenders get ahead of attacks and avoid becoming patient zero.

Ken shares how the surge in automation and affordable cloud resources has shifted the balance of power, making it easier for cybercriminals to launch large-scale scams. He describes how automation, language models, and new attack methods are fueling rapid growth in targeted phishing and brand impersonation, especially in regions that haven’t faced these threats before. The conversation also dives into why defenders must keep pace with these changes, adapt processes, and question old habits.

AJ and Ken close by weighing the risks of active defense and the need for careful attribution. They highlight the global shift as countries tighten controls and rethink how to protect digital economies in a fast-moving threat landscape.

Data alone does not persuade. For data-driven leaders, learning to translate numbers into a compelling narrative is a critical skill. In this episode of Unspoken Security, host AJ Nash speaks with Salvatore Manzi, a leadership communications coach, about the strategies technical leaders can use to create influence. Salvatore explains why leaders must learn to make meaning over metrics to connect with teams, stakeholders, and customers.

Salvatore shares practical frameworks to improve communication. He introduces the "You then me" principle, which prioritizes acknowledging the other person’s view to build rapport. He also shows how using simple metaphors and a little appreciation can make complex data understandable. These techniques disarm a room before you need to correct someone or present a counter-argument, ensuring your message lands effectively.

The conversation also covers imposter syndrome and the unique communication hurdles women face in the tech industry. AJ and Salvatore discuss the power of authenticity and the need for allies who actively amplify other voices. They explore how simple shifts in body language and mindset can build the confidence needed to overcome these challenges and ensure your voice is heard.

In this episode of Unspoken Security, host AJ Nash welcomes Mark Freedman, Principal and CEO of Rebel Global Security, to discuss a major shift in the global threat landscape. The primary national security concern has moved from counter-terrorism to interstate strategic competition. This change requires a new security model, especially for the private sector.

Mark explains that companies are now actors on a geopolitical battlefield, facing sophisticated threats from nation-states. Yet, many organizations operate in silos. Legal teams track sanctions while cybersecurity teams react to technical threats. They often miss the strategic connection between the two, which creates significant vulnerabilities.

To close these gaps, AJ and Mark explore the need for an integrated intelligence function within businesses. They discuss how even a single empowered person, tasked with understanding the geopolitical environment, can connect various teams. This strategic view helps companies build a more resilient and proactive defense in a complex world.

In this episode of Unspoken Security, host AJ Nash speaks with Dr. Peter Garraghan, CEO and CTO of Mindgard. They discuss the real-world security risks of artificial intelligence.

Peter starts with a simple point: AI is just software, and software is easy to break. He urges businesses using AI to step back and truly understand its vulnerabilities. Peter draws parallels between the current AI boom and past technology cycles like cloud computing. While AI feels revolutionary, the security risks are not new. Threats like data poisoning and prompt injection are modern versions of classic cybersecurity problems. The danger is that AI's human-like interface makes it easy to anthropomorphize, causing users to overlook fundamental security flaws.

To manage these risks, Peter advises companies to treat AI like any other software. This means applying the same rigorous security controls, testing protocols, and incident response playbooks. Instead of creating a separate process for AI, organizations should find the gaps in their current security posture and update them. This practical approach helps businesses secure AI systems effectively.