PodcastsEducaciónInfosecTrain

InfosecTrain

InfosecTrain
InfosecTrain
Último episodio

1565 episodios

  • InfosecTrain

    Al-Driven Identity Governance Explained | What's Next in 2026?

    09/07/2026 | 33 min
    In 2026, the biggest identity challenge won't be people - it will be AI agents, machines, and non-human identities. The security landscape is shifting rapidly as automated bots, API tokens, and service accounts become primary attack vectors for modern adversaries. In this forward-looking masterclass episode, InfosecTrain breaks down the expanding risks associated with unmanaged programmatic assets and analyzes why traditional, human-centric security models fail to protect them.
    The "course titled" SailPoint IdentityIQ Training Program offers an essential foundational framework for security architects racing to close these visibility gaps. We move beyond manual access review spreadsheets to explore automated lifecycle management engineered for the machine-to-machine era. Discover how to deploy intelligent security architectures to defend complex automated pipelines, establish clear human ownership over autonomous agents, and transition your business into a resilient Zero Trust posture.

    📘 What You’ll Learn:
    The 2026 Identity Landscape: Mapping the rapid expansion of non-human identities (NHIs) and understanding why they outnumber human accounts 10:1 in cloud-native organizations.

    AI vs. AI Defense: Deploying intelligent, machine-learning security analytics to monitor, detect, and isolate anomalous behaviors across autonomous systems in real time.

    Governing Automated Access: Establishing rigorous inventory, classification, and clear human accountability baselines for every running workload and service account.

    Next-Generation Lifecycle Management: Architecting the secure birth, continuous credential rotation, and prompt deprovisioning of machine identities without disrupting live production environments.

    Preventing Lateral Movement: Implementing proactive policy restrictions that block high-privilege service accounts created without verified governance approvals.

    🎧 Essential listening for security professionals, IAM architects, cloud engineers, and cybersecurity leaders preparing their infrastructure for the realities of autonomous enterprise workloads.
    Watch full episode here: https://www.youtube.com/watch?v=STMABBbQh_I
  • InfosecTrain

    AI Governance for CISOs: Decoding ISO 27001 vs. ISO 42001

    08/07/2026 | 39 min
    AI Governance Is No Longer Optional for CISOs. As artificial intelligence becomes deeply embedded in business operations, automated decision-making, and enterprise risk management, today's security leaders face a new challenge - not just securing data, but governing algorithmic models responsibly. In this episode of InfosecTrain TechTalks: Real World Decoded, host Payal Pawar sits down with Gaurav Sinha, a leading AI Governance and Cybersecurity Consultant, to explore how security executives can move beyond compliance checklists and build operational frameworks using global standards.

    The "course titled" ISO 42001 Lead Implementer Training serves as an indispensable blueprint for teams trying to draw clear boundaries between traditional IT security and algorithmic risk. While legacy frameworks excel at data confidentiality, they struggle with the fluid, non-deterministic behaviors unique to machine learning pipelines. We map out how to build dedicated AI risk registers, align controls with standard information security management systems, and translate technical AI vulnerabilities into business risk narratives that ensure courtroom and boardroom readiness.

    📘 What You’ll Learn:
    The New CISO Mandate: Unpacking why AI oversight has shifted from a data science experiment to an immediate, high-priority priority for corporate infosec.

    ISO 27001 vs. ISO 42001: A strategic comparison between managing generalized information security and building a dedicated AI Management System (AIMS).

    Algorithmic Risk Architecture: Practical guidance on constructing AI risk registers that specifically account for data bias, model drift, and prompt injection vectors.

    Operationalizing AI Governance: Seamlessly embedding AI-specific safety controls into your existing corporate workflows without strangling innovation.

    Boardroom Communication Strategies: Translating complex technical machine learning metrics into clear compliance and financial risk parameters for executive stakeholders.

    🎧 Essential listening for CISOs, CIOs, GRC professionals, and compliance experts looking to lead the next evolution of enterprise security architecture.
    Watch full episode here: https://www.youtube.com/watch?v=qe5NEStgJ6Q
  • InfosecTrain

    Crack CISSP in Your First Attempt in 2026

    04/07/2026 | 55 min
    Thinking like a security leader is the absolute secret to conquering the CISSP exam. The primary reason candidates struggle with the test is that they answer questions from a purely technical perspective instead of adopting a managerial mindset. This session is designed to shift your perspective and build the exact strategy needed for success.

    Passing the exam on your first attempt requires a structured approach that respects the Computerized Adaptive Testing mechanics and the 2026 content updates.

    The 4-Phase Roadmap to Success1. Establish a Baseline: Weeks 1-2Take a full length diagnostic practice test before studying. Identify your weakest areas among the eight domains so you can allocate your study hours efficiently.
    2. Master Core Domains: Weeks 3-10Dive deep into high weight areas like Security and Risk Management. Pay close attention to modern topics integrated across the domains, including cloud native architectures, zero trust frameworks, and generative AI risk governance.
    3. Adopt the Managerial Mindset: Weeks 11-12Practice shifting your focus from fixing technical problems to selecting answers that protect the business mission, satisfy regulatory compliance, and mitigate systemic enterprise risk.

    4. Simulate Exam Dynamics: Weeks 13-14Take adaptive style mock exams. Because the testing algorithm adjusts question difficulty based on your answers and does not allow you to return to previous items, practice pacing yourself carefully through scenario based questions.

    Crucial 2026 Rule: Technical knowledge is the floor, but business leadership is the ceiling. Always choose the option that fixes the root process over the one that simply patches the immediate technical bug.
    To fast-track your journey and gain the comprehensive mentorship needed to conquer the eight domains, exploring structured training is your best next step.
    For an extensive deeper dive into the exact domain changes, exam mechanics, and preparation paths, check out this comprehensive 2026 CISSP Exam Strategy Video Guide⁠ which highlights how recent experience waiver updates and new governance models alter your study path.
    Watch Full Episode here: https://www.youtube.com/watch?v=3QpAPEmMOhc
  • InfosecTrain

    Implementing an AI Management System: A Practical Roadmap

    03/07/2026 | 30 min
    AI success isn't just about innovation - it's about governance, accountability, and trust. As enterprises rapidly transition from testing machine learning models to deploying them across live production environments, unstructured experimentation must give way to a rigorous framework. In this foundational masterclass, InfosecTrain provides a step-by-step strategic roadmap for constructing an enterprise-grade Artificial Intelligence Management System (AIMS).

    The "course titled" ISO/IEC 42001:2023 Lead Auditor Training is an essential asset for professionals who want to lead these governance architectures. We pull back the curtain on how to systematically translate abstract ethical standards into concrete operational baselines. Learn how to navigate the core clauses of the international standard, establish solid accountability lines across data science teams, and build a scalable compliance program that protects your enterprise from model risk while accelerating business growth.

    📘 What You’ll Learn:
    Defining True AI Governance: Demystifying what it means to govern automated systems and understanding the commercial value of building consumer trust.

    Core Requirements Walkthrough: A comprehensive breakdown of the necessary structures, lifecycle controls, and continuous oversight tools mandated by an AIMS.

    The Implementation Roadmap: A logical, multi-phase action plan designed to guide your organization smoothly from isolated machine learning sandboxes to enterprise-wide compliance.

    Responsible AI Practices: Setting clear parameters around algorithmic transparency, explainability, data pedigree, and model monitoring.

    Preparing for the Audit: Keys to aligning internal validation controls with external international auditing requirements.

    🎧 Essential listening for compliance officers, GRC professionals, AI product leaders, and cybersecurity managers ready to establish bulletproof governance frameworks.

    Watch full epidose here: https://www.youtube.com/watch?v=KeUcqmoJEE0
  • InfosecTrain

    Thinking Like an Adversary Essential Skills for Modern Red Teaming

    02/07/2026 | 1 h 11 min
    Red teaming isn't about running tools - it's about thinking and operating like a real adversary. While standard vulnerability assessment tracks focus heavily on scanning known exploits, true offensive simulation demands a deep understanding of attacker psychology and stealth execution. In this comprehensive skills masterclass, InfosecTrain pulls back the curtain on what it truly takes to break into elite corporate adversary emulation roles.
    The "course titled" Red Team Offensive Security Training provides the tactical foundation necessary to execute advanced, full-scope security assessments without setting off enterprise blue team alarms. We break down the complete operational lifecycle from open-source intelligence gathering to achieving domain controller compromise. Discover how to move beyond static scripts, weaponize initial access vectors, maintain persistence, and leverage automated tools like MITRE Caldera to simulate sophisticated, state-sponsored cyber threats.

    📘 What You’ll Learn:
    The Red Teaming Framework: Understanding how sophisticated, multi-phased offensive operations differ structurally from traditional penetration tests.

    Advanced Intelligence & Access: Mastering technical reconnaissance and weaponization tactics to bypass perimeter controls and secure a corporate foothold.

    Persistence & Evasion Techniques: Establishing reliable command-and-control communication channels that remain completely invisible to modern SIEM monitoring.

    Domain Controller Compromise Scenarios: A technical deep dive into Active Directory architecture, privilege escalation paths, and internal lateral movement.

    Automated Adversary Emulation: An introductory look at configuring agents, grouping profiles, and scheduling autonomous threat behaviors inside the open-source MITRE Caldera sandbox.

    🎧 Essential listening for ethical hackers, penetration testers, SOC analysts, and security practitioners looking to master real-world offensive strategies.
    Watch full Episode here:
Más podcasts de Educación
Acerca de InfosecTrain
InfosecTrain is one of the finest Security and Technology Training and Consulting organization, focusing on a range of IT Security Trainings and Information Security Services. InfosecTrain was established in the year 2016 by a team of experienced and enthusiastic professionals, who have more than 15 years of industry experience. We provide professional training, certification & consulting services related to all areas of Information Technology and Cyber Security. Website: https://www.infosectrain.com
Sitio web del podcast

Escucha InfosecTrain, BBVA Aprendemos juntos y muchos más podcasts de todo el mundo con la aplicación de radio.net

Descarga la app gratuita: radio.net

  • Añadir radios y podcasts a favoritos
  • Transmisión por Wi-Fi y Bluetooth
  • Carplay & Android Auto compatible
  • Muchas otras funciones de la app