FedRamp 20X Explained: What CSPs Must Know in 2025 with Travis Howerton

Quantifying cyber risk is now a necessity for businesses navigating the evolving threat landscape. In this episode of the Risk Management Show, we discussed why quantifying cyber risk is the new imperative for businesses. Our guest, Asdrúbal Pichardo, CEO of Squalify—a cyber risk quantification platform backed by Munich Reinsurance—shares how their top-down approach to cyber risk quantification is transforming the way companies prioritize cybersecurity investments and communicate with boards. We explored real-world examples, common pitfalls in cybersecurity investment, and how benchmarking cyber posture can elevate your strategy. If you’re a Chief Risk Officer, CISO, or CFO looking to align strategies and speak the same language about cyber security and risk management, this episode provides the insights you need. Plus, learn about Squalify’s CRQ readiness assessment tool and how it supports organizations in making informed decisions. Please check the Squalify’s CRQ Readiness Assessment https://squalify.fillout.com/t/5dGf2f8tmcus If you want to be our guest or suggest a guest, send your email to [email protected] with the subject line "Guest Proposal." 🌐 Join our community for even more insights: Online Community: https://globalriskcommunity.com/ LinkedIn Page: https://www.linkedin.com/company/globalrisk-community/ LinkedIn Group: https://www.linkedin.com/groups/3701313/ Academy platform: https://globalriskacademy.com/courses/

In this episode of the Risk Management Show, we dive into the critical topic of "AI Regulations: What Risk Managers Must Do Now." Join host Boris Agranovich and special guest Caspar Bullock, Director of Strategy at Axiom GRC, as they tackle the challenges and opportunities businesses face in navigating risk management, cybersecurity, and sustainability in today’s rapidly evolving landscape. We discuss the growing importance of monitoring AI developments, preparing for upcoming regulations like the EU AI Act, and setting clear internal policies to meet customer demands and legal requirements. Caspar shares his expert perspective on building organizational resilience, the ROI of compliance programs, and addressing third-party risks in a complex supply chain environment. Whether you're a Chief Risk Officer, a compliance professional, or a business leader, this conversation offers actionable insights to help you stay ahead of emerging trends. If you want to be our guest or suggest a guest, send your email to [email protected] with the subject line “Podcast Guest.” 🌐 Join our community for even more insights: Online Community: https://globalriskcommunity.com/ LinkedIn Page: https://www.linkedin.com/company/globalrisk-community/ LinkedIn Group: https://www.linkedin.com/groups/3701313/ Academy platform: https://globalriskacademy.com/courses/

In this episode of the Risk Management Show, we discussed the challenges and strategies for operationalizing AI securely and at scale. Our guest, Santosh Kaveti, Founder and CEO of ProArch, shared his expert insights on AI strategy, cybersecurity, and compliance. ProArch, a top Microsoft partner, specializes in bridging the gap between AI, cloud infrastructure, and security, making them a leader in helping enterprises implement AI effectively. We explored why many enterprises struggle with AI readiness, literacy, and data risks, and outlined the importance of understanding AI risks like data poisoning and prompt injection attacks. Santosh emphasized building robust data governance, implementing continuous monitoring, and maintaining human-in-the-loop approaches to ensure secure and compliant AI systems. He also shared practical frameworks for mitigating risks, ensuring compliance, and achieving transparency in AI-driven decisions. If you want to be our guest or suggest one, send your email to [email protected] with the subject line "Guest Proposal."  🌐 Join our community for even more insights: Online Community: https://globalriskcommunity.com/ LinkedIn Page: https://www.linkedin.com/company/globalrisk-community/ LinkedIn Group: https://www.linkedin.com/groups/3701313/ Academy platform: https://globalriskacademy.com/courses/

In this episode of GRC Chats, we explore "AI Risk Layers EXPLAINED: Models, Applications, Agents" with Walter Haydock, founder of StackAware and a leader in AI risk management and cybersecurity. Walter shares his expert insights on the three critical layers of AI risk—models, applications, and agents—and discusses how organizations can navigate these complexities. From the importance of data provenance at the model level to potential chain reactions in AI agents, this conversation is packed with actionable strategies for effective risk mitigation and governance. We discussed how businesses can implement AI policies, maintain a robust asset inventory, and assess risks to protect their operations from cybersecurity, privacy, and compliance challenges. Walter also highlights the growing role of AI in every industry and why proactive risk management is essential for sustainability and success. If you want to be our guest or suggest a guest, send your email to [email protected] with the subject line “Guest Proposal.” 🌐 Join our community for even more insights: Online Community: https://globalriskcommunity.com/ LinkedIn Page: https://www.linkedin.com/company/globalrisk-community/ LinkedIn Group: https://www.linkedin.com/groups/3701313/ Academy platform: https://globalriskacademy.com/courses/ 

Discover everything cloud service providers (CSPs) need to know about the FedRamp 20X pilot program and its transformative impact on Risk Management in 2025. In this episode of the Risk Management Show, Boris Agranovich, CEO of Global Risk Community, interviews Travis Howerton, Co-Founder and CEO at Regscale, a leading voice in Cyber Security and AI-driven solutions. Together, they explore how they streamlines authorization processes, enhances cloud security, and balances innovation with robust security standards. During the discussion, Travis shares insights on automating compliance through AI, addressing regulatory challenges, and creating opportunities for CSPs and federal agencies. Learn how innovations like compliance as code and automation are shaping the future of cloud security and sustainability. If you're a Chief Risk Officer or a professional in the cybersecurity space, this is a must-watch for actionable strategies and expert advice. If you want to be our guest or suggest a guest, send your email to [email protected] with the subject line "Guest Proposal." 🌐 Join our community for even more insights:  Online Community: https://globalriskcommunity.com/ LinkedIn Page: https://www.linkedin.com/company/globalrisk-community/ LinkedIn Group: https://www.linkedin.com/groups/3701313/ Academy platform: https://globalriskacademy.com/courses/  

In this episode of the Risk Management show podcast, we explore key insights from the 2025 Compliance Trends report with Ty Francis, Chief Advisory Officer at LRN Corporation. With over 20 years of experience in ethics and compliance, Ty shares groundbreaking findings from the annual Ethics and Compliance Program Effectiveness Report, revealing critical benchmarking gaps, generational divides, and new strategies for building resilient, high-impact compliance programs. We discuss actionable takeaways, including how high-impact programs leverage data analytics and automation to manage compliance effectively, the widening gap between senior leadership and middle management, and the role of generational attitudes in shaping workplace ethics. Ty also emphasizes the importance of empowering middle management, fostering organizational justice, and utilizing data-driven tools to allocate resources more efficiently. Whether you're a Chief Risk Officer or someone passionate about Risk Management, Cyber Security, and Sustainability, this conversation offers invaluable perspectives to strengthen your organization's ethical foundation. If you want to be our guest or suggest someone for the show, send your email to [email protected] with the subject line “Podcast Guest Proposal.”

In this episode of the Risk Management Show, we rethink credit risk with alternative data alongside Michele Tucci, co-founder and Chief Strategic Officer at Credolab. Michele shares his extensive global career journey, from working with Capital One Bank and Banca Intesa to driving innovation at CredoLab, a leader in leveraging behavioral biometrics and device metadata to revolutionize credit scoring. We discussed how Credolab's privacy-consented approach transforms smartphone data into actionable insights, enabling mainstream financial inclusion and enhancing risk assessment accuracy. Michele also tackled misconceptions about credit scoring, the challenges of financial inclusion, and the critical role of alternative data in addressing data asymmetry. Discover how behavioral patterns, from keystroke cadence to app usage, can predict creditworthiness while preserving privacy. If you want to be our guest or suggest someone, send your email to [email protected] with the subject line "Guest Proposal." 🌐 Join our community for even more insights: Online Community: https://globalriskcommunity.com/ LinkedIn Page: https://www.linkedin.com/company/globalrisk-community/ LinkedIn Group: https://www.linkedin.com/groups/3701313/ Academy platform: https://globalriskacademy.com/courses/

Discover the 6 Steps to Build True Cyber Resilience in 2025 with David White, President and Co-founder of Axio.  In this insightful episode of the Risk Management Show, we discussed actionable strategies to enhance cybersecurity fundamentals, prioritize risk investments, and foster a culture of resilience. David draws on decades of experience in cyber risk quantification and operational resilience to share how companies can prepare for and recover from major events like ransomware attacks. Learn why financial modeling is key to aligning cybersecurity with business risk management and how tabletop exercises can strengthen your organization’s preparedness. If you want to be our guest or suggest a speaker, send your email to [email protected] with the subject line “Guest Proposal.” 🌐 Join our community for even more insights: Online Community: https://globalriskcommunity.com/ LinkedIn Page: https://www.linkedin.com/company/globalrisk-community/ LinkedIn Group: https://www.linkedin.com/groups/3701313/ Academy platform: https://globalriskacademy.com/courses/

Executives are increasingly becoming top targets in the world of deep fake threats and AI-powered cyber security risks. In this episode, we explore why high-trust leaders, such as those in finance and legal roles, are especially vulnerable to these evolving threats. Our guest, Joshua McKenty, CEO of Polyguard and former Chief Cloud Architect at NASA, shares his expert insights into the rapid advancements of deep fake technology and the risks it poses to executives and organizations alike. We discussed real-world case studies, including a $25 million fraud in Hong Kong, the psychological tactics behind synthetic fraud attacks, and the urgent need for organizations to rethink risk management strategies. Joshua emphasizes proactive measures to defend against these threats, touching on critical habits for executives to adopt and why traditional training methods may no longer be sufficient. If you're passionate about cyber security, risk management, and sustainability, or if you're a Chief Risk Officer looking to stay ahead of emerging threats, this episode is packed with actionable insights and expert advice. If you want to be our guest or suggest a guest, send your email to [email protected] with the subject line: "Guest Proposal." 🌐 Join our community for even more insights: Online Community: https://globalriskcommunity.com/ LinkedIn Page: https://www.linkedin.com/company/globalrisk-community/ LinkedIn Group: https://www.linkedin.com/groups/3701313/ Academy platform: https://globalriskacademy.com/courses/

In this episode of Global Risk Community Chat, we discuss critical cybersecurity tips for risk managers to help you avoid devastating losses like $850,000 due to cyber threats. Mark Bassingthwaighte, National Risk Manager at ALPS Corporation, shares his 27+ years of expertise, focusing on protecting businesses from sophisticated cyberattacks, including business email compromise, wire fraud, and the impact of AI-driven scams. Mark highlights actionable strategies such as mandatory social engineering awareness training, out-of-band communication for verification, and securing home networks for hybrid work environments. Whether you're a risk manager, Chief Risk Officer, or simply looking to strengthen your business's cybersecurity, this episode is packed with practical advice to safeguard your organization. If you want to be our guest or suggest a guest, send your email to [email protected] with the subject line "Guest Proposal." 🌐 Join our community for even more insights: Online Community: https://globalriskcommunity.com/ LinkedIn Page: https://www.linkedin.com/company/globalrisk-community/ LinkedIn Group: https://www.linkedin.com/groups/3701313/ Academy platform: https://globalriskacademy.com/courses/