The Paramify Podcast

Today we had the honor to sit down with Brad Bartholomew, the Director of FedRAMP Compliance at Trellix, and a veteran in the cybersecurity field. With a rich history spanning Adobe to Palo Alto Networks, Brad brings invaluable insights into GRC, cloud security, and the evolving landscape of cybersecurity frameworks.
In this episode, we discuss everything from creating an ATO package in 3.5 hours to the challenges of FedRAMP and the origins of Paramify.
 
Learn more about Brad Bartholomew: https://www.linkedin.com/in/bradbartholomew7/
 
Learn more about Paramify: https://www.paramify.com/
 
 
 
 

Today we had the honor to sit down with Reade King, a seasoned professional whose dynamic career spans over 15 years, including roles in the Department of Defense, and the Utah Army National Guard, and is now involved in the fast-paced world of SaaS startups. Reade brings a unique blend of strategic relationship-building and resilience honed in high-pressure environments to his current role in Sales Development at Anonyome Labs, Inc.
In our conversation, we talk about everything from the "color of money" to fixing trucks. Perhaps the most interesting concept we discuss is the concept of the "Fatal Funnel" – a term that Reade learned throughout his military training. Reade masterfully draws parallels between this concept and his approach to sales, providing insights into how recognizing and navigating through the 'fatal funnels' in sales processes can lead to more successful outcomes.
Learn more about Reade King: 
Reade King's LinkedIn: https://www.linkedin.com/in/readeking/
Anonyome Labs: https://anonyome.com
 
Learn more about Paramify here: https://www.paramify.com/

Frank is a renowned expert in cybersecurity and Governance, Risk Management, and Compliance (GRC). As the Founder and CEO of GRC Knight, he has spearheaded the integration of advanced detection technologies with comprehensive security and privacy compliance consulting. His rich experience includes key roles at TrustCloud, Cognizant, and Schellman & Company. In Today's episode, we talk about everything from CMMC 2.0, to our love of pizza.
Learn more about Frank Kyazze here:
Frank Kyazze's LinkedIn: https://www.linkedin.com/in/grcknight/
GRC Knight's website: https://www.linkedin.com/company/grcknight/ GRC Knight's
CMMC white paper: https://44444846.fs1.hubspotusercontent-na1.net/hubfs/44444846/A%20CMMC%20Survival%20Guide%20for%20Companies.pdf
 
Learn more about Paramify here: https://www.paramify.com/

In today's episode, Kenny and Keaton talk with Josh Pugmire and Bryson Loughmiller. Both men are notable figures in cybersecurity, each boasting extensive careers marked by significant contributions to the field. Their expertise and experience have made them influential voices in cybersecurity circles.
Currently, they hold pivotal roles at Entrata, a leading technology company in the property management industry. Josh Pugmire serves as the Head of Compliance and Information Security, a role critical for ensuring that Entrata adheres to various cybersecurity standards and regulatory requirements. Josh is also a Board Member of SL|CISO a group that focuses on bringing the Utah InfoSec Community together and giving back to the next generation of Security Leadership and Practitioners.
In parallel Bryson Loughmiller occupies the position of Principal Platform Security Engineer, where he plays a key role in safeguarding Entrata's technology platforms against potential cybersecurity threats. Together, their work at Entrata exemplifies their commitment to maintaining robust cybersecurity frameworks and protecting sensitive information in a digitalized world.
Entrata's website: https://loom.ly/ZhLecww
 
Learn more about Paramify here: https://www.paramify.com/
SL|CISO's website: http://www.slciso.org
Josh Pugmire's LinkedIn: https://loom.ly/JcNW4VI
Bryson Loughmiller's LinkedIn: https://loom.ly/nBCdypc

In today's episode, we talk with Neal Schmidt, the Founder of ScreenDoor.ai, about everything from our favorite concerts to where we think the future of AI and recruiting is going.
 
Neal Schmidt’s LinkedIn https://www.linkedin.com/in/nealschmidt/overlay/about-this-profile/
 
Neal’s business: https://screendoor.ai/
 
Learn more about Paramify here: https://www.paramify.com/

Blake Entrekin is an experienced Security Compliance leader with a notable 21-year tenure in the Security and Technology field, complemented by a decade of expertise as a people manager. He is currently the Director of Security Compliance at HackerOne.
In this episode, we discuss FedRAMP, compliance, cybersecurity, and the importance of having a mentor.
Learn more about Blake Entrekin:
https://www.linkedin.com/in/blake-entrekin/
Blakes's blog post about the new NIST control around public disclosure programs: https://www.hackerone.com/security-compliance/nist-vdp-control
 
Learn more about Paramify here: https://www.paramify.com/

Bryce Kunz is a prominent Information Security Researcher and the Chief Security Officer (CSO) at UltraViolet Cyber. Renowned for his expertise in exploiting cloud environments, Bryce has a keen focus on critical systems like containers, orchestration systems, and web applications. His rich professional background spans across key agencies such as the NSA, DoD, DHS, and CBP, and extends into the tech industry with notable companies like Adobe. In his role at UltraViolet Cyber, Bryce combines his extensive experience in vulnerability research, penetration testing, and incident response to spearhead innovative cybersecurity strategies. His academic credentials are equally impressive, holding an MBA with a focus in Information Assurance (IA) from Idaho State University, a program recognized as a "Center of Excellence" by the NSA, backed by a full academic scholarship from the National Science Foundation (NSF). Bryce is also distinguished by his numerous certifications, including OSCP and CISSP, and is a recognized voice in the cybersecurity community, having spoken at prestigious conferences like BlackHat, DerbyCon, and BSidesLV.
Learn more about Bryce Kunz:
UltraVIolet Cyber: https://www.uvcyber.com/
 
Learn more about Paramify here: https://www.paramify.com/
Twitter: https://twitter.com/TweekFawkes
LinkedIn: https://www.linkedin.com/in/brycekunz/

In today's episode, we sit down with seasoned criminal defense attorney, Joshua Baron, to delve into his journey of transitioning his law practice from being heavily ad-dependent to thriving on referrals.
When the COVID-19 pandemic hit and courtrooms shuttered, Joshua was faced with the daunting task of keeping his practice afloat amidst dwindling ad returns. His narrative of adaptation from spending over $30,000 monthly on ads to building a sustainable referral-based business model is nothing short of inspiring.
Get Joshua Baron's Book "The Business of Criminal Law: How to Build a Criminal Defense Practice You and Your Clients Will Love" here: https://www.amazon.com/dp/1521853576/ref=tsm_1_fb_lk
Joshua Baron's LinkedIn: https://www.linkedin.com/in/joshuabaron/
Joshua Baron's News Letter:https://businessofcriminallaw.substack.com/
 
Learn more about Paramify here: https://www.paramify.com/
 

In this episode of The Paramify Podcast, Kenny Scott talks with Ryan Jamieson, founder of Knit Security, about moving beyond compliance to achieve robust security. They discuss the challenges posed by security questionnaires and share practical advice on how to build a solid security posture aligned with business operations. Ryan also sheds light on his approach at Knit Security to ensure a company's security measures are in tune with its core business processes. Tune in for an enlightening discussion on making security work in the real world.
Ryan Jamieson's LinkedIn: https://www.linkedin.com/in/ryanjamieson/
Knit Security: https://www.knitsec.com/
Learn more about Paramify here: https://www.paramify.com/
 

Charting a successful trajectory in information security isn't a straightforward task, and who better to shed light on this journey than Derek Espiritu? In this insightful episode of The Paramify Podcast, hosts Kenny Scott and Keaton Olson explore Derek's path into the world of cybersecurity. Derek shares his experiences from working with renowned companies like Labelbox, Adobe, Anglepoint, and Symantec. From his early days in the industry to the milestones he achieved along the way, Derek's candid narrative provides a unique blend of inspiration and practical insights.
Want to delve even deeper into Derek's story? Join him at SAINTCON 2023 in Provo, Utah on October 24th at 11:30 am, where he'll further discuss "Breaking Into Cyber Security." Witness firsthand the expertise he garnered from years in the field and the major players he collaborated with. https://www.saintcon.org/speakers/
Derek's LinkedIn: https://www.linkedin.com/in/derek-espiritu-1011a7110/