In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Matt Muller, Field CISO at Tines. With over a decade of experience at companies like Material Security, Coinbase, and Inflection, Matt’s got a strong track record of scaling SecOps teams, building threat detection and mitigation programs, and driving trust and safety initiatives. His knowledge impressed Thomas and the Tines team so much that they invited him to become the company's first Field CISO.

In this episode:

[02:41] The origins of Matt’s insatiable appetite for all things security

[04:05] Matt's path from business degree to Director of Trust at Inflection

[07:07] Scaling Coinbase’s security team from 3 to 50

[08:41] Addressing security’s long-standing communication problem

[10:55] Why “failure wasn’t an option” when managing risk at Coinbase

[14:14] What led Matt to a product role on Material Security’s phishing protection team

[17:31] Building what customers ask for vs. actually solving their problems

[21:14] How Matt stays up to date with industry developments

[22:35] Matt’s favorite use cases for security automation

[25:25] Matt’s go-to automation best practices

[27:33] Cutting through AI hype to drive meaningful adoption

[30:32] How Matt keeps himself honest as a Field CISO

[32:21] Why the traditional SOC is broken - and what needs to change

[35:30] The role of diverse hiring in building a resilient security strategy

[39:00] What security teams will look like in 2030

[41:35] How CISOs are evolving to become chief risk advisors to the business

[43:30] Connect with Matt

Where to find Matt:

• LinkedIn

• Building SecOps newsletter

Where to find Thomas Kinsella:

• LinkedIn

• Tines

Resources mentioned:

• Blue Team Con

• Material Security's Ryan Noon on the Future of Security Operations podcast

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Travis Howerton, Co-founder and CEO of RegScale. Travis began his security career with roles at government and regulated organizations, including the National Nuclear Security Administration and Oak Ridge National Laboratory, before being inspired by inefficiencies in compliance processes to co-found RegScale. As CEO of RegScale, he oversees their Continuous Controls Monitoring platform, which enables rapid GRC outcomes for organizations like Wiz, Keybank, and the US Department of Energy.

In this episode:

[02:15] How an interest in computer science led Travis to pursue a career in security

[03:20] Working in “the Major Leagues of cyber” at the National Nuclear Security Administration

[06:20] Moving fast in highly-regulated environments

[07:10] Securing the world’s fastest supercomputer at Oak Ridge National Laboratory

[10:30] Supporting digital transformation at enormous scale at Bechtel Corp

[15:15] How outdated compliance processes inspired Travis to co-found RegScale

[18:15] How RegScale acquired its first high-profile clients through "hustle and luck"

[19:20] The challenges of building the first version of RegScale

[21:15] Taking the pain out of compliance

[23:20] The biggest GRC roadblocks teams are facing right now

[25:10] Practical advice for moving the needle on your automation program

[27:33] Eliminating redundancy and inefficiency in federal compliance programs

[32:30] What’s next for RegScale

[33:45] The best applications of AI (and which decisions should "never" be made AI)

[35:45] Navigating regulatory uncertainty when it affects your whole business model

[38:40] What SecOps and compliance teams might look like in the future

[40:20] What the best compliance teams do to build rapport with security, IT and other business functions

[43:30] Why AI adoption is a risk-based conversation every organization should be having with their CISO

[46:00] Connect with Travis

Where to find Travis Howerton:

• LinkedIn

• RegScale

Where to find Thomas Kinsella:

• LinkedIn

• Tines

Resources mentioned:

• The CISO Society 2025 State of Continuous Control Monitoring Report

In this week’s episode of The Future of Security Operations podcast, Thomas is joined by Raymond Schippers. With 15 years of experience leading detection and response teams, Raymond is a seasoned security leader with high-impact roles at Check Point and Canva under his belt. He recently became co-founder of Huntabil.IT, a Melbourne-based company providing organizations with tailored advisory services to align with their unique threat landscapes and business goals.

In this episode:

[02:27] Landing his first security internship at Siemens as a teenager

[03:18] Reflecting on some state-sponsored attacks he encountered while working IR at Check Point

[04:45] Working with government partners to attribute and dismantle APTs

[08:10] The challenges of remediating threats for anonymized customers

[09:30] What inspired Raymond’s move from Check Point to Canva

[10:35] Building Canva’s blue team during the company’s phase of hypergrowth

[12:40] Rethinking the interview process to prioritize diversity in hiring

[18:02] Proven strategies for reducing burnout and alert fatigue in IR

[21:09] How Raymond's team used automation to scale security operations at Canva

[23:16] The state of AI in security - and its most effective use cases

[28:53] What inspired Raymond to found Huntabil.IT

[31:09] Raymond’s approach to working with non-profit organizations

[39:15] The under-reported threats that could reshape the future of SecOps

[44:06] Anticipating the biggest challenges security teams will face over the next five years

[46:42] Connect with Raymond

Where to find Raymond Schippers:

• LinkedIn

• Huntabil.IT

Where to find Thomas Kinsella:

• LinkedIn

• Tines

Resources mentioned:

• Cyber Threat Alliance

• Raymond's talk on avoiding team burnout at BSides Perth