The Cyber Business Podcast

Guest Introduction Zach Lewis serves as both CIO and CISO at the University of Health Sciences and Pharmacy in St. Louis, bringing nearly a decade of experience across engineering, systems administration, help desk leadership, and executive IT leadership. He oversees technology operations and cybersecurity for one of the oldest pharmacy institutions in the United States, balancing academic continuity, research integrity, and institutional resilience. Zach is also the author of the upcoming book Locked Up: Cybersecurity Threat Mitigation, Lessons from a Real World LockBit Ransomware Response, which documents a firsthand ransomware incident and the leadership decisions required to navigate it. His perspective blends technical depth with lived experience under real pressure. Here's a Glimpse of What You'll Learn: What actually happens inside an organization during a LockBit ransomware attack Why incident response planning looks very different in practice than on paper How leadership stress, decision making, and communication shape outcomes Why recovery and resilience matter more than the illusion of prevention How tabletop exercises help but still fail to predict real world chaos What CISOs should expect emotionally, operationally, and politically during an incident Why transparency and shared learning are still rare but critically needed How post incident investments and tooling decisions should be evaluated In This Episode Zach Lewis walks through the ransomware incident that ultimately inspired his book. The attack began with system outages that initially looked like aging infrastructure failures during a period of delayed hardware refreshes caused by supply chain issues. After briefly restoring systems, the environment collapsed again, revealing a ransomware note at the hypervisor level. By that point, core files had been encrypted, leaving little opportunity for traditional endpoint or EDR controls to intervene. Zach explains the rapid shift from disaster recovery to full incident response. External forensics teams, negotiators, cyber insurance, legal counsel, and federal authorities were brought in while the university worked to remain operational. Thanks to a SaaS first strategy adopted prior to the incident, students and faculty were largely unaffected, even as backend systems were rebuilt. Full recovery and remediation took nearly two months, with teams working long hours under extreme pressure. A central theme of the conversation is the human side of ransomware. Zach describes the stress placed on leadership, the emotional toll on staff, and the importance of remaining calm when others are overwhelmed. He emphasizes that CISOs are not hired to prevent every incident, but to respond, recover, and lead through uncertainty. Clear communication with executives, boards, and end users became just as important as technical recovery. Zach also discusses why he chose to write Locked Up. Ransomware incidents are often hidden due to legal and reputational concerns, leaving practitioners without real guidance. By openly documenting what happened, including mistakes and lessons learned, Zach aims to provide a practical framework for others who will inevitably face similar events. He closes with advice on incident response planning, out of band communication, backup testing, password manager access, and the value of pre established relationships with the FBI and CISA.

Guest Introduction Andrew DeBratto, Chief Information Security Officer at Hunton Andrews Kurth LLP, leads cybersecurity strategy for one of the world's top 100 law firms. With more than 25 years in IT and two decades in the legal sector, Andrew combines operational discipline with forward-thinking innovation. His leadership at Hunton Andrews Kurth emphasizes cybersecurity as both a client obligation and a business enabler. Guiding a global IT team of more than 90 professionals, he champions "operational excellence" as the foundation for secure innovation. His practical insights reveal how large legal organizations can maintain stability while exploring emerging technologies like AI, automation, and micro-segmentation. Here's a Glimpse of What You'll Learn: • Why operational excellence is the foundation of every successful IT department • How Hunton Andrews Kurth builds trust through proactive cybersecurity practices • The role of ethical AI use in the legal industry • Why attitude and aptitude outweigh certifications in IT hiring • How the firm applies micro-segmentation and zero trust principles effectively • Why lawyers must remain human-in-the-loop when using AI tools • How innovation and practicality coexist in modern law firms In This Episode: Andrew DeBratto shares an inside look at how Hunton Andrews Kurth balances cybersecurity, innovation, and productivity across its global operations. He explains that "keeping the lights on" through operational excellence creates the foundation for innovation. When systems run smoothly and attorneys can focus on their clients, IT earns the credibility to explore transformative projects like AI integration and advanced endpoint protection. Andrew dives into the realities of cybersecurity in the legal sector, where firms are prime targets for sophisticated threat actors. Hunton Andrews Kurth conducts regular penetration tests and tabletop exercises not for compliance, but for genuine improvement. "Find the flaws," Andrew insists, emphasizing that vulnerability detection drives resilience. His team uses a best-of-breed approach, prioritizing specialized tools that deliver depth of security over one-size-fits-all platforms. The discussion also explores AI's growing influence on legal practice. Andrew acknowledges its potential but insists that every AI implementation at the firm is bound by responsible-use training. Attorneys must complete ethical certification before using any generative AI platform. "You are still responsible for your work," he reminds listeners, underscoring that human judgment must remain central even as technology accelerates productivity. Later in the conversation, Andrew highlights the firm's AI strategy, which blends internal development on Microsoft Azure OpenAI with external best-of-breed tools. Rather than chasing every new platform, the firm uses a "buffet approach," allowing experimentation without overspending. AI, he notes, is still in its exploratory phase, and meaningful productivity gains will come only when the right tools align with specific workflows. On leadership, Andrew emphasizes hiring for attitude and aptitude. Technical skills can be taught, but curiosity, collaboration, and integrity are essential. His philosophy has built a team that is both technically capable and deeply aligned with the firm's mission of trust, innovation, and client service.

Guest Introduction Rao Tadepalli is the CEO and Founder of DigiTran, a digital transformation and AI advisory firm specializing in insurance and financial services. Previously the CIO of Slide Insurance, Rao has spent decades guiding insurers through modernization, core system evolution, cloud adoption, and AI driven process redesign. Today he helps carriers, agents, and insuretechs move from legacy workflows to a forward looking operating model that blends automation, human expertise, and strong governance. His background gives him a rare perspective that combines deep technical knowledge, board level thinking, and a practical grasp of the challenges faced by regulated industries. Here's a Glimpse of What You'll Learn How AI accelerates claims processing for insurers while preserving the human in the loop for complex cases Why AI is creating new job categories such as prompt engineering instead of simply eliminating roles How DigiTran guides carriers through digital transformation and modernization of core systems Why financial services require both safety mindset and compliance mindset at the leadership level How AI powered security tools reshape detection and response in a high threat environment Why layered security, policies, procedures, and end user training must work together How leadership perception of IT needs to shift from cost center to value creation team Why communication, visibility, and proactive reporting help CIOs gain influence across the business In This Episode Rao opens by explaining DigiTran's mission: helping insurance organizations evolve from legacy systems into modern, AI supported operating environments. He outlines why insurance is uniquely sensitive to modernization cycles given the regulatory landscape, the importance of claims accuracy, and the constant need for faster service for policyholders. Rao describes how AI shines in straightforward claims workflows, especially situations where outcomes are predictable and repeatable. At the same time, he emphasizes that high complexity claims still demand human involvement, empathy, and judgment. The conversation shifts to workforce evolution. Rao details how AI does not eliminate people, but pushes organizations to retrain and rethink skill development. He explains why prompt engineering is becoming a necessary capability for future professionals and shares how he created a promptathon that taught students how to approach prompts systematically. His lesson is simple and powerful: as technology changes, the workforce must adapt in ways that preserve value, not shrink it. Rao and Matthew then explore AI's growing influence on security. Rao highlights why traditional rule based approaches cannot keep up with sophisticated threat actors who use AI to enhance phishing, social engineering, and lateral movement. He explains why companies must deploy AI powered detection tools, implement strict procedures, and train end users repeatedly to close the weakest link. His examples include major cyber incidents impacting insurers and how downtime directly affects revenue and operational stability. Leadership is a key theme throughout the episode. Rao shares a story from his early career about how CEOs once viewed technology as simply the equipment department. This motivated him to change leadership perception and demonstrate IT's strategic value. His advice to CIOs and CISOs is clear: communicate wins, translate technical work into business outcomes, engage executives proactively, and shape organizational safety culture. Technology leaders must speak the language of the business and present themselves as contributors to revenue, efficiency, and protection. The episode concludes with Rao's forward looking vision for the future of programming and AI. He describes his concept of NTH Generation Programming, a shift toward natural language interfaces that eliminate the need for traditional coding structures. For Rao, this is not an evolution but a...

Guest Introduction: CJ Covell is the Chief Information Officer at Everlast Roofing, a family owned American manufacturer specializing in metal building components used in residential, commercial, industrial, and agricultural construction. Since its founding in 1996, Everlast Roofing has expanded across multiple states, producing metal roofing and siding that power everything from pole barns to modern residential builds. CJ grew up inside the company, often learning technology alongside its evolution, and eventually developed a leadership style that blends hands on understanding with strategic direction. Today, he oversees technology, systems, process improvement, and digital transformation across a fast growing manufacturing footprint. Here's a Glimpse of What You'll Learn: How Everlast Roofing scaled from a small family business to a multi state manufacturer Why CJ believes technology should serve as a force multiplier for human ability How AI is transforming warehouse operations, logistics, and ERP workflows Why understanding the user experience is the foundation of great system design How Everlast used ChatGPT and Cursor to build a production ready warehouse system in weeks Why communication tools like Zoom and good audio equipment are essential for trust and connection How strong vendor relationships affect long term technology outcomes Why future leaders must continually experiment with AI to avoid falling behind In This Episode: CJ Covell shares the origin story of Everlast Roofing and explains how a family business adopted technology from the earliest stages of the internet. Many longtime employees received their first email address through Everlast, which created a unique challenge as the company transitioned from simple office servers to modern systems requiring structured access control and disciplined IT strategy. CJ reflects on growing up inside the organization, helping solve computer issues as a child, and watching technology become a business critical function. A major theme of this episode is the acceleration of AI and its ability to amplify human capability. CJ describes Everlast's challenge of managing a massive coil warehouse with thousands of steel coils and new employees lacking historical knowledge. Instead of hiring outside consultants or purchasing a costly logistics system, CJ and his team used ChatGPT to generate system specifications, ask context building questions, and outline a custom warehouse solution. Within three weeks, his team built a working application using Cursor that now allows any employee with a phone to find coils, scan barcodes, update information, and perform tasks with confidence. What would have taken six months to a year with traditional consulting was completed internally with greater accuracy and far lower cost. CJ also discusses the importance of deep user empathy. He spent days performing warehouse tasks himself to understand friction points and workflow issues. By capturing every moment of friction and turning it into actionable design requirements, the team created a solution that improves decision making and eliminates guesswork. CJ emphasizes that most people do not make mistakes intentionally; they simply lack the right information at the right time. Technology becomes transformative when it removes barriers rather than creating new ones. The conversation shifts toward communication and the role technology plays in building connection. CJ explains why tools like Zoom outperform other platforms and how simple investments in lighting, microphones, and camera placement create human centered virtual interactions. He even uses a teleprompter setup so his eyes align directly with the viewer, creating natural eye contact and improving trust. CJ points out that companies often resist small investments in communication technology despite spending thousands on travel for a single meeting. He argues that communication quality is the modern equivalent of...

Guest Introduction Lemon Williams serves as the Chief Information Security Officer at Pine Gate Renewables, one of the nation's leading utility scale solar power developers and operators. With a background spanning Y2K era infrastructure, consulting, critical asset protection, and modern cybersecurity leadership, Lemon brings a rare blend of technical depth and operational awareness. He oversees both security and IT operations for a rapidly growing renewable energy organization that manages solar plants across 33 states. His experience navigating regulatory pressure, data concentration risks, operational resiliency, and AI enabled security tools gives him a comprehensive perspective on what security looks like in the evolving energy sector. Here's a Glimpse of What You'll Learn Why renewable energy companies face unique risks tied to data concentration and flat organizational structures How combining IT operations and security leads to a resiliency focused model instead of a reactive cybersecurity model Why mid sized companies must treat every user as part of the security function How AI enabled tools can automate micro level adjustments and strengthen security posture Why data sharing with third parties expands breach exposure even if your own system remains uncompromised How to build better relationships with users through education instead of enforcement Why role based access control must evolve when employees wear multiple hats How the CISO role is shifting toward business partnership, internal consulting, and revenue protection In This Episode Lemon Williams explains why Pine Gate Renewables carries the same responsibilities as major utilities despite having a fraction of the staff. With a lean structure and flat teams, the company must carefully manage privilege, role combinations, and data concentration. Lemon outlines how a single compromised account in a mid sized organization can have wider consequences than in a highly compartmentalized enterprise, which creates the need for a more deliberate approach to access control. A major theme of the conversation is the convergence of security and IT operations. Lemon shares how his teams merged into a single organization focused on resiliency rather than traditional cybersecurity boundaries. He explains that every role touching technology inevitably touches security, and that the organization functions better when analysts, sysadmins, and support staff think through the same lens. This shift allows Pine Gate Renewables to prevent issues earlier and support smooth operations even when incidents occur. Lemon also dives deep into the challenges of data sharing across partners, vendors, legal teams, compliance groups, and internal departments. He describes how companies often underestimate how much sensitive information flows through routine work and why a third party breach can expose years of shared data. His team spends significant time understanding how information moves, what truly needs to be shared, and how to reduce unnecessary exposure through redaction, alternative delivery channels, and better automation. Education and partnership drive much of Lemon's security philosophy. Instead of playing the role that staff fear, he and his team focus on being approachable problem solvers who embed themselves with operational groups. By explaining concepts like multifactor authentication, encryption, and role based controls in simple terms, they build trust and encourage employees to reach out early. This shift toward internal consulting has increased security's credibility and positioned the team as collaborators rather than blockers. The second half of the episode explores AI enabled security tools that can detect unusual behavior, adjust access in real time, and monitor user patterns. Lemon sees significant promise in these systems, especially in environments with limited staffing. Tools that make thousands of micro adjustments per minute give teams more...

Guest Introduction Mark Bentsen serves as the Chief Information Officer at CellGate Access Control Systems and is the Co Founder of Secure IVAI, an artificial intelligence managed service provider. His career includes decades of experience in logistics, banking software, healthcare technology, and security engineering. Mark spent ten years at FedEx in technology roles before transitioning into software development, AI integration, and cybersecurity work across multiple industries. His combined background in physical security, AI adoption, and enterprise software gives him a unique perspective on how organizations can secure remote properties, implement AI safely, and prepare for the next generation of intelligent systems. Today, Mark leads technology strategy at CellGate while supporting clients through Secure IVAI as they adopt AI in a practical, scalable, and secure way. Here's a Glimpse of What You'll Learn How CellGate provides full stack access control using hardware, software, and cloud managed systems Why cellular to cellular failover is one of the hardest engineering challenges in security devices How Secure IVAI helps small and medium businesses adopt AI safely and securely Why many businesses feel overwhelmed when choosing where to begin with AI How Mark uses frontier models like Claude to talk directly to years of operational data Why verifying AI outputs is essential for trust and long term adoption How organizations can evaluate emerging AI products in a crowded market What the next phase of AI looks like as agentic systems accelerate In This Episode Mark Bentsen explains how CellGate solves one of the biggest problems in physical security: providing reliable access control in places where wired connections do not exist. CellGate devices operate in remote ranches, oil fields, and rural properties, relying entirely on cellular networks. Mark describes why switching between carriers is not as simple as choosing the strongest signal at any moment and why true cellular failover requires sophisticated engineering that most competitors have not mastered. Mark also shares the origin of Secure IVAI, a managed service provider he co founded with a longtime friend who served as a chief information security officer. Their goal was to help businesses adopt AI responsibly, building real world solutions rather than theoretical prototypes. Mark explains how early reactions to AI ranged from skepticism to fear and why most companies struggled with one foundational question: where do we start. His work focuses on giving businesses a safe and structured entry point into AI adoption. The conversation expands into how AI can be used today to query years of company data across tools like Fabric, Salesforce, and Jira. Mark describes how he asks natural language questions of millions of records and then verifies those results directly in the company's internal systems. He outlines how businesses can evaluate new AI products, why they should understand what a model was trained on, and how to test for reliability. He also explains why specialized models can outperform general purpose tools when they are trained on narrow, domain specific data. Mark closes by discussing the future of agentic AI. True agents, he notes, are not simple workflow tools but systems capable of understanding goals, coordinating tasks, and making decisions with minimal oversight. With AI capabilities doubling roughly every seven months, Mark expects meaningful agentic systems to emerge within months, not years. He also emphasizes why professionals must develop horizontal awareness, stepping outside their own silo to drive business impact across the entire organization.

Guest Introduction Glenn Rumfellow serves as the Chief Information Officer at Window World of Baton Rouge, part of the largest Window World operation in the United States. His career began with early exposure to programming on the TRS 80 and Apple II, followed by roles in mainframe programming, technical support, and extensive development work in Microsoft Access, SQL, and enterprise document imaging. Glenn joined Window World first as a consultant, then as CIO, and now leads the organization's technology strategy across four major markets. His work includes modernizing legacy systems, guiding cloud migrations, deploying AI driven tools, and supporting operational efficiency in a business that completes tens of thousands of home installations each year. Here's a Glimpse of What You'll Learn How Glenn transitioned from early BASIC and Pascal programming into enterprise technology leadership Why Window World is modernizing a long standing Microsoft Access CRM and preparing for an Azure migration How data accuracy, reporting, and automation support a business completing tens of thousands of installations How AI powered tools like Samsara and Reila support driver safety, coaching, and sales performance How Glenn built a natural language query interface using an LLM to help executives access data Why operational scale requires strong APIs, data structures, and continuous reporting discipline How Window World uses analytics to measure installers, sales reps, regions, and marketing sources In This Episode Glenn Rumfellow shares how he went from tinkering with early computers to leading technology for the largest Window World operations in the country. His background across mainframe systems, enterprise imaging platforms, and complex Access and SQL applications shaped his approach to designing reliable systems that scale with the business. He explains how a long standing Access based CRM supported the company for nearly two decades and outlines the ongoing transition into a modern web application backed by SQL and Azure services. Glenn describes the level of data movement, automation, and reporting required when a company handles tens of thousands of installations each year. API integrations, structured reporting, and database mail have become essential to keeping the operation efficient and accountable. Glenn also highlights how AI is already embedded in their business. The team uses Samsara for real time driver safety alerts and video capture, and they recently adopted Reila to improve sales performance through coaching and analysis. In the IT department, AI tools assist with coding, documentation, and product research. Glenn even built a prototype LLM powered query tool so executives can access operational data through natural language. He also shares how the team evaluates AI call agents and considers long term opportunities for automation as the technology becomes more cost effective.

Guest Introduction: Karly Burke serves as the Chief Information Officer at Zinkerz, a growing education technology company that has transformed from a simple mobile test prep platform into a full ecosystem for academic support, counseling, and intensive SAT and AP preparation. She entered the organization as a freelancer creating math content and gradually expanded her role through a combination of technical curiosity, instructional leadership, and a deep understanding of student performance data. Today she guides Zinkerz through major pivots in technology, student analytics, adaptive testing preparation, and program expansion while helping the company scale both its digital tools and human centered education model. Her background as a math educator, curriculum designer, and program architect gives her a unique viewpoint on how technology supports real learning and how personalization must remain central in online education. Here's a Glimpse of What You'll Learn: How Zinkerz transitioned from a fully automated SAT prep app to a hybrid education model centered on human instruction Why the combination of automation and personalization creates stronger outcomes for students How Zinkerz measures student performance and uses adaptive data to drive curriculum decisions What parents should understand about the return of SAT requirements across top universities The structure and philosophy behind Zinkerz counseling programs How Zinkerz summer camps deliver high impact SAT score increases Why Karly's unique path from teacher to CIO shapes her leadership style How Zinkerz continues to innovate its platform to support educators and students worldwide In This Episode: Karly Burke details how Zinkerz evolved from a mobile only test prep platform into a multifaceted academic support system that blends technology with personalized instruction. She discusses the company's early attempt to automate SAT preparation entirely and why the team realized that students needed far more interaction with educators. This insight sparked the company's major shift toward online classes, counseling, and immersive summer programs. She explains how Zinkerz gathers and analyzes student data to identify trends, pinpoint strengths and weaknesses, and deliver realistic adaptive testing that mirrors the current digital SAT experience. The conversation highlights the growing importance of tracking attendance, homework consistency, question level analytics, and difficulty patterns to inform instruction in real time. Karly also provides clarity on the national shift back toward SAT requirements. She outlines how many top universities, including Ivy League institutions, are reintroducing standardized test expectations and how families should approach exam planning. She breaks down the Zinkerz counseling model, which avoids a la carte programs in favor of full relational guidance built over several years. The final section explores Karly's personal story. She shares her path from marketing to education, her eight year teaching career, and the unexpected moment when a former student introduced her to Zinkerz. Her progression from freelance math question writer to CIO is presented with humility and authenticity. It is a clear example of how curiosity, initiative, and a willingness to solve problems create opportunities for advancement within a growing company.

Guest Introduction Yuriy Demidko is the Chief Information Officer at DP Fox Ventures, a Michigan-based organization with operations in automotive, powersports, real estate, hospitality, and sports entertainment. The company's largest division, Fox Motors, is one of the 50 largest automotive dealership groups in the country. Yuriy leads technology strategy across these diverse business units with a focus on data integrity, modernization, and applying AI in ways that create value without adding complexity. Here's a Glimpse of What You'll Learn Why clean and consistent data is essential for AI to work How DP Fox Ventures uses AI to improve customer engagement How automation helps identify hidden business trends Why AI will reshape early career paths in technology How leadership and human insight remain central to AI-driven organizations In This Episode Yuriy Demidko explains how data quality has become the foundation for every major initiative at DP Fox Ventures. He notes that automotive organizations generate huge amounts of information, yet much of it is inconsistent or unreliable. This creates a major barrier when companies try to adopt AI. "Garbage in, garbage out," he says, emphasizing that AI cannot fix bad data, it only produces a more polished version of the same errors. His team is addressing this by consolidating data into a central lake and improving data hygiene across all stores and business units. He then highlights how AI is transforming customer engagement. Large language models can respond to inquiries after hours, assist with vehicle research, and hand off conversations to sales staff when the customer is ready to move forward. This creates continuous engagement and helps convert leads that would otherwise be missed. Yuriy also describes how AI tools are being used behind the scenes to analyze spending patterns, uncover inefficiencies, and highlight trends that would take humans far longer to detect. One example involved an automated system identifying a significant increase in snow removal costs, giving leadership a chance to renegotiate contracts and improve margins. Finally, Yuriy speaks about the shifting nature of careers in technology. AI is reducing the amount of entry-level technical work, which will push new professionals to gain stronger business understanding and pursue more interdisciplinary roles. He views this as an opportunity for innovation rather than a threat. Even as AI continues to expand, he stresses the importance of human oversight. "Every recommendation still needs to pass the sniff test," he says, underscoring that strategy, ethics, and judgment cannot be automated.

Guest Introduction Dr. Ken Knapton is the Chief Information Officer at Win Brands, the parent company of Costa Vida Fresh Mexican Grill and FatCats Entertainment. With more than 30 years of experience in technology strategy and digital transformation, Ken was hired to bring together two very different brands under a single IT vision. Costa Vida operates nearly 100 fast-casual Mexican restaurants, while FatCats runs large family entertainment centers that include bowling, arcades, mini golf, and cinemas. At Win Brands, Ken's goal is to align the technology infrastructure across both companies to create operational efficiency and shared services while preserving what makes each brand unique. His leadership focuses on connecting systems, improving data management, and implementing innovation that drives measurable growth across the organization. Here's a Glimpse of What You'll Learn How Win Brands connects Costa Vida and FatCats under one IT strategy Why identifying similarities between distinct businesses creates efficiency How consolidating networks and MSPs builds stronger operational control The importance of defining, measuring, and managing technical debt How clean, unified data supports successful AI implementation What "tech debt leverage" means for executive decision-making Why machine bias requires human oversight in AI-driven environments How to turn IT into a proactive, strategic part of business leadership In This Episode Dr. Ken Knapton explains what it takes to merge the IT environments of two completely different businesses, Costa Vida and FatCats Entertainment, under one parent organization, Win Brands. Each company had its own systems, vendors, and operational culture, which made integration complex. Ken began by identifying shared priorities such as Microsoft 365 consolidation and finance alignment. "They each had different MSPs," he recalls. "So we chose one and started migrating everything to a shared network." His goal was to eliminate duplication, standardize systems, and create a stronger foundation for both brands to grow together. One of the most valuable lessons in the conversation is Ken's approach to technical debt, the silent barrier that limits innovation. He defines it as anything within your systems that prevents progress toward business goals. Drawing on insights from his book Unveiling Tech Debt, Ken introduces a structured way to measure and manage it. "You can't improve what you can't measure," he explains. "So I created a model that looks at how stable, sustainable, and supportable each technology is." This metric-driven approach helps business leaders quantify their risks and make informed decisions about modernization. Ken also explores how AI and data quality are deeply connected. "One of the biggest challenges with implementing AI is that most companies don't have clean data," he says. Poor data quality often becomes a hidden form of technical debt, undermining the reliability of insights and predictions. For Win Brands, AI tools are being used for operations such as staff scheduling, order accuracy, and customer experience analytics. Even so, Ken emphasizes that AI should always complement human judgment. "Everything that comes out of AI still has to pass the sniff test," he says. "We should not make business decisions solely based on what AI tells us." The episode ends with practical guidance for IT leaders. Ken encourages them to document their systems, measure their risks, and remember that technology is only as effective as the people who use it. His work at Win Brands demonstrates how two vastly different companies can share one digital strategy built on structure, clarity, and accountability.

Guest Introduction Brianne Bustos is the Chief Information Officer at CCMC, a large-scale property management company that oversees lifestyle communities across the United States. With more than 250 communities under CCMC's management, some reaching 20,000 homes, Brianne leads modernization, cybersecurity, and IT initiatives that improve efficiency and resident experience. Since joining CCMC in early 2025, she has focused on upgrading the company's technology stack, improving accessibility for residents, and ensuring that systems align with the digital expectations of modern communities. Her leadership combines technical skill with empathy and a strong belief that technology should make people's lives easier, not more complicated. Here's a Glimpse of What You'll Learn How CCMC modernizes technology for large-scale property management Why cybersecurity is essential even without compliance mandates How nonprofit HOA budgets impact IT decision-making The role of private equity in driving modernization and innovation How change management helps staff adapt to new technologies Why more women in technology leadership benefits every organization How early encouragement shapes girls' interest in STEM and IT In This Episode Brianne Bustos provides an inside look at how CCMC is reimagining technology for property management. As CIO, she oversees systems that support communities operating at the scale of small cities. "Every single HOA is a nonprofit," she explains. "So we are asked to do a whole lot with not a lot." Her focus is on replacing outdated systems, improving digital access, and ensuring residents have a seamless experience when handling daily tasks such as paying bills or communicating with management. Cybersecurity is also a major focus for Brianne. While CCMC is not legally required to meet standards like HIPAA or PCI compliance, she understands that trust is one of the company's greatest assets. "The reputational damage that we would sustain if we were to have a breach, even if nothing got out, is huge," she says. Her approach prioritizes prevention, simulation exercises, and executive buy-in to prepare for real-world scenarios such as ransomware attacks. She emphasizes that security planning is not just an IT concern but an operational responsibility for the entire organization. Beyond technology, Brianne's journey highlights how representation and inclusion drive stronger leadership. Having spent years working in male-dominated industries such as oil and gas, she has seen how women bring valuable skills to technical roles. "Our brains are kind of built for this," she explains, describing how women's ability to multitask and problem-solve contributes to success in IT. Now part of an executive team with a female CEO, CFO, and president, she takes pride in helping create leadership environments where women can thrive. Brianne's dedication to empowerment extends outside the workplace through her work with the Milan Foundation, a nonprofit that supports education for girls in rural India and Uganda. "Nobody told me I could," she says. "So now I tell other women and girls they can, whether that's in IT, sports, or anything they love." Her story captures the spirit of modern leadership: blending innovation with compassion and using technology to uplift people and communities.

Guest Introduction James Brookens is the Chief Information Officer at The Peterson Cheese Company, a specialty food importer and distributor that partners with retailers and manufacturers across the United States. With two decades of experience at the company, James has been responsible for implementing and overseeing every major technology initiative across its operations. His background combines deep technical knowledge with a strong focus on people and process, shaping his belief that successful digital transformation depends as much on leadership and empathy as it does on innovation. At Peterson Cheese, James continues to lead with a people-first approach, helping employees adapt to emerging technologies while ensuring efficiency and collaboration remain central to the company's culture. Here's a Glimpse of What You'll Learn How Peterson Cheese uses generative AI to streamline sales operations Why change management can be more challenging than new technology The importance of open communication during digital transitions How to reduce fear and build trust around automation and AI adoption Leadership lessons on promoting and mentoring technical talent The value of empowering staff to work smarter with technology Why human connection remains essential in an automated world In This Episode James Brookens reflects on twenty years of transformation at The Peterson Cheese Company, where he helped guide the organization from early technology adoption to the integration of artificial intelligence. He shares how his team built a GenAI-powered chatbot that helps sales representatives instantly generate detailed product spec sheets from a database of over 5,000 items. "It strictly uses RAG, so there are zero hallucinations," he explains, emphasizing the importance of accuracy when applying AI in a food distribution environment. While the technology has been a success, James highlights that implementing change is often more about people than software. "The technology side is so much easier than the people side," he says, discussing how he works to educate staff, encourage adoption, and maintain engagement. His leadership approach centers on understanding and listening to employees, ensuring they view AI as a tool that empowers them rather than a threat to their roles. James also speaks about leadership development and mentorship within technology teams. He believes managers have a responsibility to help team members succeed after a promotion. "If somebody is floundering and they're not being successful in the role you put them in, that's on you," he says. For James, leadership means patience, guidance, and a willingness to invest time in others' growth. He concludes by reminding listeners that technology should always serve people. "At the end of the day, we are all just people. We're not going to be replaced by a team of robots. We do matter. We are important." His words capture the balance between innovation and humanity that defines his leadership philosophy.

Guest Introduction Jimi Michel, Chief Information Officer at Island Health Care, leads technology strategy for one of Massachusetts' most community-focused healthcare organizations. Based on Martha's Vineyard, Jimi oversees a lean IT team supporting clinical operations, cybersecurity, and long-term innovation for over sixty employees. With more than fifteen years in digital health, his leadership blends technical insight with compassion for patient-centered care. Jimi's approach to AI adoption emphasizes safety, ethics, and practicality, ensuring technology enhances clinical work without compromising trust. Here's a Glimpse of What You'll Learn Why healthcare AI must be adopted slowly and thoughtfully How Island Health Care balances innovation with patient safety The lessons from past digital health transitions and what they teach us about AI How "crawl, walk, run" applies to responsible technology adoption Why adversarial testing and human oversight are essential in AI evaluation How smaller healthcare organizations can stretch resources through automation The importance of involving clinicians and patients in technology decisions In This Episode Jimi Michel shares how Island Health Care approaches technology with both curiosity and caution. Leading a small but capable IT team, he focuses on building a strong foundation before adopting any new tool. Data security, workflow optimization, and user experience always come first. This approach ensures that when new technology is introduced, it supports patient care rather than creating additional risks. Jimi recalls the early 2010s when healthcare systems rushed to adopt electronic health records. Those transitions were often driven by financial incentives rather than careful design, leaving many clinicians frustrated and disconnected from the process. Today, he takes a different approach. By involving staff in decision-making, his team ensures that technology enhances their work instead of adding unnecessary complexity. "We have to be thoughtful," he explains, stressing that every step toward innovation must protect patient data and maintain privacy. He describes his "crawl, walk, run" strategy for adopting AI. Island Health Care is currently in the "crawl" phase, testing tools such as Microsoft Copilot and Open Evidence to automate small, repetitive tasks. Over time, these systems will help streamline administrative work, identify trends, and support clinical decisions. Jimi emphasizes that AI should enhance human ability rather than replace it. His focus is on freeing up time for clinicians so they can focus on what truly matters: providing excellent patient care. The discussion also explores how to build trust among staff. Jimi notes that while some clinicians are eager to explore AI's potential, others remain cautious, particularly when dealing with sensitive health data. As CIO, his goal is to foster understanding, encourage collaboration, and ensure that every new tool aligns with Island Health Care's mission of delivering compassionate and accessible healthcare.

Guest Introduction Dr. Sergio Sanchez, CIO and CSO at Coleman Health Services, returns to The Cyber Business Podcast for his second appearance to explore the growing relationship between artificial intelligence, cybersecurity, and human ethics. As a returning guest and the host of Behind the Digital Curtain, Sergio combines deep technical knowledge with a thoughtful look at how technology reflects human values. He describes AI as a tool still in its infancy, capable of shaping society for good or harm depending on how it is taught and guided. With extensive experience supporting healthcare and nonprofit organizations, Sergio focuses on the need for ethical oversight, user education, and forward-thinking leadership as AI becomes a defining force in global cybersecurity. Here's a Glimpse of What You'll Learn How AI development reflects humanity’s moral choices and direction Why responsible teaching and regulation must evolve alongside technology The dangers of unfiltered AI models being used for cyberattacks Why empathy and human communication are vital in an AI-driven world How automation is changing jobs and educational priorities The growing need for awareness and ethical responsibility in cybersecurity Why adaptability is essential in every modern IT role In This Episode Dr. Sergio Sanchez returns to The Cyber Business Podcast for an in-depth discussion about AI, ethics, and the human impact of rapid technological change. He opens with a vivid comparison between AI and Superman, explaining that artificial intelligence, like the young superhero, depends entirely on how it is raised. If it is guided with moral intent, it can improve lives. If it is misused, it can quickly become destructive. Sergio warns that AI’s growth has reached an exponential stage, developing faster than governments can regulate it. He describes how cybercriminals are already using AI tools to automate scams and phishing campaigns, making attacks more sophisticated and harder to detect. His insights point to the urgent need for lawmakers, technologists, and educators to collaborate on setting clear boundaries before the technology grows beyond human control. Throughout the conversation, Sergio draws parallels between the Industrial Revolution and today’s AI revolution. He believes that just as machines transformed manual labor in the past, AI will reshape mental and creative work today. Some roles will disappear, but new ones will emerge for those willing to adapt. His analogy of early humans discovering fire captures this perfectly: those who feared progress were left behind, while those who learned to control it advanced society. The episode concludes with a reflection on generational change. Sergio highlights how younger generations are learning to balance digital life with real-world connection, focusing on creativity, wellness, and human relationships. He finds hope in their approach, seeing it as proof that humanity can evolve alongside technology rather than be consumed by it.

Guest Introduction Eric Lynner, Chief Information Officer at First Independent Bank in Minnesota, brings more than 15 years of experience in IT leadership, customer service, and infrastructure management. Starting his career on the help desk and advancing through system and network engineering roles, Eric has built a reputation for hands-on leadership and community-driven innovation. At First Independent Bank, a 12-branch institution with over $500 million in assets, he oversees a small but highly efficient IT team focused on security, reliability, and personal service. His background in both technology and customer care, influenced by his early years working in his family’s hardware store, has shaped a people-centered approach to IT management that benefits both employees and customers. Here's a Glimpse of What You'll Learn How community banks balance digital innovation with human connection Why small IT teams can create big impact through personalized support The value of early customer service lessons in shaping leadership How Eric advanced from help desk to CIO through experience and persistence The growing importance of AI in banking and fraud prevention Why cybersecurity training remains the strongest line of defense How First Independent Bank builds customer trust through technology In This Episode Eric Lynner shares how First Independent Bank continues to thrive by focusing on personal relationships and technology that supports people, not replaces them. Leading a compact IT department, Eric ensures that every user receives direct, attentive support. This close connection to end users helps the bank deliver fast, reliable solutions that reflect the care of a community institution. Eric discusses how lessons from his family’s hardware store still guide his leadership philosophy today. Working with customers from a young age taught him patience, communication, and adaptability, all of which translate directly into effective IT management. His journey from the help desk to the CIO office proves that a four-year degree is not the only path to success. Experience, curiosity, and people skills can take professionals just as far. The episode also explores the role of AI in modern banking, from automating fraud detection to improving internal workflows. Eric sees the potential of these tools but emphasizes that technology should enhance, not replace, human service. For community banks like his, the strength lies in blending automation behind the scenes with genuine customer interaction at the front. Matthew and Eric also discuss cybersecurity, where social engineering remains a leading threat. Eric highlights that real security starts with people, not just firewalls. Training, communication, and awareness programs help prevent breaches before they start, especially in smaller organizations that depend on trust and responsiveness.

Guest Introduction Mitch Cullins serves as Vice President of IT and Chief Information Officer at Trunktie, a company that is redefining how IT professionals organize and label network infrastructure. With more than 25 years of experience in information technology, Mitch’s career includes enterprise architecture, cybersecurity, and systems engineering across Fortune 500 organizations. His background combines technical expertise with a strong sense of creativity and problem-solving. At Trunktie, Mitch leads technology strategy and innovation, transforming a simple idea from the server room into a patented product that improves cable management and operational precision for IT teams worldwide. Here’s a Glimpse of What You’ll Learn How frustration with daily IT problems inspired the creation of Trunktie Why simplicity and clarity can solve long-standing infrastructure challenges How enterprise discipline helps startups achieve sustainable growth Lessons Mitch learned from years in consulting and technical leadership How he transitioned from corporate IT to product invention Why structure and attention to detail are essential for innovation What it takes to move an idea from prototype to patent approval In This Episode Mitch explains how Trunktie was created out of necessity. While managing complex network environments, he found that poorly labeled cables and tangled wiring slowed down maintenance and caused confusion. He decided to design a product that would make labeling faster, clearer, and more reliable. Trunktie was born as a simple, effective solution that streamlines network organization, reduces risk, and saves time for technicians and IT managers. He discusses the process of transforming a concept into a commercial product. Drawing on his experience from enterprise IT, Mitch focused on precision, documentation, and repeatable systems to build a scalable foundation for Trunktie’s success. He highlights that true innovation is not about complexity but about solving real-world problems that teams face every day. His approach reflects how structure and creativity can work together to build tools that make life easier for technical professionals. Mitch also reflects on his personal journey from CIO to inventor. Throughout his career, he has been driven by a desire to make IT simpler, faster, and more dependable. Trunktie represents that vision in physical form. For Mitch, success is not just about technology or patents but about helping others work more efficiently and confidently. His story is proof that great products often start with one question: how can we make this better?

Guest Introduction John Winfrey serves as Director of IT at Ardmore Enterprises, a nonprofit organization in Lanham, Maryland, that empowers individuals with intellectual and developmental disabilities. Ardmore provides residential housing, community services, and employment programs that promote independence and inclusion. John brings over 30 years of experience to his role, spanning the IRS, Abacus Technology, and a two-decade tenure at Microsoft. His personal journey as a visually impaired technologist gives him a unique understanding of accessibility, innovation, and leadership in IT. Here’s a Glimpse of What You’ll Learn How John built a successful IT career despite visual impairment Why accessible technology creates opportunity and loyalty in organizations The evolution of assistive tools from early magnifiers to adaptive software How Ardmore’s accessibility lab helps individuals discover life-changing tech The role of inclusive design in empowering employees with disabilities Leadership lessons from decades in both corporate and nonprofit environments Why community and challenge drive innovation in IT teams In This Episode John shares the story of how his career began with a Commodore 64 and evolved through persistence, adaptability, and purpose. After training at Lions World Services for the Blind, a program sponsored by the IRS, he began working in government IT and later joined Microsoft, where he spent 20 years helping to make technology more accessible. Today, at Ardmore Enterprises, he leads IT operations and drives forward-looking initiatives focused on adaptive equipment, AI, and inclusion. He reflects on the early challenges of working in technology before accessibility was built into systems. In the early 1990s, he relied on oversized monitors and magnifying lenses to perform tasks. Now, modern accessibility features in Windows and other software make his work far more efficient. But he emphasizes that progress in technology must be matched by a change in mindset and helping others understand that disability is not a limitation but a perspective that enriches organizations. John also discusses the creation of Ardmore’s accessibility lab, a new initiative that introduces individuals with disabilities to technologies that can improve their work and personal lives. Through partnerships with hardware and software developers, the lab allows participants to test tools and find those that best fit their needs. It is a place where innovation meets empowerment. On leadership, John explains that the best IT teams thrive when leaders inspire creativity and ownership rather than control. He encourages team members to find their own solutions, collaborate openly, and share success. For him, great leadership is about creating an environment where people are motivated to build, learn, and grow together.

Guest Introduction Sergio Sanchez serves as Chief Information Officer at Coleman Health Services, a nonprofit behavioral health organization based in Ohio that supports more than 30,000 clients annually across multiple counties. With a background as a general surgeon in Mexico before moving into IT leadership, Sergio brings a rare dual perspective that blends clinical understanding with technological expertise. His leadership focuses on bridging the gap between patient care and cybersecurity while building scalable systems for a resource-constrained environment. Here’s a Glimpse of What You’ll Learn How Sergio transitioned from practicing medicine to leading IT in healthcare Why empathy and communication are vital for cybersecurity success How Coleman Health Services balances security with accessibility for clinicians The unique challenges of protecting data in a nonprofit healthcare setting How AI is transforming mental health care, both positively and dangerously The role of leadership in educating staff on digital hygiene and phishing awareness Why resilience and preparation are more critical than prevention alone In This Episode Sergio shares how his medical background continues to shape his approach to technology leadership. As a former surgeon, he understands the operational pressures clinicians face and the need for IT systems that simplify rather than obstruct care. That empathy guides how his team implements cybersecurity policies and workflow automation at Coleman Health Services, ensuring that technology supports, rather than slows, the mission of care. He discusses the daily challenges of securing patient data in a nonprofit environment where resources are limited. With fewer tools and smaller budgets than large hospital systems, success relies on people, especially through education and awareness training. Sergio’s approach to cybersecurity focuses on equipping staff to make better decisions, recognizing that many breaches stem from human error rather than technical failure. The episode also explores how Coleman Health Services is adopting artificial intelligence. Sergio emphasizes the potential for AI to improve efficiency, triage cases, and expand mental health access, but he warns of the risks when such technology is used without proper oversight. In his view, AI is a double-edged tool that must be guided by human ethics, clinical judgment, and strong governance. Finally, Sergio reflects on the leadership principles that drive his success: humility, transparency, and continuous learning. His advice for IT and security professionals in healthcare is simple, build trust, teach constantly, and remember that technology exists to serve people first.

Guest Introduction Lawrence (Larry) Bilker serves as Chief Information Officer at Lift Solutions, a fast-growing company that provides complete industrial lifting services across the United States. Founded in 2021, Lift Solutions performs OSHA-mandated inspections, aftermarket services, and parts supply for overhead cranes and lifting equipment. As CIO since its inception, Larry has led seven successful acquisitions in just three years while guiding the company’s digital transformation. His background spans engineering at General Electric, leadership across multiple industries, and a lifelong curiosity for technology that began when he first learned programming as a teenager at RadioShack. Here’s a Glimpse of What You’ll Learn How Lift Solutions scaled through seven acquisitions in three years Why Larry built a 100-step integration checklist to streamline every acquisition How CRM adoption improved accountability and team collaboration Why user engagement is more important than brand recognition in CRM success How operational data shapes performance from sales to service delivery Larry’s belief that AI enhances human productivity without replacing it How early programming experiences at RadioShack inspired his lifelong passion for innovation In This Episode Larry explains how Lift Solutions has achieved rapid growth through disciplined integration and data-driven management. He shares how his team developed a 100-step checklist used during each acquisition to ensure consistent infrastructure, application setup, and data migration. The process typically takes between 120 and 180 days to complete, allowing the company to expand quickly without compromising quality or stability. He emphasizes that data drives everything the company does. Lift Solutions tracks leads, quotes, orders, and service schedules across multiple business lines to ensure visibility and performance. Larry implemented an open-source CRM called EspoCRM because of its flexibility and ease of adoption. He believes user adoption is more important than brand prestige. When employees see that CRM tools simplify their work, reduce management questions, and make information easier to find, they naturally engage without resistance. Larry also shares his early journey in technology. As a teenager, he learned programming at a RadioShack store using a Tandy TRS-80 computer with only 4K of memory. That experience sparked a fascination with technology that led him to develop assistive software for disabled children and later join General Electric as an engineer. There, he designed inspection systems before moving into GE’s Information Management Leadership Program, where he discovered how technology could drive global business efficiency. Today, Larry continues to apply that mindset to modern IT leadership. He views artificial intelligence as an extension of human capability, not a replacement for it. In his words, AI should serve as a productivity amplifier while still relying on human judgment and governance. He encourages leaders to use AI responsibly, safeguard confidential data, and view it as a tool that enhances and not replaces human thinking and creativity.

Guest Introduction Andrew Wilder serves as Chief Security Officer at Vetcor, a veterinary consolidator that owns and operates nearly 1,000 veterinary hospitals across North America. Backed by private equity, Vetcor relieves veterinary practices of back-office responsibilities such as IT, HR, and finance, enabling veterinarians to focus on patient care. Andrew, the company’s first CSO, has built the security team from the ground up, growing it from zero to eight in just a year. His leadership emphasizes balancing innovation with risk management, building partnerships with early-stage vendors, and aligning cybersecurity strategy with real-world threats rather than chasing compliance checkboxes. Here’s a Glimpse of What You’ll Learn How private equity shapes security priorities for veterinary consolidators Why Andrew frames security decisions around risk appetite instead of directives The difference between compliance and true security readiness How peer networks shape vendor selection more than Gartner or Magic Quadrants Why innovation partnerships with startups accelerate defense capabilities Lessons from Andrew’s teaching role at Washington University on data-driven defense Andrew’s unconventional career path from customer service rep to regional CISO at Nestlé Why major incidents can serve as the best training opportunities for CISOs In This Episode Andrew explains how Vetcor’s private equity backing influences the way security strategy is executed. Rather than being driven solely by compliance, the company emphasizes real security outcomes. He stresses that different private equity firms have different levels of involvement, and the right balance allows leaders to focus on building strong defenses without excessive overhead. He discusses his philosophy of security leadership: not dictating solutions but presenting risks, controls, and letting executives set their risk appetite. This approach ensures that security decisions are aligned with the organization’s business priorities, while his team remains empowered to execute effectively. Andrew highlights the power of peer networks in vendor selection. Instead of relying on market leaders, he prefers referrals from other CISOs, leading to innovation partnerships with startups. One example is Savvy, a company building tools that proactively guide users in real time, like a modern “Clippy” that prevents credential misuse or unsafe browsing. Another design partnership focuses on agentic AI to automate repetitive security reviews. These collaborations bring innovation into Vetcor while cutting costs and expanding capability. The episode also covers Andrew’s career journey, which started at a small paper company where he was assigned to manage IT upgrades simply because he was the youngest employee. From there, he pursued Microsoft certifications, worked on security projects at HP, DHL, and Nestlé, and eventually rose to become regional CISO overseeing multiple continents. Today, he shares his knowledge as a teacher in Washington University’s executive cyber program, where he emphasizes data-driven defense and learning from incidents as key to building resilience.