Best Paramify Podcasts (2025)

1
#45 - The Evolution of FedRAMP and FedRAMP 20x with Jason Oksenhendler 1:02:36

Play Pause

3d ago1:02:36

1:02:36

“Once you’re in Hotel FedRAMP, you can’t leave.” Jason Oksenhendler, Cybersecurity Director of FedRAMP®/GovRAMP at Baker Tilly x Moss Adams, sits down with Kenny and Isaac to talk about FedRAMP’s past, how 20x is shaping the future, and why nobody ever really checks out of Hotel FedRAMP. 👉 Key Takeaways: • FedRAMP 20x was a “hand grenade” for every…

1
#44 - Karen Laughton on FedRAMP 20X, AI, and the Future of Compliance 51:28

16d ago51:28

51:28

In this episode of the Paramify Podcast, Karen Laughton, EVP of Advisory at Coalfire, joins Kenny Scott (CEO of Paramify) and Mike Schreiner to unpack the future of government cybersecurity and compliance modernization. From the hard realities of FedRAMP 20X to lessons learned from the early days of FSMA and CMMC confusion, this conversation pulls …

1
FedRAMP 20X Roundtable with FedRAMP Director Pete Waterman 1:12:55

1M ago1:12:55

1:12:55

It’s not only about faster authorizations—it’s about unlocking the full potential of modern cloud for government. FedRAMP 20X is how we get there. In this exclusive roundtable, Pete Waterman (FedRAMP Director), Karen Laughton (EVP of Advisory, CoalFire), Rob Otten (Sr. Director, Risk & Compliance, Flock Safety), Kenny Scott (Founder & CEO, Paramify…

1
#43 - Martin Rieger on FedRAMP 20X, The Future of FedRAMP Compliance, Cloud, and Security 1:05:41

4M ago1:05:41

1:05:41

Today, we’re sitting down with StackArmor’s Martin Rieger — a FedRAMP veteran with over 300 engagements under his belt — for an unfiltered deep dive into the origin, evolution, and future of FedRAMP compliance. We cover everything from the early days of DIACAP and gold images to today’s world of automation, OSCAL, and AI-powered documentation. Mart…

1
#42 - FedRAMP 20x and The Creation of FedRAMP with Dave Fairburn Jr. 1:04:42

5M ago1:04:42

1:04:42

Today we're sitting down with the Father of FedRAMP himself — Dave Fairburn Jr. — for a raw, detailed, and at times hilarious deep dive into the origin story, evolution, and future of the FedRAMP program. From 16-hour days and bureaucracy battles to 2,500-page documentation drafts reduced by weight tests (yes, really), Dave walks us through how the…

1
#41 - Discussing FedRAMP 20x 31:59

5M ago31:59

31:59

What do DC sneakers, HR-approved marriage advice, and compliance robots have in common? They’re all part of this episode as Kenny and Mike dive into the bold future of FedRAMP 20X — and why it’s finally time to fix the pain points for both private companies and government agencies. Here’s what they cover: - The (not) shift in risk ownership — why a…

1
#40 - Discussing FedRAMP with Pete Waterman 1:14:46

5M ago1:14:46

1:14:46

Today, we're pretending it's August 24, 2024, as Kenny and Mike sit down with Pete Waterman to talk about his backstory and what inspired him to apply to become the new FedRAMP Director. Spoiler alert: we discuss frustration, bureaucracy, and a wild career move. Also these things: - Pete's Origin Story – Every hero has one. - Government Tech: Why I…

1
#39 - Discussing FedRAMP with Jason Ford 1:04:32

6M ago1:04:32

1:04:32

Today Kenny and Mike are talking to the one and only Jason Ford, CEO & Founder of Steel Patriot Partners—a true FedRAMP guru who's been securing systems since digital transformation was still a baby. Jason shares his battle-tested strategies for navigating security audits, implementing encryption the right way, and avoiding common pitfalls that can…

1
#38 - Building a Great Security Program with Google Sheets 34:43

6M ago34:43

34:43

Getting started with risk management is easier than you think- and you don’t need fancy tools to do it. In this episode, Kenny and Mike break down how a simple Google Sheet can be your secret weapon for designing a great security program. Whether you’re navigating FedRAMP, SOC 2, or ISO 27001, the key is just getting started—no expensive software r…

1
#37 - A Journey Into FedRAMP with Eric Britton Adams 1:00:44

7M ago1:00:44

1:00:44

Eric, the CISO at Federal Cyber Defense Solutions and former Chief FedRAMP Strategist at IBM and FedRAMP Leader at HP, shares his journey from growing up on a farm to becoming a CISO and FedRAMP expert. We dive into the challenges of FedRAMP compliance, the evolution of cybersecurity, and how today's security teams can strike the balance between te…

1
#36 - What are the Control Assessment Phases? 22:55

7M ago22:55

22:55

Whether you’re launching a brand-new security program or fine-tuning your existing one, this episode has everything you need to know. Kenny and Mike are breaking down the 𝗰𝗼𝗻𝘁𝗿𝗼𝗹 𝗮𝘀𝘀𝗲𝘀𝘀𝗺𝗲𝗻𝘁 𝗽𝗵𝗮𝘀𝗲𝘀 – why they matter and how they can transform your security processes. Here’s what’s on deck in this episode of The Paramify Podcast: - How to plan your s…

1
#35 - Risk Management Explained Through Star Wars 28:37

8M ago28:37

28:37

We’ve heard you. We all want to know just how much it cost The Empire when the first Death Star was blown to oblivion by a young boy from Tatooine? How could the Empire let this happen? Kenny Scott and Mike Schreiner dive deep into risk management and cybersecurity—all through the lens of Star Wars. Kenny uses Star Wars analogies to break down key …

1
#34 - Discussing CMMC with Tony Bai from RISCPoint 47:15

9M ago47:15

47:15

Today we’re talking to Tony Bai. He’s got 25 years of experience in cyber defense and operations, Tony Bai serves as the Chief Solutions Officer at RISCPoint. A United States Air Force veteran and lots of leadership experience at leading consulting organizations. Tony specializes in FedRAMP, CMMC and other NIST frameworks and is a leading voice on …

1
#33 - Discussing Cybersecurity with Mandy Andress CISO at Elastic 41:59

9M ago41:59

41:59

We're talking with Mandy Andress, Chief Information Security Officer (CISO) at Elastic. Mandy is making a huge impact in the security industry as the author of Surviving Security: How to Integrate People, Process, and Technology, a Top 100 CISO (C100) Award recipient, and a LinkedIn Top Voice. Her leadership goes well beyond her role as CISO – she'…

1
#32 - Discussing FedRAMP with Michael Carter 54:07

12M ago54:07

54:07

Today, we’re honored to have Michael Carter on the show! Michael is the Managing Partner and Co-founder of Fortreum. Michael brings over two decades of expertise in cybersecurity and compliance, specializing in FedRAMP, FISMA, PCI, and more. He has held key leadership roles at Coalfire and Veris Group, shaping compliance strategies for top organiza…

1
#31 - Discussing OSCAL and Cybersecurity with Alexander Stein 1:00:53

1y ago1:00:53

1:00:53

Today, we're honored to have Alexander Stein on the show. Alexander has a host of experience in Cybersecurity. He has worked as an IT Cybersecurity Specialist at the National Institute of Standards and Technology (NIST). With over two years at NIST focusing on Information Technology and Vulnerability Management, Alex has also held key roles at Flex…

1
#30 - Discussing Government Affairs & Compliance with Michael Clauser 45:23

1y ago45:23

45:23

Today, we're honored to have Michael Clauser, on the show. Mike is the Founder & Managing Director of Ark where he helps tech and defense companies navigate government relations. He is a seasoned professional in government affairs, cybersecurity, and national security. Michael has led pivotal roles at Okta, Access Partnership, Analog Devices, and F…

1
#29 - Discussing GRC Automation with Matt Hillary 51:47

1y ago51:47

51:47

Today we're honored to have Matt Hillary on the podcast. Matt is the Vice President of Security and Chief Information Security Officer at Drata. He is a seasoned cybersecurity leader with 15 years of experience and a passion for enabling innovation. Learn more about Matt Hillary: LinkedIn: https://www.linkedin.com/in/matthewhillary/ Matt Hillary's …

1
#28 - Discussing Cloud Security and GRC with Eric Evans 1:02:07

1y ago1:02:07

1:02:07

Today we're honored to have Eric Evans on the show! Eric is the Founder and CTO of HanaByte, he is a cloud security and compliance expert. He has led security initiatives for startups to Fortune 10 companies and is a renowned public speaker on cloud security and compliance automation. Learn more about Hanabyte: https://www.hanabyte.com/ https://www…

1
#27 - Discussing Cybersecurity and Compliance with Den Jones 48:13

1y ago48:13

48:13

Today, we're honored to be joined by Den Jones, Founder and CEO of 909Cyber and a veteran in cybersecurity. With a robust career that includes roles as Chief Security Officer at SonicWall, CSO at Banyan Security and Senior Director of Enterprise Security at Cisco, Den brings a wealth of experience to the table. He's a Stanford alumnus with a focus …

1
#26 - Exploring OSCAL and GRC with Rob Sherwood 1:00:18

1y ago1:00:18

1:00:18

Today, we’re honored to have Rob Sherwood on the podcast. Rob is a seasoned cybersecurity professional with extensive experience in policy management, PKI architecture, and identity management. With over two decades in the field, Rob has left a lasting impact through his dedication to standards development, including his significant contributions t…

1
#25 - Exploring GRC & FedRAMP with Matthew Graham 46:03

1y ago46:03

46:03

Today we had the honor to talk with Matthew Graham, the Director of US Federal Practice at Prescient Security. Matthew is a seasoned cybersecurity expert whose extensive career has spanned technical and strategic leadership roles. With a rich background that includes high-level certifications such as CISSP, CASP+, and CCNA, Matthew brings a wealth …

1
#24 - Discussing GRC & OSCAL with Brandt Keller 47:59

1+ y ago47:59

47:59

Today we had honor to talk with Brandt Keller, a distinguished software engineer and open source developer advocate with a comprehensive background that spans significant achievements in both the military and technology sectors. A veteran of the U.S. Marine Corps, Brandt has transitioned his disciplined and strategic approach from the field of comm…

1
#23 - Discussing Data Privacy with Tommy Hoschouer 41:44

1+ y ago41:44

41:44

Today we're honored to host Tommy Hoschouer, who currently leads the global public sector efforts at DeleteMe. Tommy's rich history at companies like Sprinklr, Medallia, SAP, and Qualtrics has equipped him with a unique perspective on using technology to enhance public sector operations, leading to significant improvements in revenue and efficiency…

1
#22 - A Journey from Journalism to GRC with Brian Martinez 45:59

1+ y ago45:59

45:59

Today, we had the honor to have Brian Martinez, a leading expert in governance, risk, and compliance (GRC) with over two decades of experience at Michigan State University and the broader cybersecurity community. As the Governance, Risk, and Compliance Lead at MSU, Brian has spearheaded critical security projects and compliance frameworks, contribu…

1
#21 - Discussing Cybersecurity & GRC with Troy Fine 54:39

1+ y ago54:39

54:39

Today we had the honor to speak with Troy Fine, the Senior Advisor at Geels Norton, where he's making significant strides in cybersecurity and compliance. With a rich history in the field, including key positions at Drata and Schneider Downs, Troy's credentials—boasting certifications like ISO 27001:2013 Lead Auditor and CISSP—speak volumes of his …

1
#20 - Discussing GRC and Infosec with Beau Butaud 56:06

1+ y ago56:06

56:06

Today we had the honor to talk to Beau Butaud, a visionary in the compliance and cybersecurity field and the co-founder of Render Compliance. With a background that includes leading roles in risk advisory and compliance management at Moss Adams, and significant contributions at BDO USA, LLP, and Peterson Sullivan LLP, Beau brings a wealth of expert…

1
#19 - Discussing GRC and IT Audit with Jack Rumsey 1:01:20

1+ y ago1:01:20

1:01:20

Today we had the honor to talk to Jack Rumsey, the Head of GRC at Swimlane. With a rich background in IT security and audit, including roles at DaVita, Schellman, and KPMG, Jack is an expert in compliance standards like SOC II, ISO27001, GDPR, and FedRAMP. Holding a Bachelor's degree in Computer and Information Systems Security from Illinois State …

1
#18 - Discussing CMMC & Cybersecurity with Fernando Machado 29:03

1+ y ago29:03

29:03

Today, we're excited to welcome a true luminary in the field of cybersecurity, Fernando Machado. Not only is he the Managing Principal and CISO at Cybersec Investments, LLC, but Fernando is also a recognized Certified Third-Party Assessment Organization (C3PAO) leader. His extensive experience spans over two decades with key roles in companies like…

1
#17 - Discussing FedRAMP and The Origin of Paramify with Brad Bartholomew 49:39

1+ y ago49:39

49:39

Today we had the honor to sit down with Brad Bartholomew, the Director of FedRAMP Compliance at Trellix, and a veteran in the cybersecurity field. With a rich history spanning Adobe to Palo Alto Networks, Brad brings invaluable insights into GRC, cloud security, and the evolving landscape of cybersecurity frameworks. In this episode, we discuss eve…

1
#16 - Exploring The Fatal Funnel of Sales with Reade King 52:38

1+ y ago52:38

52:38

Today we had the honor to sit down with Reade King, a seasoned professional whose dynamic career spans over 15 years, including roles in the Department of Defense, and the Utah Army National Guard, and is now involved in the fast-paced world of SaaS startups. Reade brings a unique blend of strategic relationship-building and resilience honed in hig…

1
#15 - Discussing Cybersecurity with Frank Kyazze 58:58

1+ y ago58:58

58:58

Frank is a renowned expert in cybersecurity and Governance, Risk Management, and Compliance (GRC). As the Founder and CEO of GRC Knight, he has spearheaded the integration of advanced detection technologies with comprehensive security and privacy compliance consulting. His rich experience includes key roles at TrustCloud, Cognizant, and Schellman &…

1
#14 - Discussing Cybersecurity with Josh Pugmire and Bryson Loughmiller 44:21

1+ y ago44:21

44:21

In today's episode, Kenny and Keaton talk with Josh Pugmire and Bryson Loughmiller. Both men are notable figures in cybersecurity, each boasting extensive careers marked by significant contributions to the field. Their expertise and experience have made them influential voices in cybersecurity circles. Currently, they hold pivotal roles at Entrata,…

1
#13 - Discussing The Future of AI and Recruiting with Neal Schmidt 1:08:40

1+ y ago1:08:40

1:08:40

In today's episode, we talk with Neal Schmidt, the Founder of ScreenDoor.ai, about everything from our favorite concerts to where we think the future of AI and recruiting is going. Neal Schmidt’s LinkedIn https://www.linkedin.com/in/nealschmidt/overlay/about-this-profile/ Neal’s business: https://screendoor.ai/ Learn more about Paramify here: https…

1
#12 - Discussing Mentorship and Cybersecurity with Blake Entrekin 55:17

1+ y ago55:17

55:17

Blake Entrekin is an experienced Security Compliance leader with a notable 21-year tenure in the Security and Technology field, complemented by a decade of expertise as a people manager. He is currently the Director of Security Compliance at HackerOne. In this episode, we discuss FedRAMP, compliance, cybersecurity, and the importance of having a me…

1
#11 - Discussing Cybersecurity with Bryce Kunz 1:14:54

2y ago1:14:54

1:14:54

Bryce Kunz is a prominent Information Security Researcher and the Chief Security Officer (CSO) at UltraViolet Cyber. Renowned for his expertise in exploiting cloud environments, Bryce has a keen focus on critical systems like containers, orchestration systems, and web applications. His rich professional background spans across key agencies such as …

1
#10 - Exploring Joshua Baron’s Transition to a Referral Based Business 1:10:27

2y ago1:10:27

1:10:27

In today's episode, we sit down with seasoned criminal defense attorney, Joshua Baron, to delve into his journey of transitioning his law practice from being heavily ad-dependent to thriving on referrals. When the COVID-19 pandemic hit and courtrooms shuttered, Joshua was faced with the daunting task of keeping his practice afloat amidst dwindling …

1
#9 - Discussing Information Security with Ryan Jamieson 42:33

2y ago42:33

42:33

In this episode of The Paramify Podcast, Kenny Scott talks with Ryan Jamieson, founder of Knit Security, about moving beyond compliance to achieve robust security. They discuss the challenges posed by security questionnaires and share practical advice on how to build a solid security posture aligned with business operations. Ryan also sheds light o…

1
#8 - A Journey into Information Security with Derek Espiritu 47:04

2y ago47:04

47:04

Charting a successful trajectory in information security isn't a straightforward task, and who better to shed light on this journey than Derek Espiritu? In this insightful episode of The Paramify Podcast, hosts Kenny Scott and Keaton Olson explore Derek's path into the world of cybersecurity. Derek shares his experiences from working with renowned …

1
#7 - Discussing Information Security with Isaac Painter 43:51

2y ago43:51

43:51

Today, we were privileged to sit down with Isaac Painter. An established figure in information security, Isaac boasts an impressive trajectory that includes stints at industry giants like Adobe and Aumni. His deep-rooted expertise and insights from various roles provide a rich backdrop for an enlightening conversation. Isaac Painters LinkedIn: http…

1
#6 - Discussing the Future of Sales with Next LvL AI 45:54

2y ago45:54

45:54

Today we are joined by our good friends Tanner Green, and Dan Robinson of Next Lvl AI. We talk about everything from changing the cringe nature of LinkedIn through an AI bot to the theoretical possibilities of AI. Tanner Green is the visionary founder and CEO of Next LvL Ai. Next LvL AI has merged AI's brilliance with sales to optimize representati…

1
#5 - Exploring FedRAMP Rev 5 With Christian Hansen 54:31

2y ago54:31

54:31

In this episode, we host Christian Hansen of Moss Adams. Christian delves into his foundational years in cybersecurity and traces his professional trajectory that led him to his current role. As an expert on FedRAMP, he provides an in-depth analysis of the recent changes introduced with FedRAMP Rev 5. Join us for an informative session with a leadi…

1
#4 - Becoming a CISO with Debra Baker 38:03

2y ago38:03

38:03

Today Kenny talks to Debra Baker. Debra Baker is a passionate Cybersecurity Professional with over 20 years experience in multi-faceted, complex, fast-paced environments in the public and private sectors. Debra excels in Risk Management and Compliance with proven leadership experience on issues concerning information security. In her most recent ro…

1
#3 - Kenny’s Backstory Pt. 2 35:59

2y ago35:59

35:59

Today, Keaton & Adam talk to Kenny about his interesting past, from being a pioneer for the Adobe Common Controls Framework to starting a hedge fund, and what ultimately led Kenny to start Paramify. Learn more about Paramify on our website: www.paramify.comBy Paramify

1
#2 - Using AI Securely with Walter Haydock 43:22

2y ago43:22

43:22

Walter Haydock is a dynamic and multifaceted professional specializing in the intersection of cybersecurity and artificial intelligence. As the founder and CEO of StackAware, Walter leverages industry-standard frameworks, his own extensive experience, and responsible use of AI tools to help businesses manage AI-related cybersecurity, privacy, and c…

1
#1 - Kenny’s Backstory 33:17

2y ago33:17

33:17

Welcome to the genesis of The Paramify Podcast. Today, we uncover the beginning of Kenny's journey that culminated in the creation of Paramify. LEARN MORE about Paramify here: https://www.paramify.com/By marketing68