The Tripwire Cybersecurity Podcast

Tripwire has been around since the file-integrity-monitoring days of the late 1990s, and their podcast carries that same no-nonsense engineering DNA. Hosts Tim Erlin and Tyler Reguly bring on practitioners, policy folks, and the occasional academic to talk about the workaday problems of running a security program: compliance audits that nobody enjoys, vulnerability management when you have 40,000 assets, and how to actually use MITRE ATT&CK without turning it into a checkbox exercise. Episodes tend to be tight, usually under 40 minutes, and the conversation stays grounded. You won't hear much hype about AI changing everything. Instead you get honest discussions about PCI DSS 4.0, the practical limits of EDR, and what happens when your CIS benchmark scan turns up thousands of drift findings on production servers. Recent guests have covered ransomware negotiation, ICS security in water utilities, and the ongoing mess that is software bill of materials adoption. The show is particularly strong for anyone working in regulated environments, federal systems, or large enterprises where change control matters as much as detection. It's the kind of podcast you put on while you're actually triaging alerts, because it meets you where the work lives rather than trying to sell you the next shiny platform.