Trust and Turbulence

Joshua Brickman spent more than two decades inside the world of cybersecurity certifications, government assurance programs, and global security regulation. Now he’s bringing those conversations out from behind closed industry meetings and into the public.

This podcast explores the collision between security, innovation, AI, regulation, and trust. Why do governments require certifications like Common Criteria and FIPS 140? Why are they often slow and expensive? Why do some regulators trust vendor declarations while others demand independent testing? And can AI and automation finally modernize the system?

From post-quantum cryptography and supply chain security to the EU Cyber Resilience Act and cloud assurance, the show translates highly technical topics into practical conversations that matter to businesses, policymakers, technologists, and consumers alike.

Because in a world run by software, the real question is no longer just “does it work?” — it’s “who decided we can trust it?”