The conversation explores DOE’s internally developed platforms, including Quanta, a secure data environment designed to break down long-standing data silos across the department, and Joulix, an AI-enabled workspace that gives employees access to powerful AI capabilities while keeping sensitive DOE data fully protected. Zimmer explains how her team is embedding cybersecurity into every modernization effort from the start, not as a roadblock, but as a foundational enabler that allows innovation to move faster and more safely.

Throughout the episode, Zimmer offers a candid look at balancing mission objectives, AI adoption, governance, operational continuity, and cyber hygiene in an era of rapid technological change. She discusses everything from modernizing HR systems in manageable phases to using AI for proactive IT support, cost reduction, and enterprise-wide cyber visibility through DOE’s new Echo initiative. The discussion ultimately highlights a new model for government technology leadership, one built on agility, mission alignment, reusable platforms, and secure innovation at scale.

ShowNotes:
U.S. Department of Energy: https://www.energy.gov
DOE National Laboratories: https://www.energy.gov/national-laboratories
DOE Office of Cybersecurity, Energy Security, and Emergency Response: https://www.energy.gov/ceser/office-cybersecurity-energy-security-and-emergency-response

The discussion dives into the Pentagon’s evolving AI consolidation efforts under CTO Emil Michael, the growing influence of the Chief Digital and Artificial Intelligence Office (CDAO), and the rapid deployment of generative AI tools across government-furnished devices through genai.mil. Trac shares firsthand observations about how AI adoption is changing the way government teams review work, collaborate, and make decisions — while also raising concerns about overreliance on AI-generated output, information overload, and the expanding trust gap between humans and machines.
The conversation then shifts into one of the most provocative topics in cybersecurity today: Anthropic’s controversial Mythos model — an advanced cybersecurity AI reportedly so powerful at identifying vulnerabilities that Anthropic restricted access to a select group of organizations. Carolyn and Trac unpack the implications of private companies controlling potentially transformative cybersecurity capabilities, the governance vacuum surrounding advanced AI models, and the blurred lines between national security, corporate influence, and AI competition.

They also tackle the Department of Defense’s proposed acceleration of $152 billion in AI and technology spending, debating whether rapid investment is necessary to keep pace with innovation or whether “fast money with slow governance” risks creating chaos, opportunism, and massive waste. Throughout the discussion, Trac emphasizes the importance of infrastructure, workforce upskilling, governance, and ethical oversight — warning that technology is evolving faster than institutions are prepared to manage.

The episode closes with a nuanced and thoughtful conversation about diversity in technology and defense environments. Rather than focusing on political rhetoric, Trac reframes the discussion around “thought diversity,” arguing that resilient systems require teams built from varied experiences, perspectives, and backgrounds. Together, Carolyn and Trac explore the difficult balance between merit, inclusion, operational readiness, and the evolving realities of workforce policy in defense and cybersecurity.

This episode is equal parts AI strategy briefing, cybersecurity ethics discussion, and real-time reflection on how quickly technology, governance, and society are colliding in the defense space.

Show Notes Links:
Trac's website: https://tracybannon.tech/
Trac's email: trac@tracybannon.tech
LinkedIn: https://www.linkedin.com/in/tracylbannon/
Anthropic Mythos leak: https://fortune.com/2026/03/26/anthropic-says-testing-mythos-powerful-new-ai-model-after-data-leak-reveals-its-existence-step-change-in-capabilities/
DoD $152B spending: https://federalnewsnetwork.com/defense-news/2026/02/dod-plans-to-spend-entire-152-billion-from-reconciliation-bill-in-one-year/
Judge blocks Anthropic ban: https://www.washingtontechnology.com/companies/2026/03/judge-blocks-dods-ban-anthropic-calls-it-first-amendment-retaliation/412451/
DEI executive order: https://www.washingtontechnology.com/companies/2026/03/federal-contractor-dei-initiatives-singled-out-latest-trump-executive-order/412456/

From there, Ford and Blake walk through the key stages of a Zero Trust journey, including microsegmentation, access management, and auditing privileges to prevent lateral movement and privilege creep. They also discuss the operational realities leaders face—budgeting, prioritizing critical assets or “crown jewels,” and ensuring organizations have the talent and resources needed to sustain a Zero Trust architecture.

The takeaway: Zero Trust isn’t a single deployment, it’s an ongoing journey that evolves alongside emerging threats and technologies.

Show Notes:
Michael Blake: https://www.linkedin.com/in/michael-blake-734b0a21/ | Email: mblake@owlcyberdefense.com
DoW resources https://dowcio.war.gov/Library/: security controls, checklist, self assessment, Penn test guidelines etc
Zero Trust | www.dau.edu
Dell Technologies Project Fort Zero to Transform Security | Dell USA
MITRE papers on evolving threats of giving AI access to network - https://ctid.mitre.org/blog/2025/05/09/secure-ai-v2/
Owl ZT resources: https://owlcyberdefense.com/zero-trust-cds/

Vendors that assist with ZTX, listen to the BLUF Podcast summaries to know if they might be able to help you: https://theblufpodcast.podbean.com/e/thebluf_episode12/ https://theblufpodcast.podbean.com/e/thebluf_episode13/

This isn’t speculation. It’s trajectory.

The group tackles the accelerating collapse of content trust in a world of deepfakes, AI-generated media, and short-form misinformation. As generative tools become indistinguishable from reality, they predict a sharp shift toward deep identity assurance—powered by behavioral biometrics, cryptographic validation, and provable content provenance. In a future where “guaranteed human” becomes a competitive advantage, digital identity won’t be optional—it will be foundational.
From there, the conversation moves into AI containment. The panel argues that we must stop treating AI like helpful software and start treating it like a privileged insider—with unpredictable outputs and real liability attached. The solution? Deterministic boundaries enforced in hardware. As Scott puts it: if you want to confine a tiger, you don’t build the cage out of meat.

The episode also explores:

• The federal government’s accelerating shift from legacy primes to agile, non-incumbent innovators delivering 80% solutions faster
• Why battlefield communications must evolve beyond encryption to real-time, hardware-enforced trust
• How AI-powered offensive attacks are shrinking from teams to individuals—sometimes in Power Ranger suits
• The limits of Zero Trust when complexity, cost, and talent gaps collide
• Why cross-domain solutions and data diodes may be the real fail-safes in an increasingly networked world

Throughout the discussion, a clear thread emerges: software alone won’t save us. As systems grow more interconnected, autonomous, and AI-driven, trust must be anchored in hardware—simple, enforceable, and resistant to both human error and machine-scale attack.

The takeaway for 2026? Security leaders won’t lose because they lacked tools. They’ll lose because they trusted the wrong ones.

This episode challenges listeners to rethink modernization, containment, and what real trust looks like when machines are making decisions at machine speed.

Stay curious. The future isn’t waiting.

Shownotes
Scott Orton: LinkedIn | Email: sorton@owlcyberdefense.com
Brian Carter: LinkedIn | Email:bcarter@owlcyberdefense.com
Ralph Spada: LinkedIn | Email: rspada@owlcyberdefense.com
Michael Blake: https://www.linkedin.com/in/michael-blake-734b0a21/ | Email: mblake@owlcyberdefense.com
Owl Cyber Defense: owlcyberdefense.com
Download the 2026 Predictions Report: https://owlcyberdefense.com/resource/decision-advantage-forecast-five-security-shifts-in-2026/
Story - Power Ranger Hacker: https://futurism.com/artificial-intelligence/tinder-for-nazis-hacked

Janet shares candid stories from the early days of AI adoption, where models behaved inconsistently, guardrails lagged behind product timelines, and the pressure to scale fast often overshadowed deeper questions of safety and accountability. She explains why today’s biggest risk isn’t far-off superintelligence; it's the immediate, under-regulated integration of AI into education, healthcare, hiring systems, and public services. For younger users especially, she warns, AI already shapes communication, decision-making, confidence, and even identity and most tech leaders lack the tools to properly assess or mitigate those risks.

Carolyn and Janet explore why ethical AI requires more than thought leadership and policy statements. It requires action: adversarial testing, real-world simulations, contextual frameworks, and independent audits that account for messy human behavior, not just ideal use cases. They also discuss the structural barriers women face in tech, the mentors who “give up their seat” to make space, and the mindset shift that comes with parenthood thinking in decades, not quarters.
Looking ahead, Janet envisions a future where AI becomes “infrastructure, not the main character” as invisible and reliable as flipping a light switch because circuit breakers, safety layers, and accountability systems are finally in place. Until then, she calls on builders, executives, educators, and policymakers to take practical steps now: test relentlessly, understand failure modes, prioritize vulnerable users, and choose impact over speed.

This is an episode for leaders who want to innovate boldly and responsibly, those wrestling with how to balance progress with protection, and how to shape an AI-powered future worthy of the next generation.

Show Notes:
www.justhorizons.org
https://www.linkedin.com/in/kangjanet/
Pause superintelligence petition - https://www.axios.com/2025/10/22/superintelligence-ai-pause-yoshua-bengio

Books Mentioned
Empire of AI — Karen Hao
The Alignment Problem — Brian Christian
The Broken Earth Trilogy — N.K. Jemisin (recommended by Carolyn)

Together, they break down what SBOMs are (think nutrition labels for software), how mandates like Executive Order 14028 and frameworks like NIST’s Secure Software Development Framework (SSDF) and DoD’s SWFT are changing the compliance landscape, and why automation is essential to get from static ATOs to continuous authorization.

Antoine also explains how Sonatype uses AI and software composition analysis tools to close critical gaps in open source and AI-heavy environments, helping agencies shift left, reduce vulnerabilities, and accelerate secure delivery of mission-critical systems. Along the way, the conversation covers everything from JFK delays caused by vulnerabilities, to the risks of “ludicrous speed” AI adoption, to the surprising history of Project Pigeon in WWII.

For federal leaders ready to take action, Antoine offers one concrete step: start with a single mission-critical application, mandate an SBOM, and see what hidden risks you uncover.

Show Notes:
Connect with Antoine https://www.linkedin.com/in/antoine-harden-mba-035a441/
Executive Order 14028NIST Secure Software Development Framework (SSDF)
CISA Zero Trust Maturity Model
DoD’s SWFT (Software Fast Track Initiative)
Sonatype Resource Center

What happens when agencies must justify government-off-the-shelf (GOTS) solutions in 60 days or lose funding? Dom shares what this means for acquisition teams, why the policy might create more confusion than clarity, and how commercial solutions for classified (CSfC) are transforming secure communications in the field.

From rugged mesh networks to “MacGyvered” mission-ready tech, Dom takes us behind the scenes of CSFC innovation, explaining how rapid deployment, lifecycle savings, and mission flexibility are driving real change.

If you’ve ever wondered how defense innovation happens at the speed of relevance or what’s really in that “Rubbermaid tote” this one’s for you.

Topics include:

• The 60-day COTS mandate and its real-world impact
• CSFC vs. Type 1: Speed, security, and scale
• What government and industry must do better
• Why the coolest tech might not come from GOTS anymore
• The value of failure, fast iteration, and field-informed design

Follow Dom Perez on LinkedIn for more insights and check out Curtiss-Wright’s whitepapers on modular open systems, CSFC, and edge AI.

• Dominic Perez LinkedIn: https://www.linkedin.com/in/dominicperez/
• Curtiss Wright White Papers: https://www.curtisswrightds.com/resources/white-papers