Built to Last: Christian Hyatt on Entrepreneurship, AI, and the Future of Cybersecurity

In this episode of Behind the Shield, Gary Daemer sits down with Christian Hyatt, Founder and CEO of risk3sixty, for a conversation that goes far beyond cybersecurity. Together, they explore what it means to build an evergreen company in an industry often driven by venture capital, rapid growth expectations, and short-term outcomes. Christian shares the story behind risk3sixty's culture-first philosophy, lessons learned from more than a decade of entrepreneurship, and why focusing on customers, team members, and craftsmanship can create a lasting competitive advantage. The conversation also dives into the evolving cybersecurity and compliance landscape, including AI governance, GRC engineering, automation, workforce transformation, and the changing skills security leaders need to succeed. As organizations navigate unprecedented technological change, Gary and Christian discuss how business leaders can balance innovation, risk management, and long-term sustainability. Whether you're a cybersecurity practitioner, business leader, entrepreneur, or simply interested in how great companies are built, this episode offers practical insights on leadership, growth, and building something designed to last. Chapters: 0:09 - Introduction and Guest Introduction 0:38 - Building a Lasting Company 1:10 - Unique Approach to Business 2:26 - Personal Business Journey 3:35 - Evergreen Company Concept 7:31 - Team Building and Culture 10:17 - Customer and Market Insights 22:16 - AI and Compliance Challenges 39:20 - Future Skills and Industry Trends 51:55 - Conclusion and Final Thoughts What You'll Learn: • Why some founders choose to build evergreen companies instead of pursuing outside investment • How culture and customer focus become long-term competitive advantages • The lessons Christian learned while growing risk3sixty from a startup into a thriving cybersecurity business • Why many CISOs are being asked to do more with fewer resources • How AI is transforming governance, risk, and compliance programs • What organizations are getting wrong about AI governance and adoption • The shift from traditional GRC work to GRC engineering and systems thinking • How automation is changing the future of compliance and security operations • Why business acumen is becoming just as important as technical expertise • What the next generation of cybersecurity professionals can teach us about AI adoption • Emerging trends shaping the future of cybersecurity, compliance, and technology • The books, experiences, and philosophies that have influenced both Christian and Gary as leaders Book Links: Another Way by Dave Whorton with Bo Burlingham: https://www.tugboatinstitute.com/anot... The EOS Life by Gino Wickman: https://www.amazon.com/EOS-Life-Live-... Guest Links: Christian Hyatt:   / christianhyatt   https://risk3sixty.com/ Guest's Books: Security Team Operating System: How to Run an Unstoppable Team The Good Business: How to Bootstrap a Business to $10m and Beyond For the kiddos (or adults!)- Chief Information Security Officer: CISO the Dog Saves Secure City What Is a Good Business Made Out Of (The Good Business) Find Christian's Books Here: https://www.amazon.com/stores/author/... Learn more about InfusionPoints:   / infusionpoints   Gary Daemer:   / infusionpoints   Request a Demo: https://xbu40.com/ FedRAMP 20x Quick Look Assessment: https://xbu40.com/assessment InfusionPoints & AWS: InfusionPoints is proud to be an Amazon Web Services Premier Tier Services Partner, supporting organizations in building, managing, and defending secure cloud environments. About Us: InfusionPoints is a trusted cybersecurity, cloud engineering, and compliance partner helping organizations Build, Manage, and Defend secure, mission-ready environments in highly regulated markets. We specialize in FedRAMP, FedRAMP 20x, DoD, and enterprise security frameworks, supporting organizations from initial authorization through continuous monitoring and optimization. Our team brings deep technical expertise and real-world operational insight to every engagement. Through our independent, security-first approach, we integrate people, processes, and technology to deliver scalable, compliant, and resilient solutions. From strategy and architecture to operations and defense, we help customers move faster without sacrificing security.