Be Fearless Podcast by SquareX

In this episode of the Be Fearless Podcast, Francesco Chiarini, Chairman of the ISSA Cyber Resilience Task Force and CEO & Chief Researcher at High Value Target, sits down with Aleksandra Melnikova to discuss what cyber resilience really means beyond incident response. They explore high value targets, recovery-first thinking, cyber risk quantification, and why most enterprises still misunderstand resilience. From board-level risk conversations to accountability, creativity, and skills gaps, Francesco explains how security leaders can move from reactive defense to sustainable resilience00:00 Francesco's journey into cybersecurity, Incident response vs true cyber resilience10:32 Defining company-specific high value targets correctly16:15 What companies get wrong about cyber risk quantification21:31 Why the CIA Triad matters most in pharma and healthcare26:32 The need to address fundamental threats and manage legacy assets34:29 The gaps Francesco wants to fill in cyber resilience39:59 "Magic wand" for CISOs: Cyber Recovery🔔 Follow Francesco and Aleksandra on:https://www.linkedin.com/in/chiarini/https://www.linkedin.com/in/aleksandra-melnikova-1012/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

In this episode of the Be Fearless Podcast, Dan Lohrmann, Field CISO for Public Sector, Presidio, sits down with SquareX Founder's Office's Aleksandra Melnikova to discuss how AI agents, browser-based threats, deepfakes, and shadow AI tools are reshaping the attack surface—and why CISOs must be embedded in AI governance early. They also touch upon what truly differentiates public-sector cybersecurity, from election cycles and budget whiplash to centralized security governance and trust-based leadership.00:00 Introduction and when Dan almost got fired over Wi-Fi8:57 What makes public sector security different from the private sector13:21 Being Michigan's first ever CISO22:39 Inside a $28 million ransomware negotiation28:48 Emerging threats and securing AI32:37 Advice for CISOs in 202635:42 Browser security in AI age and malicious extensions43:04 People remember stories, CISOs need to earn trust🔔 Follow Dan and Aleksandra on:https://www.linkedin.com/in/danlohrmann/https://www.linkedin.com/in/aleksandra-melnikova-1012/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

In this episode of the Be Fearless Podcast, Vivien Bilquez of Zurich Insurance sits down with SquareX Founder Office’s Aleksandra Melnikova to discuss whether AI can replace cybersecurity leaders, how CISOs should communicate risk to boards, and what skills will matter most in the future. Vivien shares why AI delivers universal answers but lacks human judgment, why CISOs must master storytelling and financial language, and how to secure executive buy-in through cyber risk quantification. From champion rock-and-roll dancer to CISO at one of the world’s largest insurers, he explains why nearly 50% of companies are uninsurable and how Zurich reduced 500 security questions to just 10 key controls that mitigate 70% of cyber attacks.00:00 Vivien's start as an acrobatic rock-and-roll dancer, and how the CISO role is mixed with politics7:42 Cybersecurity is human-centric12:27 How 10 controls can mitigate 70% of cyber attacks16:42 Quantifying cyber risk in financial terms25:58 Cyber Insurance vs Cyber Resilience29:39 The different people you deal with during a cyber crisis37:24 Speaking to boards in business language, not cyber45:10 Why AI cannot replace the CISO and human experience🔔 Follow Vivien and Aleksandra on:https://www.linkedin.com/in/vivienbilquez/ https://www.linkedin.com/in/aleksandra-melnikova-1012/ 🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

In this episode of the Be Fearless Podcast, StickmanCyber’s Founder Ajay Unni sits down with SquareX Field CISO John Carse to discuss the personal side of building a global cybersecurity brand. Ajay reveals how a failure in his 12th-grade exams in India became the catalyst for his first software company. He explains his leadership philosophy, which integrates meditation and ethical business growth, proving that you don't have to be greedy to succeed in the high-stakes world of tech. They also touch upon why the web browser has become the primary attack surface for modern hackers and despite heavy investments in EDR tools and network security, many organizations remain blind to data exfiltration happening inside the browser.00:00 Starting a company without experience9:51 Ajay's move to cybersecurity17:41 Cybersecurity-as-a-service and integrating AI for compliance31:19 Shadow SaaS and browser blind spots45:41 The fine balance between productivity and AI data leakage risk50:12 Meditation and ethical business growth as cornerstones of leadership🔔 Follow Ajay and John on:https://www.linkedin.com/in/ajayunni/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

In this episode of the Be Fearless Podcast, Gautam "Gotham" Sharma, Executive Director, Cybersecurity Education and Training at AccessCyber, sits down with SquareX Field CISO John Carse to discuss why cybersecurity education and hiring are broken. The conversation explores nontraditional cyber career paths, why certifications alone don’t get candidates hired, and how hands-on projects prepare people for real-world security roles. Gautam breaks down browser security, SaaS sprawl, zero trust, and why defending the browser is essential for modern enterprises. He debunks viral AI ransomware statistics and explains why the industry needs better skepticism and even satire. 00:00 Founding of AccessCyber, what you learn in school vs. what enterprises are doing9:35 Finding the right fit in cybersecurity16:55 Hacking vs academia32:26 How comedy helps Gautam be better in cybersecurity40:00 CISO insights and browser security51:39 Fighting misinformation in tech🔔 Follow Gautam and John on:https://www.linkedin.com/in/gothamjsharma/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

In this episode of the Be Fearless Podcast, Larry Whiteside Jr, Co-Founder and President of Confide, sits down with SquareX Field CISO John Carse to discuss the real risks facing today’s CISOs. Drawing from three decades of experience across the U.S. military, the Pentagon, and Fortune 500 leadership roles, Larry explains why the CISO role is the most exposed and misunderstood position in the C-suite. They dive into cybersecurity governance, power dynamics with executives, vendor hype, regulatory pressure, AI disruption, and why security leaders are often blamed despite lacking authority.00:00 How a Pentagon analyst role turned out to be for Chief of Information Warfare19:28 "You are not greater than the good of the entire building"27:48 Why the cybersecurity buying process is fundamentally broken35:28 Can, or should a CISO be likable?43:32 Larry's leap to entrepreneurship50:06 Changes in IT landscape: Cloud, SaaS, AI1:00:23 Narcissistic tendencies in cyber leadership1:11:39 Career advice and how to avoid burnout🔔 Follow Larry and John on:https://www.linkedin.com/in/larrywhitesidejr/ https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Field CISO John Carse of SquareX sits down with Jeremy Ladner of The CISO Signal to discuss the critical art of storytelling in cybersecurity leadership. In this episode of Be Fearless podcasts, Jeremy reveals why facts alone fail in the boardroom and how AI is rewriting the rules of social engineering and fraud. The conversation covers why hackers operate like aggressive marketing teams and the dangers of "almost secure" infrastructure. 00:00 Why the cybersecurity industry is actually a "True Crime" universe5:17 Spy vs Spy13:50 The Hero's Journey and how to tell a story24:42 Most cyber breaches today don't start with brute force33:02 Why cyber attacks is like sales and marketing39:02 Bad cybersecurity is a decision problem49:37 The browser is the "threshold" for attacks53:15 How AI is both terrifying and exciting58:12 CISOs are afraid of not being able to convince the organization🔔 Follow Jeremy and John on:https://www.linkedin.com/in/jeremy-ladner/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Host John Carse, Field CISO of SquareX sits down with James W., Valens Global Analyst and creator of the Smoke Signal Newsletter and Burn Signal Podcast. In this episode of The Be Fearless podcast, they discuss the concept of "digital exhaust" and how invisible data trails are weaponized into "weapons of mass disruption". James shares insights from his FBI career, discussing the intersection of human psychology and cybersecurity. They explore the unique challenges CISOs face with employees' consumer behavior impacting corporate security , the future of AI processing on devices , and actionable advice for translating technical complexity into control.00:00 How readily available personal information is online10:45 Problems faced by security professionals16:43 The privacy paradox23:02 Threats with AI-powered browsers32:04 Evolution of both computing and browser threats40:53 On simplifying technical details49:54 Advice for security writers: Clarity trumps applause🔔 Follow James and John on:https://www.linkedin.com/in/mrdigitalexhaust/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Host John Carse, Field CISO at SquareX, sits down with Andrew Crotty aka GingerHacker. In this episode of the Be Fearless podcast, Andrew provides insights into his role advising Army commanders, the evolving security landscape regarding AI agents and hallucinations, and the specific vulnerabilities found in web browsers. Andrew details the mission behind the Ginger Hacker Initiative, a non-profit helping newcomers get certified for free, and his involvement with DEF CON. He also dives into the failures he had to endure before landing his first gig in Cyber. 00:00 Multiple paths of getting into cybersecurity8:11 The importance of building a solid network14:15 The "Slap Bet" origin story of the GingerHacker name19:24 Volunteering at DEF CON's Noob Village and overcoming the fear of asking questions25:13 Why failure is required for growth32:33 Success stories from the Ginger Hacker Initiative non-profit37:40 Treating AI like an "eager intern"46:07 Browser Security from a military perspective53:51 Advisor to non-technical commanders in the Army🔔 Follow Andrew and John on:https://www.youtube.com/channel/UCGX_oAbc0_CLEdwMI5n64oQhttps://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Host John Carse, Field CISO at SquareX, sits down with Patrick Gorman, Founder of InfosecPat. In this episode of The Be Fearless podcast, they discuss Patrick's incredible journey from a rough upbringing in Queens and working in construction to becoming a renowned cybersecurity educator with over 100,000 YouTube subscribers. Patrick gets real about the misconceptions of the industry, specifically regarding entry-level salaries and the "get rich quick" mentality. He also shares deep insights on the importance of mastering IT fundamentals before attempting to hack, and why building a personal brand is crucial for career longevity.00:00 Pivoting to cybersecurity after getting phished19:07 On starting your own business43:06 Bridging the missing link in cyber education53:43 Don't expect a $100k salary after a 6-month program1:04:25 Browsers and cookies are the most attractive targets for hackers1:13:16 Operational differences between Red Teaming and Penetration Testing🔔 Follow Patrick and John on:https://www.linkedin.com/in/infosecpat/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0