Be Fearless Podcast by SquareX

Craig Taylor, Founder and CEO of CyberHoot, joins us to explain why traditional phishing tests that punish employees are fundamentally broken. Drawing from his decades-long cybersecurity career, Craig shares the story of a $24,000 gift card scam that inspired him to build CyberHoot - a platform that rewards good security behaviors instead of punishing mistakes. He breaks down why engagement drops when people fail phishing tests, how hackers exploit new employees' eagerness to please, and why teaching cyber literacy in schools could give countries a strategic advantage.0:00 The $24,000 gift card scam that inspired CyberHoot12:34 The problem with "gotcha" phishing tests and the punishment mindset23:09 Browser-based breaches and the weakness of browser AI agents30:26 Why cyber literacy should be taught in schools41:00 Closing thoughts, the parallels between endurance cycling and cyber resilience🔔 Follow Craig and John on:https://www.linkedin.com/in/craigmtaylor/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Clint Kehr brings a unique perspective to cybersecurity, having gone from training personnel in dark web investigations as a former federal agent to transforming penetration testing in one of America's biggest banks. Now a Senior Instructor and Cybersecurity Architect, Clint shares stories from his undercover work, bridging the gap between security teams and developers and what Groundhog Day taught him about leadership and teamwork.0:00 Creating the Dark Web Recognition Guide for law enforcement17:20 Making security training engaging for developers31:29 How browsers are a primary workspace vulnerability38:29 Cloud migration's impact on enterprise security42:59 Building empowered teams using Groundhog Day philosophy🔔 Follow Clint and John on:https://www.linkedin.com/in/clint-k/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Travis Farral, Vice President and CISO at Archaea Energy, joins us to share hard-earned wisdom from securing everything from oil giants to renewable energy startups. In this episode, Travis shares how even non-nation-state actors are getting stronger, the need for browser-level protection and why hiring the wrong person hurts more than not hiring at all. 0:00 What working at large enterprises teaches you about security15:30 On dealing with APTs20:28 Essential security practices the energy industry needs25:25 Why browser security matters when most work happens online30:42 “Pay attention and be creative” and other leadership lessons🔔 Follow Travis and Aleksandra on:https://www.linkedin.com/in/travisfarral/https://www.linkedin.com/in/aleksandra-melnikova-1012/ 🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Tom Hollingsworth, the "Networking Nerd" and Tech Field Day's Event Lead, sits down with SquareX Field CISO John Carse to share his 20+ year journey in enterprise networking and how he helped build one of tech's most influential community events. From troubleshooting school networks to orchestrating conversations between vendors and independent thought leaders, Tom reveals the story behind Tech Field Day's creation, what makes certain technical presentations legendary, and why asking "why" instead of "how" transformed his career from hands-on engineering to strategic advisory.0:00 Building the "Networking Nerd" brand and the origin story of Tech Field Day12:16 What makes a great Tech Field Day delegate15:51 Ken Duda's legendary code quality presentation at Arista18:36 Transitioning from engineer to strategic advisor23:58 Why the browser is now the true endpoint36:01 Never stop learning and ask the right questions🔔 Follow Tom and John on:https://www.linkedin.com/in/networkingnerd/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Olivia Heslinga, founder of AI for Good Denmark and AI literacy consultant, joins SquareX Field CISO John Carse to discuss the (security) implications of AI's rapid evolution. They dive into how browser AI agents can compromise your entire digital life with just basic permissions, why third-party AI tools are essentially viruses infiltrating organizations, and the alarming cognitive debt we're accumulating by outsourcing our thinking to AI. Olivia shares her unique perspective bridging technology, business, and society from Copenhagen, explaining why AI literacy isn't just about using tools properly — it's about understanding on a deeper level and how they affect different aspects of our personal and professional lives.0:00 The importance of auditing your entire infrastructure12:03 Cognitive drift and how AI dependency chips away at critical thinking27:18 Browser AI agents: the new cybersecurity minefield42:57 EU vs US approaches to AI regulation and innovation50:47 How AI literacy paves the way for innovation🔔 Follow Olivia and John on:https://www.linkedin.com/in/olivia-heslinga/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Patrick Benoit, President and Virtual CISO of Cyber Risk Insights, breaks down three decades of cybersecurity evolution and reveals why most organizations keep making the same fundamental mistakes. From protecting global enterprises like Brink's across 53 countries to small manufacturers, Patrick shares insights about the shift from perimeter thinking to zero trust. 0:00 The evolution from perimeter to endpoint security11:03 The four key areas that address 80% of security gaps20:39 Why browsers need to evolve for better security visibility29:39 Hiring for character over skills in cybersecurity35:15 Top 4 lessons from 30 years of experience🔔 Follow Patrick and Aleksandra on:https://www.linkedin.com/in/patricklbenoit/ https://www.linkedin.com/in/aleksandra-melnikova-1012/ 🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Clea Ostendorf, co-founder of Wolfpack Security, breaks down why security programs fail to get developer buy-in and shares her journey from sales to building a security consultancy. She reveals the real problems behind vulnerability management chaos, explains why most pentesting findings are just "boring" basics like outdated versions and hardcoded passwords, and discusses how AI is already disrupting security roles. Clea also dives into the practical challenges of making security work for engineering teams without slowing them down, plus her take on building security communities and the future of the industry.0:00 Building Wolfpack Security with angel investors13:06 Why pentesting findings are boring but critical25:32 On the Field CSO role and community building insights34:55 The most challenging security evolution: AI impact42:07 Getting buy-in through storytelling, not facts🔔 Follow Clea and John on:https://www.linkedin.com/in/clealevinson/ https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Stephen Bennett, Global CISO at Domino's Pizza, shares his unconventional journey from getting electrocuted while tinkering with TVs as a kid to protecting one of the world's largest pizza brands across 12 markets and millions of digital transactions. He discusses unique cybersecurity challenges like credential stuffing attacks, managing security across diverse cultures from Japan to Malaysia, and his famous Netflix phishing test that fooled even his own marketing team.0:00 From art dreams to accidental tech career beginnings10:52 Unique attack vectors targeting Domino's and customer data15:38 Managing cybersecurity across 12 global markets and cultures19:26 Stephen's most successful phishing test — Netflix x Domino's29:59 The most important trait in hiring a cybersecurity professional35:13 Importance of understanding the business aspect of cybersecurity🎙️ Listen On:Apple Podcasts: https://podcasts.apple.com/us/podcast/be-fearless-podcast-by-squarex/id1750854064Spotify: https://podcasters.spotify.com/pod/show/getsquarex🔔 Follow Stephen and Aleksandra on:https://www.linkedin.com/in/stephen-bennett-944bb511/ https://www.linkedin.com/in/aleksandra-melnikova-1012/ 🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Eric Gray,  BeLux CISO at Kyndryl, shares his unique journey from Royal Bank of Canada to becoming one of only two Canadians living in Luxembourg. In this episode, he also discusses the cybersecurity landscape across highly regulated European environments, the critical importance of supporting women in cybersecurity as a board member of Women Cyber Force, and why AI agents are creating unprecedented security challenges. 0:00 Eric's cybersecurity journey and moving halfway across the globe8:00 Advancing women in cybersecurity as a male advocate15:18 Breaking down barriers in STEM education23:39 War stories in security incident preparedness and browser security29:32 Building security programs that enable business🔔 Follow Eric and Aleksandra on:https://www.linkedin.com/in/eric-gray-cybersecurity/ https://www.linkedin.com/in/aleksandra-melnikova-1012/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

John Dunne, Head of Security at Grant Thornton UK, shares his remarkable 30-year journey from training as a chef to becoming one of the UK's most experienced cybersecurity leaders. John reveals why recruiting people from hospitality backgrounds makes better security professionals than traditional tech graduates, and explains why the decades-old Nigerian 419 scam is still fooling people today. He breaks down balancing security with business productivity and offers practical advice for breaking into cybersecurity.0:00 From chef to cybersecurity: John's unexpected career pivot7:34 Breaking into cybersecurity without a technical background12:34 Browser security challenges and AI-powered attacks20:15 Managing security incidents and crisis response30:58 The most persistent security mistake after 30 years and career advice🔔 Follow John and Aleksandra on:https://www.linkedin.com/in/john-dunne-a0830611/ https://www.linkedin.com/in/aleksandra-melnikova-1012/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0