Podgo

Friendly Fire: Mitigating Employee Risk

Recent studies show that 82% of cyber incidents result from unintended human behavior. Further, the errant behavior of only 5% of all users creates most of this risk. This is pretty alarming, and yet no one is talking about it. Modifying the behavior of these few individuals can have a force multiplier effect on reducing overall enterprise cyber risks. Welcome to Friendly Fire: Mitigating Unintentional User Risk. Where we explore Human Risk, to raise awareness across the industry, and stimulate discussion on how we can create a security culture that better protects all of us, emphasizes person...

Author

Podgo

Category

Technology

Podcast website

www.spreaker.com

Latest episode

Sep 24, 2025

Where to listen?

Podcasts in the app Replaio Radio Coming soon

Podcasts are coming to the app soon. Install now and be the first to see a whole new take on podcasts

Get it on Google Play Install for free Android 5M+ downloads · 4.8 rating iOS soon

Episodes

The View From The Trenches: The Role Of Leaders And Human Resources In Human Risk Management Kristina Belnap Of HealthEquity 24.09.2025

Security awareness training is not enough to protect ourselves from cyber risks. But how can we control these risks? Today, Kristina Belnap , the SVP and CISO of HealthEquity , brings the role of human resources in bringing human risk management into the organization. Educating everyone on AI and bringing awareness into the space are keys to protecting information and securing our environments. Kr...

The Theoretical Floor And The Importance Of Resilience With Allison Miller Of Cartomancy Labs 17.09.2025

Cybersecurity is a high-stakes card game, and sometimes, it's not about winning every hand but mastering the game as a whole. In this episode, we welcome Allison Miller of Cartomancy Labs for an illuminating discussion on "The Theoretical Floor" and why resilience is the secret sauce to defending against modern cyber threats. She expounds on the world of human risk, shedding light on how we can re...

Understanding Human And API Security With Karl Mattson 10.09.2025

For an API security platform to succeed in today’s fast-paced society, it must be widely familiar with the current trends of the digital world and keep its most skilled people for a long time. Tyler Shields sits down with Karl Mattson , CISO at Noname , to discuss these two vital factors. Karl explains how they approach cybersecurity as an up-to-date organization, the best way to keep up with APIs...

Dissecting The Human Issues In Product Security With Joern Freydank 03.09.2025

Product security has greatly changed over time. How does human contribute to the changes going on? In this episode, Joern Freydank , a Lead Cyber (Application) Security Engineer, dissects the human issues in product security. He emphasizes the value of humans in providing a higher level of order intelligence operating the systems. Joern also shares the key component of the anti-patterns and discus...

Securing Digital Health: A Journey Into Healthcare Cybersecurity With Esmond Kane 27.08.2025

We should embrace the human side of cybersecurity, where knowledge and vigilance become our most potent weapons in the age of digital health. In this episode, Esmond Kane , a CISO at a leading healthcare organization, sheds light on the critical role of human risk management in safeguarding our digital lives. He emphasizes that no matter the technological advancement, the human touch will always b...

Navigating The Intersecting Worlds Of Cyber Security Threats, AI, And Government Policy With Mark Weatherford 20.08.2025

As technology advances, so does the threat posed in cyberspace. In this episode, Mark Weatherford , the SVP and Chief Security Officer at AlertEnterprise , navigates us through cyberspace and how AI and Government Policy impact change in cybersecurity threats. There is a monumental shift in positioning, treating, and regulating CISOs within the company, and generative AI has contributed much to th...

Stop Dancing With Risk And Start Driving User Cyber Behaviors With Andre Russotti 13.08.2025

People make mistakes, and these unintentional mistakes drastically impact an organization. You shouldn't dance with risks and wait for cyber attacks to steal your stage. It's time to take action with Andre Russotti of Altria Client Services as he explains how Zero Trust does not solve the user-behavior problem that causes insider risks. Would you relax security controls? You better hop on to this...

IAM And Zero Trust: Preparing For A New Era In Cyber Defense With Christine Owen 06.08.2025

In this episode, we unravel the complexities of Identity and Access Management (IAM) and explore the cutting-edge concept of Zero Trust. Join host Tyler Shields as he sits with  Christine Owen , a recovering attorney who found solace in IAM and Zero Trust principles. Christine sheds light on the modern challenges of protecting digital assets in an ever-evolving threat landscape. Christine introduc...

Greg Silberman: Risk And Privacy... Can You Choose One? 30.07.2025

Balancing risk and privacy is a delicate dance, but with the right solutions and strategies, organizations can effectively manage potential threats to their security while protecting their users' data. For today’s episode, Matthew Stephenson interviews renowned privacy and technology attorney Greg Silberman to discuss the fascinating and complex world of risk and privacy. With years of experience...

Brian Proctor: Keeping The People Cool, Warm And Secure 23.07.2025

If there is one sector that is keeping people cool, warm, and secure, that would be the utility sector. They are the ones who have been ensuring that our basic needs are well-provided and, in that process, well-functioning for decades. However, with the cyber element growing and taking root in the sector, threats to how utilities are delivered have become a concern. In this episode, Matthew Stephe...

Kip Boyle: People Make the Cybersecurity World Go Around 16.07.2025

There are a lot of factors that cause problems within the cybersecurity space, but the human element ranks as the top reason. With the huge communication chasm among IT experts, C-suite leaders, and hiring managers, there is still work to be done in bridging these gaps. Matthew Stephenson discusses how to solve this disconnect with the Founder and CEO of Cyber Risk Opportunities , Kip Boyle . They...

Theresa Payton: Security And Privacy In The World Of Insider Threats 09.07.2025

"Privacy isn't dead, but people need to be made more aware of the invasiveness of the internet of things, digital devices, and tracking." – Theresa Payton. Every company has a duty of care to ensure they are tracking their employees on a certain level to ensure people are who they say they are, working when they say they're working, and taking care of the intellectual property and customer data. I...

Tim Callahan: Is Any Fire Friendly? 02.07.2025

This digital information age puts businesses vulnerable not only to external attacks but internal as well. Even more threatening when these happen to those in a highly-regulated industry with a significant amount of information needed securing. Suffice to say, friendly fires happen and must be dealt with as much as other threats. In this episode, Tim Callahan , the Senior Vice President and Global...

Insight Global: The Human-Centric Side Of Security With Jonathan Waldrop 25.06.2025

Insight Global is a massive company that connects talent with the companies that need that talent. As such, it plays a critical role in the cybersecurity industry. In this episode, Jonathan Waldrop , the Senior Director at Insight Global, talks about how the company uses the human element when it comes to security. Jonathan discusses that changing the mindset of security practitioners educates cus...

Kai Roer - Awareness... Culture... Behavior... OH MY! 18.06.2025

Awareness, culture, and behavior. How are these things related to technology and security? In this episode, Kai Roer, the author of Build a Security Culture, provides some insights into the importance and impact of security culture. Kai highlights that there are social and cultural triggers that drive human behavior. Matthew Stephenson and Kai Roer also touch on Artificial Intelligence and Machine...

Ira Winkler: Stop Relying On The Human Firewall 11.06.2025

Data security awareness is indeed valuable, but how is it actually framed? Most people in the security space rely solely on the human firewall, and that is where the problem occurs. In this episode, Ira Winkler , author of Security Awareness for Dummies , explains why organizations should stop depending on user awareness alone in protecting their data. He explains how strong passwords may still pr...

Chad Skipper: The Landscape Looks Partly Cloudy With Major Chances Of Breaches 04.06.2025

Most organizations don’t want to have adversarial conversations about cybercrime. They either don’t care enough or they don’t really understand it. But this lack of visibility within your network can result in a huge risk to your organization. Not knowing if you are dealing with an insider threat is scary. You can't prepare for it or set up countermeasures. If you can't see it, you can't protect i...

Tim Brown: Lessons Learned When Crisis Strikes 28.05.2025

When a cybersecurity breach happens, expect things to go crazy. You will have to deal with legal teams and an all-out investigation with the authorities. You will have to find out who did it as soon as possible. Is it an attack from the outside or due to neglect from someone from the inside? How are your customers doing? How can you circumvent future attacks? There are a lot of things that you can...

Gary Barnabo and Eric Eames: Inspiring the C Suite to Think Different 21.05.2025

A lot of cybersecurity assessments are done with a checklist of how many high-risk, medium-risk, and low-risk vulnerabilities there are. It's very non-human, which is something a lot of people will get turned off by. If you truly want executive leaders to start paying attention to cybersecurity, you need to present it in a more humane so that it’s more relatable. Join Matt Stephenson as he talks t...

Elsine Van Os: Securing Humanity... One Person at a Time 14.05.2025

Securing Humanity is a collective responsibility. In this episode, Matthew Stephenson interviews Elsine Van Os, the founder and CEO of Signpost Six, Insider Risk Management consultancy firm with behavioral science at its heart. Elsine discusses cybersecurity and risk management within the organization, and shares the psychological aspect of it all. Elsine also drops gold nuggets and information bo...

Eric Anderson: How Do You Secure Everything? 07.05.2025

Adobe is one of the most ubiquitous brands worldwide, being present in almost every tool or industry imaginable these days. How do you secure everything and keep data safe from cyberattacks when running such a huge company? Eric Anderson , Director of Enterprise Security at Adobe , joins Matthew Stephenson to discuss how they approach cybersecurity within a team of over 30,000 employees and more t...

Christine Gadsby: Are Insider Threats Always Intentional? 30.04.2025

In this digital age, leaving your data unprotected will surely invite cyber attackers to take advantage of your precious information. On top of ensuring a foolproof strategy that keeps away hackers, you must also be wary of insider threats that may jeopardize your data. Matthew Stephenson chats with Christine Gadsby , the Vice President of Product Security Operations at BlackBerry , to discuss how...

Derek Fisher: Securing From The Inside Out 23.04.2025

How secure is your security? How can you ensure it is free from defects and critical vulnerabilities? In this episode,  Derek Fisher , the author of the   Application Security Program Handbook , shares how developers can position themselves to minimize risk in the space created. Derek tries to map everything back to risks in developing software to ensure security free from internal and external th...

Kurtis Minder- Whisper To The Insiders To Protect Them From The Outsiders 16.04.2025

More often than not, the first thing that comes to mind with the term "cyber threat" is something external. But did you know that internal threats are just as serious as external ones? In this episode, Matthew Stephenson sits down with technologist  Kurtis Minder , the Founder of  GroupSense , to discuss how to watch out for cybersecurity attacks from the outside and issues that happen inside your...

Arun Vishwanath: The Right Intent And The Wrong Approach 09.04.2025

In this new technological age, it may seem like we have already made so much progress towards advancing with science, machines, software, and technology as a whole—but we actually still may not be as far off as we think we are. In this episode, Matthew Stephenson sits down with  Arun Vishwanath  and discusses cybersecurity, how much it has done so far, how many more problems it still hasn't solved...

Listen to the Friendly Fire: Mitigating Employee Risk podcast in Replaio

Radio and podcasts in one app - free, with no sign-up. Install today and do not miss the launch

Get it on Google Play

Replaio is not a podcast publisher; show names, artwork and audio belong to their authors and are distributed through public RSS feeds.