Afternoon Cyber Tea with Ann Johnson

David Gee, a veteran CISO, CIO, board advisor, and author, joins Ann Johnson, CVP of Cybersecurity, Microsoft, on this week’s episode of Afternoon Cyber Tea. Drawing on decades of experience and insights from his books, Gee explores the gap between theory and reality for security leaders, the role of imposter syndrome in professional growth, and why embracing discomfort is essential to effective leadership. The conversation examines how CISOs can balance risk management with business enablement, reset expectations with boards and executives, and build resilient, team-driven security cultures. Gee also shares perspectives on mentorship, long-term sustainability in the role, and how the CISO must evolve from a control-focused operator to a strategic influencer in an era shaped by AI, regulation, and constant change.    Resources:  View David Gee on LinkedIn  View Ann Johnson on LinkedIn     Related Microsoft Podcasts:   Microsoft Threat Intelligence Podcast   The BlueHat Podcast    Uncovering Hidden Risks           Discover and follow other Microsoft podcasts at microsoft.com/podcasts      Afternoon Cyber Tea with Ann Johnson is produced by Microsoft, Hangar Studios and distributed as part of N2K media network.

On this special best of episode of Afternoon Cyber Tea, Ann revisits six standout conversations from the past year with Amy Edmondson, Christina Morillo, Frank X. Shaw, Hugh Thompson, Troy Hunt, and Jack Rhysider. Together, these moments highlight the evolving human and technical challenges shaping cybersecurity today, from trust and transparency to breach response, leadership under pressure, AI disruption, and the realities facing defenders on the front lines. This curated collection offers a fast-moving look at the insights, lessons, and big ideas that defined the season.    Resources:   View Ann Johnson on LinkedIn       Related Microsoft Podcasts:   Microsoft Threat Intelligence Podcast   The BlueHat Podcast    Uncovering Hidden Risks            Discover and follow other Microsoft podcasts at microsoft.com/podcasts         Afternoon Cyber Tea with Ann Johnson is produced by Microsoft, Hangar Studios and distributed as part of N2K media network. 

Dr. Lorrie Cranor, Director of the CyLab Security and Privacy Institute at Carnegie Mellon University joins Ann Johnson, Corporate Vice President, Microsoft, on this week's episode of Afternoon Cyber Tea to discuss the critical gap between security design and real-world usability. They explore why security tools often fail users, the ongoing challenges with passwords and password less authentication, and how privacy expectations have evolved in an era of constant data collection. Dr. Cranor emphasizes the importance of user-centered design, practical research, behavioral insights, and simpler, more transparent systems to help CISOs build security programs that truly work for people.    Resources:   View Lorrie Cranor on LinkedIn             View Ann Johnson on LinkedIn       Related Microsoft Podcasts:   Microsoft Threat Intelligence Podcast   The BlueHat Podcast    Uncovering Hidden Risks   Discover and follow other Microsoft podcasts at microsoft.com/podcasts      Afternoon Cyber Tea with Ann Johnson is produced by Microsoft, Hangar Studios and distributed as part of N2K media network. 

Troy Hunt, founder of Have I Been Pwned, joins Ann on this week's episode of Afternoon Cyber Tea to explore what billions of breached records reveal about attacker behavior, human weakness, and the state of breach disclosure. He explains why organizations often hesitate to notify victims, how breach fatigue shapes user responses, and why transparency is both powerful and challenging. Troy also shares how he personally fell for a phishing attack, illustrating that even experts have moments of vulnerability. The conversation points toward a more resilient future and what it will take for both people and organizations to stay ahead of evolving threats.    Resources:   View Troy Hunt on LinkedIn  View Ann Johnson on LinkedIn     Related Microsoft Podcasts:   Microsoft Threat Intelligence Podcast   The BlueHat Podcast    Uncovering Hidden Risks           Discover and follow other Microsoft podcasts at microsoft.com/podcasts      Afternoon Cyber Tea with Ann Johnson is produced by Microsoft, Hangar Studios and distributed as part of N2K media network. 

Brad L. Mortensen, President of Weber State University, joins to discuss how higher education is evolving to meet cybersecurity workforce demands. He highlights the importance of open enrollment and stackable credentials that cater to diverse backgrounds. Brad emphasizes the need for durable human skills like problem-solving alongside technical training. He also explores the role of AI in classrooms, urging responsible use, and shares insights on forming industry partnerships to create hands-on experiences for students.

Amy Hogan-Burney, Corporate Vice President of Customer Trust and Security at Microsoft joins Ann on this week's episode of Afternoon Cyber Tea to discuss her unexpected journey into cybersecurity, Microsoft’s evolving approach to combating global cybercrime, and the importance of collaboration across the private and public sectors. She reflects on lessons from the latest Microsoft Digital Defense Report, the growing impact of AI on security, and the challenges of regulatory complexity. Amy also shares insights on cyber diplomacy, building strong legal-technical partnerships, and the career advice that’s guided her path all while remaining optimistic about the future of cybersecurity.     Resources:   View Amy Hogan-Burney on LinkedIn     View Ann Johnson on LinkedIn        Related Microsoft Podcasts:   Microsoft Threat Intelligence Podcast   The BlueHat Podcast    Uncovering Hidden Risks            Discover and follow other Microsoft podcasts at microsoft.com/podcasts       Afternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of N2K media network.    

Darren Kane, Chief Security Officer at NBN, Australia’s national broadband network joins Ann on this week's episode of Afternoon Cyber Tea to shares insights from his unique journey through law enforcement, financial enforcement, and corporate security, and how those experiences shaped his leadership of a converged security organization that unites physical and cyber defense. He discusses the challenges of securing critical infrastructure across a vast continent, the importance of collaboration between government and industry, and how data convergence and AI are reshaping resilience strategies. Darren also reflects on the evolving role of the CSO, the value of holistic risk management, and why nurturing human resilience is just as vital as technological defenses.    Resources:   View Darren Kane on LinkedIn   View Ann Johnson on LinkedIn       Related Microsoft Podcasts:   Microsoft Threat Intelligence Podcast   The BlueHat Podcast    Uncovering Hidden Risks           Discover and follow other Microsoft podcasts at microsoft.com/podcasts      Afternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of N2K media network. 

Frank X. Shaw, Chief Communications Officer at Microsoft, provides a fascinating look at the intersection of communication and cybersecurity. He emphasizes the vital role of transparency and trust during cyber incidents. Frank discusses how breaking down silos enhances collaboration and the transformative impact of AI on crisis communications. He also shares strategies for combating misinformation and the importance of internal communication in fostering a culture of security awareness. Ultimately, he advocates for learning from failures as essential for growth in cyber resilience.

Volker Wagner, Chief Information Security Officer at BASF, joins Ann on this week's episode of Afternoon Cyber Tea to  talk shop on what it really takes to defend one of the world’s largest chemical companies. From his early days in auditing to leading global cyber for high-stakes industrial and research environments, Volker shares battle-tested insights on resilience, Zero Trust, and the fundamentals that never go out of style. He dives into the hard lessons learned from ransomware, the realities of third-party risk, and how AI is reshaping everything from incident response to supply chain security. Most importantly, he makes the case for why trust, communication, and culture aren’t soft skills—they’re survival skills for modern CISOs.  Resources:   View Volker Wagner on LinkedIn           View Ann Johnson on LinkedIn    Related Microsoft Podcasts:   Microsoft Threat Intelligence Podcast   The BlueHat Podcast    Uncovering Hidden Risks           Discover and follow other Microsoft podcasts at microsoft.com/podcasts      Afternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of N2K media network.

Matt Rowe, Chief Security Officer at Lloyds Bank, joins Ann on this week's episode of Afternoon Cyber Tea to explore the future of cybersecurity. They discuss the accelerating pace of change in the industry, from AI and automation to data-driven security practices and identity management. Matt shares how Lloyds Bank is modernizing its approach by reducing friction, upskilling teams, and fostering a growth mindset, while also laying foundations for resilience and agility across the financial ecosystem. The conversation highlights why now is the moment to rethink security strategies and how optimism, creativity, and collaboration can help defenders stay ahead.    Resources:   View Matt Rowe on LinkedIn     View Ann Johnson on LinkedIn        Related Microsoft Podcasts:   Microsoft Threat Intelligence Podcast   The BlueHat Podcast    Uncovering Hidden Risks            Discover and follow other Microsoft podcasts at microsoft.com/podcasts       Afternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of N2K media network.