
Afternoon Cyber Tea with Ann Johnson
Ann Johnson, Corporate Vice President and Deputy Chief Information Security Officer at Microsoft, talks with cybersecurity thought leaders and influential industry experts about the trends shaping the cyber landscape and what should be top-of-mind for the C-suite and other key decision makers. Ann and her guests explore the risk and promise of emerging technologies, as well as the impact on how humans work, communicate, consume information, and live in this era of digital transformation. Please note, the opinions expressed by guests on this podcast are their own and are not endorsed by, nor do they necessarily reflect opinions of, Microsoft or Ann Johnson.
Latest episodes

Nov 1, 2022 • 26min
Protecting our Cyber Defenders’ Mental Health
Dr. Ryan Louie, a board-certified psychiatrist focusing on the mental health impact of cybersecurity, joins Ann on this week's episode of Afternoon Cyber Tea. The two discuss the growing issue of mental illness among cybersecurity professionals, the link between psychiatry and security, some of the problems commonly seen, and which aspects of cybersecurity contribute to them. Disclaimer: The content and views expressed do not constitute medical advice and are not a substitute for professional medical advice, diagnosis, or treatment. If you need help, please contact your medical provider. In This Episode You Will Learn:
What may be contributing to the degrading mental health of cyber defenders
How attackers might clinically exploit the mental health of those in cyber
General wellbeing practices and coping methods
Some Questions We Ask:
When did Dr. Louie’s interest in the mental health of cyber security begin, and why?
Are cyber mental challenges magnified or amplified more than in the past?
What can leaders do to support the mental health and well-being of their teams?
Resources: Article: “The Psychiatry of Entrepreneurship” by Dr. Ryan Louie Dr. Ryan Louie - Psybersecurity Clinic website Visit Dr. Ryan Louie on Twitter View Ryan Louie on LinkedIn View Ann Johnson on LinkedIn Related Microsoft Podcasts: Listen to: Uncovering Hidden Risks Listen to: Security Unlocked Listen to: Security Unlocked: CISO Series with Bret Arsenault Discover and follow other Microsoft podcasts at microsoft.com/podcasts Afternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of The CyberWire Network.

Oct 18, 2022 • 32min
Breaking into the Cybersecurity Industry
AJ Yawn, Co-Founder and CEO at ByteChek, and a Founding Board Member of the National Association of Black Compliance and Risk Management Professionals, joins Ann this week on Afternoon Cyber Tea to unpack this issue. With more than 700,000 open cybersecurity jobs in the US alone, the cyber industry faces a critical talent shortage. Yet, with this opportunity, many still find it challenging to break into the industry. Ann and AJ discuss the importance of sourcing from broader pools of talent, what skills business leaders should really be looking for, programs and communities that people looking to get into cyber security should be aware of, and how AJ thinks we can drive awareness of the wide variety of roles available in the industry. In This Episode You Will Learn:
Specific qualities and mindsets that lead to a successful career in cyber
Why it's essential to attract more diverse talent
How someone early in their career can market themselves to potential employers
Some Questions We Ask:
What specific courses or certifications are essential for people to be thinking about?
How can the education system prepare people for careers in cyber?
Why have employers had such a high bar of entry into their cyber programs?
Resources: View AJ Yawn on LinkedIn View Ann Johnson on LinkedIn Related Microsoft Podcasts: Listen to: Uncovering Hidden Risks Listen to: Security Unlocked Listen to: Security Unlocked: CISO Series with Bret Arsenault Discover and follow other Microsoft podcasts at microsoft.com/podcasts Afternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of The CyberWire Network.

Oct 4, 2022 • 36min
Cyber Resiliency with Sounil Yu
Sounil Yu, Chief Information Security Officer and Head of Research at JupiterOne, joins Ann on this week's episode of Afternoon Cyber Tea. Ann and Sounil discuss the importance and evolution of cyber resilience and what organizations can do today to build resilience for the future. Sounil is a security innovator with over 30 years of experience creating, breaking, and fixing computer and network systems. He is the creator of the Cyber Defense Matrix and the DIE Resiliency Framework, teaches security as an Adjunct Professor, co-chairs Art into Science: A Conference on Defense, and advises many startups. In This Episode You Will Learn:
Why we need a new approach to cyber resilience
Who is responsible for cyber resiliency and who should be involved
How organizations can build the agility and ability to stay ahead of cybercriminal
Some Questions We Ask:
What is the responsibility and relationship between CISOs, and board members?
Why is advocating for a new approach to resiliency so important?
What investments should leaders be making to improve their cyber resiliency?
Resources: View Sounil Yu on LinkedIn View Ann Johnson on LinkedIn Related Microsoft Podcasts: Listen to: Uncovering Hidden Risks Listen to: Security Unlocked Listen to: Security Unlocked: CISO Series with Bret Arsenault Discover and follow other Microsoft podcasts at microsoft.com/podcastsAfternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of The CyberWire Network.

Sep 20, 2022 • 40min
Microsoft Security CTO on Future of Cyber
Michal Braverman-Blumenstyk, Chief Technology Officer for Microsoft Security, top Israeli tech leader, and one of the world's highest-ranking women in the cybersecurity industry joins Ann on this week's episode of Afternoon Cyber Tea. Michal and Ann discuss what is keeping cyber leaders up at night, why Israel is a worldwide leader in cybersecurity technology, and what investments Microsoft is making to create a more safe and secure future for all. In This Episode You Will Learn:
A brief history of Israeli cyber innovation
The Microsoft Security CTO perspective on top trends and technologies
The importance of diversity & inclusion in the cybersecurity industry
Some Questions We Ask:
What are some of your favorite examples of Israeli cyber innovation?
Why do you think IoT security is such an essential area of focus?
How should we deal with the current labor shortage in security?
Resources: View Michal Braverman-Blumenstyk on LinkedIn View Ann Johnson on LinkedIn Related Microsoft Podcasts: Listen to: Uncovering Hidden Risks Listen to: Security Unlocked Listen to: Security Unlocked: CISO Series with Bret Arsenault Discover and follow other Microsoft podcasts at microsoft.com/podcastsAfternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of The CyberWire Network.

Sep 6, 2022 • 43min
Cyber Insurance Past, Present, and Future
Dr. Josephine Wolff, associate professor of cybersecurity policy within The Fletcher School at Tufts University, joins Afternoon Cyber Tea this week to discuss the history, challenges, and opportunities in cyber insurance. What was first developed in the late 1990s as protection against computer viruses, cyber insurance has evolved into an incredibly complex and, in some cases, tension-filled industry. Ann and Dr. Wolff discuss the cyber insurance industry’s initial goals, the differences in cyber insurance policies, and the points of view on ransomware insurance directly funding cybercrime. In This Episode You Will Learn:
What types of risks do insurers cover, and how they are designing and charging for policies
How can we help policymakers get ahead of the curve and drive change in security
Why we need greater cooperation and data sharing when it comes to threat intelligence
Some Questions We Ask:
What were the initial motivations behind cyber insurance providers?
What is some practical advice you would give to insurers looking to better support their customers?
Are cyber insurers positively motivating businesses and leaders for the better?
Resources: Dr. Wolff's new book, Cyberinsurance Policy is available now. View Dr. Wolff on LinkedIn View Ann Johnson on LinkedIn Related Microsoft Podcasts: Listen to: Uncovering Hidden Risks Listen to: Security Unlocked Listen to: Security Unlocked: CISO Series with Bret Arsenault Discover and follow other Microsoft podcasts at microsoft.com/podcastsAfternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of The CyberWire Network.

Aug 23, 2022 • 45min
What’s Influencing Cyber Capital Investment
Dave DeWalt, Founder and Managing Director of NightDragon, and Jay Leek, Managing Director and Co-founder of both Syn Ventures and Clear Sky Security, join Ann on this week's episode of Afternoon Cyber Tea. Investing in companies producing the latest technology that cybersecurity firms depend on, like the latest artificial intelligence, sounds like an exciting opportunity, but who has the best product? Getting in on the ground floor is appealing, but where do you start? Dave and Jay chat with Ann about why cyber is so attractive to investors, their advice for founders currently starting their investment journey, and what new technology has their attention. In This Episode You Will Learn:
Why we are witnessing ballooning venture capital investments in cyber
What technology is currently capturing investors' attention
How current events are shaking up the world of cyber venture capital
Some Questions We Ask:
Why is cyber so attractive to investors?
What advice do you have for cyber founders starting their investment journey?
When you work with security founders, what qualities are you looking for?
Resources: View Dave DeWalt on LinkedIn View Jay Leek on LinkedIn View Ann Johnson on LinkedIn Learn about NightDragonLearn about SynVenturesRelated Microsoft Podcasts: Listen to: Uncovering Hidden Risks Listen to: Security Unlocked Listen to: Security Unlocked: CISO Series with Bret Arsenault Discover and follow other Microsoft podcasts at microsoft.com/podcastsAfternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of The CyberWire Network.

Aug 9, 2022 • 35min
Addressing the Critical Cybersecurity Talent Shortage
M. K. Palmore, Director, Office of the CISO, for Google Cloud, and diversity & inclusion advocate, joins Ann on this week's episode of Afternoon Cyber Tea to discuss the cyber talent shortage, including why leaders need to drive greater inclusivity in the industry, resources for individuals to build their skills and networks, and why talent sourcing is just one issue in building greater representation. In This Episode You Will Learn:
What a talent shortage means for businesses and organizations
Why is there a problem getting started in an industry with such high demand
How leaders can support women and underrepresented minorities in the industry
Some Questions We Ask:
Why has the cyber talent shortage become so acute in the last few years?
What new methods would you recommend to leaders to bring new talent?
How should leaders think about retainment and sponsorship for advancement?
Resources: View M. K. Palmore on LinkedIn View Ann Johnson on LinkedIn Read more on how Microsoft is helping address the cybersecurity skills gap Explore cybersecurity learning pathways on Microsoft Learn and LinkedIn Learning Learn about Cyversity Related Podcasts: Listen to: Uncovering Hidden Risks Listen to: Security Unlocked Listen to: Security Unlocked: CISO Series with Bret Arsenault Discover and follow other Microsoft podcasts at microsoft.com/podcastsAfternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of The CyberWire Network.

Jun 28, 2022 • 31min
The Journey to Greater Representation
Jeff Rivera, American author, producer, and co-founder of Collective 5 Entertainment, joins Ann on this week's episode of Afternoon Cyber Tea to discuss the importance of diversity and inclusion, the impact of underrepresentation, and his journey from poverty to renowned world speaker. Jeff is an internationally sought-after speaker and author with an impressive body of work, including over 200 books, television, radio, and digital publications. In This Episode You Will Learn:
Jeff's journey from American poverty to mentor, writer, and production company owner
The impact of under-representation
The importance of seeing and celebrating differences in people
Some Questions We Ask:
How does the lack of representation impact people from marginalized communities?
Why is it important to recognize the differences between people?
How are you accelerating progress in representation through current and future projects?
Resources: View Jeff Rivera on LinkedIn View Ann Johnson on LinkedIn Related: Listen to: Security Unlocked Listen to: Security Unlocked: CISO Series with Bret Arsenault Discover and follow other Microsoft podcasts at microsoft.com/podcastsAfternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of The CyberWire Network.

Jun 14, 2022 • 17min
Implementing Stronger Authentication
Dave Bittner, Hacking Humans podcast host and a co-founder of CyberWire, interviews Ann Johnson about social engineering attacks, the future of passwordless account adoption, authentication tools, and Ann‘s perspective on the future development of technology to mitigate risks on this week's episode of Afternoon Cyber Tea. Dave’s career spans more than two decades in digital media, video, television production, and interactive technology. He’s also one of the pioneers of non-linear editing and digital storytelling. In This Episode You Will Learn About:
How to identify potential social engineering and cyber attacks
The future of passwordless account adoption and the necessary steps to get there
The future of authentication
Some Questions We Ask:
What are ways to identify potential social engineering attacks?
What tools are on the horizon for the fight against cyberattacks?
What is the role of organizations in improving technology and applications to protect end-users?
Resources: Listen to Hacking Humans View Dave Bittner on LinkedIn View Ann Johnson on LinkedIn Related: Listen to: Security Unlocked: CISO Series with Bret Arsenault Listen to: Security Unlocked Discover and follow other Microsoft podcasts at microsoft.com/podcastsAfternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of The CyberWire Network.

May 31, 2022 • 29min
Mitigating Future Risks
Katie Nickels, Director of Intelligence for Red Canary, joins Ann on this week's episode of Afternoon Cyber Tea. Katie has worked in security operations centers and cyber threat intelligence for nearly a decade, with degrees from Smith College and Georgetown University. Ann and Katie discuss the impact cyberattacks have on operating systems, the ransomware ecosystem, and recommendations for mitigating future risks. In This Episode You Will Learn:
Insights about the ransomware ecosystem and the future of cybersecurity.
How to ensure your Patch Management Program is optimized to mitigate threats and risks.
How, when, what, and to whom to communicate with after an intrusion.
Some Questions We Ask:
How can organizations share information about attacks without greater risk?
What are the best practices when trying to protect your information?
What would you consider beneficial when investing against inside threats?
Resources: View Katie Nickels on LinkedIn View Ann Johnson on LinkedIn Related: Listen to: Security Unlocked: CISO Series with Bret Arsenault Listen to: Security Unlocked Discover and follow other Microsoft podcasts at microsoft.com/podcastsAfternoon Cyber Tea with Ann Johnson is produced by Microsoft and distributed as part of The CyberWire Network.