Be Fearless Podcast by SquareX

Eric Mizell, Field CTO and VP Field Engineering at Keyfactor, breaks down why digital certificates are the security blind spot most companies don't know they have. From his early days fixing Novell networks to helping enterprises manage millions of IoT identities, Eric shares war stories about expired certificates that couldn't send breach alerts, private keys stored in network folders with the same password, and how AI is intelligently helping threat actors make decisions on how to attack. 0:00 PKI hierarchies matter for enterprise security14:09 Expired code signing certificates are still risky17:53 Should you run your own CA or outsource it?25:08 The importance of knowing your "cryptographic posture"36:49 Death of passwords and the trust crisis in browsers45:05 AI-driven attacks in the cybersecurity arms race🔔 Follow Eric and John on:https://www.linkedin.com/in/eric-mizell-8864977/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Ben Waugh, BISO at Datavant, drops some hard truths about healthcare security - like how the most damaging breaches aren't from sophisticated nation-state actors, but from attackers exploiting basic gaps while security teams obsess over complex threats. With nearly two decades securing critical infrastructure at companies like Redox and Twilio, Ben shares war stories from the trenches, explains why browser-managed medical devices are becoming a new entry point for attackers, and reveals how AI can both 10x both productivity and shadow IT chaos. 0:00 Why hospitals keep getting hacked by “basic” attacks14:21 Phishing 2.0 and how AI is turning Shadow IT into a security nightmare25:52 Building security programs where patient safety comes first36:22 What most professionals get wrong about the CISO role🔔 Follow Ben and Aleksandra on:https://www.linkedin.com/in/ben-waugh-2a51436b/https://www.linkedin.com/in/aleksandra-melnikova-1012/ 🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Sandip Wadje, Managing Director and Global Head of Emerging Technology Operational Risks & Intelligence at BNP Paribas, reveals the hidden challenges of securing one of the world's largest banks in an AI-driven world. From his unconventional journey starting in a TV factory to now influencing global regulatory guidelines, Sandip shares how the browser is a gigantic attack surface for banks, the harmfulness of redundant security controls and how communication is the most important soft skill one should have. 0:00 Security for AI and AI for security come hand in hand13:41 Threat actors aren't just targeting privileged users21:33 Unlearning is key to building a high-performing diverse team25:33 Controls fatigue from stacking too many security tools32:38 “What you often perceive as resistance is lack of clarity”🔔 Follow Sandip and Aleksandra on:https://www.linkedin.com/in/digitaldefender/https://www.linkedin.com/in/aleksandra-melnikova-1012/ 🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Martin Holzworth, CISO at UnitingCare Queensland, brings 25 years of cybersecurity to this episode of the Be Fearless Podcast. In this conversation with Aleksandra Melnikova, Martin shares hard-won insights about protecting patient data, managing supply chain risks in healthcare, and why securing browsers has become non-negotiable in today’s threatscape. He discusses the unique challenges of healthcare security where patient safety is at stake and offers practical advice for building security culture — from teaching password hygiene through song lyrics to taking business leaders on the security journey.0:00 The unique challenges of healthcare cybersecurity13:43 "Take your business on the journey with you"22:35 Evolving ransomware threats in healthcare30:09 Diverse backgrounds strengthen cyber defense teams36:29 AI security fails without governance and risk appetite🔔 Follow Martin and Aleksandra on:https://www.linkedin.com/in/martinholzworth/https://www.linkedin.com/in/aleksandra-melnikova-1012/ 🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Brad Berkson, CEO of Miles Space, sits down with John Carse to discuss his journey from McKinsey partner to serving as a former Pentagon senior official operations, to now pioneering space technology. Brad shares eye-opening insights about how most security breaches come from basic housekeeping failures rather than sophisticated attacks, his dot-com startup experience and why aerospace and defense face fundamentally different security stakes where it's not just about money — it's about national security and lives. 0:00 Leaving a seven figure job to join the defense industry12:16 New innovations in signal enhancement23:02 Cybersecurity stakes in defense that consumer brands never face31:41 More funding doesn't mean better solutions40:29 Leadership principles that work universally🔔 Follow Brad and John on:https://www.linkedin.com/in/brad-berkson-4295274/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

With years directing cyber operations in the United States Air Force as a Cyber Officer, Sarah Cleveland brings a unique perspective to cybersecurity. In this conversation with John Carse, she discusses how military risk calculation differs from corporate approaches, shares practical insights on selling cybersecurity to federal agencies, why nation-state actors are becoming more in-your-face and what figure skating taught her about resilience. 0:00 Sarah’s experience leading C4 (Command, Control, Communications, Computers) in the military13:40 Selling to the government: understanding federal procurement and budget cycles21:24 The shift from network defense to browser-based threats35:07 Nation-state hacks becoming more “in your face” and impacting citizens44:27 Volunteering with the Armed Services Arts Partnership, closing advice🔔 Follow Sarah and John on:https://www.linkedin.com/in/sarah-u-cleveland/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Drawing from her experience at Dell and Infosys, Security Engineer Yaamini Mohan breaks down why getting your security basics right — boring stuff like passwords, patching, and MFA— will move the needle much more than any expensive AI-powered solution. In this conversation with SquareX Field CISO John Carse, she also discusses how the shift to cloud and SaaS has expanded our attack surface, why most security work should be boring, and the myth of gender imbalance in the industry.0:00 Security is not a 9 to 5 job18:04 The importance of building a good cybersecurity foundation27:46 How not getting the basics right expands your attack surface35:17 The myth of gender imbalance in cybersecurity🔔 Follow Yaamini and John on:https://www.linkedin.com/in/yaamini-mohan/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Morgan Svensson and Stefan Tapper, CIO and CISO of Grant Thornton Sweden respectively, reveal how they navigate the constant tension between business innovation and security requirements. From their shared history at a Scandinavian airline to their current roles protecting one of Sweden's largest professional services firms, they discuss the intricacies of Swedish regulations on AI usage, building a security culture where employees take shared responsibility, and why the Nordic approach to flat organizational structures gives them an edge in cybersecurity.0:00 Balancing work demands with security requirements22:33 The process behind evaluating new security solutions27:37 Unique Nordic regulations and building security culture32:19 Advice: listen to the people and build your umbrella of security professionals39:04 The importance of educating oneself and continual improvement🔔 Follow Morgan, Stefan and Aleksandra on:https://www.linkedin.com/in/morgan-svensson-7302021/https://www.linkedin.com/in/stefantapper/https://www.linkedin.com/in/aleksandra-melnikova-1012/ 🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Felicita Sandoval, CEO/Founder of Sentient Perspectives (SENP-X) and security professional at LiveRamp, breaks down how to navigate the rapidly changing world of AI and cybersecurity. In this episode, Felicita shares practical insights on building security-first AI adoption in enterprises. She discusses the challenges of browser AI agents accessing corporate data, why diverse perspectives are crucial for innovation, and how companies can implement governance processes for the flood of AI tools hitting the market — all while juggling entrepreneurship, a corporate role, and co-founding Latinas in Cyber.0:00 Sentient Perspectives and protecting yourself in the age of emerging tech12:26 The security complications of bringing AI into corporations21:32 Juggling a full time job and entrepreneurship25:03 On Latinas in Cyber and making cyber more accessible34:40 Governance is critical in AI Adoption44:54 How inclusive leadership fuels AI innovation🎙️ Listen On:Apple Podcasts: https://podcasts.apple.com/us/podcast/be-fearless-podcast-by-squarex/id1750854064Spotify: https://podcasters.spotify.com/pod/show/getsquarex🔔 Follow Felicita and John on:https://www.linkedin.com/in/felicitasandoval/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0

Martin Hinton, award-winning journalist and Executive Editor of Cyber Insurance News & Information, (https://www.youtube.com/@CyberInsuranceNews) breaks down why companies are dangerously unprepared for today’s modern threatscape.Drawing from his 30+ years in media and his deep dive into cyber insurance, Martin shares insights about  the devastating Marks & Spencer hack that shut down operations, why shadow AI is creating massive vulnerabilities most businesses don't even know they have and how every employee contributes to security.0:00 Cyber insurance is active, unlike personal insurance12:11 The Marks & Spencer hack that cost £300 million22:56 We are in the Model T era of AI, shadow AI data leaks33:13 On sophisticated impersonation, deep fakes and North Korean fake IT workers39:30 How cybercriminals exploit psychology48:33 Every employee, not just IT, is part of security🔔 Follow Martin and John on:https://www.linkedin.com/in/martinfhinton/https://www.linkedin.com/in/johncarse/🔥 Powered by SquareXDeployed as a lightweight extension, SquareX turns any browser, on any device, into a secure enterprise browser. Find out more about SquareX at https://hubs.la/Q03rPcbf0