Psychology has become the new firewall in our digital world. When sophisticated security systems block 99.9% of attacks, hackers focus on the fraction that reaches humans – making your brain the ultimate cybersecurity tool.

Cybersecurity expert Tate Jaro shares his journey from Army infantry officer to Secret Service special agent investigating major financial crimes like the JP Morgan intrusion case, which compromised over 100 million records. Through these experiences, he developed a critical insight: while technical defenses are essential, human behavior ultimately determines whether an organization stays secure.

The conversation reveals how traditional security awareness approaches often fail because they focus on compliance rather than behavior change. Most people want to be secure but struggle with complexity, lack of immediate consequences, and competing priorities. The solution? Treating security awareness like marketing – focusing on influencing behaviors and capturing attention through psychology rather than technical jargon.

"We're not hacking systems, we're hacking behaviors," explains Jaro, highlighting how simple changes like enabling captions on training videos can improve effectiveness by 35%. Controversial practices like "gotcha" phishing simulations that trick employees often backfire by creating distrust and fear rather than building security confidence.

Building a security-minded culture requires creating social proof – demonstrating that security awareness is valued and expected within an organization. When employees who report potential threats are celebrated, vigilance becomes part of the organizational identity. Equally important is destigmatizing security mistakes by discussing incidents openly, removing the shame that prevents people from reporting problems.

Want to strengthen your personal digital defenses? Check out onlinesafety.substack.com for weekly, actionable privacy and security tips from a true expert. Remember that small improvements in your security habits create ripple effects across both your personal and professional digital life.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Dive into the fascinating world of social engineering with Joshua Crumbaugh and his guest Arnaud Lucas, CTO at Cambridge Mobile Telematics. This eye-opening conversation reveals why human psychology, not technology, sits at the heart of cybersecurity defenses.

From Arnaud's childhood journey into coding (when his father refused to buy him a gaming console and challenged him to code his own games) to his development of security-first approaches at major companies, the discussion explores how technical leaders can build truly effective security cultures.

You'll discover why role-based security training dramatically outperforms generic awareness programs, with studies showing it's 15 times more effective when contextual to daily work. The conversation tackles the counterintuitive truth that the best security measures don't add friction—they remove it, making secure options simpler than insecure alternatives.

The most chilling segment explores the rapid evolution of AI-enabled threats, particularly deepfakes that can clone voices and create hyper-targeted attacks. While technology has its place in defense, Arnaud and Joshua agree that organizational culture, robust processes, and employee empowerment provide the strongest protection.

Whether you're a security professional, developer, or business leader, you'll walk away with actionable insights on securing your organization through simplicity rather than complexity. Because as Joshua reminds us, "We're not hacking systems, we're hacking behaviors"—and understanding this principle is your best defense.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Dive into an enlightening discussion focused on the intersection of social behavior and cybersecurity with Eric Harris, CISO of the Charlie Norwood VA Medical Center. In this episode, we explore how human interactions, particularly through social media, create vulnerabilities that cybersecurity measures must address. Eric sheds light on the often-overlooked role of the human element in cybersecurity, asserting that the frontline of defense resides in employee awareness and actions.

We tackle how platforms like LinkedIn, despite their professional intent, can inadvertently expose individuals and organizations to significant risks. Eric emphasizes the necessity of developing targeted security awareness programs rooted in historical data and current vulnerabilities. Our conversation also delves into the importance of maintaining a balance between encouraging compliance through positive reinforcement and addressing violations with a more stringent approach when necessary.

Moreover, as we navigate the evolution of AI in cybersecurity, Eric's perspective on the need for continuous and integrated training resonates deeply in our current tech landscape. Join us in understanding how to foster a security-oriented culture that empowers every employee to contribute to the organization's overall defense strategy. Your engagement is key—subscribe to stay updated, share the episode with your network, and help broaden the conversation around cybersecurity awareness.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Pete Gibson, former CIO at companies like Alamo, Wyndham Hotel Group, and Friendly's, shares his journey from liberal arts major to cybersecurity leader and discusses how psychology has become the new firewall in today's threat landscape.

• Started in technology after joining the Navy, eventually managing the Tomahawk cruise missile program
• Maintained impressive staff retention rates (up to 100%) through three company bankruptcies by focusing on treating people fairly
• Advocates transparent risk communication to executives through heat maps and best practice comparisons
• Shares how his team recovered from a ransomware attack without paying ransom due to network segmentation
• Emphasizes building a security culture where everyone contributes rather than relying on a few specialists
• Encourages security training that connects to employees' personal lives to create lasting behavioral change
• Uses rewards like gift cards to celebrate security improvements, not just perfect performance
• Believes in combining the "carrot" approach with occasional "stick" consequences for repeat offenders
• Recommends tailored training approaches for chronic clickers rather than one-size-fits-all policies
• Suggests including security awareness in new employee orientation to establish expectations from day one

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

What if your strongest cybersecurity defense wasn't a firewall, but your people? That provocative question forms the foundation of our fascinating conversation with Dr. Justin Uber, adjunct professor at Marymount University and component CISO at the US Department of Transportation.

Dr. Uber shares his remarkable journey from Army medic serving three tours in Iraq to cybersecurity leader, bringing a unique perspective shaped by psychology, medicine, and technical expertise. Together, we explore the groundbreaking B=MAP formula (Behavior = Motivation × Ability × Prompting) and how it transforms security awareness from a compliance exercise into a cultural cornerstone.

The discussion reveals why traditional approaches fail and what actually works in changing human security behaviors. We unpack how contextual, role-based training delivers 15 times more effectiveness than generic awareness programs, and why breaking training into 30-second micro-sessions twice weekly outperforms annual hour-long trainings while using the same time budget. Dr. Uber shares tactical insights from his experience creating security champions through storytelling and open forums where employees can discuss security incidents without fear of judgment.

Perhaps most compelling is the concept of "Social Engineering for Good" - using the same psychological principles attackers exploit, but harnessing them to strengthen defenses. By encouraging employees to share security knowledge with family members, they transform into security experts within their personal circles, fundamentally changing how they approach threats at work.

Whether you're a security professional struggling with end-user behaviors or a leader wondering how to strengthen your human firewall, this episode delivers practical strategies you can implement immediately. Subscribe now and discover why the best defense truly is in your mind.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

A voice call comes in from the CEO’s real number, using the CEO’s voice, asking a finance leader to move money right now. It sounds legitimate, it matches the company context, and it hits that perfect “urgent but plausible” tone. The only reason it fails is simple: the employee follows process instead of pressure. That moment sets the stage for a wide-ranging talk about the human element of cybersecurity and why psychology is becoming the new firewall. 

We sit down with Vishal, Chief Information and Security Officer at Onclusive, to unpack what’s changing as AI-powered phishing, deepfakes, and role-based attacks get sharper. We get into what effective security awareness training looks like when emails are near-perfect, why “easy reporting” beats shaming people for clicks, and how least privilege access control plus multiple approvals can keep one mistake from turning into a full-scale breach. We also dig into policy engagement, employee acknowledgements, and how commitment bias can turn boring policy into real behavior change. 

Then we zoom out to the AI paradox: the same tools that can compress weeks of hacking work into minutes can also help small security teams move faster, reduce technical debt, and fix vulnerabilities sooner. The final takeaway is practical and urgent: embrace AI, modernize your procedures, and treat your people as your strongest detection system when you train them well. If you got value from this, subscribe, share it with a teammate, and leave a review.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

When it comes to cybersecurity, we're not hacking systems—we're hacking behaviors. This enlightening conversation with Philip McKibbins, CIO and CTO of the Dallas Mavericks, reveals how human psychology, not just technology, forms the foundation of truly effective security.

McKibbins brings extraordinary perspective from his 30-year career spanning Walt Disney (where he wrote their business continuity and disaster recovery plan), ESPN, the Los Angeles Dodgers, and now the NBA. His journey demonstrates how security principles remain consistent even across vastly different industries.

The podcast delves into practical strategies for motivating employees to embrace security practices. McKibbins shares how the Mavericks blend active and passive security testing with positive reinforcement rather than punishment. "When someone passes our tests, we praise them," he explains, highlighting the importance of catching people doing the right thing rather than focusing only on failures.

What makes this episode particularly valuable is the emphasis on making security accessible. McKibbins describes how encouraging employees to teach cybersecurity to their families transforms their relationship with security—they become experts at home, fundamentally rewiring how they approach threats. This simple yet powerful technique enhances compliance without additional technology investments.

The conversation takes fascinating turns through behind-the-scenes stories, including how McKibbins helped former Mavericks owner Mark Cuban recover from an account breach, and the increased attack volume during high-profile moments like trades. These real-world examples illustrate why organizations must remain vigilant regardless of their industry or size.

Perhaps most surprisingly, both host Joshua Crumbaugh and McKibbins agree that low-tech solutions often prove most effective against sophisticated threats. As AI-generated content becomes increasingly convincing, the simple act of picking up the phone to verify suspicious requests becomes invaluable. "Trust but verify actually works," McKibbins emphasizes.

Whether you're a security professional looking for practical motivation strategies or a business leader wanting to strengthen your organization's human firewall, this episode offers actionable insights that transform security from a technical challenge into a cultural advantage.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Steve Fridakis, CISO of Oracle Health, shares his journey through cybersecurity across industries and explores the transformative impact of AI on healthcare security.

• 25 years of cybersecurity experience spanning airlines, United Nations, media (HBO), and healthcare
• Common security foundations across industries despite significant differences in threat landscapes
• AI enabling physicians to capture diagnoses using natural language while validating against patient history
• AI security tools helping validate systems and correlate petabytes of daily log information
• Current cybersecurity mindset shifting equal focus to recovery capabilities alongside prevention
• Zero Trust implementation minimizing breach impact when inevitable human errors occur
• Simple security fundamentals remaining the root cause of most breaches despite evolving threats
• Leadership in security requiring empathy and understanding that people need to do their jobs
• Building security cultures based on shared responsibility rather than compliance mandates
• Success in cybersecurity measured by resilience and recovery speed rather than perfect prevention

Building effective security requires understanding that "our people—not our tech, not our firewalls—they are our first and last line of defense."

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

A transformative look at quantum computing's implications for businesses, especially around cybersecurity, with industry expert Bill Genovese from Kyndryl. Key insights into navigating this technology are presented, emphasizing urgency and strategic planning.

• Quantum computing's transformative potential in everyday business 
• Bill's extensive background in leading global tech initiatives 
• The urgency for businesses to adapt to quantum threats 
• Exploring post-quantum encryption and its necessity 
• The convergence of quantum and AI technologies 
• The importance of developing a strategic framework for risk management 
• Lessons from past tech disruptions like Y2K 
• Practical steps organizations can take to prepare for the quantum frontier 
• Critical services to fortify against cyber vulnerabilities 

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Kevin Walsh joins us to share his wealth of experience in cybersecurity and the crucial role of human elements in security strategy. The discussion touches on compliance, phishing simulations, and the impact of AI in the realm of cybersecurity. 

• Importance of understanding human behavior in cybersecurity 
• Compliance: Balancing act between requirements and effective security 
• The security culture: Building a proactive environment 
• Phishing simulations: Making training relevant and effective 
• AI's role in modern cybersecurity landscape 
• Vendor security: Addressing the weakest link 
• Strategies to engage all levels of staff in security practices 

Thank you for listening! If you enjoyed this episode, please consider subscribing and leaving us a review. 

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

The episode delves into the essential role of human factors in cybersecurity, emphasizing the need for integrating security awareness into daily operations. Eric Harris shares insights on effective training strategies, the importance of understanding social media risks, and the evolving landscape shaped by AI and deepfakes. 

• Discussing Eric Harris's background and journey in cybersecurity 
• Human-centric approach to tackling cybersecurity threats 
• Analyzing social media risks, especially linked to professional platforms 
• Strategies for creating effective security awareness programs 
• The importance of positive reinforcement in training initiatives 
• Leveraging AI while addressing its implications in cybersecurity 
• Integrating security awareness into everyday business functions 
• Encouraging user engagement and ownership in organizational security

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this episode, we dive deep into the human element of cybersecurity, exploring how personal experiences inform our understanding of threats and defenses. Tim Krabeck shares his journey from help desk IT to becoming a cybersecurity expert, emphasizing the importance of communication, collaboration, and continuous education in the fight against cyber threats.

• Tim's entry into cybersecurity through a phishing scam 
• Importance of personal stories in understanding cybersecurity 
• Role of red and blue teams in security practices 
• Discussing the MITRE ATT&CK framework 
• The significance of system hardening and user experience 
• Dual-edged nature of AI in cybersecurity 
• Need for ongoing phishing simulations and training 
• Cultivating a culture of security awareness across teams

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Uncover the fascinating intersection of human behavior and cybersecurity through the eyes of Tolgay Kizilelman, an expert in IT and cybersecurity. Explore how his career journey, from IT management to the pivotal role of CISO at the University of California, has shaped his unique perspective on the human element in cybersecurity. As we exchange stories, I share my own path from marketing to ethical hacking, highlighting the unexpected ways human psychology plays a critical role in both fields. This episode will leave you questioning the traditional approach to cybersecurity and appreciating the complexity of managing human behavior in a digital world.

As technology continues to evolve, so too does our relationship with it. Our conversation spans the generational divide, examining how different age groups perceive and integrate technology in daily life. We discuss the monumental impact of artificial intelligence, likening it to historical advancements like electricity and the internet. Our discussion navigates the potential and pitfalls of AI as it becomes an indispensable part of our lives and workplaces, and we stress the collective responsibility to educate and adapt in order to maximize its benefits while mitigating its risks.

Discover how maintaining the human touch in an increasingly automated world is essential, especially in the realm of AI security. We uncover strategies for effectively reducing risks through tailored training and the innovative use of gamification techniques. By making cybersecurity awareness engaging and relevant to diverse audiences, particularly younger generations, we equip listeners with the tools to recognize and respond to threats confidently. This episode offers a fresh perspective on how to address human vulnerabilities and harness AI's potential responsibly, ensuring a safer digital future for all.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Cybersecurity is evolving, with human behavior at its core and the need for robust security awareness training becoming more critical. Through the journey of Ashok Kakani, we explore the intersection of personal experiences, phishing incidents, and innovative approaches to training that engage employees and build a resilient cyber culture.

• Ashok's transition from science to cybersecurity 
• Importance of front-line training in mitigating phishing 
• Real-life phishing incident and lessons learned 
• The role of AI in enhancing and complicating security 
• Dangers of inadequate PII management 
• Need for role-based training to combat specific threats 
• Engaging employees through gamification in security awareness training 
• Fostering a supportive environment in cybersecurity culture

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

We explore how human behavior is the front line of cybersecurity, reshaping interactions between security teams and employees for a more collaborative approach. Nigel Miller highlights the significance of role-based training, the evolving threats posed by AI, and the importance of building a community around security awareness.

• The shift from “Department of No” to enabling security culture 
• Importance of role-based training tailored to job functions 
• AI creates new phishing challenges but also enhances training methodologies 
• Psychological principles can deepen training impacts on behavior 
• Fostering an open community encourages proactive security measures

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Josh Kuntz shares his extensive journey through cybersecurity, emphasizing the balance of compliance, risk management, and the mentorship of the next generation. The episode discusses the evolution of security roles, the impact of AI, and the importance of understanding organizational objectives in strengthening cybersecurity culture.

• Biography of Josh Kuntz and his career path
• Transitioning from military to civilian cybersecurity roles
• Importance of compliance and developing security programs
• Adapting to remote work during COVID-19 challenges
• Concept of risk acceptance in cybersecurity practices
• Significance of training and mentorship in building talent
• Role of AI in enhancing cybersecurity communication and education
• Emphasis on integrating security into organizational culture

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

We discuss the evolving landscape of cybersecurity with Ralph Johnson, emphasizing the importance of collaboration, training, and the role of AI in addressing modern threats. Key topics include motivating teams, learning from past incidents, and the necessity of tailored, engaging security awareness programs. 
• Ralph’s personal journey into cybersecurity 
• Carrot vs. stick: motivation in teams 
• Embracing AI in training and security protocols 
• A real ransomware case study and its lessons 
• The importance of security hygiene and basic practices 
• Role-based training for diverse job functions 
• Gamification techniques to engage employees 
• The need for ongoing education and awareness

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Art Thompson, CIO of the city of Detroit, shares essential cybersecurity insights in this interactive discussion. He emphasizes the importance of open communication and the need for role-based training to safeguard against the growing number of phishing attempts.

• Art’s journey from supply chain to IT and cybersecurity
• Emphasis on zero tolerance for suspicious activities
• Importance of communication regarding cybersecurity at work and home
• Personal anecdote highlighting the need for multi-factor authentication
• Discussion on the increasing threat of phishing attacks and deep fakes
• Need for updated, role-based training programs
• Proposal for new metrics and KPIs to measure cybersecurity culture
• Final advice on the significance of learning from mistakes and fostering a supportive culture

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Our conversation with Steve Winterfeld unveils critical insights for anyone looking to forge a successful career in cybersecurity. We discuss the importance of strategic planning, building a security culture, and adapting to the rapid evolution of threats, especially phishing and social engineering attacks.

• Exploring three career paths in cybersecurity 
• The importance of strategic career objectives 
• Carrot versus stick: fostering an inclusive security culture 
• Evolving threats: phishing beyond email 
• The role of AI in enhancing and challenging security 
• Understanding cognitive biases in decision-making 
• Effective metrics for measuring security awareness success 

Culture eats strategy for breakfast; cultivate a strong security culture for effective risk management.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Ellison De La Cruz, a seasoned cybersecurity leader, shares his journey in tech and invaluable lessons learned in the changing landscape of cybersecurity. The episode emphasizes the importance of soft skills and behavioral science in security, exploring the relevance of role-based training and insights into evolving threats like phishing and AI. 

• Transition from technical skills to leadership roles 
• Importance of understanding behavioral science in security training 
• Role of AI in shaping cybersecurity challenges 
• Necessity for role-based training in enhancing effectiveness 
• Stories highlighting the impact of human behavior on cybersecurity 
• Advice for aspiring CISOs and the significance of continuous learning

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Javed Ikbal shares his transformative experiences as a CISO, highlighting the challenges of cultivating a security-centric culture in organizations. He emphasizes the importance of communication, understanding user psychology, and establishing foundational practices to navigate the complexities of cybersecurity today. 
• Importance of cybersecurity culture in organizations 
• Challenges faced as a CISO in different environments 
• User psychology impacts on reporting security issues 
• The need for clear policies around AI usage 
• Lessons learned for aspiring CISOs and cybersecurity leaders

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Cecil Pineda, the CISO at R1RCM, shares his journey into cybersecurity, emphasizing the importance of communication, emotional intelligence, and effective risk management in CISO roles. He discusses how emotional awareness and tailored training approaches can significantly enhance cybersecurity awareness and compliance across organizations.

• Importance of storytelling and communication in cybersecurity risk management 
• Emotional responses play a critical role in user learning and engagement 
• Value of marketing principles in cybersecurity communication 
• AI's dual impact: enhancing threats and defensive capabilities 
• Need for targeted and micro training in busy professional environments 
• Successful gamification and its cautious implementation in cybersecurity training

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

This podcast episode emphasizes the critical intersection of cybersecurity and private equity, highlighting the importance of conducting thorough cybersecurity assessments before acquisitions. Bob Flores, an experienced CIO and CISO, discusses key issues like the rise of AI in cyber threats, user education, and effective role-based training as vital components for safeguarding investments against sophisticated attacks. 

• Significance of cybersecurity inspections in private equity transactions 
• Insights into the evolving landscape of cyber threats, especially with AI 
• The need for user education on cybersecurity risks 
• Importance of role-based training for vulnerable job functions 
• The potential benefits of gamification in cybersecurity training 
• Strategies for fostering a culture of cybersecurity awareness within organizations

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

This episode features Philip Wiley, a cybersecurity expert, who discusses the nuances of penetration testing versus red teaming, shares thrilling hacking experiences, and emphasizes the importance of addressing human errors in security. He provides insights into effective cybersecurity training and the relevance of networking for career growth in the industry. 
• Understanding the differences between penetration testing and red teaming 
• The significance of web app pen testing and its role in security 
• Thrilling hacking stories that highlight the art of ethical hacking 
• Importance of social engineering and user awareness training 
• Addressing misconfigurations and hygiene as common vulnerabilities 
• The role of AI in shaping future offensive and defensive security strategies 
• Networking as a crucial element for career success and growth 
• The need for awareness and understanding of security culture within organizations

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

This episode delves into the critical intersection of cybersecurity and the human element, emphasizing the importance of effective training and mentoring. Cody Burrows shares insights from his extensive experience, advocating for a shift from punitive training to one that nurtures understanding and encourages proactive behavior. 

• Cody's journey from pen tester to CISO 
• The ego problem within cybersecurity 
• The necessity of mentorship and support in pen testing 
• Role-based training versus traditional security awareness 
• Using behavioral science principles in training 
• Importance of positive reinforcement in security culture 
• Trusting instincts and gut feelings in recognizing threats 
• The balance between carrot and stick approaches in training

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

This episode delves into the human side of cybersecurity, featuring insights from Rob LaMagna-Reiter on the importance of communication, mentorship, and understanding AI-related threats. By focusing on personalized training and fostering a culture of open dialogue, organizations can empower their workforce to effectively navigate evolving risks in cyber defense. 
• Highlighting the role of mentorship in personal development 
• Importance of clear communication across all organizational levels 
• Relationship between cybersecurity and business operations 
• Strategies for effective phishing and awareness training 
• Addressing AI-driven threats and their implications for cybersecurity 
• Understanding visibility and decision-making in security initiatives 
• Encouraging a culture of trust and accountability within teams 
• Emphasizing the need for continuous learning and adaptation in strategies 
• Creating non-intrusive yet effective security training methods 
• Exploration of the evolving digital threat landscape

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

The episode focuses on the evolving threats posed by phishing scams enhanced by artificial intelligence, particularly in corporate settings. Tim Chase shares real-life experiences and insights into the changing landscape of cybersecurity and the need for tailored training to empower employees in recognizing and combating these threats.

• Discusses a significant gift card scam incident 
• Examines the evolution of phishing tactics and AI's role 
• Emphasizes the necessity of role-based security training 
• Highlights the importance of social engineering awareness 
• Advocates for creating a culture of communication about suspicious emails 
• Suggests positive reinforcement techniques to promote cybersecurity awareness 

You can also align future security initiatives with effective training methods, focusing on current challenges arising from evolving threats.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Jess Vachon shares insights into her calm approach as a CISO and how empathy in cybersecurity can significantly transform organizational culture. The episode emphasizes the importance of effective communication, role-based training, and the evolving impact of artificial intelligence on how organizations secure their operations. 

• Exploring personal journeys into cybersecurity 
• Importance of mentorship and coaching in the field 
• Balancing cybersecurity budgets and investments 
• Communication as a key to successful cybersecurity strategies 
• Tailored role-based training for improved retention 
• Challenges and opportunities presented by AI in security 
• Building a compassionate and cooperative security culture

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In our latest episode, Angela Chen, CIO of the University of Delaware, shares her personal experience with phishing, revealing the profound emotional and psychological impacts of these attacks. We discuss the importance of making cybersecurity a collective responsibility that spans generational divides and the need for tailored education to enhance awareness among vulnerable populations. 

• Angela's personal experience highlights the emotional toll of phishing 
• The impact of phishing on trust and mental health is profound 
• Younger and older generations are particularly vulnerable 
• Universities face challenges in effectively educating students on cybersecurity 
• The dual-role of AI in enhancing and threatening cybersecurity 
• Effective communication is crucial for changing security behaviors 
• Positive reinforcement ("carrot") approach over punitive measures ("stick") 
• Collaboration and learning from one another are key in boosting awareness

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

The episode emphasizes the critical role of security awareness in protecting organizations from cyber threats, particularly phishing attacks. Andrew Obadiaru, CISO of Cobalt, discusses strategies for enhancing employee education, implementing phishing simulations, and leveraging AI to stay ahead of evolving cybercriminal tactics.

• The human element is key in cybersecurity defense 
• Importance of security awareness training for all employees 
• Insights into conducting phishing simulations and their benefits 
• Current trends in phishing attacks and use of AI 
• Strategies for engaging employees in security training 
• Tips for maintaining vigilance against cyber threats 
• AI as a tool for enhancing security and its associated risks

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Ever thought attending a security awareness class could make you more vulnerable to phishing attacks? Join us as Wendy Nather, a former CISO, unravels this unexpected phenomenon and challenges industry norms. We tackle the complexities of security training and explore why traditional methods might not be hitting the mark. Wendy shares insights into designing systems that protect against human errors, advocating for a collaborative approach that includes everyone from developers to IT staff in building robust cybersecurity frameworks.

Our conversation takes a turn as we highlight the importance of role-based training and engaging diverse personality types in cybersecurity education. Drawing from real-life anecdotes, like the Starbucks gift card phishing fiasco, we stress the need for clear communication and the introduction of security principles from a young age. This episode emphasizes how early tech exposure shapes user behavior, and we discuss tailored education strategies for different organizational roles to build a culture of security mindfulness.

Finally, we explore the art of empowering employees to recognize and report suspicious activities, sharing personal stories of innovative attacker tactics. From gamification to competitive training exercises, we propose fresh ways to make security training more engaging and effective. As we challenge long-held industry assumptions, we advocate for an environment where users feel safe to report mistakes, continuously reassessing and innovating cybersecurity practices to keep ahead of threats.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

What if the key to fortifying your organization's cybersecurity was hidden in the ethical deployment of AI? Join us for an enlightening conversation with Dr. Joshua Scarpino, a dual expert in cybersecurity as CISO VP of Information Security at TrustEngine and CEO of Assess Intelligence. Our episode charts the powerful intersection of AI and cybersecurity, exploring how AI can both shield against and execute cyber threats, and why a comprehensive risk management approach is crucial for any enterprise. Dr. Scarpino's insights highlight the pressing need for responsible AI practices, addressing biases, and maintaining fairness in automated decisions.

Our discussion takes a deep dive into the innovative methods of security training, including the potent mix of continuous education and gamification. We explore the significance of understanding the risk landscape and the necessity of personalized security education, particularly for new hires who may be more susceptible to targeted attacks. From interactive modules to scenario-based learning, discover how these dynamic training methods can enhance engagement and retention, contrasting starkly with the often monotonous governmental training programs. The episode underscores the pivotal role of feedback in refining training programs, fostering a culture that bridges gaps between personal and professional security practices.

We conclude by emphasizing the integral role of building partnerships and fostering cybersecurity engagement within organizations. This includes challenging the misconception that security impedes business progress, and instead, highlighting how it can be a key enabler. The conversation pivots to the role of ethical AI, privacy concerns, and the need for transparency as technology continues to evolve rapidly. Dr. Scarpino advocates for a proactive and supportive cybersecurity culture that integrates AI into foundational risk management processes. Tune in to learn how to create a robust security-aware culture, where employees at all levels actively participate in safeguarding organizational assets.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Join us for an insightful conversation with Ira Winkler, the Chief Information Security Officer of CYE Security, as we explore the often-overlooked human element in cybersecurity. With a rich career spanning more than 30 years, Ira shares compelling insights drawn from his experiences at the NSA, Walmart, and HP. Together, we challenge the traditional notion that users are the last line of defense in cybersecurity, advocating instead for intelligent system designs that don't place undue blame on individuals. Drawing on safety science principles and his latest book, "You Can Stop Stupid," Ira unpacks the importance of creating systems resilient enough to withstand human error.

Embark on a thrilling journey through the unpredictable world of security testing and compliance challenges. Through fascinating anecdotes and humorous tales of social engineering, we reveal the ingenuity required to outsmart technical defenses. A surprising encounter with a facility's operations manager provides a glimpse into the nuanced nature of security testing, showcasing the creativity and quick thinking needed in high-stakes situations. These stories highlight the essential human strategies that underpin robust security measures and the excitement that comes with penetration testing.

As we wrap up, the conversation shifts to the integration of behavioral science in cybersecurity and the importance of a balanced "just culture" within organizations. By examining AI-driven threats like deep fakes and contrasting approaches to policy violations, we underline the need for comprehensive training and effective security awareness metrics. Ira's insights drive home the message that meaningful discussions and diverse perspectives can enrich the security culture, ultimately enhancing an organization's resilience against evolving threats. Join us in this engaging session of "Fishing for Answers with Ira Winkler" and be prepared to challenge your assumptions about the role of humans in cybersecurity.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this enlightening episode of “Phishing for Answers,” Kevin Gowen, CISO at Synovus, takes us on a journey through three decades of transformation—both for himself and the bank. From his start in IT and risk management to a near-instant leap into the top security role, Kevin shares how Synovus’ security culture has evolved alongside industry threats. Host Joshua Crumbaugh digs into Kevin’s perspectives on AI-driven attacks, employee-focused training, and why the “human element” remains cybersecurity’s biggest challenge—and greatest opportunity. Tune in for a candid look at how one financial powerhouse balances innovative defenses with real-world practicality, proving that strong security is, ultimately, all about people.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this candid conversation, Allan Abrams, CISO at Kipu Health, joins “Phishing for Answers” to share how an early fascination with computers (and a few 2600 magazine exploits) set him on the path to cybersecurity leadership. Host Joshua Crumbaugh digs into Allan’s journey—from poking around pay phones in high school to defending PHI in a cutting-edge healthcare environment. Along the way, they unpack why a carrot beats a stick in security awareness, how personalizing training fosters a truly collaborative security culture, and where AI can take us next (for good or for ill) in protecting sensitive data. If you’ve ever wanted real-world tips on turning employees into engaged cyber-defenders—at work and at home—tune in for Allan’s fresh insights on building empathy-driven, people-first security programs.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

What happens when a sneaky phish nabs your domain credentials and quietly reroutes your customers to a competitor’s site? Today’s guest Jyotin (Jotun) Gambhir has seen it all—and that’s just one of his many cautionary tales. In this special Security Awareness Month edition of “Phishing for Answers,” Jyotin draws on 20+ years of cybersecurity consulting (with stints at Deloitte Touche, IBM Tivoli, and BMC Software) to spotlight the evolving threat landscape—especially how AI is supercharging both scams and defense strategies.

From AI-crafted deepfakes that can clone a colleague’s voice to old-school tailgating attacks where politeness becomes your vulnerability, Jyotin reminds us that human behavior is still the ultimate playing field. He shares why small policy tweaks (think strict wire-transfer rules) may stop AI-spoofed executives, and why “carrot over stick” is the key to building a truly vigilant security culture. Plus, if you’re an entrepreneur in cyber, don’t miss Jyotin candid insights on balancing top-notch tech with real-world sales and marketing chops.

No matter the tech—IoT, AI, or legacy systems—Jyotin preaches the basics: know your risks, respond fast, and proactively protect. Because in an era where a single lapse in judgment can turn your business upside down, continuous monitoring and ongoing awareness training isn’t just a best practice—it’s the cost of staying in the game.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this lively installment of “Phishing for Answers,” our host kicks things off with a quirky, AI-generated rap—then challenges guest Dean Sapp, SVP of Information Security at Filevine, to a game of “Stock or Not?” to test just how convincing AI images can get. But the conversation quickly turns serious as Dean reveals how scammers are weaponizing these same AI tools to spin up highly targeted—and eerily authentic—phishing emails and counterfeit websites.

Drawing on his years of experience building cybersecurity programs and guiding law firms, Dean walks us through a jaw-dropping story of an “unhackable” client who thought strong passwords alone would stop an open-enrollment benefits scam. Spoiler: it didn’t. Along the way, he pinpoints the big blind spots many companies miss, from unpatched software on the perimeter to that shady old printer on a forgotten VLAN. Whether you’re running a small legal practice or a high-traffic SaaS platform, Dean’s bottom line is the same: turn on multi-factor authentication, build empathy-driven awareness programs, and keep everything—from firmware to browsers—patched and hardened. Because in this age of AI-fueled cybertricks, your best defense is a well-prepared, forward-thinking human.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this special Security Awareness Month edition of “Phishing for Answers,” we reel in Norman Kromberg—a finance-whiz-turned-CISO who blends down-to-earth Midwest values with sharp cybersecurity insight. Raised in Lincoln, Nebraska, Norman cut his teeth in banking before jumping into IT governance and risk compliance. Now, he’s applying that business-first mindset to keep organizations one step ahead of threat actors.

Ever wonder how revenue-minus-expense ties into your malware defenses? Norman breaks down how understanding the core equation of any business not only helps you talk risk at the board level—it ensures you’re investing in security where it actually matters. From empathizing with accidental clickers to mapping out which roles pose the biggest insider-threat risks, Norman shows you how to craft a security program that’s both human-friendly and hacker-hostile. It’s a candid, engaging chat that proves financial smarts and cybersecurity savvy can—and should—work hand in glove. Because in the battle against phishing, you can’t just think like a hacker—you’ve also got to think like a CEO.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In today's digital age, cyber threats are becoming more sophisticated, and the stakes have never been higher. Amid advancing technology and evolving attack vectors, one factor remains critically important yet often overlooked: the human element. People can be the weakest link in cybersecurity, but with the right approach, they can also become the most formidable line of defense.

In a recent episode of the "Phishing for Answers" podcast, our CEO at PhishFirewall, Joshua Crumbaugh, had an inspiring conversation with cybersecurity expert Chris Nicolaou the CISO of CloudSpace. They delved into how organizations can shift the narrative—from viewing employees as potential vulnerabilities to empowering them as proactive defenders against cyber threats.

The Human Factor: Turning Weakness into Strength

Chris kicked off the discussion by sharing a personal story that highlights how even cybersecurity professionals aren't immune to sophisticated attacks. He almost fell victim to a phishing attempt involving multiple suspicious MFA (Multi-Factor Authentication) alerts at odd hours.

"Even with all my training and experience, I was tempted to approve the login because it caught me off guard," Chris admitted. "It reminded me that attackers exploit our natural tendencies and trust."

This anecdote underscores a vital point: security isn't just about systems and software—it's about people. Attackers often target human psychology, using social engineering to manipulate individuals into unwittingly compromising security.

At PhishFirewall, we understand that the key to bolstering cybersecurity lies in empowering your people. By focusing on education and awareness, you can transform your team from potential targets into active participants in your organization's defense.

Microtraining: Keeping Security Top of Mind

Traditional annual training sessions are no longer sufficient in a world where threats evolve daily. Chris emphasized the value of continuous education through microlearning—short, focused training sessions that keep security awareness fresh.

"Embedding security reminders into everyday activities makes a huge difference," he suggested. "Whether it's quick tips on elevator screens or brief modules accessible anytime, the goal is to integrate learning into the flow of work."

PhishFirewall embraces this philosophy with our spaced learning approach, delivering high-impact, bite-sized lessons that are both engaging and memorable. By making training accessible and non-intrusive, we help ensure that cybersecurity stays at the forefront of your employees' minds.

Role-Based Training: Relevant and Effective

One size doesn't fit all when it comes to security training. Different roles within an organization face unique threats and challenges. Chris highlighted the importance of role-specific education, especially for teams like developers who are prime targets for sophisticated attacks.

"Developers should receive training on the latest vulnerabilities and secure coding practices," he explained. "Tailoring education to their specific needs makes it more relevant and actionable."

PhishFirewall offers role-based training that provides contextually relevant content for every position in your organization. By aligning training with real-world scenarios that employees encounter, we enhance engagement and improve retention.

Phishing: The Ever-Present Threat

Phishing remains one of the most common and effective cyber attack methods. With billions of phishing emails sent out monthly, it's crucial to prepare your team to re

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

Reducing Human Error through Behavioral Science: A Conversation with Pieter VanIperen

In the latest episode of the "Phishing for Answers" podcast, PhishFirewall’s CEO, Joshua Crumbaugh, sat down with cybersecurity expert Pieter VanIperen, CISO of Own Company, to discuss how understanding human behavior can significantly enhance cybersecurity. Their conversation delved into the heart of what makes organizations vulnerable: the human element. They explored how leveraging behavioral science, role-based training, and positive reinforcement can transform employees from potential risks into robust defenders against cyber threats.

‍

Behavioral Science and Cybersecurity Psychology

• Joshua and Pieter emphasized the crucial role of behavioral science in cybersecurity.
• While technology is essential, understanding the human psyche is paramount in preventing breaches.
• Many security incidents occur due to human errors rooted in natural behavior patterns.
• Concepts like the Identical Elements Theory suggest that learning is more effective when training closely mimics real-world scenarios.
• Using frequent, bite-sized training sessions—known as spaced learning—employees can subconsciously develop instincts to recognize and avoid security threats.
• PhishFirewall incorporates these principles to embed security awareness into daily routines without overwhelming staff.

Role-Based Training and Contextual Awareness

• The conversation shifted to the importance of tailoring security training to specific job roles.
• Generic training often fails to address the unique challenges different departments face.
• Pieter provided examples:some text
  • Accounting teams need to be vigilant against invoice fraud and spear-phishing attempts.
  • Marketing departments should be aware of phishing attempts targeting campaign data or customer information.
  • IT staff must focus on configuration errors and internal threats.
• PhishFirewall makes it effortless to deploy role-based training.
• By providing contextually relevant education, employees can better relate to the material, leading to higher engagement and retention.

Gamification and Positive Reinforcement

• The effectiveness of gamification in training programs was highlighted.
• Traditional punitive approaches often lead to resistance and concealment of mistakes.
• Incorporating game-like elements and rewards can motivate employees to participate actively.
• Positive reinforcement creates a collaborative atmosphere where employees feel valued and are more likely to adopt security best practices.
• PhishFirewall’s approach utilizes gamified training techniques to keep users engaged and make learning about cybersecurity fun and interactive.

Building Confidence and Encouraging Communication

• Fear of punishment can prevent employees from reporting mistakes or potential security issues.
• It's important to foster an environment where staff feel comfortable coming forward.
• When employees are confident that they won't be reprimanded for honest errors, they're more likely to report incidents promptly.
• PhishFirewall’s training focuses on building confidence.
• By celebrating small successes and providing supportive feedback, employees learn from their mistakes without fear, leading to a more open and communicative security culture.

The Ripple Effect of Aware

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this insightful episode of Phishing for Answers, I had the opportunity to sit down with Steve Cobb, CISO of Security Scorecard, to explore the critical role human behavior plays in modern cybersecurity. With the rise of sophisticated cyber threats, particularly AI-driven phishing attacks, Steve underscores how the human element remains both the weakest link and the most powerful defense in protecting an organization.

Steve shares an impactful story about a near-miss phishing attack where a quick-thinking employee made all the difference by promptly reporting the suspicious activity. This real-world example demonstrates the significance of creating a workplace culture where employees are encouraged to report potential threats without fear of punishment. It’s about turning employees into vigilant defenders—what Steve calls “human firewalls.”

We also discuss the growing importance of security awareness training, particularly the use of gamification and storytelling to make cybersecurity more engaging and relatable for employees. Steve emphasizes that people learn best when they are not only informed but also entertained, which is why PhishFirewall’s gamified micro-training sessions can be so effective in reinforcing good security habits.

Another key takeaway from this conversation is the shift in focus from merely punishing employees for mistakes to empowering them to be proactive in detecting threats. As phishing attacks evolve, Steve explains how AI and machine learning have changed the game by crafting more convincing, tailored phishing attempts, making traditional red flags—like typos and awkward language—less reliable. This means organizations need to invest more in continuous education and behavioral reinforcement to stay ahead of the threats.

In a world where technology alone can’t save us, building a security-conscious workforce is paramount. Steve and I explore how positive reinforcement, cultural shifts, and innovative training approaches are crucial in making cybersecurity second nature for employees at all levels.

This episode is packed with actionable insights and strategies for turning employees into your organization’s greatest asset against cyber threats, reinforcing that cybersecurity isn’t just an IT problem—it’s a company-wide responsibility. #PhishFirewall #CyberSecurity #SecurityAwarenessMonth #HumanFirewall

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this episode of Phishing for Answers, I sit down with Joe Evangelisto, CISO of NetSPI, to discuss some surprising insights on phishing susceptibility within organizations. We dive into the two most vulnerable groups—sales and developers—and how their different day-to-day responsibilities lead to unique phishing risks. Joe and I explore real-world examples of employees falling for sophisticated attacks, the psychology behind why they click, and how cybersecurity professionals can better protect their teams through awareness and behavioral insights.

We also cover how AI is changing the phishing landscape, making attacks more convincing than ever. Plus, we share tips on how to improve phishing simulations to effectively prepare employees without relying on fear-driven tactics.

Tune in to learn about the importance of a carrot-over-stick approach, real-time security reminders, and fostering a positive security culture that empowers employees to report threats.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this Security Awareness Month edition of Phishing for Answers, Joshua Crumbaugh sits down with Christopher Russell, CISO of tZERO Group, to discuss his path from military intelligence to mastering corporate cybersecurity. Christopher shares some of the latest tactics he’s seen, including a shocking snail mail phishing attack, and why bad actors continue to exploit human vulnerabilities. They dive into the importance of role-based phishing simulations, how tailored training can drastically reduce incidents, and why fostering a culture of awareness is essential in today’s evolving cyber landscape. This episode is a must-listen for anyone serious about staying ahead of modern threats!

PhishFirewall helps organizations stop phishing attacks in their tracks with innovative, AI-driven, behavioral science-based security training that delivers real results—stopping incidents, stopping clicks, and stopping ransomware.

#CyberSecurity #PhishingAwareness #CISO #InfoSec #RansomwareDefense #SecurityCulture #SocialEngineering #RiskManagement #SecurityAwarenessMonth #tZERO #PhishFirewall

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this episode of Phishing for Answers, Joshua Crumbaugh, CEO and Founder of PhishFirewall, interviews Paul Sheth, the CISO of the Women’s Tennis Association (WTA). They explore Paul’s journey from infrastructure to cybersecurity leadership, diving into the critical role of risk management, the threats of phishing and ransomware, and the rise of AI-driven cyberattacks. Learn how balancing security with usability can protect organizations and how a human-centered approach to security awareness is key.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this insightful episode of Phishing for Answers, Joshua Crumbaugh, CEO and Founder of PhishFirewall, world-renowned ethical hacker, and expert on social engineering and behavioral science, speaks with Paul James, the CISO of TTEC. They delve into the evolving landscape of cybersecurity, focusing on the challenges of phishing, AI-driven threats, and the balance between usability and security. Paul shares his expertise on how to manage these risks in large-scale organizations, emphasizing the importance of security awareness and the human element in mitigating attacks.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this episode of Phishing for Answers, BZ Fabien, Navy Reserve Cyber Warfare Commander and cybersecurity expert, shares his fascinating journey from pre-med to military service and eventually becoming a key figure in Silicon Valley’s tech leadership. BZ discusses the critical importance of security awareness, the challenges of integrating cybersecurity across industries, and the future role of AI in safeguarding organizations. His insights offer a deep dive into how leadership and technology intersect to defend against modern threats.

Hosted by Joshua Crumbaugh, Founder of PhishFirewall, this episode highlights the evolving landscape of cybersecurity and the human element in risk management.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this episode of Phishing for Answers, Ray Espinoza, CISO at Inspectiv, joins Joshua Crumbaugh, Founder of PhishFirewall, to share insights on cybersecurity culture, leadership, and empowering users to become a proactive force in the security landscape. Ray discusses his journey from working in major tech companies like eBay, Cisco, and Amazon, to leading security teams and fostering a human-centric approach to security awareness.

PhishFirewall is a leader in AI-driven security awareness training and phishing simulations, helping organizations protect themselves by turning their greatest asset—their people—into their first line of defense.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this episode of Phishing for Answers, Joshua Crumbaugh hosts Mike Crandall, where they share engaging stories about real-life security awareness challenges, such as phishing tests and the power of curiosity in employees. Mike recounts a municipality phishing test with a Starbucks gift card lure, and both discuss the importance of making cybersecurity relatable and approachable. Key points include using humor in training, changing the mindset from users being the weakest link to being sensors, and the importance of role-based security awareness. They dive into AI’s role in phishing and how emerging technologies, like deep fakes, are transforming the cybersecurity landscape. Mike also emphasizes the need for smaller businesses to take cybersecurity seriously, despite limited resources, and the importance of fostering open discussions within organizations to create a culture of security awareness.

This insightful episode also touches on cybersecurity education starting at a young age, role-based phishing awareness training, and how organizations can create a human firewall by empowering employees through positive reinforcement rather than punitive measures.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this episode of Phishing for Answers, James Phillips shares valuable insights on the evolving landscape of cybersecurity and phishing attacks. A few key points discussed include:

Spear Phishing Sophistication: James highlights how phishing attacks have shifted from generic attempts to highly targeted, sophisticated methods. Attackers now use more specific data to trick individuals, making it harder to recognize threats.

Speed and Automation: The discussion covers how automation has enabled phishing emails to be created and sent much faster, making them more challenging to identify. This new speed of attack requires constant vigilance and updated security measures.

Human Vulnerability and Training: Phillips emphasizes that people are most vulnerable to phishing attempts when they are distracted or busy, reinforcing the need for real-time, adaptive training. He also explores how punitive training approaches can lead to negative outcomes, advocating instead for more positive reinforcement to keep employees engaged and proactive.

This episode offers a comprehensive look into the growing challenges of cybersecurity and the need for smarter, more human-centered approaches to awareness and training.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

In this insightful episode of Phishing for Answers, we sit down with Tim Dzierzek to explore the vital role empathy plays in effective security awareness. Tim emphasizes how treating employees as allies in the fight against cyber threats, rather than simply as potential weak links, can foster a more secure organizational environment. He also highlights the increasing sophistication of phishing attacks and the critical role AI plays in both enabling and defending against these threats.

Key points discussed include:

•The growing importance of role-based training tailored to employees’ specific needs and risks.

•How AI advancements are reshaping phishing detection, making attacks more personalized and harder to spot.

•The balance between educating employees without relying on fear tactics and instead empowering them to become more vigilant.

Tim also shares actionable insights on how organizations can adopt a more empathetic and educational approach to security, encouraging employees to report suspicious activity without fear of reprimand. This episode is packed with practical advice for security leaders who want to build more resilient, human-centered security awareness programs.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!

CEO & Founder of PhishFirewall, Joshua Crumbaugh brings a new podcast focussed on the human element of cybersecurity.  “Phishing for Answers” brings you insider knowledge from the front lines of cybersecurity. Listen in as we speak with seasoned professionals about overcoming phishing attacks, managing user training, and implementing solutions that work. From practical insights to actionable strategies, this podcast is your guide to strengthening security awareness across your organization.

Joshua Crumbaugh is a world-renowned ethical hacker and a subject matter expert in social engineering and behavioral science. As the CEO and Founder of PhishFirewall, he brings a unique perspective on cybersecurity, leveraging his deep expertise to help organizations understand and combat human-centered vulnerabilities in their security posture. His work focuses on redefining security awareness through cutting-edge AI, behavioral insights, and innovative phishing simulations.

PhishFirewall uses AI-driven micro-training and continuous, TikTok-style video content to eliminate 99% of risky clicks—zero admin effort required. Ready to see how we can fortify your team against phishing threats? Schedule a quick demo today!