In this episode, Jeffrey Wheatman sits down with Paul Guckian, former BISO at Lloyd’s of London and author of Systemic Cyber Resilience: Why CISOs Can’t Fix Cybersecurity. They unpack why the traditional security model is broken, how systemic risk is the real enemy, and why putting the weight of an entire ecosystem on a single CISO sets everyone up for failure. From resilient thinking to lessons from fire safety and finance, Paul brings an academic lens—and a pragmatic mindset—to a critical conversation.Link to Paul’s book.
--------
43:14
--------
43:14
Phishing for Truth: Fixing the Flaws in Security Awareness
Jeffrey Wheatman sits down with Cary Johnson, founder of Phishbusters Audit and Consulting, to expose the failures of traditional phishing simulations. They discuss why standard metrics fall short, how self-assessment distorts results, and what it really takes to track — and influence — behavioral change in security awareness programs.
--------
31:53
--------
31:53
The Accidental CISO
In this episode of Risk & Reels, Jeffrey Wheatman sits down with RJ Friedman, CEO of Dayone Cyber, to talk frameworks, risk, and leadership. RJ shares how his start in sales shaped his approach as a CISO, why CIS 18 remains his go-to, and how mapping frameworks to business goals makes all the difference. It's a sharp, honest look at what makes cybersecurity leadership actually work.
--------
35:38
--------
35:38
A Story of Limited Resources
In this episode of Risk & Reels, Jeffrey Wheatman sits down with Craig Taylor, CEO of CyberHoot, to talk about how small businesses are navigating the evolving world of cybersecurity compliance—especially the demanding standards of CMMC. From Apollo 13-style ingenuity to the unintended consequences of regulation, Craig shares a 30-year perspective rooted in psychology, education, and operational realism. Tune in for a conversation that covers limited resources, positive reinforcement, and why now is the time to prepare.
--------
32:42
--------
32:42
From Homicide to Hackers: Fixing Cybersecurity’s Broken Model
In this episode, Jeffrey Wheatman sits down with Carter Schoenberg, Chief Security Officer at Soundway Consulting and author of Why Cybersecurity Fails in America. From his unexpected transition from homicide detective to cybersecurity leader, Carter shares hard-earned insights into the failures of our current cyber risk models—and how to fix them. They dive into cybercriminal collaboration, the stagnation of HR and hiring practices, and why security leaders need to learn to “speak CFO.”
A podcast for movies. A podcast for cyber talk. A podcast for smart people to say smart things to smart listeners. Hosted by Jeffrey Wheatman, former Gartner Analyst.
Ireland