In This Episode

Anthony shares how an early brush with an APT shaped his entire security career. At the time, he was managing infrastructure for a global business when federal agents revealed that his organization had been compromised. That launched a one-year investigation that taught him more than any course ever could. The APT used subtle techniques like PowerShell commands and login impersonation to bypass detection. These tactics were formative, shifting Anthony’s mindset toward purple teaming—offensive and defensive practices combined.

Now at Weight Watchers, Anthony draws on that background to anticipate how attackers operate and how defenders can stay one step ahead. He warns that the next generation of cyberattacks will be driven by agentic AI—tireless, intelligent systems that don’t need rest or make human mistakes. Unlike simple generative AI, these autonomous agents can continuously probe, learn, and exploit weaknesses at scale.

Despite the daunting threat landscape, Anthony remains pragmatic. He encourages companies to adopt continuous threat exposure management (CTEM) solutions and to treat AI like a tireless assistant, not a threat. Drawing from his teaching experience and real-world war stories, Anthony recommends cloud security as a smart entry point for those breaking into the field. His advice is clear: get hands-on, embrace infrastructure, and leverage AI to scale—not replace—your human potential.

Rick Scot recounts his unexpected path to cybersecurity leadership, beginning with tech support at Disney and evolving into high-level roles at Bank of America and Bank of New York Mellon. He highlights how his passion for continuous learning and pattern recognition made data and threat intelligence natural fits, eventually landing him leadership roles tackling global cybercrime and even representing his organization in international forums like Europol and the G7.

Rick also opens up about the dark side of cybercrime—particularly elder fraud—and shares a personal story of how a scam disrupted his own family. He breaks down how fraud tactics have evolved and underscores how AI is lowering the barrier to entry for cybercriminals, enabling even novices to launch attacks with sophisticated tools.

On the defensive side, Rick offers actionable advice on how AI can be strategically used to cut down on false positives and streamline operations in Security Operations Centers (SoCs). By monitoring patterns such as badge swipes and IP mismatches, organizations can gain deeper behavioral context without overwhelming analysts. Rick stresses the importance of testing and monitoring AI tools rigorously and calls for updates to vendor contracts to account for AI usage and data protections.

Sai opens the conversation by offering insight into the scale and strategy behind YNCU’s cybersecurity posture—supporting 50,000+ members with just 300 employees. He explains how the credit union maintains the same core infrastructure as major banks while relying on collaboration, efficient vendor partnerships, and agile leadership to stay secure on a tighter budget. Sai emphasizes that in the credit union space, collaboration is not just helpful—it’s foundational. Sharing knowledge and best practices with peer institutions allows them to stay ahead of threats and innovate safely.

Matthew and Sai explore the evolution of the tech landscape over the last 30 years, touching on the growing impossibility of being a subject matter expert in every domain. Sai walks through his early days designing PCBs and managing data centers, explaining how every role—from firmware programming to vendor management—shaped his leadership style. His reflections on starting at the help desk and his strong belief in the value of cross-functional learning offer actionable advice to anyone entering or navigating a cybersecurity career.

The conversation then pivots to education—both technical and interpersonal. Sai makes a compelling case for pursuing advanced degrees like an MBA to improve business communication, leadership alignment, and long-term ROI. He also offers an honest critique of most cybersecurity training programs and shares his approach: prioritizing fundamental security concepts over checklist awareness campaigns. He advocates for live, interactive training sessions that use relatable scenarios to make threats feel real and urgent.

Sai closes by sharing his passion for financial literacy and mentorship. Through YNCU’s internal “YNCUniversity” initiative, he champions structured education programs to help members understand their own finances and security risks better. Whether it's mentoring aspiring professionals or leading board-level simulations, Sai brings clarity, empathy, and strategic foresight to every layer of the cybersecurity conversation.