Episode Overview

Podcast: CyberWire Daily
Host: N2K Networks
Guest: Michael Scott, Chief Information Security Officer (CISO)
Episode Title: Michael Scott: A team of humble intellects. [Information security] [Career Notes]
Release Date: January 4, 2026

This episode features Michael Scott, CISO at Immuta, reflecting on his career through information security, leadership philosophy, the importance of business alignment, and prevailing challenges in the cybersecurity landscape. Listeners gain insights into Scott’s path from early Navy experiences to leading security at major enterprises, and hear his advice for newcomers and seasoned professionals in cybersecurity alike.

Key Discussion Points & Insights

1. Early Foundations and Career Beginnings

[00:26 – 02:18]

• Michael Scott describes his introduction to technology and security in the Navy, where he handled satellite imagery and early concepts of data protection.
• Early jobs included working for an Internet service provider post-Navy, “when AOL was still sending out disks,” giving him a deeper understanding of networking.
• First major startup role: Witness Systems, where he helped grow the company from 25 to 1300+ employees over 11 years.

Quote:
"Growing up in a small town, really not sure what I wanted to do when I grew up, the Navy seemed like a good place to start and... motivated me to get into the career I am now."
— Michael Scott, [00:41]

2. Building Security Programs in Diverse Industries

[02:19 – 04:17]

• Leadership at Arby’s Restaurant Co., then Wendy’s after an acquisition, where he developed security operations focused on card data compliance (PCI).
• Emphasis on balancing security with operational stability: “Picking the right architecture and simplifying a lot of things” led to both repeatable compliance and improved restaurant security.

Quote:
"At the end of the day, what we found was we had very repeatable PCI program, but also the security of the restaurants was increased greatly."
— Michael Scott, [03:38]

3. Current Role & Focus at Immuta

[04:18 – 05:36]

• Joined Immuta during a hyper-growth phase, serving top Fortune 50 companies.
• Launched a SaaS platform, with cloud and application security as main priorities.
• Work includes expanding privacy programs and seeking certifications like ISO 27001 and ISO 27701 to align with evolving customer privacy demands.

Quote:
"Busy is an understatement, I'd say probably a little bit of chaos right now... We launched our SaaS platform last year. So cloud security has been a big focus..."
— Michael Scott, [04:43]

4. Leadership Philosophy: Humility, Teamwork, and Outcomes

[05:37 – 06:59]

• Describes himself as a “team member” and hands-on leader, emphasizing humble intellects over hierarchy.
• Values outcome-driven cultures that focus on success rather than job titles or seniority.

Quote:
"I consider myself a team member more than anything... My job is to obviously lead and create strategy and evolve the team, but I like to get my hands on, I like to support the team."
— Michael Scott, [05:51]

5. Navigating Adversity & Celebrating Progress

[07:00 – 07:47]

• Acknowledges adversity as “almost a cornerstone of being in the security community.” Progress often takes months or years, which can be demotivating.
• Emphasizes the importance of recognizing small wins, staying focused, and keeping energy up through regular progress updates.

Quote:
"Sometimes in security and privacy, we may spend months or even years trying to accomplish certain things. That can be very demotivating to a lot of folks... you have to really recognize that accomplishment."
— Michael Scott, [07:11]

6. Advice for Aspiring Security Professionals

[07:48 – 08:03]

• Business understanding separates exceptional engineers from leaders: “Our job is to support [business outcomes], not be the department of no.”
• Advocates for curiosity and enabling business objectives over maintaining barriers.

Quote:
"What differentiates folks career-wise and how they progress, to me, is understanding that the business needs to accomplish certain outcomes, and our job is to support those, not be the department of no."
— Michael Scott, [07:59]

7. Legacy and Mentorship

[08:04 – 08:17]

• Hopes to be remembered as a mentor and enabler rather than solely for implementing programs.
• Values seeing his team members succeed and take over leadership roles.

Quote:
"I hope to be remembered as an enabler to the business and a fantastic mentor... that my contribution was more to the people than the program."
— Michael Scott, [08:10]

Notable Quotes & Memorable Moments

• On leadership style: "I like to think of myself as a contributor on the team... focusing on outcomes and not titles." [05:51]
• On career progress: "Adversity is obviously, I'd say, almost a cornerstone of being in the security community." [07:00]
• On business alignment: "Be curious. I think that curiosity and understanding what you’re doing and how it impacts the business are super critical." [07:59]

Timestamps for Key Segments

| Segment | Timestamp | |--------------------------------------------|-----------| | Early career and Navy experience | 00:26–02:18| | Startup growth at Witness Systems | 02:19–03:00| | Leading security at Arby’s/Wendy’s | 03:01–04:17| | Role at Immuta and focus on SaaS, cloud | 04:18–05:36| | Leadership style and team philosophy | 05:37–06:59| | Coping with adversity in infosec | 07:00–07:47| | Advice for career growth | 07:48–08:03| | Closing thoughts on legacy and mentorship | 08:04–08:17|

Summary Takeaways

Michael Scott’s journey embodies humility, adaptability, and business-centric cybersecurity. His approach stresses teamwork, measurable achievement, and personal growth as key to sustaining both personal satisfaction and organizational resilience in a rapidly changing security environment. For professionals in cybersecurity, Scott underscores curiosity, business fluency, and the power of shared outcomes over individual titles or egos.