Sponsor/Ad Voice (12:24)

Spring starts at the Home Depot and we are bringing the heat to your backyard this season. Fire up the flavor with our wide variety of grills for under $300 like the next grill 4 burner gas grill that's perfect for hosting your spring cookout. Then set the scene and turn your outdoor space into the go to spot the patio sets for every budget. Bring it this season with grills that deliver flavor and patios that set the vibe from the Home Depot. Start your spring with low prices guaranteed at the Home Depot exclusion supplies to homedepot.com Pricematch for details.

Sponsor/Ad Voice (12:54)

Score more with the college branded Venmo Debit card and earn up to 5% cash back with Venmo Stash Got paid back with the Venmo Debit card you can instantly access your balance and spend on what you want like game day, snacks, gear, tickets and more. The more you do, the more cash back you can earn. Plus there's no monthly fee or minimum balance. Sign up now@venmo.com collegecard the Venmo Mastercard is issued by the Bancorp Bank NA Select Schools available Venmo Stash terms and exclusions apply at Venmo me terms max $100 cash back per month.

Dave Bittner (13:30)

By Day. Kevin McGee is global director of cybersecurity startups at Microsoft for Startup, but during RSAC he functions as my intern. Here's his latest filing so I'm with

Kevin McGee (13:44)

a legend in the industry, Ann Johnson, and one of my personal mentors throughout my career. I'm very happy to speak with her and find out what she's seen at the show. She has a keen eye for what's coming next in startup and what are you seeing around the show and what's the most innovative things that are happening at RSA this year.

Ann Johnson (14:02)

You know, it's definitely the year of AI. Everybody wants to know how you're going to see secure agents. Everybody wants to know how you're going to use AI to make your cybersecurity better and also how you're going to protect AI. But I will tell you, I saw a company that didn't talk to me for the whole time about AI and they were all about things about configurations and getting sure the configurations right and using AI to improve that. And that was a unique approach as far as I was concerned because everybody's talking modern sock or protecting agents and these guys are like look, you can use AI to make your configurations better. I said that is cool.

Kevin McGee (14:34)

Now we've had great success in Microsoft for startups by day job with sort of the picks and shovels type business, the GRC businesses of this gold rush. Are there anything in the GRC space that interests you?

Ann Johnson (14:46)

Well, my, my very close friend Eric Erstin is on a company called Red Scale but I think there's a lot that can be done. GRC. Look, I think AI's three main use cases are going to be non human identities. I think it's going to be something security operations center, IoT and all of that has a play in GRC. So yeah, there's a big play there because I what I believe is it's going to make us more productive and fast in jrc.

Kevin McGee (15:09)

Now the other big thing is everyone's saying the industry is consolidating the end of innovations done for cybersecurity. I think it's the complete opposite. I think we're moving into a whole new phase of innovation. Would love your take.

Ann Johnson (15:21)

I completely agree. I think AI is going to drive a bunch of creativity innovation. It's going to make us better than we are. It's going to be bumpy, but we're going to be a better industry and we're going to be really innovative.

Kevin McGee (15:31)

I couldn't end without a plug for your podcast which is excellent. Can you tell us about your podcast quickly and where we can find it?

Ann Johnson (15:39)

Yeah. Afternoon CyberTea is on AfternoonCyberTea.com or wherever you get your favorite podcasts.

Kevin McGee (15:45)

Thank you very much for your time, Ann.

Ann Johnson (15:47)

Thank you. Have a great night.

Kevin McGee (15:50)

All right, so I met another founder who's doing some interesting work and is company has a chief ball officer which I think is just a fantastic addition to the team. Tell me who you are and what you do.

David Shipley (16:01)

My name is David Shipley and I'm a CEO and co founder of Beauceron Security. So we help people know more and care more about being safe, cybersecurity wise in their organization. It's no longer just about teaching people about phishing. It's making sure they apply what they already know on a day to day basis. And that's why we're named after a sheepdog. We help people go from the passive targets, the sheep, to the active defenders or the sheepdogs.

Kevin McGee (16:27)

Now, one of the things I've seen you do as a company is really blend psychology and some of the cutting edge psychological aspects of really scientific literature with technology. You're really focused on the layer eight of security.

David Shipley (16:40)

We're a neuroscience and psychology company disguised as security awareness training. And so we've partnered with some of the world's top researchers to understand the attitudes that drive risk and how to actually change them. Because being safe in 2026 is about selling the benefits of being secure, not lecturing people about phishing emails.

Kevin McGee (17:01)

So give me a real life example of how you're applying research psychology to the product.

David Shipley (17:07)

The number one thing from a psychological perspective that we discovered is something called technological overconfidence. So when people believe security tools always protect them, 100% of the time, they click on phishing 80 to 140% more. So we need to teach people security tools are important, vital, but they can only do so much and you play a role as well. The other one is optimism bias. This is a powerful force in psychology. It's a natural predecessor predisposition to say something bad is going to happen to Jane or John, not to me. And when it comes to fishing that belief, someone else is going to click means you're going to click 30 to 40% more.

Kevin McGee (17:49)

Awesome. Well, thank you for bringing the people aspect back to cybersecurity. I think that's really important. Thanks for your time and have a great show.

David Shipley (17:55)

Thank you so much.

Kevin McGee (17:57)

It's Kevin the intern coming live from RSAC and I'm with some royalty from our industry. So Dr. Jessica Barker, NFC. So two of my favorite authors, two of my favorite people, you're on the floor. What are you seeing? What's exciting? Who wants to go first? Ladies first.

Jessica Barker (18:18)

Ladies first.

NFC (18:18)

As always with rsac, for me, the most exciting thing is catching up with people. So being able to have conversations, see people that you maybe haven't seen in a year or so and see what everybody's up to. Of course, the big word that we're hearing is AI.

Kevin McGee (18:38)

What are you seeing out there? Fc? You've got a very different perspective on everything usually. Yeah.

Jessica Barker (18:43)

I think what I'm seeing out there is honestly, if everyone did what their marketing said they did, like, we would all be out of a job because it's all solved, apparently, according to everyone out there. So I think the big thing that I'm seeing is, yeah, again, it's AI. AI is solving all of our problems and creating all of our problems.

Kevin McGee (19:01)

So there's always some exciting things happening on the floor. Now, did I get this right? You were in a boxing ring or a wrestling ring?

NFC (19:08)

Yeah, my first time in a wrestling ring. Whether I won or lost, I won't ruin the surprise. You'll have to go and check out my video.

Kevin McGee (19:17)

Awesome. Now, author of How I Rob Banks and Other Things, what do you see? So the technologies that are impressing you

Jessica Barker (19:27)

this year, if I'm really honest, I haven't said anything.

Kevin McGee (19:31)

I've never known you to be anything but really honest.

Jessica Barker (19:34)

I've not seen anything that's actually impressed me so far this year. I think everyone's jumped on the AI bandwagon so much that it's not even touching anything yet. I think most of the people that talk about I haven't even used it. It's so new and everyone wants to be on it. Just kind of like we had quantum computing last, like, last couple of years. This is the new thing, and I think hopefully it will sieve out a little bit and next year we'll see some actual decent products.

Kevin McGee (20:03)

Well, it's funny, we're seeing everyone talk about the consolidation of the market and innovations done. I think it's the opposite. We're seeing AI products that are creating whole new categories of products. Everyone's creating whole new shadow implementations. I think we're going to have a wave of innovation that follows that. What do you folks think?

NFC (20:20)

Yeah, I hope so. And I think certainly the cybercriminals are being innovative as always. They're finding ways to use technology and AI in ways that we didn't necessarily predict. So as an industry, we need to do the same.

Kevin McGee (20:34)

What do you think, fc?

Jessica Barker (20:35)

Yeah, I think, and I've said this before, I think this is the first time in cybersecurity history where both the bad guys and the good guys have the same power, the same tooling at the same time. It's no longer a cat and mouse where one side has something better and then the other side catches up. We both have the same tool, and now we're all trying to race to get to use it the best we can.

Kevin McGee (20:57)

Awesome. Well, thanks for your time. And if you're still at the conference, swing by the bookstore and pick up their excellent books. It's probably still available. I believe we sold out last year, so they may be still available. Thank you for your time.

Dave Bittner (21:11)

Our thanks to Kevin McGee from Microsoft for generously donating his time during the RSAC conference this week. Kevin, there may even be a big promotion in your future. Maybe Senior Internet.

Sponsor/Ad Voice (21:37)

Not sure how to tackle your taxes? Are you sweating the small print? You may be experiencing FOMO the fear of messing up the answer using TurboTax on Intuit credit Karma, they help you get your biggest refund, and then we help you do more with it with a personalized plan designed to help you hit your money goals. It's time to take your taxes to the max. Start filing today in the Credit Karma app.

Sponsor/Ad Voice (22:06)

This episode is brought to you by Indeed. Stop waiting around for the perfect candidate. Instead, use Indeed Sponsored Jobs to find the right people with the right skills fast. It's a simple way to make sure your listing is the first candidate. C According to Indeed data, Sponsored Jobs have four times more applicants than non sponsored jobs. So go build your dream team today with Indeed. Get a $75 sponsored job credit at Indeed.com podcast terms and conditions apply.

Dave Bittner (22:40)

And finally, a newly granted Google patent describes a system that could replace your company's landing page with an AI generated version tailored to each individual user, sometimes before they ever see what you built. The patent outlines a process where Google evaluates a page using signals such as conversion rate, bounce rate, and design quality. If the page scores too low, search results may instead link to a dynamically assembled alternative built from the user's query history, account context, and extracted site content. In some cases, that link could even appear inside sponsored results, though billing details remain unclear. The patent suggests websites could shift from destinations to raw material for AI assembly, extending a trend where search features increasingly mediate how users experience brands, sometimes with Google politely redecorating the lobby. And that's the Cyber Wire. For links to all of today's stories, check out our daily briefing@thecyberwire.com we'd love to know what you think of this podcast. Your feedback ensures we deliver the insights that keep you a step ahead in the rapidly changing world of cybersecurity. If you like our show, please share a rating and review in your favorite podcast. Appreciate. Please also fill out the survey in the show notes or send an email to cyberwire2k.com N2K's lead producers, Liz Stokes, were mixed by Trey Hester with original music and sound design by Elliot Peltzman. Our contributing host is Maria Vermazes. Our executive producer is Jennifer Ibin. Peter Kilby is our publisher, and I'm Dave Bittner. Thanks for listening. We'll see you back here tomorrow. Sam.