In this riveting episode, Dave Chatterjee, Ph.D., sits down with Eric O’Neill, a legendary FBI undercover operative whose real-life spy hunt inspired the Hollywood thriller Breach. O’Neill recounts how he helped capture Robert Hanssen, one of the most damaging spies in U.S. history, and how the counterintelligence mindset he cultivated at the FBI now forms the foundation of his cybersecurity strategy work.

Together, they explore how spycraft translates to the digital age—from insider threats and virtual trusted insiders to AI-driven deception, deepfakes, and nation-state infiltration. Through real-world stories, hard-won lessons, and O’Neill’s PAID (Prepare–Assess–Investigate–Decide) methodology, listeners learn why thinking like a spy is essential for defending organizations, families, and individuals in a hyperconnected world. Dr. Chatterjee connects these insights to his Commitment–Preparedness–Discipline (CPD) framework, emphasizing the strategic value of leadership, culture, and proactive readiness.

Time Stamps

· 00:49 — Dave introduces Eric O’Neill’s background and spycraft legacy.

· 03:00 — How O’Neill became a top-secret FBI ghost operative.

· 06:03 — What the movie Breach gets right—and wrong.

· 11:22 — Inside the high-pressure undercover case against Hanssen.

· 13:45 — The real “Kate,” mentorship, and managing undercover stress.

· 17:11 — Hanssen’s true motivations: ego, greed, resentment.

· 18:00 — Transition from FBI spyhunter to cybersecurity strategist.

· 19:56 — How cybercriminals now target people—not systems.

· 21:25 — Deepfakes, AI deception, and personal harm.

· 24:26 — Nation-state tactics and why detection is still possible.

· 27:53 — Spy vs. cybercriminal: same infiltration, different outcomes.

· 31:23 — A national readiness gap: threats to critical infrastructure.

· 33:40 — The PAID framework for organizational defense.

· 36:17 — Cyber insurance as a forcing mechanism for readiness.

· 38:20 — Leadership challenges and CISO empowerment.

· 40:34 — Human behavior—the most important attack surface.

· 44:03 — MFA fatigue, passwordless solutions, and practical tech fixes.

· 47:10 — Tips for families dealing with deepfake scams.

· 51:23 — Why verification matters more than ever.

· 53:17 — Closing reflections on protecting society in a synthetic world.

To access and download the entire podcast summary with discussion highlights - https://www.dchatte.com/episode-96-thinking-like-a-spy-counterintelligence-lessons-for-cybersecurity-readiness/

Connect with Host Dr. Dave Chatterjee

LinkedIn: https://www.linkedin.com/in/dchatte/

Website: https://dchatte.com/

Books Published

In this episode, Dave Chatterjee, Ph.D. sits down with Sandy Kronenberg, Founder and CEO of Netarx, an AI-driven platform designed to detect and prevent synthetic impersonation across video, voice, and email. With deepfake fraud incidents skyrocketing by 3,000 percent and costing organizations an average of $500,000 per attack, Kronenberg and Chatterjee unpack how AI can now help defeat AI—turning defense innovation into a frontline imperative.

Together, they explore the evolution of deepfake technology, the psychology of digital deception, and how organizations can safeguard their people and data from real-time manipulation. Through the Commitment–Preparedness–Discipline (CPD) framework, Dr. Chatterjee emphasizes the importance of leadership discipline, continuous monitoring, and technology integration in establishing a high-performance cybersecurity culture in the era of generative AI threats.

Time Stamps

• 00:49 — Dave introduces the topic and deepfake threat surge.

• 02:37 — Sandy shares his professional journey and early exposure to cyber fraud.

• 07:28 — Discussion on the human layer and OSI model limitations.

• 09:55 — Integrating deepfake detection within enterprise security architecture.

• 13:01 — How AI models ingest 50+ signals for real-time identity validation.

• 17:48 — Zoom and video call trust issues in remote business settings.

• 19:40 — Why siloed tools fail—importance of cross-channel correlation.

• 23:30 — Continuous learning loops: retraining AI models against new deepfake generators.

• 26:59 — The rise of Trust Officers and Trust Operations in corporate governance.

• 32:15 — HR, finance, and brand use cases for disinformation security.

• 35:18 — Balancing training and AI automation.

• 37:16 — Expanding defense to email and multimodal verification.

• 41:18 — Closing takeaways on readiness and adoption strategy.

To access and download the entire podcast summary with discussion highlights - https://www.dchatte.com/episode-95-defending-digital-trust-battling-the-deepfake-surge-with-ai-powered-detection/

Connect with Host Dr. Dave Chatterjee

LinkedIn: https://www.linkedin.com/in/dchatte/

Website: https://dchatte.com/

Books Published

The DeepFake Conspiracy

Cybersecurity Readiness: A Holistic and High-Performance Approach

Articles Published

Ramasastry, C. and Chatterjee, D. (2025). Trusona: Recruiting For The Hacker Mindset, Ivey Publishing, Oct 3, 2025.

Chatterjee, D. and Leslie, A. (2024). “Ignorance is not bliss: A human-centered whole-of-enterprise approach to cybersecurity preparedness,” Business Horizons, Accepted on Oct 29, 2024.

In this episode, Dr. Dave Chatterjee sits down with Pam Lindemoen, Chief Security Officer and Vice President of Strategy at the Retail & Hospitality Information Sharing and Analysis Center (RH-ISAC), to explore the CISO’s evolving role in global nonprofit organizations. Moving beyond traditional corporate metrics of cost and compliance, Lindemoen reveals how cybersecurity leadership in the nonprofit sector is ultimately about preserving trust, protecting donor data, and sustaining mission-driven operations. Drawing on three decades of experience across healthcare, finance, and retail, Lindemoen shares how RH-ISAC has become a collaborative force multiplier, enabling member companies to detect, respond, and adapt collectively to cyber threats. Through the Commitment–Preparedness–Discipline (CPD) framework, Dr. Chatterjee and Lindemoen illustrate how leadership, empathy, and shared intelligence drive resilience across the nonprofit ecosystem.

Time Stamps

• 00:49 — Dave introduces the topic and Pam Lindemoen’s professional journey.

• 02:49 — Career reflections: from IT foundations to cybersecurity leadership.

• 04:23 — Inside RH-ISAC: a trusted model for cross-industry collaboration.

• 07:06 — Navigating dual responsibilities—defending RH-ISAC and empowering members.

• 09:09 — Governance, trust, and relationship management in a global community.

• 12:27 — RH-ISAC’s differentiation and member-driven value.

• 14:00 — Leadership through listening and connection.

• 20:50 — Advice for CISOs exploring nonprofit leadership paths.

• 24:26 — Real-world example: supply chain attack mitigation through shared intelligence.

• 27:55 — Final reflections on collective trust, collaboration, and resilience.

To access and download the entire podcast summary with discussion highlights - https://www.dchatte.com/episode-94-guardians-of-trust-the-cisos-strategic-role-in-global-non-profits/



Connect with Host Dr. Dave Chatterjee

LinkedIn: https://www.linkedin.com/in/dchatte/

Website: https://dchatte.com/

Books Published

The DeepFake Conspiracy

Cybersecurity Readiness: A Holistic and High-Performance Approach

Articles Published

Ramasastry, C. and Chatterjee, D. (2025). Trusona: Recruiting For The Hacker Mindset, Ivey Publishing, Oct 3, 2025.

Chatterjee, D. and Leslie, A. (2024). “Ignorance is not bliss: A human-centered whole-of-enterprise approach to cybersecurity preparedness,” Business Horizons, Accepted on Oct 29, 2024.

Isik, O., Chatterjee, D., and Lourenco, D.A. (2024). “Getting Cybersecurity Right,” California Management Review — Insights, Accepted for Publication, July 8, 2024.

In this episode, Dr. Dave Chatterjee speaks with Anupam Upadhyay, Senior Vice President, Product Management, Palo Alto Networks, a seasoned product and cybersecurity leader, to unpack the “new browser wars” and why enterprise browsers are fast becoming a core battleground in the fight for digital trust. Drawing on over two decades of experience spanning Cisco, startups, and Palo Alto, Upadhyay traces the evolution of the humble browser from a passive content viewer into the primary interface for cloud applications, collaboration tools, and sensitive business data.

The conversation examines the browser’s expanding role as both a productivity hub and a primary attack vector—accounting for over 90 percent of initial intrusions via phishing, malicious extensions, or session hijacking. Through the lens of the Commitment-Preparedness-Discipline (CPD) Framework, Dr. Chatterjee and Anupam Upadhyay emphasize that securing the enterprise browser is not merely a technical exercise but a governance imperative: leadership commitment to zero-trust principles, preparedness through hardened configurations and employee training, and disciplined enforcement of consistent controls across devices and partners.

Time Stamps

• 00:49 — Dave’s introduction and guest overview.

• 03:00 — Anupam Upadhyay’s career journey and reinvention at Palo Alto Networks.

• 05:00 — Historical context: how browsers stayed outside the security spotlight.

• 08:40 — Cloud and SaaS migration shifting business to the browser.

• 11:20 — Emerging browser threats and data sanctity concerns.

• 14:30 — Malicious extensions and the limits of traditional EDR.

• 16:07 — Browser security as part of Zero Trust architecture.

• 18:30 — Balancing security and user experience.

• 22:10 — Operating in hostile environments and credential revocation.

• 25:00 — Dr. Chatterjee introduces the CPD framework for governance.

• 28:45 — Implementation and user adoption challenges.

• 30:00 — Continuous testing and discipline in browser security.

• 33:05 — Closing takeaways on Zero Trust mindset and defense-in-depth.

Podcast summary with discussion highlights - https://www.dchatte.com/episode-93-the-new-browser-wars-why-the-enterprise-browser-has-become-cybersecuritys-next-battleground/

Connect with Host Dr. Dave Chatterjee

LinkedIn: https://www.linkedin.com/in/dchatte/

Website: https://dchatte.com/

Books Published

The DeepFake Conspiracy

Cybersecurity Readiness: A Holistic and High-Performance Approach

Articles Published

Ramasastry, C. and Chatterjee, D. (2025). Trusona: Recruiting For The Hacker Mindset, Ivey Publishing, Oct 3, 2025.

Chatterjee, D. and Leslie, A. (2024). “Ignorance is not bliss: A...

In this episode, Dr. Dave Chatterjee speaks with Will Ledesma, Director of MDR Cybersecurity Operations at Adlumin, a veteran SOC leader and cyber defender with over two decades of experience in enterprise security and the U.S. Air Force Reserves. Ledesma shares his journey from IT systems administration to frontline cyber defense, and offers hard-earned insights into the realities of Security Operations Centers (SOCs) in the age of artificial intelligence.

The conversation explores how AI is transforming SOC effectiveness—from triaging millions of processes in seconds to surfacing hidden indicators of compromise. But the central message is clear: AI must serve as an enabler, not a replacement, for human judgment. Drawing on the CPD framework, the discussion highlights that the future SOC is founded on leadership commitment to responsible adoption, preparedness through data pipelines and training, and disciplined guardrails to maintain AI within safe operational boundaries.

Time Stamps

· 00:48 — Dave’s setup: AI’s impact on SOC operations and burnout.

· 02:22 — Will’s origin story and pivot into cybersecurity.

· 05:56 — “Augment the human”: keeping people in the loop.

· 08:40 — Beyond enrichment: faster intel + compiled investigations.

· 11:20 — Human governance and control of agentic AI.

· 13:30 — Auto‑remediation tools: potential and limits.

· 17:15 — Incident case: 10 IOCs in 60 min vs. 13 in ~10 sec with AI.

· 21:40 — Scaling to millions of processes → four prioritized leads.

· 22:34 — KPIs: AI handling ~70% of detections; QA and MT* metrics.

· 26:52 — Platform vs. best‑of‑breed: avoid single failure domains.

· 28:29 — Outsourcing SOC: costs, vendor selection, oversight.

· 34:19 — CPD framework applied to AI in the SOC.

To access and download the entire podcast summary with discussion highlights - https://www.dchatte.com/episode-92-the-ai-augmented-soc-balancing-technology-talent-and-trust/

Connect with Host Dr. Dave Chatterjee

LinkedIn: https://www.linkedin.com/in/dchatte/

Website: https://dchatte.com/

Books Published

The DeepFake Conspiracy

Cybersecurity Readiness: A Holistic and High-Performance Approach

Articles Published

Ramasastry, C. and Chatterjee, D. (2025). Trusona: Recruiting For The Hacker Mindset, Ivey Publishing, Oct 3, 2025.

In this episode, Dr. Dave Chatterjee speaks with Josh Cook, a seasoned cybersecurity and privacy attorney who has guided multinational corporations and mid-sized businesses through high-stakes cyber crises. Drawing on his experience as the first Global Cyber Counsel for a Fortune Global 500 company, Cook shares how he built a global cyber legal function from scratch and why legal teams must be engaged long before an incident occurs.

Together, they explore the human, organizational, and legal dynamics of crisis leadership: from building attorney-client privilege into preparation, to developing muscle memory through tabletop exercises, to ensuring the C-suite speaks with one unified voice when every second counts. Anchored in Dr. Chatterjee’s Commitment–Preparedness–Discipline (CPD) framework, the discussion underscores how legal, leadership, and security functions must converge to preserve trust and resilience in the face of relentless cyber threats.

Time Stamps

· 00:49 — Introduction to Josh Cook and his career journey

· 02:43 — Building the global cyber legal function

· 06:18 — Why legal must be engaged early in cyber strategy

· 09:10 — Prepared vs. unprepared organizations and the “B-OODA loop”

· 10:58 — Dr. Chatterjee introduces the CPD framework in crisis leadership

· 14:30 — Leadership commitment and the ROI of prevention

· 17:11 — Tabletop exercises and developing organizational muscle memory

· 19:45 — Crisis leadership styles and their impact on teams

· 21:55 — Cybersecurity as strategic enabler and trust foundation

· 27:03 — Preparing for the next attack, not the last one

· 29:45 — Common crisis weakness: fractured C-suite response

· 33:58 — Unified communication and trust building

· 38:02 — Clear, simple, consistent crisis communications

· 41:17 — The importance of genuine care for stakeholders

· 43:08 — Josh Cook’s closing reflections: cyber crises are business problems rooted in people

To access and download the entire podcast summary with discussion highlights -

https://www.dchatte.com/episode-91-leading-under-fire-legal-and-leadership-lessons-from-cyber-crises/

Connect with Host Dr. Dave Chatterjee

LinkedIn: https://www.linkedin.com/in/dchatte/

Website: https://dchatte.com/

Books Published

The DeepFake Conspiracy

In this episode, Dr. Dave Chatterjee speaks with Roi Cohen, CEO and Co-Founder of Vicarius, about the urgent need to counter AI-driven attacks with equally automated defenses. Cohen, who began his career managing mission-critical systems in the military, shares his journey through leadership roles at CyberArk and the launch of Vicarius. Drawing from real-world penetration tests at hospitals and Ivy League institutions, he illustrates how attackers exploit simple misconfigurations to access sensitive data. Together, they examine why defenders must move beyond manual, ticket-based remediation to keep pace with adversaries leveraging agentic AI.

The conversation highlights that automation, while essential, is insufficient without human oversight and governance discipline. Anchored in Dr. Chatterjee’s Commitment–Preparedness–Discipline (CPD) framework, the discussion highlights the organizational mindsets and technological building blocks needed to sustain resilience. Cohen emphasizes the hybrid future of AI and human collaboration, where transparent reasoning and flexible control are vital for trust.

To access and download the entire podcast summary with discussion highlights -https://www.dchatte.com/episode-90-ai-vs-ai-automating-defense-to-outpace-automated-attacks/

Connect with Host Dr. Dave Chatterjee and Subscribe to the Podcast

Please subscribe to the podcast so you don't miss any new episodes! And please leave the show a rating if you like what you hear. New episodes are released every two weeks.

Connect with Dr. Chatterjee on these platforms:

LinkedIn: https://www.linkedin.com/in/dchatte/

Website: https://dchatte.com/

Cybersecurity Readiness Book: https://www.amazon.com/Cybersecurity-Readiness-Holistic-High-Performance-Approach/dp/1071837338

https://us.sagepub.com/en-us/nam/cybersecurity-readiness/book275712

Latest Publications & Press Releases:

“Meet Dr. Dave Chatterjee, the mind behind the CommitmentPreparedness-Discipline method for cybersecurity,” Chicago Tribune, February 24, 2025.

"Dr. Dave Chatterjee On A Proactive Behavioral Approach To Cyber Readiness," Forbes, February 21, 2025.

Ignorance is not bliss: A human-centered whole-of-enterprise approach to cybersecurity preparedness

Dr. Dave Chatterjee Hosts Global Podcast Series on Cyber Readiness,...

In this episode, Dr. Dave Chatterjee sits down with Jasson Casey, CEO & Co-Founder @ Beyond Identity, to dissect the growing threat of identity-based attacks, which now account for nearly 80% of breaches. Casey explains how adversaries increasingly “log in” instead of breaking in, leveraging techniques such as MFA fatigue, session hijacking, and phishing kits. He shares lessons from his professional journey—ranging from building telco networks to advising the U.S. Government and launching Beyond Identity—and explains how his team's identity defense solution eliminates root causes of credential theft while reducing SOC workloads. The discussion also addresses why traditional human training cannot withstand adversaries armed with deepfakes and agentic AI, underscoring the need for technology to carry the defensive burden. Together, Chatterjee and Casey explore the double-edged role of AI, strategies for phased deployments (“ring deployments”), and the importance of embedding identity defense into board-level governance through the Commitment–Preparedness–Discipline (CPD) framework.

To access and download the entire podcast summary with discussion highlights -

https://www.dchatte.com/episode-89-beyond-passwords-making-identity-based-attacks-impossible-in-the-age-of-ai-2/

Connect with Host Dr. Dave Chatterjee and Subscribe to the Podcast

Please subscribe to the podcast so you don't miss any new episodes! And please leave the show a rating if you like what you hear. New episodes are released every two weeks.

Connect with Dr. Chatterjee on these platforms:

LinkedIn: https://www.linkedin.com/in/dchatte/

Website: https://dchatte.com/

Cybersecurity Readiness Book: https://www.amazon.com/Cybersecurity-Readiness-Holistic-High-Performance-Approach/dp/1071837338

https://us.sagepub.com/en-us/nam/cybersecurity-readiness/book275712

Latest Publications & Press Releases:

“Meet Dr. Dave Chatterjee, the mind behind the CommitmentPreparedness-Discipline method for cybersecurity,” Chicago Tribune, February 24, 2025.

"Dr. Dave Chatterjee On A Proactive Behavioral Approach To Cyber Readiness," Forbes, February 21, 2025.

Ignorance is not bliss: A human-centered whole-of-enterprise approach to cybersecurity preparedness

Dr. Dave Chatterjee Hosts Global Podcast Series on Cyber Readiness,...