It takes an advanced degree to understand the psychology behind why users hate security controls, so we got someone with two: Dr. Nikki Robinson, DSc Cybersecurity, PhD Human Factors. Nikki joins us to break down the real reasons security implementations fail—and how to fix them.

What You'll Learn:

🔹Why vulnerability scoring goes wrong (hint: it's not the tech)

🔹How to get 99% patching rates through automation

🔹The psychology behind user resistance to security controls

🔹Why developers say "I can't implement secure code" (and what to do about it)

🔹Human factors engineering for cybersecurity practitioners

Real-World Insights:

♦️From 60% to 99% vulnerability remediation in 6 months

♦️Why 600-page security policies guarantee failure

♦️The empathy approach to security policy enforcement

♦️API sprawl and agentic AI risks keeping security pros awake

Dr. Robinson combines IT operations experience with advanced degrees in cybersecurity and human factors psychology. Her research reveals why traditional security approaches create resistance—and practical frameworks that actually work.

She also schools us in how to make a tequila sunrise (technique matters!)

Why would a hacker at the top of his game who found dozens of zero-days switch to defense? The answer is a lot more complicated than you think. In this fascinating episode, we sit down with Cody Pierce, co-founder and CEO of Neon Cyber and former Zero Day Initiative researcher. Cody gives us an insider view into the exploit marketplace, and tells us why he went from offense to defense.

🎯 WHAT YOU'LL DISCOVER:

✅ The REAL difference between vulnerabilities and exploits (most people get this wrong)

✅ Why attackers "bank" zero-days instead of using them immediately

✅ The shocking economics behind exploit marketplaces ($50K to nearly worthless in seconds)

✅ How nation-state attacks actually work (it's not what you think)

✅ What happened with Cody's own USB hacking tool

✅ What motivated Cody to change his approach to ecruity

Perfect for: Cybersecurity professionals, ethical hackers, IT managers, security researchers, students, and anyone curious about the real world of cyber warfare

#Cybersecurity #Podcast #ZeroDay #EthicalHacking #InfoSec #InformationSecurity #CyberWarfare #SecurityResearch #Vulnerabilities #Exploits #CyberDefense #ZeroDayInitiative #CyberEthics

Join us for a special episode of the Security Cocktail Hour as co-hosts Joe Patti and Adam Roth sit down with cybersecurity legend Paul Asadoorian—founder of Security Weekly and Principal Security Evangelist at Eclypsium. With more than two decades of experience, Paul brings his unique mix of deep technical knowledge and podcasting charisma to discuss firmware vulnerabilities, supply chain risks, and the overlooked attack surfaces hiding in your hardware. And he literally--and we do mean literally--brings fire to the show.

🎙️ In This Episode:

• Paul’s journey to becoming a leading voice in cybersecurity—and how he found a career he truly loves

• Why firmware and supply chain security are the hidden battlegrounds of modern cyber defense

• This might finally be the Year of the Linux Desktop.

Paul's podcasts:

Paul's Security Weekly: https://www.scworld.com/podcast-show/pauls-security-weekly

Below the Surface Podcast: https://eclypsium.com/podcasts/