Engaging Employees in Security Appreciation with Robert Siciliano

In this episode of "How Many CTOs Does It Take?" podcast, host Brad Hefta-Gaub welcomes Boston-raised security speaker Robert Siciliano, who traces his path into security from early experiences with crime, teaching physical self-defense, and being hacked in the mid-1990s. Robert argues that most corporate security training is compliance-driven "security theater" focused on phishing, creating security fatigue while leaving human behavior unchanged. He advocates "security appreciation," making security personal and using interactive dialogue rather than monologue. He explains the "human blind spot," a biological impulse to trust, plus denial and cultural myths that equate security with paranoia. He urges leaders to live security as a lifestyle, empathizes with the C-suite through relatable family stories, addresses digital literacy gaps, and leverages compelling AI/deepfake risks—illustrated by Brad's deepfake-like fraud example—to drive lasting behavior change.

00:23 Meet Robert Siciliano 01:53 Streets to Security 02:50 First Hack Wakeup 05:32 Why Training Fails 07:24 Compliance Fatigue 07:59 Make It Personal 09:11 Interactive Reality Check 12:34 Fatalism and the Human Blind Spot 15:59 Home Security Parallels 20:17 Security vs Paranoia 25:23 Denial and Avoidance 26:42 Attackers Use Heuristics 28:02 Good People vs Sociopaths 30:22 Strategic Human Firewall 31:48 Awareness Versus Appreciation 33:58 Tone At The Top 36:27 Make It Personal For Leaders 38:40 AI Deepfakes Raise Stakes 44:10 Digital Literacy Crisis 49:59 Empathy And Dialogue Training 54:53 Wrap Up

Resources:

• How Many CTOs Pod: https://howmanyctospod.com
• Brad Hefta-Gaub: https://www.linkedin.com/in/bradheftagaub/
• Robert Siciliano: https://www.linkedin.com/in/robertsiciliano/
• Protect Now: https://protectnowllc.com/

#TechPodcast #EngineeringPodcast #DevTalks #PodcastForDevs #HowManyCTOs #Podcast #CTOs #CTOPodcast #ChiefTechnologyOfficer #Technology #Engineering #SoftwareDevelopment #SoftwareEngineering #TechLeadership #EngineeringLeadership #EngineeringCulture #TechDebates #CyberSecurity #SecurityAwareness #SecurityInnovation #DigitalStrategy #CyberAwareness #CyberRisk #DataProtection #RiskManagement #SecurityCultur #SafetyFirst #SecurityMatters #PrivacyProtection #TheStrategicHumanFirewall #AI #TheHumanBlindspot #Deepfakes #SecurityAppreciation #KitchenTableEffect #DigitalLiteracy