Podchaser Logo Rate on Podchaser

Episode 17

full
Published on:

3rd Dec 2025

Transforming Cybersecurity Awareness Training with Michael Waite

In this episode of Security by Default, host Joe Carson sits down with Michael Waite from Dune Security to explore how AI is reshaping cybersecurity and why it’s time to rethink traditional awareness training.

As cyber threats become more sophisticated, personalized, and AI-powered, organizations can no longer rely on outdated, one-size-fits-all learning models. Joe and Michael break down what modern cybersecurity training should look like, how to engage employees more effectively, and why empowering people both inside and outside the office is essential to strong defense.

What You’ll Learn

  • How AI is transforming both cyber attacks and defensive strategies
  • Why the volume and quality of phishing attempts continue to rise
  • The limitations of traditional annual awareness training
  • The shift toward personalized, role-based learning
  • How real-time intervention improves security habits
  • Why cybersecurity awareness must extend beyond the workplace
  • Practical ways to engage employees and build a security-first culture
  • The importance of collaboration and communication across teams
  • How threat intelligence informs more effective training programs

Key Takeaways

  • AI is rewriting the threat landscape.
  • Attackers are faster, more convincing, and more scalable than ever.
  • Generic awareness training is no longer enough.
  • Personalization is essential to reducing real-world risk.
  • Engagement drives stronger security culture and better outcomes.
  • Cybersecurity begins at home, not just at work.
  • Bite-sized, real-time lessons are more effective than long annual videos.
  • Employees are part of the detection engine—and must be empowered accordingly.

Memorable Quotes

  • “Cybersecurity doesn’t start in the office.”
  • “The one size fits all approach is dead.”
  • “We need to democratize security.”
  • “Let’s give individuals the tools they need.”
  • “We need to make cybersecurity more fun.”
  • “This is my favorite thing to talk about.”

Episode Chapters

00:00 – Introduction to the Chaos of Cybersecurity

03:05 – The Impact of AI on Cybersecurity

09:40 – Best Practices for Cybersecurity Awareness

18:51 – Personalizing Cybersecurity Training

27:00 – Engaging Employees in Cybersecurity

29:20 – Resources for Further Learning

Additional Resources:

https://www.linkedin.com/in/mr-michael-waite/

https://www.dune.security/

https://www.dune.security/threat-intelligence-report

Next Episode All Episodes Previous Episode

Listen for free

Show artwork for Security by Default

About the Podcast

Security by Default
Security by Default is a cybersecurity podcast hosted by Joseph Carson, a renowned ethical hacker and security expert. Each episode dives into the latest security trends.
Security by Default is a cybersecurity podcast hosted by Joseph Carson, a renowned ethical hacker and security expert. Each episode dives into the latest security trends, real-world threats, and practical advice for staying safe in the digital world. With insightful interviews and clear explanations, Joseph makes complex topics accessible for both IT professionals and curious listeners alike.

About your host

Profile picture for Joseph Carson

Joseph Carson

I am a distinguished cybersecurity professional with over 30 years of experience in enterprise security and infrastructure.

Throughout my career, I have been an active contributor to the cybersecurity community, serving as an educator, ethical hacker, and speaker at global conferences. I hold both the Certified Information Systems Security Professional (CISSP) and Offensive Security Certified Professional (OSCP) certifications as well as advise various governments, critical infrastructure organizations, and industries such as finance and transportation on cybersecurity matters.
I am the author of "Cybersecurity for Dummies," a book that has gained global recognition for helping companies integrate people, processes, and technology to strengthen their defense against cyberattacks. The book has over 50,000 readers worldwide and provides a straightforward approach to understanding cybersecurity.

In addition to my writing, I have authored numerous articles and research papers, contributing to publications such as The Wall Street Journal, USA Today, Dark Reading, and CSO Magazine. I also host the bi-weekly podcast "Security by Default" which offers insights from leading cybersecurity experts and discusses best practices for navigating security challenges.
I am dedicated to educating the next generation of cybersecurity leaders and his commitment to building a safer internet have made him a respected figure in the cybersecurity community.