CXO Spotlight: Growth, Influence & Leadership in B2B

A Top 10 CISO on How to Actually Sell to a CISO (and What Vendors Keep Getting Wrong)

Mignona Coté, a top 10 CISO in the world with three decades of security leadership across AWS, PepsiCo, Bank of America, and Infor, reveals what vendors keep getting wrong in the first meeting, why every cloud platform is equally secure, and how the "human in the loop" governance model breaks the moment AI touches your stack.Mignona has led security through three major technology inflection points: the explosive growth of the internet at GTE and Verizon, the financial crisis at Bank of America where she ran security for 200,000 people across credit cards, home loans and Merrill Lynch, and the cloud adoption wave at AWS. Most recently as SVP and CISO at Infor, she was responsible for the security of a platform serving more than 60,000 companies across industries. She is a top 10 CISO globally, a two-time Dallas ORBIE Award winner, and a Hall ofFame inductee who today advises a portfolio of security startups.◼ Why every cloud platform is equally secure, and the real question CIOs should be asking instead◼ How AI has broken the traditional "human in the loop" model and what has to replace it◼ What vendors must do in the first meeting to win a CISO's trust (hint: bring two people, not fifteen)◼ Why CISOs who stay in one role too long start solving yesterday'sproblems◼ The empathy framework that turns developers into security allies instead of compliance checkboxes◼ What CISOs talk about privately that never makes it into theboardroom00:00 Teaser00:53 Intro01:07 Main Episode01:53 Three decades in, top 10 CISO globally, still learning from 5am to 7am02:47 What it means to be the security officer for 60,000 companies03:46 From the dot com era to the financial crisis to the cloud04:14 Why each company forces a completely different security program05:29 What banking, telecom, and consumer tech each taught her07:26 Leaving the single-company CISO role for advisory work08:15 What builders of enterprise AI platforms keep getting wrong10:37 The “default secured” principle every product team should adopt13:11 88% human error, 63% inadvertent sharing: where SaaS responsibility sits14:39 Empathy as a security strategy, and why auditors get it right17:32 “Shift left, shift left. I call it shift anywhere.”17:37 How AI compounds the threat and breaks old governance models19:07 Building a governance model that flexes like Lego21:28 What feels different about this AI inflection point22:16 Inside the CISO Ascent Board: what CISOs never tell the board26:07 The advice she would give early-career security professionals26:53 Why staying in one role too long will hurt you28:25 Why CISOs have to get hands on with the technology29:46 What single-cloud security misses about multi-cloud reality31:35 The questions CIOs should ask vendors, but rarely do33:39 Choosing the right partner: accessibility over sales pitch34:27 The CrowdStrike account rep story every vendor should hear35:12 What IT services companies must change to sell to CISOs36:34 Chirag’s keynote reframe: “Nobody wakes up saying let me see a demo today”37:20 The late-night call, the board presentation, and digital watermarking38:28 What excites her about the startup security space40:29 What AI will change about the CISO role in two years41:07 The one question the host forgot to askFollow Mignona Coté: https://www.linkedin.com/in/mignonacoteFollow Chirag Khanijau: https://www.linkedin.com/in/chirag-khanijauLinks: Flywheelr: https://www.flywheelr.comBrandStori: https://brandstori.aiCXO Spotlight: https://www.linkedin.com/showcase/cxospotlightListen on Spotify: https://open.spotify.com/show/4xVy5IPCvf68BrGaALfUMZListen on Apple:https://podcasts.apple.com/us/podcast/cxo-spotlight-growth-influence-leadership-in-b2b/id1792963542#CXOSpotlight #CISO #Cybersecurity #CloudSecurity #MultiCloud #InformationSecurity #SaaSSecurity #AISecurity #SecurityGovernance #EnterpriseIT #CIO #CISOCommunity#VendorSelection #ITServices

An AI Just Out-Hacked 2 Million Humans. She Decides What Happens Next | Nidhi Aggarwal, CPO HackerOne

Nidhi Aggarwal, Chief Product Officer at HackerOne, explains why the zero-day clock dropped from 23.2 days to 20 hours in a single year, why the entire CISO playbook is being rewritten around continuous defense, and what she is hearing from the CISOs at 20% of the Fortune 500 who are losing sleep over Mythos and autonomous AI hackers.Nidhi is one of the most uniquely qualified people to answer these questions. She co-founded a cloud platform that Google acquired. She holds six US patents. She has built products at McKinsey, HP Labs, and VMware. She now steers the AI roadmap at the platform that pays out $81 million a year to ethical hackers, manages over 2 million security researchers, and just watched an autonomous AI climb to number one on their own leaderboard. Her customer list is the companies that would be on the front page of the Wall Street Journal if they were breached.KEY INSIGHTS:◼ Why the entire security architecture was built on an assumption that is no longer true, and what CISOs should do with the boardroom attention Mythos just bought them.◼ How the zero-day clock compressed from 23.2 days to 20 hours in 12 months, and why that single metric reframes the entire CISO operating model.◼ Why "vulnerability ops" is the DevOps moment for security, and what a continuous detection pipeline actually looks like in practice.◼ The Mozilla case that changed her mind on AI slop: 122 vulnerabilities found, 14 high and critical, zero that represented true exposure. Why defense is offense.◼ Why the ethical researcher community is adopting AI faster than CISOs and why that is the single biggest silver lining in this moment.◼ The HackerOne platform data nobody else has: 300% increase in open source vulnerability reports from January to March, duplicate rates jumping from 22% to 47%, and what the high and critical findings actually tell us.TIMESTAMPS:00:00 Introduction01:17 An atypical path from HP Labs to McKinsey to Google acquisition to HackerOne05:19 What HackerOne is today, not what you think it is08:06 The Wall Street Journal customer list10:07 Mythos and the moment CISOs spent the night editing their war plan11:04 The zero-day clock, 23.2 days to 20 hours13:01 How CISOs should proactively prepare right now14:42 Humans, agents, and AI together on the leaderboard17:28 How to propose the new cybersecurity posture to the board18:10 The full continuous defense playbook20:04 Vulnerability ops, the DevOps moment for security21:04 Bug class elimination instead of whack-a-mole23:22 Mozilla, 122 vulnerabilities, and the power of defense23:29 Defense is offense25:53 The new cybersecurity team, aligned with business speed28:42 Patterns from CISO conversations right now29:02 Platform data, 76% volume increase tied to Opus 4.630:10 300% increase in open source reports, duplicate rates, high and critical findings32:15 The AI creating the problems is the solution35:09 The CISO nirvana state, a self-healing security layer36:40 Diversity of thought as a security capability39:30 Why this future is more possible than it sounds40:24 Advice to the ethical researcher and cybersecurity communityFollow: Nidhi Aggarwal: https://www.linkedin.com/in/nidhi-aggarwal-6454ab1/Follow: Chirag Khanijau: https://www.linkedin.com/in/chirag-khanijauLinks: HackerOne: https://www.hackerone.com/ Flywheelr: https://www.flywheelr.comBrandStori: https://brandstori.aiCXO Spotlight: https://www.linkedin.com/showcase/cxospotlightListen on Spotify: https://open.spotify.com/show/4xVy5IPCvf68BrGaALfUMZListen on Apple: https://podcasts.apple.com/us/podcast/cxo-spotlight-growth-influence-leadership-in-b2b/id1792963542#CyberSecurity #CISO #HackerOne #AIsecurity #AgenticAI #BugBounty #VulnerabilityManagement #ZeroDay #EthicalHacking #SecurityLeadership #AISecurity #CTEM #AppSec #AIRedTeaming #PromptInjection

Why Strategy Is the New Operating System - C1's CSO on the Bold Moves That Matter

Why Strategy Is the New Operating System - C1's CSO on the Bold Moves That Matter. Candace Holt, Chief Strategy Officer at C1, explains why strategy is the framework for execution, how organization actually prioritize when everything seems urgent, and what buying decisions look like from inside the C-suite.C1 serves nearly half the Fortune 500. Candace doesn't just own strategy. She owns marketing too, and she's executing it. Before C1, she spent eight years at Accenture running business operations and global alliances, watching transformation from the consulting side. Now she's building it. Her pattern: bring clarity through discovery, build alignment through participation, then operate with intent. No PowerPoints. No planning. Operating.Key Insights■■ Why Strategy Is Not Strategy Until It ExecutesStrategy isn't an ethereal function. Real strategy brings clarity that flows through go-to-market, sales enablement, and decision-making across the company. It's 80% science, 20% art.■■ How to Stop Planning and Start OperatingMost CSOs plan. Candace operates. Planning writes the roadmap and hopes it sticks. Operating means using insights to make choices that actually change trajectory. The difference determines whether your business adapts or stalls.■■ Before Buying Any Tool, Fix Your Processes FirstEvery organization wants to bolt AI everywhere. But if your processes are broken, you're automating broken things. Discovery, hypothesis, feedback, execution. In that order. Tools amplify what you already have.■■ Customer Concentration as Strategic AdvantageCandace discovered that a tiny percentage of C1's customers drove disproportionate revenue. Instead of spreading thin across everyone, she wrapped strategic programs around those high-value customers and the executives supporting them. It changed the entire business posture.■■ The Framework That Turns Clarity Into Competitive AdvantageDiscovery of market and internal friction, hypothesis as strategic bets, feedback that brings teams along, execution with aligned leadership. This discovery-hypothesis-feedback-execution cycle is how strategy scales across AI implementation, go-to-market, and organizational alignment.■■ What's Coming Next in AI-Driven StrategyThe next three years will test which organizations have real strategy and which bolted AI on as a tactic. Candace is betting that the companies with clear strategy frameworks, disciplined customer focus, and aligned leadership will win. Everything else is noise.Follow Candace Holt: https://www.linkedin.com/in/candaceholtFollow Chirag Khanijau: https://www.linkedin.com/in/chirag-khanijauLinks:C1: https://www.c1.comFlywheelr: https://www.flywheelr.comBrandStori: https://brandstori.aiCXO Spotlight: https://www.linkedin.com/showcase/cxospotlightListen on n on Apple:https://podcasts.apple.com/us/podcast/cxo-spotlight-growth-influence-leadership-in-b2b/id1792963542#CSO #ChiefStrategyOfficer #StrategyExecution #OperatingSystem #AIStrategy #B2BLeadership #ExecutionFramework#OrganizationalAlignment #CXOSpotlight #StrategicLeadership #GoToMarket #ProcessBeforeTools #CustomerFocus#EnterpriseLeadership #TransformationLeadership

How One CMO Figured Out Technical Buyers | 4 Companies, IBM to Appfire

Catherine Solazzo, CMO of Appfire, explains why most B2B marketing completely misunderstands technical buyers, how AI is disrupting the traditional marketing funnel, and why modern CMOs are redesigning marketing teams to operate more like engineering squads.Catherine has spent more than two decades marketing to technical audiences—from building developer programs at IBM to leading growth through multiple acquisitions and now driving go-to-market at Appfire, whose products are used by over 55% of Fortune 500 companies.At Appfire, she leads marketing for a developer ecosystem with over one million users and more than 700 channel partners, where technical buyers—not traditional enterprise buyers—drive discovery and purchasing decisions.◼️ Why most marketing personas fail with developers — unless you’ve actually lived inside dev teams and used their tools◼️ How modern marketing teams are adopting agile, sprint-based operating models similar to engineering organizations◼️ Why AI is disrupting traditional marketing funnels — discovery now happens through recommendation engines, communities, and AI assistants◼️ The reason technical audiences still rely heavily on community trust and peer recommendations, even in an AI-driven world◼️ How CMOs can position marketing as a growth engine instead of a cost center when budgets tighten◼️ Why marketing teams must shift from generalists to specialized expertise in areas like AI search, LLM optimization, and developer ecosystemsFor leaders in IT services, SaaS, and enterprise technology, this conversation breaks down how marketing, product, and go-to-market strategies must evolve as technical buyers change how they discover, evaluate, and adopt tools.00:00 Introduction – Meet Catherine Solazzo, CMO of Appfire01:05 Catherine’s Unconventional Path to CMO03:17 What Most Companies Get Wrong About Marketing to Technical Buyers05:16 Why Appfire’s Marketing Team Runs Like an Engineering Squad06:35 How AI Is Changing Tool Discovery for Technical Buyers11:04 Why Marketing Budgets Are Flat (And What CMOs Must Do Differently)14:04 Precision vs Volume — The Modern Marketing Strategy17:03 Aligning Marketing With Sales, Product & Leadership19:34 Appfire’s Unique GTM Model: 700+ Channel Partners24:03 Why the Traditional Marketing Funnel Is Now Chaotic29:12 The Biggest Misconception About Marketing Teams33:10 AI Content Explosion vs Real Differentiation40:02 Marketing Careers in the AI Era — Specialists vs Generalists45:01 AI Hype vs Reality — Is SaaS Really Dead?Follow Chirag Khanijau: https://www.linkedin.com/in/chiragkhanijauFollow Catherine Solazzo: https://www.linkedin.com/in/catherine-solazzo/🔗 LinksAppfire: https://www.appfire.comCXO Community: https://www.flywheelr.com/cxo-communityCXO Spotlight: https://www.linkedin.com/showcase/cxospotlightSponsor: Brand Stori - The AI platform purpose-built for IT Industry BrandStori: https://brandstori.ai🎧 Listen on Spotify: https://open.spotify.com/show/4xVy5IPCvf68BrGaALfUMZ🍏 Listen on Apple: https://podcasts.apple.com/us/podcast/cxo-spotlight-growth-influence-leadership-in-b2b/id1792963542#CMO #B2BMarketing #DeveloperMarketing #EnterpriseTech #ITServices #GTMStrategy #AIinMarketing #TechnicalBuyers #DevTools #MarTech #CXOSpotlight #Flywheelr #SaaSMarketing #B2BTech

Most Companies Were Hacked by AI and Don't Know It: 4x Ciso Explains How to Stop It

Andres Andreu, CEO of Constella Intelligence and four-time CISO, explains why two simple prompts can generate a complete ransomware campaign, how breaches are monetized for six months before companies even know they're compromised, and what CISOs should demand from security vendors that almost no one is asking for.Andres has been CISO at four different organizations and defended enterprises from government wiretaps to Fortune 500 attacks. Today, he leads Constella Intelligence—sitting on 230 billion identity records, the world's largest breach dataset—where his team hunts breaches 24/7 and provides real-time risk intelligence to organizations that can't afford to be six months behind attackers.He reveals:◼️ Why "vibe hacking" is social engineering on steroids—AI bots now analyze your emotional state in real-time to manipulate you into actions you'd never normally take◼️ How machine-speed attacks force a fundamental shift from "protective" to "resilient" security postures—you can't withstand certain attacks anymore, but you must continue business operations◼️ The questions CISOs aren't asking about their attack surface—like the CISO who had no idea maintenance teams were remotely accessing HVAC systems right under his nose◼️ Why merging POCs with red team exercises (not pen tests) changes vendor evaluation—"I'm not calling a cop to tell me where to put my alarm system, I'm calling a burglar"◼️ What makes non-skilled attackers disturbingly dangerous now—campaign automation that used to take skilled hackers months to plan is now "disturbingly simple, disturbingly quick"◼️ The breach reality nobody talks about—when you hear about a breach, it happened six months ago, and bad actors have been monetizing it this entire time before deciding to let you know00:00 Introduction – Meet Andres, CEO of Constellation Intelligence00:48 2026 Cybersecurity Predictions Explained01:10 From DEA Wiretap Systems to 230B Identity Records02:18 107 Billion Records Exposed – What’s Really Happening?03:41 Artificial Adversaries vs Traditional AI Attacks04:31 How AI Can Generate Full Ransomware Campaigns05:22 Synthetic IT Workers & Digital Trust Breakdown07:29 Identity Becomes the Primary Blast Radius08:25 Session Hijacking & The New Perimeter09:21 What Is Vibe Hacking? (Social Engineering on Steroids)11:09 How Enterprises Should Budget for AI-Driven Attacks12:14 Machine-Speed Attacks: Protection vs Resilience15:21 The API Blind Spot Most CISOs Miss17:45 What Should Scare CISOs Most in 2026?19:22 Cyber Insurance Is About to Change22:24 What CISOs Should Be Doing Differently Now23:22 The HVAC Attack Surface Story (Inside-Out Risk)27:29 Practical Security Improvements with Low Effort32:00 How CISOs Should Evaluate Security Vendors34:50 What Makes Constellation Intelligence Different35:58 Skills That Matter in an AI-Driven Security World38:14 What Gives Hope (And What Should Worry Us)40:46 Final Thoughts on Artificial AdversariesFollow Chirag Khanijau: https://www.linkedin.com/in/chiragkhanijauFollow Andres Andreu: https://www.linkedin.com/in/andresandreu/🔗 LinksConstella Intelligence: https://www.constellaintelligence.comCXO Community: https://www.flywheelr.com/cxo-communityCXO Spotlight: https://www.linkedin.com/showcase/cxospotlightSponsor: Brand Stori - The AI platform purpose-built for IT Industry BrandStori: https://brandstori.ai🎧 Listen on Spotify: https://open.spotify.com/show/4xVy5IPCvf68BrGaALfUMZ🍏 Listen on Apple: https://podcasts.apple.com/us/podcast/cxo-spotlight-growth-influence-leadership-in-b2b/id1792963542#CIO #CISO #Cybersecurity #AIAttacks #BreachDetection #EnterpriseIT #SecurityLeadership #ThreatIntelligence #RedTeam #APISecurity #CXOSpotlight #Flywheelr #AIBreach #VibeHacking #zerotrust