Sign up to save your podcasts
Or
Share The Security Mentalist: Hacking Human Behavior in the AI Age - Gary S. Chan | Ep 100
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
The Security Mentalist: Hacking Human Behavior in the AI Age - Gary S. Chan | Ep 100
Gary S. Chan, an MIT-trained engineer, Chief Information Security Officer, and a security mentalist, unpacks the hidden influences that shape our decisions and drive today's cybersecurity risks.
In this episode, Gary reveals how he models social engineering attacks using game theory and decision trees, treating human behavior as a predictable system. Learn how he applies principles of mentalism not to deceive, but to build a stronger, more security-conscious culture within an $11 billion company. We explore the "bugs" in human decision-making that cybercriminals exploit, from MFA bombing to sophisticated AI-powered phishing campaigns that fundamentally change the landscape of manipulation. Gary also shares critical insights for technical teams to overcome their blind spots and practical steps individuals can take to enhance their digital awareness.
In this episode, you’ll discover:
· Gary's unique fusion of MIT engineering, CISO leadership, and security mentalism.
· How human psychology is the weakest link in system security.
· Modeling social engineering attacks as predictable systems using game theory.
· Applying mentalism to build a security-conscious culture, not to deceive.
· The most common "bug" in human decision-making exploited in cyberattacks (e.g., MFA bombing).
· How AI is enabling fundamentally new forms of psychological manipulation in cyber warfare.
· The biggest blind spot for technically brilliant security teams.
· A simple mentalism principle for engineers in UX design, communication, and system architecture.
· Emerging trends at the intersection of technology and human psychology in security (e.g., human risk scores).
· Practical, immediate steps individuals can take to become more aware of digital influences (e.g., default settings).
· The core mindset every new engineer should adopt: understanding business value.
· What innovation truly means to Gary in his career.
Tune in for a captivating discussion that bridges the gap between circuits and cognition, offering a fresh perspective on securing our digital world.
Connect With Gary S. Chan:
· Website: https://www.gschan2000.com
· LinkedIn: https://www.linkedin.com/in/gschan2000/
Chapters:
00:00 Welcome Gary S. Chan: The Security Mentalist
01:01 Connecting System Security & Human Psychology
02:18 Modeling Social Engineering with Game Theory
04:23 Building a Security-Conscious Culture with Mentalism
07:37 Common "Bugs" in Human Decision-Making Exploited by Cybercriminals
10:50 How AI is Evolving Psychological Attacks
14:18 Using AI for Cyber Defense
15:27 Biggest Blind Spots for Technical Security Teams
17:55 Mentalism Principle for Engineers: End-User Perspective
20:57 Emerging Trends: Tech, Psychology & Security (Human Risk Scores)
22:52 Practical Steps for Digital Awareness: Default Settings
24:54 Core Mindset for New Engineers: Understanding Business Value
26:05 What Innovation Means to Gary S. Chan
27:14 Connect with Gary S. Chan
Support the Show:
· Fuel the podcast: https://iferia.nestuge.com/supportme
· Subscribe and leave a review!
· Share
Want to Be a Guest on The Iferia TechCast?
· Reach out to Ezekiel on PodMatch
· PodMatch Host Profile: https://podmatch.com/hostdetailpreview/theiferiatechcast
View all episodes
By Ezekiel IferiaGary S. Chan, an MIT-trained engineer, Chief Information Security Officer, and a security mentalist, unpacks the hidden influences that shape our decisions and drive today's cybersecurity risks.
In this episode, Gary reveals how he models social engineering attacks using game theory and decision trees, treating human behavior as a predictable system. Learn how he applies principles of mentalism not to deceive, but to build a stronger, more security-conscious culture within an $11 billion company. We explore the "bugs" in human decision-making that cybercriminals exploit, from MFA bombing to sophisticated AI-powered phishing campaigns that fundamentally change the landscape of manipulation. Gary also shares critical insights for technical teams to overcome their blind spots and practical steps individuals can take to enhance their digital awareness.
In this episode, you’ll discover:
· Gary's unique fusion of MIT engineering, CISO leadership, and security mentalism.
· How human psychology is the weakest link in system security.
· Modeling social engineering attacks as predictable systems using game theory.
· Applying mentalism to build a security-conscious culture, not to deceive.
· The most common "bug" in human decision-making exploited in cyberattacks (e.g., MFA bombing).
· How AI is enabling fundamentally new forms of psychological manipulation in cyber warfare.
· The biggest blind spot for technically brilliant security teams.
· A simple mentalism principle for engineers in UX design, communication, and system architecture.
· Emerging trends at the intersection of technology and human psychology in security (e.g., human risk scores).
· Practical, immediate steps individuals can take to become more aware of digital influences (e.g., default settings).
· The core mindset every new engineer should adopt: understanding business value.
· What innovation truly means to Gary in his career.
Tune in for a captivating discussion that bridges the gap between circuits and cognition, offering a fresh perspective on securing our digital world.
Connect With Gary S. Chan:
· Website: https://www.gschan2000.com
· LinkedIn: https://www.linkedin.com/in/gschan2000/
Chapters:
00:00 Welcome Gary S. Chan: The Security Mentalist
01:01 Connecting System Security & Human Psychology
02:18 Modeling Social Engineering with Game Theory
04:23 Building a Security-Conscious Culture with Mentalism
07:37 Common "Bugs" in Human Decision-Making Exploited by Cybercriminals
10:50 How AI is Evolving Psychological Attacks
14:18 Using AI for Cyber Defense
15:27 Biggest Blind Spots for Technical Security Teams
17:55 Mentalism Principle for Engineers: End-User Perspective
20:57 Emerging Trends: Tech, Psychology & Security (Human Risk Scores)
22:52 Practical Steps for Digital Awareness: Default Settings
24:54 Core Mindset for New Engineers: Understanding Business Value
26:05 What Innovation Means to Gary S. Chan
27:14 Connect with Gary S. Chan
Support the Show:
· Fuel the podcast: https://iferia.nestuge.com/supportme
· Subscribe and leave a review!
· Share
Want to Be a Guest on The Iferia TechCast?
· Reach out to Ezekiel on PodMatch
· PodMatch Host Profile: https://podmatch.com/hostdetailpreview/theiferiatechcast