This week’s episode of the Department of Know, a weekly podcast hosted by Rich Stroffolino, featured two cybersecurity leaders: Brett Conlon, Chief Information Security Officer at American Century Investments, and Jason Thomas, Senior Director of Technology Security, Governance, and Risk at the Cystic Fibrosis Foundation. The discussion, which aired live on Friday at 4:00 p.m. ET, focused on how modern cybercriminals use a single, connected attack chain to target a brand’s external presence, infiltrate email inboxes, and manipulate internal staff. The episode was sponsored by Doppel, a company that offers a unified platform combining Digital Risk Protection, Human Risk Management, and Email Security.

The Department of Know is part of the CISO Series and is broadcast every Friday at 4:00 p.m. ET. Episodes are available for replay on YouTube, and listeners can register for live discussions at CISOSeries.com. The show brings together senior security professionals to discuss current threats, emerging technologies, and best practices.

Brett Conlon has served as the CISO at American Century Investments since March 2022. He is responsible for overseeing the firm’s cybersecurity strategy in a heavily regulated investment environment. Jason Thomas, who joined the Cystic Fibrosis Foundation in 2022, leads the organization’s technology security, governance, and risk initiatives, ensuring that the foundation’s data and operations remain protected.

During the episode, the hosts and guests explained that cybercriminals increasingly rely on a single, end‑to‑end attack chain that can begin with a phishing email, move through compromised credentials, and culminate in brand impersonation or data exfiltration. The discussion highlighted the difficulty of defending against such attacks when security tools operate in isolated silos. The speakers emphasized that a fragmented approach forces security teams to “whack‑a‑mole” across multiple platforms.

Doppel’s platform is presented as a solution to this problem. It integrates three core defenses—Digital Risk Protection, Human Risk Management, and Email Security—into a single, unified interface. The company claims that the platform can detect and mitigate threats across the entire attack chain, reducing blind spots that arise when tools are deployed separately.

The conversation also touched on the broader industry trend toward integrated security solutions. Security teams are increasingly looking for platforms that can provide visibility across external brand exposure, employee risk, and email threats in one place. This shift is driven by the growing complexity of cyberattacks and the need for faster, coordinated responses.

From a technical standpoint, the unified platform aggregates data from multiple sources, correlates indicators of compromise, and applies automated remediation actions. By combining threat intelligence with human risk analytics, the platform aims to identify compromised accounts before they can be leveraged for further attacks.

The episode did not discuss specific regulatory changes, but it noted that cyber risk is a growing focus for regulators and that organizations must demonstrate robust, end‑to‑end protection to meet compliance requirements.

In summary, the Department of Know episode highlighted the evolving threat landscape and the need for integrated security solutions. The show is available on YouTube for those who missed the live broadcast, and the episode’s sponsor, Doppel, continues to promote its unified platform as a way to close gaps in traditional security toolsets. No new product launches or regulatory actions were announced during the discussion.