InfoSec to Insanity

Recorded Live on YouTube: Thursday, September 11, 2025 – 9:00 PM CTThis week on InfoSec to Insanity, Evan Francen and Matt Goodacre dive headfirst into a problem that’s bigger than firewalls, frameworks, or fancy AI tools—our obsession with short-term thinking. Inspired by Evan’s latest blog post, We’re Addicted to Short-Term Thinking (And It’s Screwing Us All), we’ll break down how chasing the next quick win, quarterly number, or shiny product is wrecking cybersecurity, business, and even our personal lives.Why do we keep doing what we know doesn’t work? Why do leaders mortgage long-term resilience for short-term gains? And most importantly—how do we break the cycle before it breaks us?As always, expect the full InfoSec to Insanity treatment:🔥 WTF Happened This Week? – The biggest security stories, stripped of the nonsense.🤣 CISO Humor – Because if we don’t laugh, we’ll cry.🎤 No-BS conversation – The kind the industry doesn’t want you to hear.💥 Join us live, bring your questions, and let’s talk about building something real instead of just patching over the cracks.

Streamed live on Sep 4, 2025In this episode, Evan Francen and Matt Goodacre are back with Part 5 of the Accountability in Cybersecurity is Broken series: Selling Fear – Why the Cybersecurity Industry Loves the Chaos.Confusion sells. Simplicity doesn’t. And that’s not an accident—it’s a business model. Too many vendors, “experts,” and even practitioners are getting rich off of fear, uncertainty, and doubt (FUD), while the people they’re supposed to protect are left confused, vulnerable, and broke. Evan and Matt will tear into how snake oil gets sold, why simple fixes get ignored (remember the Senate hearing where nobody would admit a firewall could’ve helped?), and what real accountability looks like.Of course, it wouldn’t be InfoSec to Insanity without the fun:WTF Happened This Week? – The biggest security stories, with a dose of sanity.CISO Humor – Laugh so you don’t cry.And plenty of candid, no-BS conversation the industry doesn’t want you to hear.Join us live, bring your questions, and be part of the conversation.Subscribe and hit the bell so you don’t miss it.

Part 4 of the “Accountability in Cybersecurity is Broken” series - Recorded LIVE August 21, 2025 on YouTube.Every breach is a gold mine—but not for the victims. In this episode, Evan Francen (30+ year InfoSec badass) and Matt strip away the shiny headlines to expose the ugly truth: when cyber disasters strike, lawyers strike the jackpot. We’re unpacking how class-action lawsuits have turned cybersecurity disasters into bonanzas for law firms—while the real victims get scraps.From Equifax to AT&T to Meta, we’re talking grotesque settlements, insane legal fees, and a broken accountability loop that thrives on failure.Raw and unapologetic—this is the conversation no one else (or at least, not enough of us) is having.Highlights you won’t want to miss:Why class-action law firms rake in millions every time your data gets exposedHow breach settlements often benefit lawyers more than the victims themselvesThe real numbers behind Equifax, AT&T, Meta—and the legal fee loot they generatedWhy the legal system might be perpetuating failure, not fixing itReal talk on how cyber accountability dies in the courtroom, not the boardroomSubscribe so you don’t miss the chaos.

Accountability in Cybersecurity Is Broken, Part 3 – “Cybersecurity Doesn’t Win Elections: So Politicians Don’t Give a Sh*t”Cybersecurity doesn’t win votes—so politicians don’t care. That political apathy leaves CEOs, boards, and tech giants free to make terrible security decisions with no real accountability. In this episode, Evan Francen (30+ year veteran, co-founder of FRSecure & SecurityStudio, author of UNSECURITY) and co-host Matt Goodacre rip into how politics fuels the accountability crisis in cybersecurity. From Citrix zero-days and hacked U.S. courts to Russian hackers opening a dam in Norway, Evan and Matt deliver WTF headlines, CISO humor, and hard-hitting fixes that don’t need a campaign trail. Expect sharp insights, raw honesty, and a heavy dose of sarcasm aimed at the broken system we’re all stuck with.Highlights:Why politicians ignore cybersecurity until it costs votesWTF news: Citrix, U.S. courts, hacked dams, and vendor disastersCISO humor: therapy for the blame-soaked security prosFive fixes to force accountability—without waiting on lawsA preview of Part 4: Breach? Jackpot. How the Legal System Profits from FailureKey Quote: “Politicians don’t care about cybersecurity because it doesn’t win elections—just lawsuits.”

Part 2: It’s Not Real Until It Hurts Cybersecurity doesn’t change because we know better. It changes because someone bleeds. Not until the breach is splashed across headlines. Not until patients are turned away mid-surgery. Not until your CEO’s kid finds their identity on the dark web. In Part 2 of our six-part series, Accountability in Cybersecurity is Broken, Evan Francen (30+ years of cyber trench warfare) and Matt Goodacre (logic ninja, cyber smartass) rip into the ugly truth: in this industry, pain is the only language leaders understand.We’re talking WTF news—from grounded airlines to vishing attacks against Google—CISO Humor that’ll make you laugh-cry, and a no-B.S. deep dive into why our so-called “leaders” only act after the damage is done. You’ll walk away with a “fix list” for pain-proofing your security strategy, so maybe next time you don’t have to bleed to get budget.If you’ve ever warned about a risk months in advance, only to be ignored until disaster hit—this one’s for you. You’re not crazy. You’re just ahead of the blast radius.This ain’t your compliance department’s podcast. This is InfoSec to Insanity.

Get ready—this isn’t your typical cybersecurity rant:In Part 1: Is It Really Broken?, Evan lays down the truth: accountability in cybersecurity is broken badly and has been for a long time. We’ve confused responsibility (doing the work) with accountability (owning the fallout when it fails)—and that’s where the mess starts.In this episode, Evan and Matt unpack:Why responsibility ≠ accountability—and why that mattersHow CISOs, Boards, and CEOs all dodge the blame, even when security implodesThe “Dark Triad” of forces keeping security failures in motion: the overt attackers, the chaos‑profit sellers, and the abdicator decision‑makersWho actually pays the price when the system breaks—and how to start calling that outExpect raw truth, real talk, and a plan to flip the script on the bullshit status quo.Whether you’re a security nerd, a board member, or someone sick of watching breaches happen while no one gets held to account—this is the conversation you need to hear. Join us live or binge-watch afterward. Hell, challenge us in the chat. Let’s start fixing the broken industry—one episode at a time.

📅 Recorded Live on YouTube: July 17, 2025 • 8 PM CTBased on: “Leading With Vulnerability” — Entry #10 of the Mental Health Without the Bullsht series (https://evanfrancen.com/2025/05/27/le...)We’ve been sold a lie: that leaders must be bulletproof—always confident, always composed, never showing cracks. In this episode, Evan tears that mask off. He shares raw, real experiences about faking invincibility to keep going—and how that act nearly broke him.We’ll unpack:Why hiding mistakes and doubts builds fear, not trustHow admitting “I don’t know” or “I need help” is the real leadership flexPractical vulnerability: owning mistakes, naming limits, and sharing struggling—on your termsHow this creates psychological safety and sparks courageous teamsWhat You’ll Get from This:Unfiltered storytelling—Evan and Matt get real about the cracks and wear the tough-guy leadership causedLeadership checklists—actionable ways to drop the performance and lead through authenticityDrop the ego. Own the cracks. Let’s do leadership differently.#InfoSecToInsanity #MentalHealthWithoutTheBS #FixTheBrokenIndustry #PodcastLive #LeadingWithVulnerability #AuthenticLeadership #VulnerableLeadership #RealLeadership #PsychologicalSafety #MentalHealthMatters #BreakTheStigma #VulnerabilityIsStrength #RealTalk #StrongerTogether #LeadWithHeart #DropTheMask #TrustThroughTruth #LeadershipWithoutTheBS #WorkCultureReform

Recorded LIVE on July 10, 2025 (https://www.youtube.com/@evanfrancenproject)Based on: “Masculinity and Mental Health” — Entry #9 in the Mental Health Without the Bullsht seriesIn this episode, Evan and Matt cut through the crap and tear down toxic masculinity. We’re talking about the conditioning that says real men don’t cry, don’t ask for help, and must suffer in silence. Evan gets raw and real — sharing his own journey through anger, addiction, anxiety, and isolation, and how that “tough guy” mask almost destroyed him.We unpack why men die by suicide at higher rates, why so few seek help, and how emotional suppression leads to aggression, burnout, and breakdowns. But don’t worry—it’s not all doom and gloom. We’ll also explore what true strength looks like:Admitting “I need help.”Going to therapy—even when it feels weak.Crying—with zero apologies.Breaking cycles of emotional suppression.Redefining toughness as being tough enough to be human.f you’re ready to challenge the outdated scripts, redefine what masculinity means, and support each other in being stronger because we’re vulnerable, then this episode is for you.Why Tune In:Zero bullshit talk about why expecting men to “man up” can kill us.Brutally honest stories from Evan that you don’t hear in corporate mental health panels.Practical takeaways for real men, real friends, and real leaders who want to do better.

📅 Recorded Live on June 26, 2026 @ 9 PM CT on YouTube In this next-level continuation of our Mental Health Without the Bullsh*t series, we’re diving deeper into what real support looks like—not just therapy or self-care lip service, but the kind of help that actually sticks. Drawing from Evan’s raw and vulnerable blog post (https://evanfrancen.com/2025/05/23/real-help-looks-like/), and the 8th entry this 11-part series, this episode peels back the layers of stigma, complexity, and what happens when we stop pretending we’re “fine.”Expect:Candid conversation about why most “help” falls flat—and how to fix thatReal-world examples from folks in infosec and beyond, who’ve felt crushed—but found a way outTactical insights you and your people can use—before the burnout or breakdown hitsThis isn’t a feel-good pep talk—it’s a raw, no-BS discussion for anyone tired of the usual mental health fluff in cybersecurity.Join Evan and co-host Matt Goodacre for an honest, unfiltered conversation—grab your drink, silence your phone, and dive in.

📅 Recorded LIVE on YouTube – Thursday, June 19th @ 9PM CT🔗 https://evanfrancen.com/2025/05/20/healing-isnt-linear/In this brutally honest episode of InfoSec to Insanity, Evan Francen and Matt Goodacre dive into a truth we don’t talk about enough—healing isn’t a straight line. Whether it’s healing from burnout, trauma, failure, addiction, or the everyday wear and tear of life in information security, recovery is messy. It’s frustrating. It’s real.This week, Evan and Matt open up about their personal journeys, the setbacks that knocked them down, and the crooked, imperfect road back. We’ll unpack the lies we tell ourselves (and each other), the pressure to “bounce back,” and why pretending to be okay might be the most damaging thing we do in this industry.Expect raw insight, no-BS storytelling, and maybe a few laughs at our own insanity.👉 Grab your favorite drink. Drop the filter. Join the conversation.This one’s for anyone who’s ever felt stuck in the suck. #LivePodcast #MentalHealthAwareness #LifeInCyber #InfoSecToInsanity #UnfilteredTruth #CybersecurityLife #RealTalkInSecurity #CandidConversations #HealingJourney

SPECIAL GUEST: John Harmon, CEO FRSecureThey’re the ones who always show up. Always have the answers.Always say, “I’m good.”And they might be the ones hurting the most.In this deeply personal episode, Evan Francen and Matt Goodacre shine a light on something we all overlook: the silent suffering of the strong ones — the leaders, the fixers, the ones who never ask for help.Based on Evan’s blog post, “Check on Your Strong Friends”, this conversation gets real about:Why high performers and helpers often hide their own painThe myth of strength as self-denialWhy “I’m fine” is sometimes the biggest red flagHow to show up for the people who hold everyone else togetherAnd why it’s time to stop assuming the strong ones are okay⸻ 🔔 It’s not just a reminder — it’s a challenge. Check on your strong friends. And let them check on you. #InfoSecToInSanity #MentalHealth #StrongFriends #CybersecurityCommunity #Vulnerability #NoMoreMasks

Burnout isn’t always a breakdown. Sometimes it looks like working late, smiling in meetings, answering emails at 2am — and slowly falling apart behind the scenes.In this episode, Evan Francen and Matt Goodacre dig into the real face of burnout — the version that’s high-functioning, hidden, and happening to more of us than we’d like to admit.Based on Evan’s blog post, “Burnout Looks Different Than You Think”, this honest and eye-opening conversation explores:Why burnout isn’t always obvious — even to the person going through itHow cybersecurity culture often celebrates dysfunctionThe difference between being tired and being spiritually depletedHow to recognize the warning signs in yourself and othersAnd why we need to stop waiting until people crash before we care⸻🔔 This episode pulls no punches. It’s not about fixing burnout — it’s about finally calling it what it is.#InfoSecToInSanity #Burnout #MentalHealthInCyber #HighFunctioningBurnout #CybersecurityWellness #HonestConversations

Streamed live on May 29, 2025 #Addiction #Burnout #MentalHealthWhen we hear the word addiction, we think of needles, bottles, and rehab. But what if the most dangerous addictions are the ones we don’t even recognize?In this raw and revealing episode, Evan Francen and Matt Goodacre take on the addictions we normalize — workaholism, chaos, constant stimulation, toxic relationships, tech dependency, and more.Inspired by Evan’s blog post, “Addiction Isn’t Just Drugs and Booze”, this conversation will dive into:Why addiction is about what we can’t walk away fromHow the infosec industry rewards addictive behavior while ignoring the damageThe hidden cost of being “high-functioning” but not healthyPersonal stories of struggle, survival, and learning to say enoughIf you’ve ever numbed yourself with work, busyness, or burnout — you’re not alone. This episode is for you.Tune in for truth, vulnerability, and a better conversation about what addiction really looks like.Read the blog: https://evanfrancen.com/2025/05/11/addiction-isnt-just-drugs-and-booze/ #InfoSecToInSanity #Addiction #MentalHealth #CybersecurityCulture #Recovery #Burnout

In this brutally honest and deeply personal episode, Evan Francen and co-host Matt Goodacre dive headfirst into the chaos, creativity, and constant mental noise of living with ADHD — especially in a nonstop, hyper-connected world like ours.Based on Evan’s blog post, “The ADHD Mind in a 24/7 World”, this conversation explores:What it really feels like to have an ADHD brain in cybersecurityHow the industry’s always-on culture clashes with neurodivergent mindsThe strengths, struggles, and misunderstood brilliance of ADHD professionalsWhy silence can be deafening, and why focus is often a moving targetThey’ll share war stories, trade coping strategies, and (probably) get distracted along the way — all while keeping it 100% authentic.📣 Let’s talk about ADHD, mental health, and surviving the infosec grind — with empathy and zero bullsh*t.🔗 Read the blog first: https://evanfrancen.com/2025/05/09/the-adhd-mind-in-a-24-7-world/#InfoSecToInSanity #ADHD #MentalHealth #Cybersecurity #Neurodiversity #LivePodcast

We all know someone who seems to have it together. They’re high-performing, always reliable, maybe even admired. But beneath the surface, they’re barely holding it together.In this episode of InfoSec to Insanity, Evan Francen and co-host Matt Goodacre dive into the brutal reality of high-functioning depression and anxiety, especially in high-stress careers like cybersecurity. Based on Evan’s deeply personal blog post (https://evanfrancen.com/2025/05/06/strong-on-the-outside/), this conversation exposes what most people never see—the silent battles behind the smiles, the crushing weight behind the competence. We’ll talk about:Why “functioning” doesn’t mean healthyThe danger of internalizing pain to keep up appearancesHow to recognize the signs (in yourself or others)Why the strongest people often hide the deepest painWhat we can do to break the cycle and actually healIf you’ve ever felt like you’re surviving instead of living—this one’s for you.📅 Recorded live on YouTube – May 15, 2025 @ 9pm CT

In this deeply personal episode, Evan Francen and co-host Matt Goodacre confront the often-ignored mental health crisis within the cybersecurity industry. Drawing from Evan’s recent blog post (https://evanfrancen.com/2025/05/02/we..., they discuss the hidden struggles faced by professionals in a field where admitting vulnerability is often seen as a weakness. What’s Inside:The pervasive culture of silence and its impact on mental well-beingEvan’s personal journey through ADHD, addiction, and anxietyThe alarming rates of burnout and suicide among InfoSec professionalsPractical steps to foster a more supportive and open industry environmentRecorded live on YouTube on May 8, 2025, this episode aims to break the stigma and encourage honest conversations about mental health in cybersecurity.Join the Conversation: Tune in to this important discussion and be part of the movement towards a healthier InfoSec community.

In this episode of InfoSec to Insanity, Evan Francen and Matt Goodacre dive into the winding, messy, and sometimes hilarious journey of figuring out what the hell you’re actually built for in life. Spoiler: it’s probably not what your high school guidance counselor told you. Live from a cruise ship (yep, really), Evan shares a powerful conversation with an older couple that sparked this episode’s core question: Why do we pressure people to choose a career path before they’ve even lived a little?Expect raw honesty, a few personal war stories, and some serious reflection on how trying things, failing, and pivoting might be the only real way to figure out your calling—whether it’s infosec, garbage collection, or bartending.In this episode:Why we’ve got career discovery all backwardsThe long, weird resume that led Evan to infosecHow societal pressure can screw up great potentialWhat it actually feels like when you find what you’re built forAdvice for the young, the stuck, and the still-searchingThis one’s for anyone who’s still figuring it out—or has a few career skeletons in their closet. (Spoiler: so do we.)

In this episode of InfoSec to Insanity, we dive headfirst into the explosive story shaking the cybersecurity and legal worlds—the FBI investigation into Mark Lanterman, a high-profile cyber forensic expert who’s worked on over 2,000 cases.How did someone with that much influence—and trust—end up under federal scrutiny? What does this say about our industry’s obsession with credentials over character? And how many other “experts” are we blindly trusting without question?Join Evan Francen and Matt Goodacre as they break it all down—candidly, critically, and without pulling any punches. We’ll talk about:The facts behind the caseThe dangerous consequences of assumed credibilityHow this affects our legal system and security industryWhat we all need to do better moving forwardBring your favorite beverage, buckle up, and be ready for some uncomfortable truths. 

Two decades deep into the “War on Terror” and guess what? We’re still footing the bill—and it’s not just in dollars. It’s in surveillance, silence, and the slow death of civil liberties. In this episode of InfoSec to Insanity, we’re digging into what we’ve really lost since 9/11. From the Patriot Act’s shady legacy to the mass surveillance that makes Orwell look like an optimist, we’re pulling zero punches.Join us as we unpack:The quiet expansion of government spying in 2024Why your grandma might be on a watchlist (seriously)The illusion of security vs. the cost of freedomHow privacy became a punchline—and what we can still do about itThis one’s for the folks who aren’t okay with being watched while they microwave a Hot Pocket. Bring your questions, your conspiracy theories, and maybe a tin foil hat—because this is gonna get real.Subscribe, show up, speak up.It’s time to reclaim the narrative.

Why do massive security failures happen—and nobody gets held accountable?In this raw and unfiltered episode of InfoSec to Insanity, we’re diving headfirst into the Accountability Vacuum that plagues the cybersecurity industry. Breaches keep happening. Sensitive data keeps leaking. Companies issue statements, pay fines (sometimes), and move on… but the people responsible? They skate.Join us as we dig into:🔥 High-profile breaches and the aftermath🔥 Why CISOs and execs rarely face real consequences🔥 The role of compliance theatre and corporate cya culture🔥 Legal loopholes, PR spin, and boardroom silence🔥 How we actually fix this broken systemIt’s time for some hard truth and zero sugar-coating. If you’ve ever wondered why security failures keep happening with no real fallout, this is the conversation you’ve been waiting for.🎙 Hosted by veteran InfoSec pros with a mission to fix the broken industry—one brutally honest episode at a time.