Cybersecurity has built its learning model around breaches, but as Wendy Nather explains, the real value lies in the incidents that almost happened. In this CYBR.SEC.CAST episode with hosts Michael Farnum and Sam Van Ryder, she makes the case for shifting focus to near-misses: the attacks stopped by a single decision, control, or moment of awareness. These unseen saves reveal how defenses actually work in real time, yet they rarely get shared due to trust, legal, and cultural barriers. Until the industry starts capturing and learning from these quieter wins, it will continue optimizing for failure instead of understanding success.SHOW NOTES:Things Mentioned:The Security Poverty Line: https://www.scrut.io/post/risk-grustlers-ep-20-the-security-poverty-line1Password talks and expo activity during RSAC 2026: https://1password.com/blog/rsa-2026-leading-the-way-to-secure-agentic-aiUpcoming CYBR.SEC.Community events: https://www.cybrsecmedia.com/conference/CYBR.SEC.Careers: https://www.linkedin.com/company/cybr-sec-careers/about/ fundraisers:Cards for a Cause: https://www.linkedin.com/posts/cybr-sec-careers_cybrseccareers-nonprofit-cybersecurity-activity-7436794892787359744-v4CzCYBR CLAY SHOOT: https://www.linkedin.com/posts/cybr-sec-careers_cybrclayshoot-cybersecurity-cybercareers-activity-7435353518951084033-1iw9Proceeds support CYBR.SEC.Careers mission is to build a strong, diverse workforce by providing career exposure, access to education and certifications, and mentorship for students and veterans pursuing careers in cybersecurity.EPISODE 66 Timestamps:00:00 – 01:30 – Intro, guest setup, and Wendy Nather background01:30 – 07:00 – CyberSecCon announcements and community initiatives07:00 – 09:30 – Wendy’s early career: liberal arts → sysadmin → Switzerland09:30 – 12:30 – Transition into cybersecurity and global security leadership12:30 – 15:30 – Analyst career, Duo Security, Cisco, and 1Password15:30 – 18:30 – Career philosophy: ditching the ladder, focusing on impact18:30 – 22:00 – Current role: advising, speaking, training, and strategy work22:00 – 25:30 – RSA talk intro: “Less Blood, More Bits” concept25:30 – 31:00 – The power of near-miss stories and why they matter31:00 – 36:00 – Real-world near-miss examples and lessons learned36:00 – 41:00 – Threat intelligence sharing challenges and trust barriers41:00 – 45:00 – ISACs vs. informal “steak and ale” intelligence sharing45:00 – 49:00 – Why scaling trust and sharing remains unsolved49:00 – End – Wrap-up and closing thoughtsDo you have a question for the hosts? Reach out to us at [email protected]