Bite Size Security

Episode Summary:Most companies have an incident response plan, but very few have one that actually works at 2 in the morning when everything goes sideways. In this episode, Mike Fitzpatrick breaks down the real reasons IR plans fail, why untested playbooks become liabilities, and how CEOs can turn a paper plan into a real business protection strategy.Drawing on recent industry research and 24 years in cybersecurity, Mike explains why people and communication—not technology—determine the outcome of an incident. He also shares how unclear roles, bad assumptions, and untested processes turn small problems into multimillion-dollar disasters.If you are a CEO, business owner, or executive who believes your company “has a plan,” this episode will challenge you—in a good way.What You’ll Learn:• Why untested IR plans create false confidence• The number one reason incidents drag on: lack of clear authority• How communication breakdowns cause more damage than the breach itself• What recent vendor outages taught every bu

If Cyber Can Move a Stock Price, It Can Move a Deal PriceHost: Mike FitzpatrickA single cyber issue can cut your valuation before you ever reach the negotiating table. Most advisors won’t mention it. Buyers won’t announce it. But the discount shows up anyway.In this episode, Mike Fitzpatrick breaks down how cyber risk shapes deal pricing in the mid-market, why buyers model exposure long before diligence begins, and how sellers lose millions simply by failing to prove their security posture.Cyber won’t decide your future. It will decide the number attached to it. And in most exits, that number is the difference between what you built and what you walk away with.What’s Inside:• Why cyber is now a valuation metric• How uncertainty shows up as an immediate price cut• The hidden impact of MSP breaches on deal exposure• Why insurance cannot replace real risk reduction• Why proof protects value — and assumptions don’tMore insights: https://ncxgroup.comMike on LinkedIn: https://www.linkedin.com/in/ncxgroupMike on X:

Cyber Insurance in 2025 and Where It’s Headed in 2026Bite Size SecurityCyber insurance has changed. Quietly.And most businesses haven’t noticed yet.In this episode of Bite Size Security, Mike Fitzpatrick breaks down what cyber insurance really means in 2025 and as we head into 2026, why insurers no longer care about what you say you do, and why everything now comes down to what you can prove.This isn’t an IT conversation.It’s a leadership one.Mike explains:• Why cyber insurance used to be easy• Why that model collapsed• How insurers think today• What “proof” actually means• Where cyber insurance is heading nextIf you assume your policy will “just work,” this episode is for you.Mike Fitzpatrick is the Founder and CEO of NCX Group, a cyber risk management consulting firm helping organizations align cybersecurity with business risk, insurance, and leadership decision-making.Mike FitzpatrickLinkedIn: https://www.linkedin.com/in/ncxgroupX: https://x.com/ncxceoNCX GroupWebsite: https://www.ncxgroup.comX: https://x.

Episode Summary:If you plan to sell your business in the next three to five years, cyber risk may be the biggest threat to your exit that no one is talking about. A single breach, a hidden vulnerability, or an untested environment can delay your deal, cut your valuation, or kill the transaction outright.In this episode, Mike Fitzpatrick breaks down why cyber risk has become a deal-breaker for buyers and lenders, why internal IT reports are no longer enough, and how independent validation can protect the value of your life’s work. Whether you are selling or acquiring, this is the episode every CEO and business owner needs to hear.What You’ll Learn:• Why cyber risk now shows up in every serious due diligence review• How untested environments, MSP blind spots, and hidden breaches derail deals• The three numbers that matter for sellers: readiness, remediation, and insurability• Why buyers should demand independent assessments every time• How sellers can protect valuation and shorten the closing timeline• What to

Episode SummaryCyber risk has quietly moved from a technical concern to a financial metric that directly affects business valuation. In this episode, Mike Fitzpatrick explains why buyers, insurers, and regulators now treat cybersecurity as part of the valuation formula — and what that means for CEOs preparing for growth, investment, or an eventual exit.You don’t need a breach to lose value.You only need a lack of evidence.Mike breaks down the self-evident truth every CEO needs to understand:Cyber risk protects what you’ve built… or silently erodes it.• Why cyber risk is now part of your valuation• How buyers use uncertainty to gain leverage• The difference between being secure and being able to prove it• How a lack of documentation can cost millions• The single question CEOs must now be able to answerCybersecurity is no longer just an operational responsibility.It is now one of the ways the market decides what your business is worth.Proof protects value. Assumptions don’t.If this episode made you think about

Cyber Risk Advisor – Every CEO’s Missing BatmanEvery CEO has their trusted advisors:A CPA for the booksAn attorney for legal risksAn insurance broker for disastersBut when it comes to the #1 risk in 2025—cyber—the seat at the table is still empty.In this episode of Bite Size Security, Mike Fitzpatrick explains why a Cyber Risk Advisor is the Batman every CEO needs—the protector who sees threats before they strike and keeps your business alive when others don’t.We’ll cover:Why cyber risk now outranks natural disasters and supply chain failures (Allianz Risk Barometer 2025)The brutal truth about what happens when CEOs wait until AFTER a breachHow a Cyber Risk Advisor strengthens—not replaces—your CPA, attorney, and insurance brokerWhy the smartest CEOs will move first while others scramble to catch up

Most CEOs feel confident about their cybersecurity—until they get blindsided by risks no firewall can stop.In this episode of Bite Size Security, Mike Fitzpatrick breaks down the hidden vulnerabilities that turn good quarters into crises. From deepfakes that trick your team, to ransomware that shuts down operations for weeks, to vendors who open the door for attackers—these are the blind spots that cost businesses millions.You’ll also hear practical moves you can make before quarter-end to reduce your risk without trying to turn your company into Fort Knox overnight.If you're ready to make cybersecurity part of your business strategy—not just a checkbox in your IT budget—this episode is for you.For more insights or to start a conversation about your own risks, visit ncxgroup.com.Follow NCX Group:Website: ncxgroup.comLinkedIn: www.linkedin.com/in/Twitter/X: twitter.com/ncxgroup

AI’s a Game-Changer—But Are You Ready for the Catch?AI is showing up faster than your policies can catch up—already embedded in your CRM, your help desk, and maybe even your compliance workflows. It’s powerful. It’s profitable. But it’s also risky as hell if you’re not paying attention.In this episode of Bite Size Security, Mike Fitzpatrick breaks down why AI isn’t just a new tool—it’s more like a teenager with a license: brilliant, fast, and a little reckless. And if you don’t teach it the rules, it could steer your business straight into a ditch.You’ll learn:Where AI is creeping into your business without you realizing itThe 3 areas every executive team must address: Governance, Risk, and ComplianceReal-world examples of how AI goes wrong—fastThe 5 things you need to do right now to get back in controlIf you’re leading a business that wants the upside of AI without the mess, this one’s for you.

In this episode of Bite Size Security, Mike Fitzpatrick—CEO of NCX Group and 25-year cyber risk veteran—dives into one of the most common and costly misconceptions in business today: the belief that compliance equals security.We explore:Why simply passing audits or meeting regulatory checklists leaves your business vulnerableReal-world stories of companies that were compliant… but still got breachedThe dangerous gap between compliance frameworks and active threat defenseWhat business leaders actually need to prioritize to protect revenue, reputation, and resilienceIf you're a CEO, CFO, or IT leader who’s been told, “You’re good—you passed the audit,” this is the wake-up call you didn’t know you needed.Listen in and learn why compliance is just the beginning—not the finish line—when it comes to cybersecurity.

Welcome Back to Bite Size SecurityI hope you are all Healthy and well as we End 2020.   It’s been a Difficult year for everyone.  Especially for Small businesses everywhere in this changing world of growing risks, and now forced into a remote workforce and having to adjust on the fly.  In this episode I layout the plan and focus for this podcast going forward and I want to help those Fortune 5 Million Businesses.  Those businesses with less than 100 employees that have been greatly impacted by the shutdowns of this pandemic.  I hope you join me on this journey in this coming  year.  Show Notes LinksTo Visit the NCX Group Website Please Click Here.Follow NCX Group On Twitter Use This LinkTo Follow me and Ask Questions on X Use This Link.  For a Free Cybersecurity Assessment Click Here.

When it comes to protecting your business, cybersecurity isn’t just about firewalls and fancy tech—it starts at your front door. In this episode of Bite Size Security, Mike Fitzpatrick pulls back the curtain on the often-overlooked role of physical security in keeping your digital assets safe. From the jaw-dropping story of a data center “protected” by refrigerator doors to a mortgage company where we mingled our way into their server room, these real-world examples will leave you shaking your head—and hopefully locking your doors. Get ready to rethink your approach to security with practical insights, a dash of humor, and actionable takeaways. Spoiler alert: if your perimeter, access control, or employee training isn’t up to par, you’re leaving the welcome mat out for threats. It’s time to bridge the gap between physical and cybersecurity—and it starts here. For more resources, tips, and strategies to safeguard your business, visit us at www.ncxgroup.com. Join the conversation and follow us on X and Linked

EP 12: Practical Steps for CEOs to Lead the Charge in Cybersecurity In this episode of Bite Size Security, Mike Fitzpatrick, Founder and CEO of NCX Group, dives into the key steps CEOs need to take to turn cybersecurity from a headache into a competitive advantage. From asking the right questions to understanding the ROI of a strong cyber posture (hint: it could help you win billion-dollar contracts), Mike explains why cybersecurity isn’t just about defense—it’s about business growth. He also highlights how NCX Group’s MyCSO Assurance can simplify the journey and protect your business with confidence. Ready to lead the charge in cybersecurity? Tune in for actionable insights, a few laughs, and a clear path to securing your business. Visit us at www.ncxgroup.com to learn more about how we can help you simplify cyber risk and grow your business. Follow us on Social Media:

Episode Title: Aligning Business, Cyber, and Financial Risks: A CEO’s Guide for 2025 Host: Mike Fitzpatrick, CEO of NCX Group Episode Snapshot: CEOs, it’s time to stop treating cybersecurity as just an IT issue. In this episode, I’m breaking down why aligning your cyber strategy with business and financial goals is the game changer you didn’t know you needed. Plus, I’ll share a story that’ll make you reconsider your coffee if it comes with a side of ransom notes. What You’ll Learn: How a proactive cyber strategy can save your bottom line (and yes, even cut your insurance premiums by up to 25%). Why AI is your new best friend in security. The secret sauce to building a cyber-aware culture that stops threats before they become headlines. Teaser Takeaways: Cybersecurity isn’t an expense; it’s your business’s silent hero. Compliance isn’t just a burden—it’s your hidden asset. Your best defense isn’t just tech; it’s your people. Ready for actionable insights with a dash of humor? Hit play and find ou

In this Episode of Bite Size Security we're going to break down the cyberattack that shut down a major pipeline in America, and how it could have been prevented. Hi, my name is Mike Fitzpatrick and today we're going to examine what really happened with the Colonial Pipeline Cyberattack, which has caused a lot of panic around here lately. It's not hard to see why so many people are concerned about this incident - but you might be surprised when you find out what really happened with our guest Joe Weiss, the Managing Partner at Applied Control Solutions.   Visit NCX Group For More Information Show Links Cybersecurity guidance for executives to stay ahead of COVID-19 risks Rethinking cybersecurity priorities amid the coronavirus pandemic Bringing to focus SMB cybersecurity needs 3 keys to a successful cybersecurity plan for the new year NCX Group Free Cybersecurity Assessment

In this episode Dr. Larry Ponemon discusses the the Ponemon Institute's latest findings in the growing Cybersecurity and Data Privacy treats  associated with COVID-19.   COVID-19 has dramatically changed the workplace and has created new cybersecurity risks and exacerbated existing risks.  The purpose of this research, sponsored by Keeper Security, is to understand the new challenges organizations face in preventing, detecting and containing cybersecurity attacks in what is often referred to as “the new normal”.   In the new era of a remote workforce, organizations worry most about the lack of physical security in the remote worker’s work space. Almost half (47 percent) of respondents say it is the inability to control risks created by the lack of physical security in remote workers’ homes and other locations that is a significant concern for their organizations. Show Links Cybersecurity guidance for executives to stay ahead of COVID-19 risks   Rethinking cybersecurity priorities

In this episode we’ll talk about the importance of cybersecurity focus and execution.

In this episode will talk about the DOD, Cybersecurity and the Compliance requirements of NIST 800 171

In this episode we will talk about how important cybersecurity is for nonprofit businesses and the impact a single breach going to have.

In this episode we talk about the key three, sustainability revenue and growth, and how a cyber security breach can impact each of these.