SecureAuth CPO Brook Lovatt: Passwordless Future, AI Agents & Surviving a Tsunami episode artwork

EPISODE · Dec 15, 2025 · 53 MIN

SecureAuth CPO Brook Lovatt: Passwordless Future, AI Agents & Surviving a Tsunami

from Getting Real with Dan DiSciullo · host Dan DiSciullo

Episode Title (chosen – 88 characters)SecureAuth CPO Brook Lovatt: Passwordless Future, AI Agents & Surviving a TsunamiOne-Line Summary (for SEO & social)From surviving the 2004 tsunami to leading identity security at SecureAuth, Brook Lovatt shares insights on phishing-resistant auth, AI risks, and hands-on leadership in cybersecurity.Full Episode Summary / Show NotesBrook Lovatt, Chief Product Officer at SecureAuth, brings over two decades of experience in identity and access management (IAM). From co-founding startups to leading IBM's Cloud Identity division and serving as CEO of Cloudentity (acquired by SecureAuth), Brook bridges deep technical expertise with executive leadership.In this wide-ranging conversation, Brook discusses:Balancing rock-solid security with seamless user experience (why passwords are dead and passkeys/FIDO2 are the future)His tactile, hands-on journey from engineer to CPOThe wild cycle of startups, acquisitions, and big tech (including leaving IBM, traveling, and getting pulled back in)A gripping firsthand account of surviving the 2004 Indian Ocean tsunami in ThailandLeadership philosophy: "Leading from the front" – rolling up sleeves, transparency on runway, and earning team respectPreventing burnout in high-pressure startupsAI's dual role: Enhancing risk-based auth today... and the terrifying frontier of rogue agents tomorrowWhy global digital passports and trust anchors are needed for agentic AIOptimism amid risks: "If Skynet attacks in two days, I want to have a good time first"Advice for CISOs evaluating auth solutions: Flexibility, modularity, and elastic scaleA blend of technical depth, personal stories, and forward-thinking on the AI-identity collision.Connect with Brook: LinkedIn: linkedin.com/in/brook-lovatt SecureAuth: secureauth.comexpertinsights.comtheorg.comyoutube.comChapters (with timestamps)00:00 – Welcome & Intro to Brook Lovatt (SecureAuth CPO) 00:47 – Security vs. UX: Why painful auth leads to risky workarounds 03:05 – Brook's hands-on journey from engineer to executive 06:04 – The IBM startup-acquisition cycle (and post-tsunami travels) 09:23 – Firsthand survival story: 2004 Thailand tsunami 12:23 – Core leadership principle: Leading from the front 14:50 – Earning respect from high-performing tech teams 17:58 – Avoiding burnout in the startup pressure cooker 20:52 – AI in security today: Risk engines & tomorrow's agent threats 24:49 – Excitement vs. caution: The wild west of agentic AI 28:37 – 2-3 years out: Global digital passports & centralized trust 32:47 – SecureAuth's focus: AI agents, frictionless CIAM 35:30 – How soon until AI agents are ubiquitous? 39:30 – Advice for CISOs evaluating auth solutions 42:36 – As a consumer: Frozen credit & assuming breaches 44:09 – Staying optimistic in cybersecurity 44:49 – Security philosophy: Zero trust, least privilege, proactive testing 48:45 – Book recs: Crossing the Chasm & AI Agents in Action 51:38 – What "Getting Real" means to Brook 52:45 – How to connect 53:02 – Outro

Episode Title (chosen – 88 characters)SecureAuth CPO Brook Lovatt: Passwordless Future, AI Agents & Surviving a TsunamiOne-Line Summary (for SEO & social)From surviving the 2004 tsunami to leading identity security at SecureAuth, Brook Lovatt shares insights on phishing-resistant auth, AI risks, and hands-on leadership in cybersecurity.Full Episode Summary / Show NotesBrook Lovatt, Chief Product Officer at SecureAuth, brings over two decades of experience in identity and access management (IAM). From co-founding startups to leading IBM's Cloud Identity division and serving as CEO of Cloudentity (acquired by SecureAuth), Brook bridges deep technical expertise with executive leadership.In this wide-ranging conversation, Brook discusses:Balancing rock-solid security with seamless user experience (why passwords are dead and passkeys/FIDO2 are the future)His tactile, hands-on journey from engineer to CPOThe wild cycle of startups, acquisitions, and big tech (including leaving IBM, traveling, and getting pulled back in)A gripping firsthand account of surviving the 2004 Indian Ocean tsunami in ThailandLeadership philosophy: "Leading from the front" – rolling up sleeves, transparency on runway, and earning team respectPreventing burnout in high-pressure startupsAI's dual role: Enhancing risk-based auth today... and the terrifying frontier of rogue agents tomorrowWhy global digital passports and trust anchors are needed for agentic AIOptimism amid risks: "If Skynet attacks in two days, I want to have a good time first"Advice for CISOs evaluating auth solutions: Flexibility, modularity, and elastic scaleA blend of technical depth, personal stories, and forward-thinking on the AI-identity collision.Connect with Brook: LinkedIn: linkedin.com/in/brook-lovatt SecureAuth: secureauth.comexpertinsights.comtheorg.comyoutube.comChapters (with timestamps)00:00 – Welcome & Intro to Brook Lovatt (SecureAuth CPO) 00:47 – Security vs. UX: Why painful auth leads to risky workarounds 03:05 – Brook's hands-on journey from engineer to executive 06:04 – The IBM startup-acquisition cycle (and post-tsunami travels) 09:23 – Firsthand survival story: 2004 Thailand tsunami 12:23 – Core leadership principle: Leading from the front 14:50 – Earning respect from high-performing tech teams 17:58 – Avoiding burnout in the startup pressure cooker 20:52 – AI in security today: Risk engines & tomorrow's agent threats 24:49 – Excitement vs. caution: The wild west of agentic AI 28:37 – 2-3 years out: Global digital passports & centralized trust 32:47 – SecureAuth's focus: AI agents, frictionless CIAM 35:30 – How soon until AI agents are ubiquitous? 39:30 – Advice for CISOs evaluating auth solutions 42:36 – As a consumer: Frozen credit & assuming breaches 44:09 – Staying optimistic in cybersecurity 44:49 – Security philosophy: Zero trust, least privilege, proactive testing 48:45 – Book recs: Crossing the Chasm & AI Agents in Action 51:38 – What "Getting Real" means to Brook 52:45 – How to connect 53:02 – Outro

NOW PLAYING

SecureAuth CPO Brook Lovatt: Passwordless Future, AI Agents & Surviving a Tsunami

0:00 53:37

No transcript for this episode yet

We transcribe on demand. Request one and we'll notify you when it's ready — usually under 10 minutes.

No similar episodes found.

No similar podcasts found.

Frequently Asked Questions

How long is this episode of Getting Real with Dan DiSciullo?

This episode is 53 minutes long.

When was this Getting Real with Dan DiSciullo episode published?

This episode was published on December 15, 2025.

What is this episode about?

Episode Title (chosen – 88 characters)SecureAuth CPO Brook Lovatt: Passwordless Future, AI Agents & Surviving a TsunamiOne-Line Summary (for SEO & social)From surviving the 2004 tsunami to leading identity security at SecureAuth, Brook Lovatt shares...

Can I download this Getting Real with Dan DiSciullo episode?

Yes, you can download this episode by clicking the download button on the episode player, or subscribe to the podcast in your preferred podcast app for automatic downloads.
URL copied to clipboard!