- 0:00 - Introduction & RSAC 2026 Interview
- 0:24 - What Phoenix 24 Does: Fast Post-Breach Recovery
- 0:40 - Why Backups Often Fail in Cyberattacks
- 01:19 - The Importance of Speed in Breach Recovery
- 01:53 - Minimizing Downtime & Business Interruption Costs
- 02:01 - Working with Incident Response & Forensics Teams
- 02:33 - Wartime vs Peacetime Cybersecurity Strategy
- 03:06 - What “Breach Truth” Means in Cybersecurity
- 04:05 - Why Security Tools Alone Don’t Work
- 04:39 - Orchestration: People, Process & Technology
- 05:20 - Real Attacker Behavior & Short Dwell Time
- 06:20 - Why Traditional SLAs Fail Against Attackers
- 06:36 - How Most Breaches Actually Happen (Misconfigurations)
- 07:06 - Real-World Breach Example: No MFA on VPN
- 07:54 - The Problem with Security Tool Overload
- 08:22 - Continuous Security Hardening & Risk Reduction
- 08:57 - Argos Platform: Data Discovery & Mapping
- 09:30 - Finding Critical Data & Application Dependencies
- 10:42 - Preparing for Recovery Before a Breach
- 11:24 - Ensuring Backup Integrity & Recovery Assurance
- 12:04 - Why PAM Solutions Can Still Fail
- 12:51 - Real Attack Chain: From AD to Data Exfiltration
- 14:13 - What Effective Security Orchestration Looks Like
- 14:52 - Final Thoughts & Key Takeaways
John Anthony Smith, Founder and Chief Security Officer of Fenix24, is a leading information security expert with deep cybersecurity experience in healthcare, financial services, and legal industries. He has overseen infrastructure for over 400 companies and currently serves as a vCIO and trusted advisor to companies worldwide. With more than 16 years of breach response experience, he is a staunch advocate for tougher sanctions on nations harboring cybercriminals and is dedicated to locating, investigating, and prosecuting cybercriminals.






