In this episode of the Chasing Entropy Podcast, host Dave Lewis sits down with Dr. Grigorios Fragkos, widely known as Dr. Greg, a cybersecurity veteran with deep roots in academia, government, and enterprise defense. From the early days of building near real-time threat detection systems to orchestrating national-level cyber defense initiatives, Dr. Greg shares a dynamic perspective on the ever-evolving cybersecurity landscape.

From Hacking Curiosity to PhD Pioneering

Dr. Greg opens up about his journey from tinkering with software engineering to earning a PhD focused on near real-time threat assessment using IDS data, a field he was ahead of by more than a decade. He candidly recounts the challenges of building AI-driven assessment engines long before the rise of today’s agentic AI approaches.

The Rise of Agentic AI & Its Impact

The conversation takes a deep dive into agentic AI, systems that can plan, reason, and execute. Dr. Greg argues for its use in advancing cybersecurity defense rather than offense, noting that current hype often ignores ethical applications. Both he and Dave stress the importance of separating the thinking layer of AI from raw processing power, an idea Greg proposed in his PhD work and sees finally coming to fruition.

Redefining the Role of the CISO

With experience leading cybersecurity efforts across industries and nations, Dr. Greg challenges the conventional definition of a CISO. He advocates for the emergence of a Chief Cybersecurity Officer, a broader role encompassing AI threats, cyber resilience, and critical infrastructure protection. He also cautions aspiring CISOs: “Don’t do it for the title. Do it because you believe in the mission.”

M&A Cyber Due Diligence: The Ugly Truth

Drawing from real-world mergers and acquisitions experience, Dr. Greg reveals the hidden pitfalls of cyber due diligence. From rubber-stamped security audits to outright neglect of breach indicators, he offers a sobering view into how risk is often underestimated or deliberately ignored during high-stakes deals.

Global Cybersecurity Culture & B-Sides Athens

Greg also explores how culture shapes cybersecurity practices around the world—from risk ownership misunderstandings to wildly differing maturity levels. He shares his passion project: B-Sides Athens, a thriving community-driven conference that’s celebrated its 10th year of inclusive, high-quality knowledge sharing.

Final Wisdom: Education, Not Just Certification

In closing, Dr. Greg pushes back against the growing narrative that university degrees no longer matter in cybersecurity. While certifications are valuable, he emphasizes that academic journeys foster critical thinking, understanding of fundamentals, and intellectual discipline—all essential in a fast-changing field.

Don’t forget to like, subscribe, and share this episode! Got thoughts or questions? Join the conversation on social media using #ChasingEntropy.