https://live.paloaltonetworks.com/t5/threat-vector/threat-vector-when-security-friction-becomes-the-backdoor/ta-p/1247971 <DIV class="lia-message-template-content-zone"> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Threat Vector Template.jpg" style="width: 960px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/70645iB15DC9A05761EF9F/image-size/large?v=v2&amp;px=999" role="button" title="Threat Vector Template.jpg" alt="Threat Vector Template.jpg" /></span></P> <P>&nbsp;</P> <P><SPAN>In this episode of Threat Vector, host </SPAN><A href="https://www.linkedin.com/in/davidrmoulton/" target="_blank"><SPAN>David Moulton</SPAN></A><SPAN> explores a critical truth that most security leaders miss: the difference between friction that protects and friction that creates risk. Our guest this week is&nbsp;<A href="https://www.linkedin.com/in/biratniraula" target="_blank">Birat Niraula.</A>&nbsp;Birat leads security for Google Enterprise Network, where he oversees protection across on-premise, network infrastructure, enterprise, and cloud environments.</SPAN></P> <P>&nbsp;</P> <P><STRONG>You'll learn:</STRONG></P> <UL> <LI style="font-weight: 400;" aria-level="1"><SPAN>Why bad security UX isn't just annoying—it's a vulnerability that creates backdoors</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>How to identify friction that protects (like MFA and jump hosts) versus friction that makes teams bypass controls</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>Why DevOps teams inject backdoors into production when security slows them down too much</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>How AI is becoming the new cloud rush—teams deploying models without understanding security risks</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>The Chrome browser principle: best security is seamless security that users don't have to think about</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>Why embedding security teams in design processes beats the "sledgehammer approach" of blanket policies</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>How to use AI agents as security sidekicks to scale beyond what your team can manually review</SPAN></LI> </UL> <P><SPAN>Birat shares hard-won lessons from securing enterprises at massive scale—from building 24/7 SOCs to leading multi-cloud architecture at Goldman Sachs to now protecting Google's infrastructure. But this conversation isn't about his resume. It's about the fundamental tradeoffs security leaders face: velocity versus protection, automation versus human judgment, and when to embrace friction versus when friction becomes the enemy.</SPAN></P> <P>&nbsp;</P> <P><STRONG>This episode is essential listening if you're:</STRONG><SPAN> leading enterprise security programs, struggling with teams that route around your controls, managing DevOps or cloud security, implementing security that doesn't block business velocity, or trying to understand where AI security is heading.</SPAN></P> <P>&nbsp;</P> <P><STRONG>Related Episodes:</STRONG></P> <UL> <LI style="font-weight: 400;" aria-level="1"><A href="https://www.paloaltonetworks.com/resources/podcasts/threat-vector-securing-the-modern-workforce-lessons-from-medallias-ciso" target="_blank"><SPAN>Securing the Modern Workforce</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><A href="https://www.paloaltonetworks.com/resources/podcasts/threat-vector-why-security-platformization-is-the-future-of-cyber-resilience" target="_blank"><SPAN>Why Security Platformization Is the Future of Cyber Resilience</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><A href="https://www.paloaltonetworks.com/resources/podcasts/threat-vector-shifting-security-left" target="_blank"><SPAN>Shifting Security Left</SPAN></A></LI> </UL> <P>&nbsp;</P> <P><SPAN>Join the conversation on our social media channels:</SPAN></P> <UL> <LI style="font-weight: 400;" aria-level="1"><STRONG>Website</STRONG><SPAN>:</SPAN><A href="https://www.paloaltonetworks.com/unit42" target="_blank"> <SPAN>⁠⁠⁠⁠https://www.paloaltonetworks.com/</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><STRONG>Threat Research:</STRONG><A href="https://unit42.paloaltonetworks.com/" target="_blank"> <SPAN>⁠⁠⁠⁠https://unit42.paloaltonetworks.com/⁠⁠⁠⁠</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><STRONG>Facebook:</STRONG><A href="https://www.facebook.com/LifeatPaloAltoNetworks/" target="_blank"> <SPAN>⁠⁠⁠⁠https://www.facebook.com/LifeatPaloAltoNetworks/⁠⁠⁠⁠</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><STRONG>LinkedIn:</STRONG><A href="https://www.linkedin.com/company/unit42/" target="_blank"> <SPAN>⁠⁠⁠⁠https://www.linkedin.com/company/unit42/⁠⁠⁠⁠</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><STRONG>YouTube:</STRONG> <SPAN>@paloaltonetworks</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><STRONG>Twitter:</STRONG><A href="https://twitter.com/PaloAltoNtwks" target="_blank"> <SPAN>⁠⁠⁠⁠</SPAN></A><SPAN><A href="https://twitter.com/PaloAltoNtwks⁠⁠⁠⁠" target="_blank">https://twitter.com/PaloAltoNtwks⁠⁠⁠⁠</A></SPAN></LI> </UL> <IFRAME src="https://playlist.megaphone.fm?e=CYBW3620110023" width="100%" height="200" frameborder="0" scrolling="no"></IFRAME> <P>&nbsp;</P> </DIV> Thu, 12 Feb 2026 17:00:00 GMT dmoulton 2026-02-12T17:00:00Z https://live.paloaltonetworks.com/t5/threat-vector/threat-vector-when-security-friction-becomes-the-backdoor/ta-p/1247971 <DIV class="lia-message-template-content-zone"> <P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Threat Vector Template.jpg" style="width: 960px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/70645iB15DC9A05761EF9F/image-size/large?v=v2&amp;px=999" role="button" title="Threat Vector Template.jpg" alt="Threat Vector Template.jpg" /></span></P> <P>&nbsp;</P> <P><SPAN>In this episode of Threat Vector, host </SPAN><A href="https://www.linkedin.com/in/davidrmoulton/" target="_blank"><SPAN>David Moulton</SPAN></A><SPAN> explores a critical truth that most security leaders miss: the difference between friction that protects and friction that creates risk. Our guest this week is&nbsp;<A href="https://www.linkedin.com/in/biratniraula" target="_blank">Birat Niraula.</A>&nbsp;Birat leads security for Google Enterprise Network, where he oversees protection across on-premise, network infrastructure, enterprise, and cloud environments.</SPAN></P> <P>&nbsp;</P> <P><STRONG>You'll learn:</STRONG></P> <UL> <LI style="font-weight: 400;" aria-level="1"><SPAN>Why bad security UX isn't just annoying—it's a vulnerability that creates backdoors</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>How to identify friction that protects (like MFA and jump hosts) versus friction that makes teams bypass controls</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>Why DevOps teams inject backdoors into production when security slows them down too much</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>How AI is becoming the new cloud rush—teams deploying models without understanding security risks</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>The Chrome browser principle: best security is seamless security that users don't have to think about</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>Why embedding security teams in design processes beats the "sledgehammer approach" of blanket policies</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><SPAN>How to use AI agents as security sidekicks to scale beyond what your team can manually review</SPAN></LI> </UL> <P><SPAN>Birat shares hard-won lessons from securing enterprises at massive scale—from building 24/7 SOCs to leading multi-cloud architecture at Goldman Sachs to now protecting Google's infrastructure. But this conversation isn't about his resume. It's about the fundamental tradeoffs security leaders face: velocity versus protection, automation versus human judgment, and when to embrace friction versus when friction becomes the enemy.</SPAN></P> <P>&nbsp;</P> <P><STRONG>This episode is essential listening if you're:</STRONG><SPAN> leading enterprise security programs, struggling with teams that route around your controls, managing DevOps or cloud security, implementing security that doesn't block business velocity, or trying to understand where AI security is heading.</SPAN></P> <P>&nbsp;</P> <P><STRONG>Related Episodes:</STRONG></P> <UL> <LI style="font-weight: 400;" aria-level="1"><A href="https://www.paloaltonetworks.com/resources/podcasts/threat-vector-securing-the-modern-workforce-lessons-from-medallias-ciso" target="_blank"><SPAN>Securing the Modern Workforce</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><A href="https://www.paloaltonetworks.com/resources/podcasts/threat-vector-why-security-platformization-is-the-future-of-cyber-resilience" target="_blank"><SPAN>Why Security Platformization Is the Future of Cyber Resilience</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><A href="https://www.paloaltonetworks.com/resources/podcasts/threat-vector-shifting-security-left" target="_blank"><SPAN>Shifting Security Left</SPAN></A></LI> </UL> <P>&nbsp;</P> <P><SPAN>Join the conversation on our social media channels:</SPAN></P> <UL> <LI style="font-weight: 400;" aria-level="1"><STRONG>Website</STRONG><SPAN>:</SPAN><A href="https://www.paloaltonetworks.com/unit42" target="_blank"> <SPAN>⁠⁠⁠⁠https://www.paloaltonetworks.com/</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><STRONG>Threat Research:</STRONG><A href="https://unit42.paloaltonetworks.com/" target="_blank"> <SPAN>⁠⁠⁠⁠https://unit42.paloaltonetworks.com/⁠⁠⁠⁠</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><STRONG>Facebook:</STRONG><A href="https://www.facebook.com/LifeatPaloAltoNetworks/" target="_blank"> <SPAN>⁠⁠⁠⁠https://www.facebook.com/LifeatPaloAltoNetworks/⁠⁠⁠⁠</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><STRONG>LinkedIn:</STRONG><A href="https://www.linkedin.com/company/unit42/" target="_blank"> <SPAN>⁠⁠⁠⁠https://www.linkedin.com/company/unit42/⁠⁠⁠⁠</SPAN></A></LI> <LI style="font-weight: 400;" aria-level="1"><STRONG>YouTube:</STRONG> <SPAN>@paloaltonetworks</SPAN></LI> <LI style="font-weight: 400;" aria-level="1"><STRONG>Twitter:</STRONG><A href="https://twitter.com/PaloAltoNtwks" target="_blank"> <SPAN>⁠⁠⁠⁠</SPAN></A><SPAN><A href="https://twitter.com/PaloAltoNtwks⁠⁠⁠⁠" target="_blank">https://twitter.com/PaloAltoNtwks⁠⁠⁠⁠</A></SPAN></LI> </UL> <IFRAME src="https://playlist.megaphone.fm?e=CYBW3620110023" width="100%" height="200" frameborder="0" scrolling="no"></IFRAME> <P>&nbsp;</P> </DIV> Thu, 12 Feb 2026 17:00:00 GMT https://live.paloaltonetworks.com/t5/threat-vector/threat-vector-when-security-friction-becomes-the-backdoor/ta-p/1247971 dmoulton 2026-02-12T17:00:00Z