In this interview, I had the opportunity and pleasure of speaking with Néstor Angulo de Ugarte, a cybersecurity expert, Head of Security at Patchstack, a cybersecurity company also linked to WordPress, and Head of Technology at the ISC2 Spain Chapter. We talked about cybersecurity, a topic that is becoming more and more embedded in our daily lives because the development of society unfolds within digital frameworks, and cybercriminals know it. For this reason, we need to act with common sense, and there is no better way to do so than by deepening our knowledge of the subject.
Néstor has spent several years delivering educational talks on cybersecurity at WordCamps and Meetups within the open-source WordPress ecosystem. He is a technology enthusiast and a computer engineer who graduated from the University of Las Palmas de Gran Canaria. He also holds the CISSP (Certified Information Systems Security Professional) certification, one of the most recognized international credentials in the field of information security. He worked for many years at Sucuri and GoDaddy.
We began the interview with a challenge: to define cybersecurity in four words, and he did it like this:
“Keeping information safe.”
We continued the conversation with the following topics:
-Expansion of the definition of cybersecurity
-Cybersecurity in WordPress, where he explains why WordPress is so attractive to cyberattacks. And to summarize, three basic measures to maintain your WordPress: good hosting, a security plugin, and a WAF.
-The FAIR project in WordPress. Currently (March 2026), the FAIR project has taken a new direction. After encountering commercial barriers within the WordPress ecosystem, its promoters announced in February that they would focus their efforts on the TYPO3 ecosystem.
-Cybersecurity and data theft
-Artificial Intelligence and cybersecurity
-OSINT (Open Source Intelligence)
-ISC2 Spain Chapter: training and certifications
-Do laws in Europe hinder business competitiveness?
-Conclusions and final reflections.
Finally, he offers a clear and practical vision of what it means to protect a digital environment today: security is no longer just a technical aspect nor exclusive to WordPress, but a strategic matter that impacts the entire business. The interview emphasizes mindset, reminding us that protecting a website is a cross-functional, ongoing responsibility, in a context where security has shifted from a recommendation to an obligation. Now, the real question is not if an attack will happen, but when, and prevention will always be more cost-effective than recovery.
Thank you very much, Néstor, for the interview, for your time, and for all the recommendations. With all this knowledge, we can apply common sense and protect our digital daily lives.
