Filtrer par genre
- 470 - Navigating ISO 27001 and cybersecurity management | Guest Gry Evita Sivertsen
Get your FREE 2024 Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcastToday on Cyber Work, Gry Evita Sivertsen, a consultant and COO with extensive ISO 27001 experience, joins us. Sivertsen shares how an early job in the Philippines ignited her cybersecurity career and discusses her approach to open dialogue for managing risks within a company. We delve into the ISO 27001 frame...
Mon, 11 Nov 2024 - 469 - Mentorship and career growth in cybersecurity | Guest Anneka Gupta
Get your FREE 2024 Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcastToday on Cyber Work, Anneka Gupta from Rubrik joins us to discuss STEM education, transitioning into cybersecurity and strategies for effective and diverse hiring. Gupta delves into her role as Chief Product Officer, highlighting the dynamic tasks and problem-solving skills required. She shares practical advi...
Mon, 04 Nov 2024 - 468 - How secure is your food: Cybersecurity threats and careers | Guest Jonathan Braley
Get your FREE 2024 Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=audio&utm_medium=podcast&utm_campaign=podcastToday on Cyber Work, Jonathan Braley from the Food and Agriculture Information Sharing and Analysis Center (Food and Ag ISAC) delves into the critical security challenges in the food, farming and production sectors. Featuring insights on the evolution of cybersecurity, the role of ISACs, and real-world threats ...
Mon, 28 Oct 2024 - 467 - Becoming an API security and bug bounty pro | Guest Katie Paxton-Fear
Get your FREE 2024 Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcastJoin us on this episode of Cyber Work with Katie Paxton-Fear, an API hacker and technical marketing manager at Traceable, known for her YouTube channel InsiderPhD. Dive into API security, common defense mistakes and bug bounty insights. Listen as Paxton-Fear shares her academic journey blending tech and lingu...
Mon, 21 Oct 2024 - 466 - Navigating cybersecurity careers: Non-traditional roles to consider | Guest Paige Hanson
Get your FREE 2024 Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=audio&utm_campaign=podcastPaige Hanson from SecureLabs discusses identity theft management and her extensive experience as a security communicator. With nearly 20 years in consumer and digital safety, Paige shares insights on pursuing a cybersecurity career and offers guidance for those interested in non-traditional security roles. Join...
Mon, 14 Oct 2024 - 465 - AI in GRC: Dr. Shayla Treadwell on balancing innovation and risk | Cyber Work Podcast
Get your FREE 2024 Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast Today on CyberWork, Dr. Shayla Treadwell, vice president of governance, risk, and compliance (GRC) at ECS, discusses the role of AI in the GRC space. She breaks down AI applications for GRC, the importance of AI governance and the significant roles in performing compliance on AI tools and software. Dr. Tread...
Mon, 07 Oct 2024 - 464 - Cybersecurity in the AI era: Busting myths and practical advice | Guest Alex Sharpe
Get your FREE 2024 Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=audio&utm_medium=podcast&utm_campaign=podcastAlex Sharpe, a cybersecurity expert with over 30 years of experience, joins the Cyber Work Podcast to discuss the realistic promises and limitations of AI and machine learning in cybersecurity — and pragmatic advice on their responsible use. From debunking myths to sharing insights from his excellent presentati...
Mon, 30 Sep 2024 - 463 - Cybersecurity's future: Preparing the next gen of professionals | Guest Tia Hopkins
Get your FREE 2024 Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/ In this episode of Cyber Work Podcast, Tia Hopkins, Chief Cybersecurity Resilience Officer at eSentire, returns to discuss her journey into tech and cybersecurity. She reflects on her early fascination with technology her impactful externship experiences, and the importance of cyber resilience. Tia discusses her roles in making the cybersecurity industry more equitable and ...
Mon, 23 Sep 2024 - 462 - What you will learn about cybersecurity soft skills | Guest Cicero Chimbanda
Today on Cyber Work Hacks, my guest, Infosec Skills author Cicero Chimbanda, gives us another Hack for our Cybersecurity Managers. If you want to know more about Cicero’s Security Manager learning path for Infosec Skills, this is the episode for you, as we break down everything you’ll learn and how to apply it to your career!0:00 - Infosec's security manager soft skills course2:39 - Infosec Skills soft skills learning modules5:30 - Why cybersecurity management soft skills are important7:30 - ...
Mon, 16 Sep 2024 - 461 - Honing your security manager soft skills on the job | Guest Cicero Chimbanda
Today, on Cyber Work Hacks, my guest, Infosec Skills author Cicero Chimbanda, gave us a Hack involving the role of Cybersecurity Manager. Studying security management techniques academically is one thing, but how do you develop your security manager skills ON THE JOB? Cicero has many insights, and we talk a bit about the importance of rapport and understanding between different generations of security professionals.0:00 - Cybersecurity manager soft skills2:30 - Most important cybersecurity ma...
Mon, 09 Sep 2024 - 460 - One thing a cybersecurity manager should know | Guest Cicero Chimbanda
Infosec Skills author Cicero Chimbanda discusses the role of the cybersecurity manager. Our focus is the one thing Chimbanda wishes he had known before he became one! I’ll leave it at that and let him tell his story because it’s a good one.0:00 - What to know as a cybersecurity manager3:26 - One thing to know about being a security manager7:00 - Craft your cybersecurity manager role9:09 - Cybersecurity management advice10:45 - What is Infosec Skills12:21 - Outro – Get your FREE 2024 Cybersecu...
Mon, 02 Sep 2024 - 459 - One tip for security managers to keep teams fulfilled | Guest Cicero Chimbanda
Today on Cyber Work Hacks, my guest is Infosec Skills author and teacher Cicero Chimbanda. Chimbanda's Skills path concerns building the soft skills needed to succeed as a Cybersecurity Manager. For today’s Hack, Chimbanda tells us his best tip for Security Managers to keep their security teams fulfilled and connected. As we speak, many companies are entering their Q2, and Chimbanda has great advice for taking Q1’s successes (or not) and using the framework to reinforce the connection between...
Mon, 26 Aug 2024 - 458 - Cybersecurity projects to demonstrate your skills
We’ve all been there — 200 pages into your Security+ study guide reading, and your eyes are crossing from exhaustion. Does any of this even connect with the real world? One of the best ways to apply your learning is to try it out for yourself, and my guest today, Infosec Skills author professor Robert McMillen, has a host of suggestions for low-cost, low-danger security tasks that you can try for yourself and determine whether you have what it takes to keep it going in cybersecurity. As a bon...
Mon, 19 Aug 2024 - 457 - Cybersecurity jobs — where to begin | Guest Professor Robert McMillen
Get a job! No, seriously, get a job. Cyber Work Hacks wants to help you find the job of your dreams, and your guide to learning how to search for Cybersecurity jobs is Professor Robert McMillen, one of Infosec’s Skills authors. McMillen knows that there’s a disconnect between the skills gap that guests espouse and the commenters who are still looking. But McMillen has some actionable advice for you, and you absolutely do not want to miss this, no matter what level of job you’re looking for. P...
Mon, 12 Aug 2024 - 456 - How to begin cybersecurity training | Guest Professor Robert McMillen
Cyber Work Hacks is dedicated to furthering and strengthening your cybersecurity education and learning, but today’s episode is specifically focused on learning. Professor Robert McMillen guides you through all of the different ways you can learn, both in certification training and education options, and helps you understand which learning method is going to mesh with you and also which ones will attract your future employers. Put a bookmark in your cert study guide and lend us your attention...
Mon, 05 Aug 2024 - 455 - How to get started in cybersecurity: Beginner steps you can take now | Cyber Work Live
Join us for the June 2024 edition of Cyber Work Live! This episode is dedicated to answering questions about cybersecurity certifications, training, and careers. Our expert panel, including Confidence Stavely, Akyl Phillips, and Robert McMillen, share invaluable insights for newcomers and career changers in cybersecurity. Topics covered include navigating the certification landscape, overcoming imposter syndrome, transitioning from other careers, and the importance of networking. Tune in for ...
Mon, 29 Jul 2024 - 454 - Creating a career roadmap for the cybersecurity beginner
Today’s Cyber Work Hacks is for security novices, people just getting started in learning cybersecurity and looking for their career path. Professor Robert McMillen is an Infosec Skills path author, and he gives you some fantastic advice for making the decisions at the very beginning to help you steer your career to all the places you want to go! To get your cybersecurity career started, make sure to check out today’s Cyber Work Hack. 0:00 - First starting out in cybersecurity1:28 - Cybe...
Thu, 25 Jul 2024 - 453 - Why do C-suites instinctively fire the CISO when a breach happens? | Guest Jonathan Gill
Today on Cyber Work, Jonathan Gill, CEO of Panaseer, joins me to talk about the stress-filled role of the Chief Information Security Officer. Jonathan notes that the most challenging part of a CISO’s role, especially the CISO of a large, complex company, is the lack of full view of the organization’s assets and points of vulnerability. Jonathan tells us how Panaseer is working to create a trusted and validated system of record to ensure accurate and good faith recording of actions, strategies...
Mon, 22 Jul 2024 - 452 - Cyber resiliency and national defense | Guest Georgianna "George" Shea
Today on Cyber Work, I’m introducing you to Dr. Georgianna, or “George” Shea, the chief technologist at the Foundation for Defense of Democracies’ Center on Cyber and Technology Innovation. Shea finds new and developing technologies and develops pilot programs for implementation in a variety of locales, including DoD, the government sector and critical infrastructure. We talk about Shea's first taste of security, learn what it’s like to be knowledgeable in several dozen connected security spa...
Mon, 15 Jul 2024 - 451 - Using the CEH to create an ethical hacker career path
Infosec and Cyber Work Hacks are helping train the red teamers and blue teamers of tomorrow with our boot camps and study materials for the CEH exam. But how does ethical hacking proficiency translate into a satisfying career? Infosec’s CEH boot camp instructor Akyl Phillips has plenty of strategies to help you get focused and stay focused on your studies, some excellent tips for keeping on top of the latest security changes and innovations, and how you’re going to push past uncertainty and i...
Thu, 11 Jul 2024 - 450 - Why is Log4J still so successful? | Guest Etay Maor
Today on Cyber Work, I talked with Etay Maor, Chief Security Strategist with Cato Networks. Etay is a founding member of the Cato Cyber Threats Research Lab, or CTRL — see what they did there? — and he joins me to talk about their first CTRL report on attack patterns and methods. We’re going to talk about the most common attack vectors, why Log4J still rules the roost even against newer and flashier exploits, and we go deep into the many paths you can take to become a threat researcher, threa...
Mon, 08 Jul 2024 - 449 - All about identity access management with the Identity Jedi | Guest David Lee
How does a childhood curiosity turn into a groundbreaking career in identity and access management? Join us for an engaging conversation with David Lee, the Identity Jedi, as he recounts his fascinating journey from tinkering with computers as a child to becoming a sought-after expert in IAM. Lee shares the pivotal moments and unexpected opportunities that transformed his career, providing invaluable insights for anyone looking to break into the cybersecurity field. We explore the essential t...
Mon, 01 Jul 2024 - 448 - Cybersecurity’s role in U.S. foreign relations | Guest Tom Siu
Today on Cyber Work, Tom Siu, CISO of Inversion6, joins the podcast to talk about cyber diplomacy! As Siu says at the start of the show, the internet has no borders. It’s like water. There are pathways and choke points, but there is no ownership by any one country or entity. How does that influence international diplomacy? Siu discusses possible scenarios for the future of cyber diplomacy, and skills and backgrounds that make you a good fit for this work. This is a great episode for our job c...
Mon, 24 Jun 2024 - 447 - Breaking down CEH exam questions with an Infosec expert
Infosec and Cyber Work Hacks are here to help you pass the CEH, or Certified Ethical Hacker exam. For today’s Hack, Akyl Phillips, Infosec bootcamp instructor in charge of the CEH/Pentest+ dual-cert bootcamp, walks us through four sample CEH questions, explaining the logic behind each answer and discounting the wrong ones with explanations, allowing you to reach the right answer in a logical and stress-free way. This episode is a real eye-opener for aspiring red teamers, so keep it here for t...
Thu, 20 Jun 2024 - 446 - Roku’s hacked data breach – will we never learn our lesson? | Guest Zarik Megerdichian
Zarik Megerdichian, the co-founder of personal privacy controller company Loop8, joins me in breaking down the recent Roku breach, which landed hackers a whopping 15,000 users' worth of vital data. Megerdichian and I discuss the failings of the current data collection and storage model while moving to a model in which biometrics is the primary identification method, coupled with a system of contacts who can vouch for you in the event that your device is lost or stolen. It’s another interestin...
Mon, 17 Jun 2024 - 445 - Unlocking data privacy: Insights from the data diva | Guest Debbie Reynolds
Today on Cyber Work, I’m very excited to welcome Debbie Reynolds, the Data Diva herself, to discuss data privacy. Reynolds developed a love of learning about data privacy since working in library science, and she took it through to legal technologies. She now runs her own data privacy consultancy and hosts the long-running podcast “The Data Diva Talks Privacy Podcast.” We talk about data privacy in all its complex, nerdy, and sometimes frustrating permutations, how GDPR helped bring Reynolds ...
Mon, 10 Jun 2024 - 444 - Inside a CEH boot camp: Advice from an Infosec instructor
Infosec and the Cyber Work Hacks podcast are here to help you pass the Certified Ethical Hacker (CEH) exam! So for today’s hack, we’re talking about bootcamps. The CEH exam, no matter how you slice it, is an exam that is the definition of the phrase, “It’s a marathon, not a sprint.” With 125 questions and four hours to answer them, there’s as much of a mental game at work here that’s much more than rote memorization of terms and tools. That’s why I wanted to get an insider’s look from Infosec...
Thu, 06 Jun 2024 - 443 - Revolutionizing digital identity, data privacy and data security | Guest Raj Ananthanpillai
Today on Cyber Work, my guest is Raj Ananthanpillai, CEO of Trua, a company that is steeped in the current issues around digital credentials and data privacy. As you’ve no doubt heard, AT&T reported a data breach that compromised the personal information of approximately 7.6 million users! Ananthanpillai discusses Trua’s mission to leave data thieves holding an empty treasure chest, discusses his past work in creating TSA PreCheck and gives a bunch of great ideas and advice for making sur...
Tue, 04 Jun 2024 - 442 - Mastering the certified ethical hacker exam: Strategies and insights with Akyl Phillips
Cyber Work Hacks knows that you have what it takes to pass the Certified Ethical Hacker (CEH) exam! And you don’t have to do it alone! Infosec’s CEH boot camp instructor Akyl Phillips gives you his top tips and tricks for taking the exam! Phillips breaks down the common formats for CEH questions, talks common mistakes people make while taking the exam and why it’s not the end of the world if you fail the CEH on the first time (especially if you do it with an Infosec CEH/Pentest+ dual-cert boo...
Thu, 16 May 2024 - 441 - OT cybersecurity jobs are everywhere, so why is nobody taking them? | Guest Mark Toussaint
Mark Toussaint of OPSWAT joins to talk about his work in securing operational technology, and specifically about his role as product manager. This is an under-discussed job role within security, and requires great technical expertise, intercommunication skills and the ability to carry out long term campaigns on a product from, as he put it, initial brainstorming scribblings on a cocktail napkin through the creation of the product, all the way to its eventual retirement. Learn what it takes to...
Mon, 20 May 2024 - 440 - MGM Grand breach: How attackers got in and what it means for security | Guest Aaron Painter
Today on Cyber Work, we’re talking about last September’s breach of the MGM Grand Casino chain, an attack that lead to a week of tech failure, downtime and over a hundred million dollars in lost revenue. The attackers were able to get in via a point that my guest, Aaron Painter of Nametag Inc, said is a common point of failure: the request for a password and credential reset from the helpdesk, and the ever-frustrating “security questions” approach to making sure you are who you are. Nametag i...
Mon, 13 May 2024 - 439 - Jumping into the CCNA with both feet | Cyber Work Hacks
Infosec and Cyber Work hacks can help you pass Cisco’s CCNA certification exam! But what if you think you’re not ready to make that jump? What would it take for you to jump into the study of the CCNA with both feet? Infosec’s CCNA boot camp instructor Wilfredo Lanz wants you to know that you can be ready to start the big learning a lot faster than you think, and tells us why some of his most entry-level students often do better on the test than their more established classmates. If the prospe...
Wed, 08 May 2024 - 438 - What's it like to be the CISO for the state of Connecticut? | Guest Jeffrey Brown
Today on Cyber Work, I’ve got a big guest for you. Jeffrey Brown, Faculty at IANS Research, is also the chief information security officer for, not a company, not for a healthcare organization, but for the entire state of Connecticut! Brown walks me through the scope and reach of a state-wide CISO, a country-wide move toward a “whole of state” strategy and, frankly, I spend an awful lot of time talking to Brown about where he finds the time to do all the things he does.0:00 - Being CISO of an...
Mon, 06 May 2024 - 437 - Careers in operational technology: What does a security risk assessor do? | Guest Donovan Tindill
Today on Cyber Work, we continue our deep dive into industrial control systems and operational technology security by talking with Donovan Tindill of DeNexus. Now, I’m just going to come out and say it: Tindill's episode is like a cybersecurity career seminar in a box, and a must-not-miss if you’re interested in not just ICS and OT security, but specifically the realm of Risk Assessment. Tindill brought slides and literally lays out his entire career for us to see, including the highs and eve...
Mon, 29 Apr 2024 - 436 - What a CCNA boot camp is like | Cyber Work Hacks
Infosec and Cyber Work Hacks podcast want to help you pass the CCNA exam! So, for today’s hack, let’s talk boot camps. The CCNA is an intimidating exam, especially if you’re trying to go it alone, just you and your self-study book. That’s why I’d like to introduce you to Infosec’s CCNA boot camp instructor, Wilfredo Lanz! He will explain what the Infosec 5-day CCNA boot camp is like, the learning and memorizing strategies you’ll employ and how boot camp training can help you pass on the first...
Thu, 25 Apr 2024 - 435 - How to get started in industrial control systems cybersecurity | Guest Robin Berthier
Today on Cyber Work, we are talking operational technology, or OT, security with guest, Robin Berthier of Network Perception. From his earliest studies to his time as an academic researcher, Berthier has dedicated his career to securing the intersection between operational technology and network security, with some pretty imaginative solutions to show for it. In today’s episode, Berthier explains why modern OT security means thinking more about the mechanics of the machinery than the swiftnes...
Mon, 22 Apr 2024 - 434 - Working as a CIO and the challenges of endpoint security| Guest Tom Molden
Today on Cyber Work, our deep-dive into manufacturing and operational technology (OT) cybersecurity brings us to the problem of endpoint security. Tom Molden, CIO of Global Executive Engagement at Tanium, has been grappling with these problems for a while. We talk about his early, formative tech experiences (pre-Windows operation system!), his transformational position moving from fiscal strategy and implementation into his first time as chief information officer and talk through the interloc...
Mon, 15 Apr 2024 - 433 - Are you ready for the CCNA exam? Test yourself with these questions | Cyber Work Hacks
Infosec and Cyber Work Hacks are here to help you pass the CCNA exam! For today’s Hack, Wilfredo Lanz, Infosec bootcamp instructor in charge of Cisco’s CCNA certification, walks us through four sample CCNA questions, walking through each answer and discounting the wrong ones with explanations, allowing you to reach the right answer in a logical and stress-free way. And the only way you’re going to see it is by staying right here for this Cyber Work Hack! 0:00 - CCNA exam sample questions 1:31...
Thu, 11 Apr 2024 - 432 - Working in manufacturing security: Top challenges and career advice | Guest Theresa Lanowitz
AT&T Cybersecurity’s head of evangelism, Theresa Lanowitz, is today's guest. Lanowitz has amazing and wide-ranging career achievements, from her time with analyst firms Gartner and Voke, work on Java’s JBuilder environment and strategic marketing for the Jini Project, which was proto-IoT going back to the late ‘90s! With all of these incredible stories, we talked far and wide about manufacturing security concerns, she breaks down the key pain points around edge computing and talks extensi...
Mon, 08 Apr 2024 - 431 - Modern industrial control system security issues | Guest Thomas Pace
Thomas Pace of NetRise talks about industrial control systems security. We’ll learn about Pace's time in the United States Marine Corps in cyber-intelligence, his move to forensics and then ICS and why the greatest asset a security professional can have is the ability to find, clearly see and create narratives. I always find ICS professionals to be fascinating, and Pace took us down some new paths, so if you’re also interested in ICS Security, keep it here for today’s episode of Cyber Work!0:...
Mon, 01 Apr 2024 - 430 - Passing the CCNA exam: Tips and tricks from an instructor | Cyber Work Hacks
Infosec and Cyber Work Hacks want you to pass the Cisco CCNA exam! To help you do that, Infosec’s CCNA Boot Camp instructor Wilfredo Lanz gives you his top tips and tricks for taking the CCNA exam! Lanz will give you some advice for narrowing down the right answer by eliminating the obviously wrong ones, common mistakes people make while taking the exam and what to do if, for some reason, you don’t pass on the first try. And most importantly, why you must take the practice exams before the te...
Thu, 28 Mar 2024 - 429 - CISSP is changing! Common body of knowledge changes for 2024 | Cyber Work Hacks
Cyber Work Hacks is back to keep you updated with the CISSP exam! Infosec boot camp instructor Steve Spearman joins me to tell us about the new changes to the CISSP’s common body of knowledge (CBK) and how the changes to the CBK should (or shouldn’t!) affect your study and preparation for the exam! Keep learning, and keep it here for another Cyber Work Hack.– Learn more about the CISSP: https://www.infosecinstitute.com/training/cissp/– Get your free ebook, "CISSP exam tips and tricks (to ace ...
Thu, 21 Mar 2024 - 428 - CISSP exam tips and tricks: Top test-taking strategies | Cyber Work Hacks
Infosec and Cyber Work Hacks are here to help you pass the CISSP exam. Today’s Hack is part two, so I encourage you to go back and listen to part one of Steve Spearman’s CISSP exam tips and tricks. In part two, I pass the mic to Spearman to give you his top five test-taking strategies for the CISSP. What’s the Sesame Street rule? How does the CISSP feel about absolutes? Keep it here, and you’ll find out in part two of this week’s Cyber Work Hack. – Learn more about the CISSP: https://res...
Fri, 15 Mar 2024 - 427 - CISSP exam tips and tricks: Avoiding common mistakes | Cyber Work Hacks
Infosec and Cyber Work Hacks are here to help you pass the CISSP exam! This is part one of a two-part Cyber Work in which Infosec’s CISSP boot camp instructor Steve Spearman gives you his top tips and tricks for taking the CISSP exam! In part one, we’ll talk about what makes the CISSP such a difficult exam, common mistakes people make while taking the exam and what to do if, heaven forbid, you don’t pass on the first try. You don’t have to do this alone, but you need to listen to Spearman's s...
Mon, 11 Mar 2024 - 426 - What help do CISOs need in 2024? | Guest Alicia Olson
Alicia Olson, VP of Communications at Optiv, is today's guest. Olson came to cybersecurity from the oil and gas sector. She tells us how she got interested in communications for security professionals, explains how she turned Optiv’s distributed workforce into a cohesive unit and gives CISOs some crucial advice and ideas for dealing with that moment that no one wants to have to explain — the inevitable security breach. 0:00 - What do CISOs need in 2024?1:40 - Working in communications3:5...
Mon, 04 Mar 2024 - 425 - What a CISSP boot camp is like | Cyber Work Hacks
Infosec and the Cyber Work Hacks podcast are here to help you prepare for and pass the CISSP exam from ISC2. For today’s hack, we’re talking boot camps. If you’ve been preparing for the Certified Information Systems Security Professional (CISSP) study guide for six months or more, you might learn better in a concentrated, focused environment with expert instruction. And that expert is Infosec boot camp instructor Steve Spearman, who has helped hundreds of learners prepare for and pass th...
Thu, 29 Feb 2024 - 424 - Ethical hacking careers vs. cinema: What it's like to work as a hacker | Cyber Work Live
Don't believe the movies and TV shows — ethical hacking is not done by frantically typing on the keyboard in a race against the clock.What's a career in ethical hacking and penetration testing really like? Join our panel of experts who have worked in the field for decades to find out!In this one-hour live event, we'll cover:0:00 - Ethical hacking fact vs fiction7:45 - First, getting into cybersecurity 12:00 - Does ethical hacking fiction affect people? 19:20 - Cybersecurity students in higher...
Mon, 26 Feb 2024 - 423 - Renewing your Security+ certification | Cyber Work Hacks
Infosec and Cyber Work hacks want to help you pass the Security+ exam! We have three separate hacks on this channel to help you through the process of studying for and taking the exam. But what about in the years after, when it’s time to get ready to recertify? Infosec boot camp instructor Tommy Gober walks you through all the different ways you can earn your continuing education units (CEU), how many you need to re-certify your Security+ and some less-known activities that can keep your CEU ...
Thu, 22 Feb 2024 - 422 - A career in dental cybersecurity? Drilling down into this unique role | Guest Tom Terronez
Tom Terronez joins Cyber Work to discuss security in an industry that doesn’t always make the headlines for security news: dentistry. Terronez co-founded Medix Dental, an IT and security provider for the dental industry, 20 years ago, and has the lowdown on some of the specific security issues dentist offices and networks face. It is an uphill battle to get the industry to acknowledge its extreme insecurity, and I find out how a shared love of Hall & Oates got Terronez into this very spec...
Mon, 19 Feb 2024 - 421 - Security+ Boot Camp: What to expect during your training | Cyber Work Hacks
Infosec and the Cyber Work Hacks podcast are here to help you pass the Security+ exam! For today’s hack, let’s talk bootcamps. If you’ve been piecing your way through the Sec+ study guide for six months or more, it’s possible that you would learn better in a concentrated, focused environment with expert instruction. I’m talking, of course, about Infosec boot camp instructor Tommy Gober! Goberwill walks you through what the Infosec five-day Security+ boot camp is like the learning and memorizi...
Thu, 15 Feb 2024 - 420 - Are remote workers more security-savvy than on-premises? | Guest Joseph Nwanpka
Miami University's (in Oxford, Ohio) Farmer School of Business Information Systems and Security researcher Joseph Nwankpa joins Cyber Work today. Nwankpa recently wrote a report that overturns some huge assumptions: he found that work-from-home employees are, to a large degree, less of a security issue than many on-premises workers. Nwankpa discusses The Peltzman Effect, the persistent struggles to create security awareness that lasts past the initial training sessions and talks about some su...
Mon, 12 Feb 2024 - 419 - Security+ exam questions and answers: What to expect | Cyber Work Hacks
Cyber Work Hacks is here to answer your questions about the CompTIA Security+ exam! Today, Infosec boot camp instructor Tommy Gober reviews Security+ exam sample questions and shares tips to pass your Security+ 701 exam.0:00 - Security+ exam mechanics1:15 - The different types of Security+ exam questions3:55 - How do you see your Security+ exam results?5:10 - Security+ exam example question 19:27 - Security+ exam example question 211:32- Security+ exam example question 315:08- Security+ pract...
Fri, 09 Feb 2024 - 418 - 45 billion cyberattacks a day?! Media myths and working in cybersecurity | Guest Ken Westin
Ken Westin of Panther Labs has a bit of fact-checking he wants to do on some of the tech stories we read daily in the papers. Does J.P. Morgan really get 45 billion cyberattacks per day? Really? Are there other factors in this number that aren’t emphasized in the interest of chasing panic clicks? Westin and I talk about responsible ways to cover big security stories in the news, ways that each of us can become cyber fact-checkers and advocates, and Westin tells me about how his personal inter...
Mon, 05 Feb 2024 - 417 - Security+ exam tips: What changed and how to pass the new exam | Cyber Work Hacks
Cyber Work Hacks is here to answer your questions about the CompTIA Security+ exam! Today, Infosec boot camp instructor Tommy Gober tells us about the new changes to the Security+ exam and how it will (or will not) affect your study and preparation for the exam! Keep learning, and keep it here for another Cyber Work Hack.Get your free Security+ ebook, "CompTIA Security+ 701: How the world's most popular cert is changing in 2024" https://www.infosecinstitute.com/form/comptia-security-601/0:00 ...
Mon, 29 Jan 2024 - 416 - The Wild West era of data collection is over | Guest Sean Falconer
Today on Cyber Work, Sean Falconer of Skyflow and host of the Partially Redacted and Software Huddle podcasts, joins me to talk about the present and future of consumer and user data privacy, the pros and cons of adding more privacy regulations into place and his journey from software development and engineering to his current place of working closely and deeply with the future of API-based data encryption and privacy. And stick around because Falconer will share the best career advice he eve...
Mon, 22 Jan 2024 - 415 - Don't chase unicorns to fix the cybersecurity skills gap | Guest Adrianna Iadarola
Adrianna Iadarola of CyberSN joins me today to break down every spot on the cybersecurity job search, hiring, upskilling and retention pipeline. After her raucous and highly informative presentation at ISACA Digital Trust World, I knew I had to introduce you to this great analyst and thinker. Whether you’re doing the hiring or being the hiree, you will find something crucial to your new year journey today on Cyber Work. 0:00 - Problems with cybersecurity hiring 2:19 - How Adrianna Iadarola go...
Mon, 08 Jan 2024 - 414 - Neurodiversity and cybersecurity leadership positions | Guest Anthony Pacilio
Today's guest is Anthony Pacilio, VP Neurodiverse Solutions at CAI. I met Pacilio at this year’s ISACA Digital Trust World event in Boston, and I was immediately fascinated with his insights on hiring and attracting neurodiverse professionals in security, IT, engineering and related industries, all of which suffer a skills gap and all of which are in need of new insights and working methods. Pacilio and I have a substantive conversation about changing the structure of the “6-hour marathon” in...
Mon, 18 Dec 2023 - 413 - What it's like to be a CISO — and why they don't need more tech | Guest Dan Roberts
Dan Roberts, host of the “Tech Whisperers” podcast, and a mentor, coach and leader to CISOs and other tech-focused C-suite members for nearly four decades, is today's guest. We talk about Roberts' earliest work, including coining the term “Developing the human side of technology” all the way back in 1984, to spearheading the CyberLX program for CISOs and those aspiring to be. Roberts also provides a four-stage growth chart for CISOs that, quite frankly, scales well to just about any tech care...
Mon, 11 Dec 2023 - 412 - Empowering African Women through Cybersecurity | Guest Confidence Staveley
Confidence Staveley of the CyberSafe Foundation and the CyberGirls program is today's guest. CyberGirls is a year-long cohort program in which women in Africa ages 18 to 28 can learn cybersecurity basics and create career tracks to fast-track these students into cybersecurity careers! Staveley tells us about the workings of the program, how she uses her YouTube channel to teach API security with food analogies and explains the origins of what is likely the first-ever Afrobeat song about secur...
Mon, 04 Dec 2023 - 411 - The transformative power of neurodiversity in cybersecurity practices | Guest Ian Campbell
Ian Campbell, security operations engineer at DomainTools, is someone who has truly carved a niche out for himself in his organization and in the cybersecurity landscape as a whole. His blogs for the DomainTools website have provided paths for neurodiverse cybersecurity professionals and allies who want to make their organizations more friendly to neurodiversity to undertake the small changes to work roles and company culture that can net huge improvements for folks with different types of co...
Mon, 27 Nov 2023 - 410 - National security cyber issues and Stanford’s cyber policy program | Guest AJ Grotto
Guest AJ Grotto is the William J. Perry International Security Fellow and founding director of the Program on Geopolitics, Technology and Governance at the Stanford Policy Center and Stanford University. Grotto has served in the National Cybersecurity Council under two successive presidents and brings decades of knowledge in international relations, policy and risk both to his students and to clients in his private sector consulting work. Grotto tells us about the current state of internation...
Mon, 13 Nov 2023 - 409 - The role of film storytelling in making education stick | Cyber Work Hacks
Infosec IQ’s director of production, Steve Concotelli comes to us following years working in the movie and TV industry, and his ability to create and craft a great story is at the core of what makes Work Bytes the most award-winning security awareness series on the market! Learn more about Concotelli and the team’s ability to craft storylines with takeaways that stick, as well as the reasons why we create four different information delivery types to match the pace and time commitments of your...
Thu, 09 Nov 2023 - 408 - The future of passwords | Guest Tomas Smalakys
Tomas Smalakys, CTO at NordPass, is today's guest. As our future seems choked with a never-ending need for new passwords of ever-growing complexity for everything we sign up for, Smalakys, along with some large tech organizations, is embracing a post-password future with a system of passkeys. What will it look like? How is it implemented? How will you be able to do this bleeding-edge work in the future? Tune in for today’s episode of Cyber Work and find out! 0:00 - The future of online passwo...
Mon, 06 Nov 2023 - 407 - AI and the rise of DDoS attacks | Guest Anna Claiborne
Anna Claiborne from Zayo talks about the spike of DDoS attacks they saw in the past year. Although distributed denial of service (DDoS) attacks trend up nearly every year, new factors around advanced automation and ease of use may be driving the increase. Claiborne takes us back 20 years, when solutions to DDoS attacks involved trying the most far-out solution you could, often for the most far-out clients you could imagine! Seriously, I use the words “Wild West” to describe early security on ...
Mon, 30 Oct 2023 - 406 - How generative AI can be used by bad actors | Guest Oliver Tavakoli
Oliver Tavakoli from VectraAI returns to the program to talk about – surprise! – AI! Having talked about Tavakoli's origin story on the past episode, we’re free to dig right into his main area of interest: the ways in which generative AI can be used by bad actors, whether introducing conflicting messages into GPT guardrail commands or escalating the nuance and complexity of fake-based social engineering attacks. We talk about long-term implications of this emerging tech opportunity, ways for ...
Mon, 23 Oct 2023 - 405 - How AI is affecting GRC and the future of cybersecurity | Guest Heather Buker
Dr. Heather Buker of 6clicks has been a technical SME in the cybersecurity field her entire career, and 6clicks has introduced Ask Hailey, an AI-based governance risk and compliance (GRC) tool that promises to move the work of GRC into a new era. Also on the show, Infosec’s vice president of portfolio product strategy and cybersecurity superstar Keatron Evans in a guest-host capacity! Buker, Keatron and I discuss the spaces in which governance risk and compliance can greatly benefit from AI/m...
Mon, 16 Oct 2023 - 404 - Finding and supporting neurodiverse cybersecurity professionals | Guest Tara D. Anderson
Tara D. Anderson, managing director of Framework Security and an official member of the Forbes Technology Council, walks us through her journey, including her years in the world of finance, opens up about a traumatic event in her life that altered the way she learns and retains information and how her switch to IT and Cybersecurity was an ideal fit. From her days co-founding the consultancy firm Cognitive SLC, an organization whose founders were all neurodiverse, to Framework Security’s desir...
Mon, 25 Sep 2023 - 403 - Cybersecurity investment and launching new companies | Guest Leslie Lynn Smith
Leslie Lynn Smith is the National Executive Director for GET Cities. GET stands for Gender Equality in Tech. Today’s episode will move away from standard cybersecurity and IT insights in favor of a larger look at investment opportunities for tech startups, and where and on who we spend investment capital. Smith is a multi-decade authority on state- and city-wide community investment initiatives with a lifelong passion for bringing people of marginalized races and genders to the table in fulfi...
Mon, 18 Sep 2023 - 402 - Bringing coding skills to underserved communities | Guest Brianne Caplan
Brianne Caplan is the founder and executive director of Code Your Dreams, a non-profit that brings knowledge, accessibility and excitement about programming and tech to learners from age 5 to adulthood in underserved communities. Caplan tells some incredible stories, like the women’s coding and data analysis group in Burundi, exciting coding projects for students interested in art, music and dance and why her experience inadvertently creating a non-profit company that was incorporated as a fo...
Wed, 13 Sep 2023 - 401 - From software engineer to career coach for women in tech leadership | Guest Limor Bergman-Gross
Limor Bergman-Gross, founder of LBG Consulting, a results-oriented executive coaching service for women in tech, discusses her early programming experience, including Pascal instruction in high school, her move from software engineering manager to career coach and corporate mentorship instructor and why mentors can and should come at any level on the career ladder, not just management or executive. As Limor puts it, “all you need in a mentor is that they be a few steps further down the path t...
Mon, 28 Aug 2023 - 400 - ICS security, Blue Team Con and security work in the Air Force Reserve | Guest Lesley Carhart
Lesley Carhart of Dragos, also known as Hack4Pancakes on social media, is a lifelong breaker and builder of things, and their insights on the deep mechanics of Industrial Control Systems are an absolute must-hear for any of you even considering this space. Carhart also talks about their keynote at this year’s Blue Team Con, the differences between incident response in the military vs. the private sector, and why standard cybersecurity studies won’t take you as far in ICS as it will to learn h...
Mon, 21 Aug 2023 - 399 - Digital forensics careers: Facts versus fiction | Cyber Work Live
Forget what the crime scene TV shows have told you — digital forensics is not done on an overhead projector while the whole department watches! Learn about the day-to-day work of a digital forensics professional from a team of experts who have been putting in the work for decades!In this episode of Cyber Work Live, you will learn:- The types of tools you’ll use to help bring criminals to justice- Why a lack of technical experience isn’t a barrier to entry- How to get real-world forensics prac...
Mon, 14 Aug 2023 - 398 - Uplifting women for leadership in the cybersecurity industry | Guest Katie O'Malley
We met Katie O’Malley, founder of (en)Courage Coaching and Counseling, at this year’s Women Impact Tech conference, and she gave a great talk about effective networking and giving confidence to tech professionals at all levels of the career ladder. Katie and I discussed finding your adjectives and using them to center your interactions, creating courageous workplace culture, and why women only being mentored by women turns into the new unpaid labor. Let’s all step up and make the workplace be...
Mon, 07 Aug 2023 - 397 - The changing responsibilities of the CISO position | Guest Mike Scott
We're talking about chief information security officers CISOs, one of the top-dog roles in cybersecurity, and for many professionals, it’s the brass ring they spend their careers trying to reach. The expectations of a CISO are changing, too, and requirements are growing in many different ways. Mike Scott, CISO of data security provider Immuta, has seen the role change a lot in the past 15 years, and he’s seen the role of CISO move from out of the shadows and into the spotlight for the C-suite...
Mon, 31 Jul 2023 - 396 - Crafting a basic disaster recovery plan | Cyber Work Hacks
Preparing for the worst is a drag. Nobody likes to think about it, and if you don’t watch out, inaction means that when you do get ransomed or breached, your first thought is not “let’s get the disaster manual and see what it says.” It’s panic. Today, ProServeIT’s Eric Sugar walks you through a crash course in developing a disaster recovery plan for your small business! Don’t panic! Help is on the way.0:00 - Create a disaster recovery plan1:15 - What is a disaster recovery plan? 2:35 - Beginn...
Thu, 29 Jun 2023 - 395 - Digital safety services and equity in cybersecurity | Guest Leigh Honeywell
Leigh Honeywell, CEO and founder of Tall Poppy, a security company that is building tools and services to help companies protect their employees from online harassment and abuse, talks about her career running security incident response at Slack, protecting infrastructure running a million apps at Salesforce.com, shipping patches for billions of computers on the Patch Tuesday team at Microsoft and analyzing malware at Symantec. We talk about how all of these demanding jobs prepared her for he...
Mon, 26 Jun 2023 - 394 - Disaster recovery plans for small businesses | Guest Eric Sugar
ProServeIT President Eric Sugar discusses disaster recovery planning for small and medium businesses. This is an excellent add-on episode to our third episode from way back in 2018 when Keatron Evans discussed the work of an incident responder. If your small- or medium-sized company suffers an incident, whether a breach or a ransom or just a power failure, the first thing you’re going to hope is that you have a disaster recovery plan already written and sitting in the CEO’s locked desk drawer...
Mon, 12 Jun 2023 - 393 - Asset detection at home | Cyber Work Hacks
Huxley Barbee, security evangelist at runZero, talks about the nuts and bolts of asset detection on a large scale, specifically around the U.S. federal government’s current directive. Here, we will shrink the playing field and tell newcomers to security how to do your home asset detection!0:00 - Asset detection at home1:18 - What is asset detection?2:44 - Is asset detection difficult?3:39 - Do asset detection on your network4:45 - Asset detection on a school network6:50 - How to put asset det...
Thu, 08 Jun 2023 - 392 - The nuts and bolts of asset detection and asset mapping | Guest Huxley Barbee
Tech evangelist Huxley Barbee from runZero talks about asset detection, and yes, just asset detection. Learn about the day-to-day work of asset detection and asset mapping. Go beyond the theory and speculation about whether the U.S. federal government will implement it on time, and join Barbee as he walks you through how it’s all done and what you need in order to do it well.0:00 - Asset detection and asset mapping 2:56 - Getting into cybersecurity 4:12 - Shifting roles in cybersecurity to ev...
Mon, 05 Jun 2023 - 391 - The current state of crypto crime | Guest Lili Infante
CAT Labs CEO and founder Lili Infante worked as a special agent for the U.S. Department of Justice for 10 years specializing in cryptocurrency’s use in dark web investigations. Infante gives us the insider’s view of dark web investigations, why it’s so difficult to prosecute dark web actors when anonymity extends up and down the hierarchy, the current state of dark web markets, and the rise of state-sponsored crypto crime organizations like North Korea’s Lazarus Group. Plus, Infante gives you...
Mon, 22 May 2023 - 390 - Is CompTIA’s Cloud+ certification right for you? | Cyber Work Hacks
James Stanger, chief technology evangelist at CompTIA, discusses CompTIA's Cloud+ certification and why security professionals must consider adding it to the certification toolbox.0:00 - CompTIA Cloud+ certification 1:06 - Benefits of Cloud+3:24 - Cloud+ is vendor agnostic6:27 - Preparing for Cloud+8:43 - Cloud+'s future 11:18 - Good Cloud+ training 12:50 - How to study for Cloud+14:26 - OutroAbout InfosecInfosec’s mission is to put people at the center of cybersecurity...
Thu, 11 May 2023 - 389 - Reframing cybersecurity automation and its uses | Guest Leonid Belkind
Leonid Belkind is the chief technology officer (CTO) and co-founder of Torq, a no-code security automation platform. After asking him buckets of questions about the day-to-day work of a CTO in the tech field, we get into a fascinating discussion of all the ways that automation will change the work of cybersecurity, allowing professionals at all stages to work on higher-order problems. At the same time, the great automated data sifters do high-speed data analysis beyond our cognition. This one...
Mon, 01 May 2023 - 388 - The fundamentals of GitHub | Cyber Work Hacks
Jacob DePriest, GitHub’s VP, deputy chief security officer, talks about what GitHub is, how it works and what to do with it once you start to understand it. 0:00 - GitHub fundamentals1:30 - What is GitHub?2:11 - How did GitHub get so popular?3:15 - Where to start at GitHub4:15 - How to search GitHub5:52 - Evaluating GitHub materials7:47 - GitHub shortcuts for security professionals9:03 - OutroAbout InfosecInfosec’s mission is to put people at the center of cybersecurity. We help IT...
Thu, 27 Apr 2023 - 387 - Changing careers to cybersecurity | Guest Dara Gibson
Dara Gibson of Optiv and the Phoenix, Arizona, branch of Women in Cybersecurity has developed and managed cybersecurity services for five years. After years of being an educator, Gibson felt the pull of cybersecurity and tech. For those of you who are thinking of making a later-in-life, life-changing career shift into cybersecurity and feeling a bit overwhelmed, do not miss this episode! Gibson strikes the perfect balance between pushing you out of the nest without pushing you off a cliff! – ...
Mon, 24 Apr 2023 - 386 - Women Impact Tech’s work in the cybersecurity industry | Guest Paula Bratcher Ratliff
Paula Bratcher Ratliff owns and is president of Women Impact Tech, an organization committed to bringing women and diverse professionals into cybersecurity. They have clear goals, committed members and proven results.– Get your FREE cybersecurity training resources: https://www.infosecinstitute.com/free– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast0:00 - Women Impact Tech3:11 - Paula's career8:30 - Entering cybersecurity from different ...
Mon, 17 Apr 2023 - 385 - Optimizing your digital forensics profile while job searching | Cyber Work Hacks
Amber Schroader, CEO of Paraben, gives her best pieces of advice for the work of searching for a job in the field of digital forensics.0:00 - Get a job in digital forensics1:30 - Put your best foot forward on social media3:00 - Updating your digital forensics resume4:36 - Digital forensics interview tips5:23 - Let your personality shine6:14 - Success in your digital forensics job9:30 - Find more from Amber SchroaderAbout InfosecInfosec’s mission is to put people at the center of cybersecurity...
Thu, 13 Apr 2023 - 384 - Moving from “shift left” to “born left” | Guest David Melamed
David Melamed of Jit brings us a new wrinkle in our ongoing series of developer security topics! Melamed says we should move beyond “shift left,” shifting the security earlier in the CI/CD pipeline, into “Born Left,” a platform in which security tools are in the hands of developers at the point of creation. Melamed talks about his early programming experiences, his Ph.D. in Bioinformatics, and the delineation of responsibilities between developers and the DevSec team. All that and a bit of CT...
Mon, 03 Apr 2023 - 383 - Set up your cybersecurity practice lab | Cyber Work Hacks
Paul Giorgi of XM Cyber, a man who told me his favorite way to learn new skills is to break things and put them back together, walked me through the basics of setting up your own cybersecurity practice lab at home for not too much money. But watch out because he says that once you start, your excitement about hands-on practice and buying old servers on eBay can get overwhelming! 0:00 - Build your own cybersecurity practice lab1:30 - How to practice with a home cybersecurity lab5:48 - Res...
Thu, 30 Mar 2023 - 382 - Overcoming burnout in cybersecurity and VMware’s XDR announcement | Guest Karen Worstell
Karen Worstell is a 25-year veteran of the tech, IT and security space; she’s a senior cybersecurity strategist at VMware and a chaplain. This episode goes to many fascinating places, from her days learning coding on a TRS-80 computer, how her extremely visual and right-brained approach to learning has influenced her security journey, her experiences as a woman in the industry and how her work as a chaplain brought her back from a security industry hiatus to help people suffering chronically ...
Mon, 27 Mar 2023 - 381 - Understanding developer behavior can augment DevSecOps | Guest Nir Valtman
Today on Cyber Work, Nir Valtman, CEO and co-founder of Arnica, discusses developer behavior-based security. In short, there are lots of ways that backdoors or vulnerabilities can make their way into developer code. One door we can close on these intrusions is implementing processes that detect behavior anomalies in developers. Think of your bank monitoring for unusual purchases calling you to ask whether you really just spent $300 on a bobblehead from The Last of Us that’s shipping from Braz...
Mon, 20 Mar 2023 - 380 - Cybersecurity team cohesion in remote settings | Cyber Work Hacks
These days, keeping your security, IT or research team close now that more of us than ever work remotely is a challenge. How do you keep team bonds strong when your main interaction path is your tiny little colleagues trapped in little squares on a computer monitor? Susan Morrow has been managing a remote team for almost two decades. She dispenses wisdom on coordinating schedules in multiple time zones, ensuring everyone’s moving toward the same goal and helping team members of all work style...
Thu, 16 Mar 2023 - 379 - CompTIA Data+ certification: Is it a good fit for your career? | Guest James Stanger
James Stanger, chief technology evangelist at CompTIA, walks through their new Data+ certification. Infosec is proud to provide bootcamp and course training for a range of CompTIA certifications, and James helpfully breaks down the basics of data analytics, the types of learning you’ll need to engage in to pass and why security professionals have a lot more data analyst in their job role than they might think. All that, and a bit of geeking out about the humanities.0:00 - CompTIA Data+3:40 - ...
Mon, 13 Mar 2023 - 378 - Sorry, Terminator fans, ChatGPT is not going to become Skynet | Guest Jack Nichelson
Today on Cyber Work, my guest, Jack Nichelson, wants you to know something. AI is coming! But it’s not SkyNet; it’s not the rise of the machines. Whatever unnerving story you’ve read in the past few weeks about ChatGPT and what it will or won’t do to humanity, I’d like you to join us here and get a much fuller picture of AI as a tool and our role in shaping and building it. 0:00 - ChatGPT AI2:50 - How Jack Nichelson got into cybersecurity4:45 - Types of IT cybersecurity roles6:57 - AI versus ...
Mon, 06 Mar 2023 - 377 - Breaking down digital forensics certifications | Cyber Work Hacks
Amber Schroader, CEO of Paraben, explains the different ways to pursue a career in digital forensics, like pursuing a college degree or studying toward a certification. And if a certification, which one will take you on the path you want? Schroader also talks about what doors can open for you, where to get started, and which upper-level certs you should work toward so you’re prepared for the job you want.0:00 - Breaking down digital forensics certifications 1:08 - Different ways to learn...
Thu, 02 Mar 2023 - 376 - A deep dive into GitHub's security strategy | Guest Jacob DePriest
Jacob DePriest, the VP and deputy chief security Officer at GitHub, talks about development security. In 2021, GitHub significantly ramped up its security department. DePriest told me all about the commitment to security and how you can move your organization toward a developer-focused security team. Whether you’re just hearing about GitHub now or you’re using GitHub from the moment your work day starts, you’ll want to check out this episode.0:00 - GitHub's cybersecurity strategy2:30 - How di...
Mon, 27 Feb 2023 - 375 - Goodbye (ISC)² CAP, hello new CGRC certification | Cyber Work Hacks
Learn more about the (ISC)² CGRC certification: https://resources.infosecinstitute.com/overview/cgrc/Enroll in a CGRC boot camp: https://www.infosecinstitute.com/courses/isc%C2%B2-cgrc-training-boot-camp/Infosec instructor and returning guest Leighton Johnson talks about the recent (ISC)² CAP certification change: the Certified Authorization Professional (CAP) is now Certified in Governance, Risk and Compliance (CGRC). Why are they changing the name of the CAP certification? Is the CAP conten...
Thu, 16 Feb 2023 - 374 - Asset visibility and vulnerability detection | Guest Yossi Appleboum
Yossi Appleboum, CEO of Sepio, talks about Cybersecurity and Infrastructure Security Agency (CISA)’s operational directive for non-military federal agencies to adopt a strict set of asset visibility and vulnerability detection system starting as early as April of 2023. Yossi discusses this directive, saying that it takes FCEB agencies out of the cybersecurity stone ages and into the future. Can it work in such a short time frame? Yossi has thoughts! 0:00 - Asset visibility and vulnerability d...
Mon, 13 Feb 2023 - 373 - How to set up a digital forensics lab | Cyber Work Hacks
Infosec Skills author and Paraben founder and CEO Amber Schroader talks about how to quickly and inexpensively set up your own home digital forensics lab. 0:00 - Creating your digital forensics lab1:00 - Benefits of your own digital forensics lab1:40 - Space needed for digital forensics lab2:30 - Essential hardware needed for a forensics lab5:01 - Important forensic lab upgrades5:42 - Running your forensics lab6:51 - Forensic lab projects7:35 - Getting into forensic labs8:04 - OutroAbout...
Thu, 02 Feb 2023 - 372 - Inside the Pentagon's new zero-trust policy | Guest Steve Judd
Venafi solutions architect Steve Judd talks about the recent directive from the Pentagon that a zero-trust policy be implemented at the Department of Defense in the next four years. Is this a workable deadline? What are the hurdles to be jumped? Judd also tells me what a solutions architect does and why he thinks it’s the most fun job in cybersecurity. – Get your FREE cybersecurity training resources: https://www.infosecinstitute.com/free– View Cyber Work Podcast transcripts and additional ep...
Mon, 30 Jan 2023 - 371 - Biggest cybercrime trends heading into 2023 | Guest Paul Giorgi
Paul Giorgi of XM Cyber helps us wrap up 2022 by discussing some of the most unusual and complex attack paths he and XM have seen in the past year. We discuss some of the most common breaches and methods, as well as several attack paths that are the very definition of “taking the scenic route,” which is, of course, why they worked so long. Also, tune in for some great advice about getting involved in risk management and access management.– Get your FREE cybersecurity training resources: https...
Mon, 23 Jan 2023
Podcasts similaires à Cyber Work
- Global News Podcast BBC World Service
- El Partidazo de COPE COPE
- Herrera en COPE COPE
- Tiempo de Juego COPE
- The Dan Bongino Show Cumulus Podcast Network | Dan Bongino
- Es la Mañana de Federico esRadio
- La Noche de Dieter esRadio
- Hondelatte Raconte - Christophe Hondelatte Europe 1
- Affaires sensibles France Inter
- La rosa de los vientos OndaCero
- Más de uno OndaCero
- La Zanzara Radio 24
- Les Grosses Têtes RTL
- L'Heure Du Crime RTL
- El Larguero SER Podcast
- Nadie Sabe Nada SER Podcast
- SER Historia SER Podcast
- Todo Concostrina SER Podcast
- 安住紳一郎の日曜天国 TBS RADIO
- TED Talks Daily TED
- The Tucker Carlson Show Tucker Carlson Network
- 辛坊治郎 ズーム そこまで言うか! ニッポン放送
- 飯田浩司のOK! Cozy up! Podcast ニッポン放送
- 武田鉄矢・今朝の三枚おろし 文化放送PodcastQR