There is “no one way” to start and stay in the field of cyber security. Whether you are involved from the military, law enforcement, consulting, or IT services, it doesn’t matter. I have had countless discussions for years with other professionals online, at conferences, or over drinks, which have changed the way I think about cyber security. That is where this podcast comes in. What if I can capture those moments and frank discussions? I want to share the stories from other cyber security leaders and influencers so everyone can learn from their respective journeys and challenges. Why did they take the path they did? Who were their mentors? How did they tackle some of their biggest career challenges? By hearing how the industry leaders and influencers got to where they are and how they overcame some of the problems they faced, I hope to shed light on the path for other professionals. I will discover what motivates them, explore their journey in cyber security, and discuss where they think the industry is going.
#102 – John Ford:
John Ford is the Cybersecurity Strategist at https://www.ironnet.com/ (IronNet) and is an information security veteran with over twenty years in a wide variety of roles. Prior to IronNet, John was CISO for ConnectWise, the global leader in providing software solutions for Managed Services Providers. In this role, he was accountable for customer-facing security activities, product security, and served as an advisor to the CEO and leadership team.
Before joining IronNet, John founded Sienna Group, a firm dedicated to providing data protection solutions to enterprise organizations, and has held executive roles in the healthcare industry.
In this episode, we discuss healthcare security, compliance versus security, HIPAA regulation and privacy, intellectual property protection, real-time information sharing, ransomware in hospitals, recommendations for new CISOs, and so much more!
Where you can find John:
https://www.ironnet.com/blog (IronNet Blog)
#101 - Brandon Hoffman: Align Security To Business Outcomes
https://www.linkedin.com/in/bshoffman/ (Brandon Hoffman) is the CISO and Head of Security Strategy at https://netenrich.com/blog/ (Netenrich). Brandon is an admired security executive responsible for Netenrich’s technical sales and security strategy for both the company and its customers. Most recently, he oversaw solution architecture for https://public.intel471.com/ (Intel 471)’s dark web threat intelligence business.
As former CTO at https://www.firemon.com/products/lumeta/ (Lumeta Corporation) and https://www.redseal.net/ (RedSeal Networks), Brandon led technical and field development in network security, vulnerability, and risk. He’s also held key practitioner roles focused in security architecture, penetration testing, networking, and data center operations. Brandon holds an MS degree from Northwestern University and a BS degree from the University of Illinois at Chicago.
In this episode, we discuss adapting to COVID, accidentally getting into security, designing the intelligent SOC, a risk-based approach to information security, measuring cybersecurity outcomes, cyber insurance, risk management frameworks, and so much more!
Where you can find Brandon:
https://netenrich.com/blog/ (Netenrich Blog)
#100 - Douglas Brush: Cybersecurity Is Phycological
This is a special episode where we celebrate the 100th episode of the Cyber Security Interviews podcast! In this episode, I have the mic turned back on me by a past guest, great friend, and an amazing asset to the community, https://cybersecurityinterviews.com/episodes/078-nadean-tanner-boil-it-down/ (Nadean Tanner). She crowdsourced some questions, but head plenty of her own as well as we did this Ask Me Anything special episode.
Douglas Brush is an information security executive with over 26 years of entrepreneurship and professional technology experience. He is a globally recognized expert in cybersecurity, incident response, digital forensics, and information governance. In addition to serving as a CISO and leading enterprise security assessments, Douglas has conducted hundreds of investigations involving hacking, data breaches, trade secret theft, employee malfeasance, and various other legal and compliance issues. He also serves as a federally court-appointed Special Master and neutral expert in high profile litigation matters involving privacy, security, and eDiscovery.
Currently, he is at Splunk where he works with Fortune 500 organizations to improve their security operations and reduce business risk from cyber-attacks.
He is also the founder and host of https://cybersecurityinterviews.com/ (Cyber Security Interviews), a popular information security podcast.
In this episode, we discuss why I started the podcast, impostor syndrome, guests I would like to have on the show, my focus on mental health and diversity, important soft skills, talents versus skills, what's in my fridge, and so much more!
#099 - Fredrick Lee (Flee): Security Should Be Lovable
https://www.linkedin.com/in/fredrickdlee/ (Fredrick "Flee" Lee) is the Chief Security Officer at https://gusto.com/ (Gusto), where he leads information and physical security strategies including consumer protection, compliance, governance, and risk.
Before Gusto, Lee spent more than 15 years leading global information security and privacy efforts at large financial services companies and technology startups, most recently as Square's Head of Information Security. He previously held senior security and privacy roles at Bank of America, NetSuite, and Twilio. Lee was born and raised in Mississippi and holds a bachelor's degree in computer engineering from the University of Oklahoma.
In this episode, we discuss COVID response, three-dimensional communications, security as an enabler, integrating security and engineering teams, the information security skills shortage, diversity and inclusion in cybersecurity, his early mentors, and so much more.
Where you can find Flee:
#098 - Andrea Roberson:
https://www.linkedin.com/in/andrearoberson/ (Andrea Roberson) is a product manager at Centrify Corporation, where she directs the product roadmap for Centrify Privileged Access Service. She was previously a technical support engineer at the company for almost two years and has held several engineering and support roles during her career including at Google and Apple.
She has a Bachelor of Science degree in Computer Science from Spelman College, where she was a member of the https://nsbe.org/home.aspx (National Society of Black Engineers), the https://www.acm.org/ (Association for Computing Machinery), and https://exhibits.stanford.edu/news-service/catalog/ky830df0026 (SpelBots).
In this episode, we discuss working with product teams remotely, moving from IT to information security, securing remote access, diversity and inclusion in cybersecurity, mentoring others, self-care and mental health, new threats due to COVID, and so much more.
Where you can find Andrea:
https://www.centrify.com/blog/author/andrea-roberson/ (Centrify Blog)
#097 - HD Moore:
https://www.linkedin.com/in/hdmoore/ (HD Moore) is the founder and CEO of https://www.rumble.run/ (Rumble Network Discovery); a platform designed to make asset inventory quick and easy by combining active scanning with innovative research.
Prior to starting Rumble, HD was best known as the founder of the https://www.metasploit.com/ (Metasploit Project), the foremost open-source exploit development framework, and continues to be a prolific researcher and occasional speaker at security events.
In this episode, we discuss starting with BBSs back in the day, starting the Metasploit project, https://www.rapid7.com/research/project-sonar/ (project Sonar), his development of Rumble Networks, securing home networks, fingerprinting networks, jump boxes in IoT networks, and so much more.
Where you can find HD: