The OPSEC Podcast

Grey Dynamics
  • 0.0 (0)
  • HOW TO
  • UPDATED FORTNIGHTLY

Welcome to The OPSEC Podcast - where operational security meets everyday life. I'm your host, Allen P. - former Navy aircrew, defense contractor, and cybersecurity professional with over 15 years of international intelligence operations experience. From the back of military aircraft to Intelligence Community-contracted programs, from Cyber Command to corporate security - I've seen what's possible when privacy and security break down. But here's the thing: nobody's coming to save you. The companies won't fix this for you. The government won't protect your privacy. Your security is your responsibility. Every two weeks, we'll dive deep into the world of operational security - not just as a professional practice, but as a way of life. We'll cover signature reduction, security operations, privacy strategies, and the OPSEC mindset that can protect you whether you're an intelligence professional, a corporate analyst, or someone who simply values their privacy and security. From digital tools and daily carry items to situational awareness and travel security - this is practical, actionable intelligence you can use today. Because in a world where your data is currency and your privacy is under constant attack, the best defense is being your own first line of security. Strong body, strong mind. Be the leader of your tribe. Welcome to The OPSEC Podcast. Hosted on Acast. See acast.com/privacy for more information.

  1. COVERT Protocol Action #8: Audit and Clean Your Online Exposure

    18 HR AGO

    COVERT Protocol Action #8: Audit and Clean Your Online Exposure

    Systematically reduce your publicly visible personal information by identifying where your data appears online (search engines, data brokers, people-search sites) and using services to request removal or opt-out, so third parties and automated systems can’t easily collect, sell, or expose your PII. This step helps protect against spam, identity theft, unsolicited marketing, and malicious activity such as doxxing. Steps to scrubbing your online footprint: 1. Scan for exposure: Search major search engines (e.g., Google) for your name, email, phone number, and other PII to see what’s publicly visible. Note where your data appears. 2. Use a removal service: Sign up for a data removal service to automate opt-out requests to data brokers and people-search sites that hold or publish your personal information. 3. Submit opt-out requests: Depending on the service, you may need to confirm the data to remove or authorize the provider to act on your behalf. 4. Verify removal: After the service processes requests, check periodically (every few months) to confirm your data has been removed or suppressed, and resubmit if necessary. 5. Monitor ongoing exposure: Some services continually monitor your footprint and renew removal requests as new records appear. 6. Repeat periodically: Online exposure evolves over time; schedule regular scrubs to maintain a minimised digital footprint. Recommended tools: Pentester.com: primarily a vulnerability and digital footprint scanner that helps discover compromised credentials or exposed data, and can be used to identify where your personal information might be leaking online. DeleteMe a long-established privacy service that contacts data brokers and people-search sites on your behalf to remove your personal information; it covers hundreds of brokers with ongoing updates. Incogni: a comprehensive personal information removal service that scans numerous data broker sites and submits removal requests, often including coverage of many niche or lesser-known sources. Hosted on Acast. See acast.com/privacy for more information.

    8 min
  2. COVERT Protocol Action #7: Harden your Devices

    20 APR

    COVERT Protocol Action #7: Harden your Devices

    Harden your Devices: strengthen the security and privacy of your phones, tablets, laptops, and desktop computers by reducing their attack surface, protecting stored data, and blocking common threats. This includes encrypting data at rest, securing network traffic, tightening web browsing, and using malware protection. Hardened devices are much safer if lost, stolen, or actively targeted. Steps to Harden Your Devices: 1. Enable full disk encryption (FDE): Turn on encryption for your device’s storage so that data is unreadable without your passcode, even if the device is lost or stolen. Most modern OSes allow this (e.g., BitLocker on Windows, FileVault on macOS). 2. Use a VPN connection: Install and configure a reputable Virtual Private Network (VPN) on each device. This encrypts your network traffic when you are on untrusted Wi-Fi or public networks, making it harder for attackers to intercept your communications. 3. Harden your browser: Choose a browser that respects privacy, or harden Firefox yourself. Enforce HTTPS for secure connections.Install privacy/security extensions (e.g., script blockers, ad blockers) to reduce tracking and malicious content. Regularly clear cookies and site data. This reduces exposure to trackers and exploitation. 4. Harden you device: Keep software updated. Install antivirus/anti-malware software. Remove unnecessary software. Use least-privilege accounts. Review privacy/security settings. Back up your data Recommended tools: Privacy Browsers: Brave, LibreWolf, DuckDuckGo Private Browser Browser Extensions: NoScript, uBlock Origin, Firefox Multi Account Containers VPN Service: Proton, Mulvad, NordVPN Antivirus Software: Bitdefender, Avira, Malwarebytes Hosted on Acast. See acast.com/privacy for more information.

    14 min
  3. COVERT Protocol Action #6: Audit Your Children Social Media Accounts

    30 MAR

    COVERT Protocol Action #6: Audit Your Children Social Media Accounts

    Throughout the latest episode, we have discussed operational security in professional settings. Today, we are bringing Gabriel Fanelli, director of training at Grey Dynamics and a former United States SIGINT operator with a Bronze Star commendation, to talk about something more than hardening your devices and obfuscating your networks:  Family Security First of all, you are not your kids' best friends; you are their protector and last line of defence against all the threat actors lurking in the dark corners of the Internet. Having said that, here is what you will learn in the episode. The Types of Threats Present in Video Games and Online ForumsHow To Explain Family Security Procedures to Your SpouseHow to Talk To Your Kids About Grooming and ExtortionSocial Media Rules to Have Around the HouseMaintaining Your Kid's Security While He Plays Online GamesFollowers Vetting Processes and Second Device Auditing  Your children and your family's security and privacy are your responsibility. They don't have the ability or capability to do it themselves, and you already know what's out there. Harden Up.  #Opsec #Security #Family #Home #Veteran Hosted on Acast. See acast.com/privacy for more information.

    36 min
  4. COVERT Protocol Action #5: Audit Your Social Media Accounts

    9 MAR

    COVERT Protocol Action #5: Audit Your Social Media Accounts

    Audit your social-media exposure, review all your public or private social-media accounts and online profiles; check what personal information (photos, posts, bio data, connections) is visible; then remove, reduce, or restrict exposure of anything risky or unnecessary. Steps to audit your social media exposure: 1. Make a full list of every social-media profile or public/social online account you’ve ever created (active or dormant). Include mainstream platforms and smaller/less-used ones. 2. Visit each account and carefully examine what can be seen publicly: profile pictures, bio information (name, location, birthdate, contact info), past posts, comments, photos, tags, friend lists. 3. Adjust privacy and visibility settings on each account so that only trusted contacts (friends/followers) can see sensitive content. Delete, lock down or hide: personal details, contact info, location data, old posts. 4. Remove or deactivate any accounts you no longer use, or that you don’t want publicly visible. Dormant accounts may still leak personal data. 5. Scan for “people-search” or public-record sites listing you (or old usernames/email) check what information about you is exposed outside social media. 6. Periodically repeat the audit (every 3–6 months) privacy settings and platform defaults can change; content from connections (tags, shares) or old posts may re-expose you. Hosted on Acast. See acast.com/privacy for more information.

    8 min
  5. COVERT Protocol Action #4: Harden your Communications and Services

    23 FEB

    COVERT Protocol Action #4: Harden your Communications and Services

    Strengthen the security and privacy of your digital communications (messaging, email, cloud data) so that only intended recipients can access them and so that third parties cannot intercept or read your messages or files (including service providers, attackers, and passive observers). This means switching to encrypted channels, reducing unwanted exposure, tightening service settings, and avoiding insecure or legacy protocols. End-to-end encryption ensures message content stays private from the sender to the recipient, and platform hardening reduces the overall attack surface by disabling unnecessary or insecure features. Steps to Harden Your Communications and Services: Switch to encrypted messaging platforms: Replace default SMS/text or unencrypted chat apps with services that provide end-to-end encryption (E2EE) so that only you and the recipient can read your messages.Use secure email services: Choose email providers with strong encryption by default (like Proton Mail or Tuta), and enable encryption features (PGP/automated E2EE) where possible to protect email contents in transit and at rest.Encrypt files before cloud storage: Use cloud services or tools that perform client-side encryption (zero-knowledge encryption) so data is encrypted before it leaves your device, and the provider can’t read it. Recommended Tools: Encrypted Messengers: apps like Signal, Wire, or Threema that use end-to-end encryption to protect messaging and calls from third-party access.Encrypted Email: providers like Proton Mail, Tuta, or Hushmail that support encryption of email content and attachments.Encrypted Cloud Storage: services that offer client-side encryption (e.g., Proton Drive, Sync.com, or tools that integrate local encryption before upload) to ensure your stored data remains private even from the cloud provider. Hosted on Acast. See acast.com/privacy for more information.

    7 min
  6. COVERT Protocol Action #3: Implement Multi-Factor Authentication whenever possible

    9 FEB

    COVERT Protocol Action #3: Implement Multi-Factor Authentication whenever possible

    Implement multi-factor authentication (MFA) on every account, using the strongest method available with a graduated approach: 1. Audit all important accounts (email, banking, cloud storage, social media, password manager) to check whether MFA is supported. 2. For each account, go to the security or login settings and enable MFA. Choose the strongest method the service supports. 3. If using an authenticator app or hardware key, save backup/recovery codes securely (in case you lose your phone or key). 4. For accounts using SMS/email 2FA consider upgrading to a stronger method when available, especially for sensitive accounts. 5. Test the MFA setup by logging out and logging back in to confirm that the second factor works as expected. Recommended Tools Authy: a widely used authenticator app that generates time-based codes for TOTP-based MFA. Proton Authenticator: privacy-focused app for generating MFA codes offline. YubiKey: a hardware security key providing FIDO2/WebAuthn authentication for the strongest protection. More At: https://opsecpodcast.com/ Hosted on Acast. See acast.com/privacy for more information.

    6 min
  7. COVERT Protocol Action #2: Audit and Secure Your Financial Accounts

    26 JAN

    COVERT Protocol Action #2: Audit and Secure Your Financial Accounts

    Your money is one of the most targeted assets you own, and one of the easiest to compromise if left unattended. Modern financial attacks start with reused passwords, exposed debit cards, unsecured networks, and excessive data leakage. In this episode of The OPSEC Podcast, we apply the full Covert Protocol framework — Control, Obfuscate, Verify, Encrypt, Reduce, Track — to financial security. From eliminating debit card exposure and deploying masked credit cards, to removing banking apps from mobile devices and enforcing transaction alerts, this is about tightening control and reducing attack surface. Audit every account. Limit access. Monitor relentlessly. Your privacy (and your money) are your responsibility. #OPSEC #CovertProtocol #FinancialSecurity #OperationalSecurity #PrivacyFirst #DigitalHygiene #ThreatReduction #CyberAwareness #PersonalSecurity #RiskManagement Hosted on Acast. See acast.com/privacy for more information.

    6 min
  8. COVERT Protocol Action #1: Implement a Password Manager

    12 JAN

    COVERT Protocol Action #1: Implement a Password Manager

    Allen Pace presents the Covert Protocol, a structured methodology that will combine through different episodes the OPSEC Podcast principles with the CIA Triad practices. By using these two frameworks in tandem, this process aims to equip everyday users (like you) with both the strategic mindset and the practical tools needed to increase security, reduce vulnerabilities, and enhance personal privacy in both the digital and physical realms. Action 1#: Implement a Password Manager Recommended tools: 1. Bitwarden: a popular, open-source password manager that supports syncing, autofill, passkeys, and cross-device use. 2. Proton Pass: a privacy-focused password manager with encryption and strong privacy posture. 3. KeePassXC: an offline/local password manager that stores the vault on your device for maximum control and minimal external dependencies. Steps to implement: 1. Pick a password manager tool (see Recommended tools below) and install it on your primary devices (computer, phone, tablet). Make sure it supports MFA for the vault itself for future hardening. 2. Create a strong master password/passphrase - this should be long, complex, and unique (don’t reuse it anywhere). 3. Begin adding your online account credentials to the vault. For each new account: generate a long random password via the manager, then save it in the vault. For existing accounts: replace weak or reused passwords with new vault-generated ones. 4. If using a cloud-based manager: set up syncing across devices so you have access on laptop, phone, etc. If using an offline/local manager: make regular encrypted backups of the vault (e.g. to an external drive or secure location). 5. From now on, use the vault’s auto-fill or copy/paste feature when logging in, rather than memorizing or reusing passwords elsewhere. #OPESCPodcast #CovertProtocol #CyberSec #Intelligence Hosted on Acast. See acast.com/privacy for more information.

    10 min
See All (18)

About

Welcome to The OPSEC Podcast - where operational security meets everyday life. I'm your host, Allen P. - former Navy aircrew, defense contractor, and cybersecurity professional with over 15 years of international intelligence operations experience. From the back of military aircraft to Intelligence Community-contracted programs, from Cyber Command to corporate security - I've seen what's possible when privacy and security break down. But here's the thing: nobody's coming to save you. The companies won't fix this for you. The government won't protect your privacy. Your security is your responsibility. Every two weeks, we'll dive deep into the world of operational security - not just as a professional practice, but as a way of life. We'll cover signature reduction, security operations, privacy strategies, and the OPSEC mindset that can protect you whether you're an intelligence professional, a corporate analyst, or someone who simply values their privacy and security. From digital tools and daily carry items to situational awareness and travel security - this is practical, actionable intelligence you can use today. Because in a world where your data is currency and your privacy is under constant attack, the best defense is being your own first line of security. Strong body, strong mind. Be the leader of your tribe. Welcome to The OPSEC Podcast. Hosted on Acast. See acast.com/privacy for more information.

Information

  • Creator
    Grey Dynamics
  • Years Active
    2025 - 2026
  • Episodes
    18
  • Rating
    Explicit
  • Copyright
    © Grey Dynamics
  • Show Website
    The OPSEC Podcast

You Might Also Like