Getting Into Infosec

Ayman Elsawah
  • 4.2 (44)
  • CAREERS

Interviews with people who have transitioned and got jobs in #infosec and #cybersecurity so you can learn and be inspired from their experience. There is no linear path into the field of Information Security, so the hope is that you will resonate with at least one of the guests. Some of my guests were teachers, paralegals, librarians, military vets, developers, and IT help desk techs (to name a few) before transitioning. Also featuring "spoof" ads poking fun at the industry.

  1. DEFCON 2023

    08/03/2023 · BONUS

    DEFCON 2023

    Hey folks, I'll be at DEF CON in Vegas this year! Would love to see you all there! Jack's Parties: https://twitter.com/JackRhysider/status/1686785376327987200Checkout Miscreants at the Vendor Area: https://www.miscreants.com/ yFDrTl54ZSu3KAmLWbmi Mentioned in this episode: Stay In Touch

    6 min
  2. Rana Khalil - From Cryptography to Pentester!

    03/11/2022

    Rana Khalil - From Cryptography to Pentester!

    Journey into Cybersecurity and OSCP Certification with Rana Khalil This episode features Rana Khalil, a Senior Cybersecurity Assessment Analyst with a rich background in pen-testing, especially in the financial sector. Rana shares her non-traditional entry into technology, starting with a dislike for her first laptop and phone, transitioning from biochemistry to a math degree, and eventually finding a passion in computer science, leading her to cryptography and cybersecurity. Her academic journey includes significant work in cryptography, under the tutelage of Carlisle Adams, and a master’s project on web application vulnerability scanners. Rana discusses her motivation and relentless pursuit of the OSCP certification, highlighting the importance of hands-on experience, teaching, and documenting the learning process through write-ups. She also conveys the value of previous experience in related fields, the significance of specializing and pacing in learning, and shares insights into her career progression, including valuable advice for people aspiring to enter the cybersecurity field. 00:00 Introduction and Guest Background 01:47 Rana's Journey into Cybersecurity 02:45 Rana's Early Interest in Mathematics and Cryptography 05:47 Transition into Computer Science and Web Security 10:52 Master's Research on Web Application Vulnerability Scanners 13:02 First Security Job and the Impact of Public Speaking 15:11 Journey to the OSCP Certification 17:36 The Value of Self-Study and Accountability 18:53 Reflections on the OSCP Experience 20:59 Understanding the OCP Exam 21:13 The Importance of Lab Time 22:18 The Value of Documenting Your Journey 22:49 Introduction to the OSWE Certification 25:07 The Role of Experience in Security 25:16 The Life of a Security Professional 25:25 The Importance of Specialization in Security 26:24 The Value of Previous Experience in Security 29:55 The Challenges and Rewards of Pen Testing 30:43 The Balance of Work and Personal Time in Security 34:58 The Importance of Focusing on One Area in Security 37:07 The Importance of Understanding Source Code 38:11 Final Thoughts and Advice Thank you for listening! Mentioned in this episode: Stay In Touch

    40 min
  3. Norman Weekes— From Contractor To Security Ops Analyst

    02/25/2022

    Norman Weekes— From Contractor To Security Ops Analyst

    Norman Weekes is on the Security Operations Team at Salesforce. He is in charge of scanning their infrastructure and ensuring that everything is set up and operating properly. Norman already spent almost a year in the information security world. This is also his first official full-time security job. After going through different job contracts, he believes that if everything's shut down early, there's no reason not to just get in a good routine and go after whatever certification or whatever job you want. This episode will undoubtedly inspire and assist job contractors who are considering a career in the information security world. LINKS Linkedin:  https://www.linkedin.com/in/normanjr/ Security and Privacy Framework: iapp.org Full Show Notes: https://www.gettingintoinfosec.com/ Mentioned in this episode: Stay In Touch

    34 min
  4. Niru Ragupathy - From Almost Biotech to QA to Google Security Lead

    08/05/2021

    Niru Ragupathy - From Almost Biotech to QA to Google Security Lead

    Niru Ragupathy is a Security Engineer at Google and works as the Offensive Security Lead and manages part of the Offensive Security Team. She is currently the Tech Lead Manager. Niru sees managing as a challenging, interesting ride yet undervalued skill. She also considers it rewarding although it demands the investment of both time and effort.  She believes that it is important to start leading and take things slowly but not take the decision lightly. Having planned on taking Biotech in College but being persuaded by her parents, she was thrust to take on Computer Sciences since it has greater demands in society. In the face of her struggles, Niru has found her sense of belongingness in security management. This episode will surely encourage and benefit Engineers who struggle in transitioning on management.  LINKS Linkedin: linkedin.com/in/niru-ragupathy-99078233 Mentioned in this episode: Stay In Touch

    45 min
  5. John Gates - From Car Mechanic to Lead IT Security Analyst

    06/16/2021

    John Gates - From Car Mechanic to Lead IT Security Analyst

    John Gates is a Lead IT Security Operations Analyst for a global food brand. John has always liked to know how do things work - and that has proven to be a beneficial trait - from his first job as a car mechanic to IT consultancy and education to his current role. He’s also an advisor and former board member at OpsecEdu, an organization educating technologists in state, local, and education agencies on security best practices.  LINKS Linkedin: https://www.linkedin.com/in/johngates/ OpsecEdu: https://www.opsecedu.com/ Intro Music: https://trash80.com/#/content/133/weeklybeats-2012-week5   Full Show Notes: https://www.gettingintoinfosec.com/john-gates-from-car-mechanic-to-lead-security-analyst/ See omnystudio.com/listener for privacy information. Mentioned in this episode: Stay In Touch

    37 min
  6. Samantha Cowan - From National Parks Service To Head Of Compliance

    06/01/2021

    Samantha Cowan - From National Parks Service To Head Of Compliance

    Samantha Cowan is the Head of Compliance at HackerOne. She's the former Director of Compliance at OneLogin and former Security Engineer at CoverHound, Cyber Policy, and Zenefits. Sam initially perceived Infosec as an "unhappy job", but later found herself taking her MBA and paving her way into the security industry. Despite having her master's degree, she was not an exemption to facing rejections when applying for cybersecurity. Her episode is mind-blowing as she shares how you can break into boundaries by being confident in yourself and by not compromising to being seen as a token hire. LINKS Linkedin: https://www.linkedin.com/in/samanthacowan/ Intro Music: https://trash80.com/#/content/133/weeklybeats-2012-week5 Security and Privacy Framework: iapp.org ---------------------------------------------- Follow @coffeewithayman on Twitter for more For more information check out: gettingintoinfosec.com See omnystudio.com/listener for privacy information. Mentioned in this episode: Stay In Touch

    40 min
  7. Betsy Bevilacqua - From Almost Lawyer to CISO and Security Leader

    03/01/2021

    Betsy Bevilacqua - From Almost Lawyer to CISO and Security Leader

    Betsy Bevilacqua is the current VP of Information Security at Chainalysis. Initially, she had her mind set on law school until she did a self-audit and realized that she enjoyed computers and tech much more. Her journey into infosec led her to move from Kenya to the US to obtain a degree in Security and explore various companies involved in academia, food and facilities, healthcare, telephone communications, and finance to more traditional tech. Her interview is full of advice for those looking to break in and those already in infosec.Computer Links, Detailed Show Notes, and Transcript: https://gettingintoinfosec.com/betsy See omnystudio.com/listener for privacy information. Mentioned in this episode: Stay In Touch

    41 min
  8. Dr. Eric Cole - Accidental CIA Hacker To Fortune 500 Security Advisory To Entrepreneur

    01/11/2021

    Dr. Eric Cole - Accidental CIA Hacker To Fortune 500 Security Advisory To Entrepreneur

    Dr. Eric Cole is an accomplished cybersecurity hacker and executive advisor. His career has been a mix of sixth-sense chance encounters and wisdom/foresight of the future. His uncanny ability to see the opportunity in cybersecurity combined with the wisdom to listen to those smarter than him is why he is where he is today. His interview is chock full of poignant advice and tips. Dr. Eric Cole also has a creative side to him: he's a musician. He was a French horn player before and now, he's a drummer. He's known as the Tommy Lee of Cybersecurity. Eric Cole's Quick List of Advice Always be respectful, Don't be an A**Hole to other people… but don't give a crap what other people say or think because we're unique and different. If you're an entrepreneur in cybersecurity, they're not gonna get ya. Listen to people that are smarter than you and have made the mistakes before you make them. Life will force you to repeat lessons until you learn them. The biggest gap is in the monitoring, detection, and analyst side. Quotes "It's all about looking at calculated risk, understanding [the] pros and cons, and taking chances." "You've done the same thing six times in a row, and it doesn't work. What makes you think if you do it a seventh time [that] it's actually going to work?" "Try different things." "Have advisory board members for your life." "If the best professionals in the world have coaches, why shouldn't we?" "If people are not listening to your advice, 99% of the time, it's because you didn't answer the right question." "Smart people know the right answer. Brilliant people ask the right question." "Good cybersecurity people solve problems. Great cybersecurity people solve the right problems." "Don't overlook the obvious." "It's never a lack of resources, but a lack of resourcefulness." Getting Into Infosec Other episodes, transcripts, a career guide to Getting Into Infosec:https://gettingintoinfosec.com/ See omnystudio.com/listener for privacy information. Mentioned in this episode: Stay In Touch

    48 min
See All (62)

Trailer

4.2
out of 5
44 Ratings

About

Interviews with people who have transitioned and got jobs in #infosec and #cybersecurity so you can learn and be inspired from their experience. There is no linear path into the field of Information Security, so the hope is that you will resonate with at least one of the guests. Some of my guests were teachers, paralegals, librarians, military vets, developers, and IT help desk techs (to name a few) before transitioning. Also featuring "spoof" ads poking fun at the industry.

Information

  • Creator
    Ayman Elsawah
  • Years Active
    2018 - 2023
  • Episodes
    62
  • Rating
    Clean
  • Copyright
    © Ayman Elsawah (@coffeewithayman)
  • Show Website
    Getting Into Infosec