Shows
Hacker Valley StudioHow to Hack your Career: Building a vCISO Business with Ayman ElsawahIn this episode, Ron Eddings gets a chance to speak with Ayman Elsawah, Founder of Cloud Security Labs, and have him share his experience with becoming a vCISO. Ayman will break down the vast business of security consulting and help you determine the best approach and next steps to catalyze you on your way to owning your time and your own business.
Impactful Moments:
00:00 - Welcome
01:14 - Introducing guest, Ayman Elsawah
07:08 - Types of vCISOs
09:55 - How to Become a vCISO
13:40 - Join Our Mastermind!
14:24...2024-04-2331 min
The Cyber Ranch PodcastIntegrating with the Business with Ayman ElsawahHowdy, y’all, and welcome to The Cyber Ranch Podcast! Our guest is Ayman Elsawah, who, like Allan these days, is a fractional CISO and founder of his own security company. He has done the fractional CISO thing many times. He has also been a professor, a security consultant, and a cloud-specific security consultant. His tenure includes eBay, NCC Group, Justworks and Masterclass. Ayman and Allan are talking about how cybersecurity teams can integrate themselves with the rest of the business.
So we talk about the role of the CISO in business enablement all the time. Allan argues, based o...2024-01-2435 min
The vCISO ChroniclesEpisode 41 Ayman Elsawah from Cloud Security Labs This is a public episode. If you’d like to discuss this with other subscribers or get access to bonus episodes, visit securityexpertmarketplace.substack.com/subscribe2023-12-1125 min
Audience 1stThe Role of a Fractional CISO and It’s Importance in B2B SaaSThere was a thirst of having security knowledge and expertise, but there was no way for people to access it.
They can Google their face off, that's fine.
But with security, there are a lot of nuances that are particular to each company.
And so you kind of need someone that has been there and can provide an expert opinion.
These founders, all they want to know is what should I do now and what should I do later?
Brutally honest insights from Ayman Elsawah, Fractional CISO and Founder of C...2023-09-0740 min
Getting Into InfosecDEFCON 2023Hey folks, I'll be at DEF CON in Vegas this year! Would love to see you all there!
Jack's Parties: https://twitter.com/JackRhysider/status/1686785376327987200
Checkout Miscreants at the Vendor Area: https://www.miscreants.com/
See omnystudio.com/listener for privacy information.2023-08-0305 min
Getting Into InfosecRana Khalil - From Cryptography to Pentester!Rana is a senior cybersecurity assessment analyst and has a really diverse professional background. She has spoken at many different conferences, including BSides, ISSA OS, Ottawa, and hack fest. She's recently received the OSCP, a coveted security certification out there in the community. She has definitely written up and done tons of write-ups on the OSCP and different hack-the-box write-ups.
This episode will unravel how Rana discovered and journeyed through cryptography and pen testing despite attaining a computer science degree.
LINKS:
Linkedin: https://www.linkedin.com/in/ranakhalil1/?originalSubdomain=ca
Intro Music: https://trash80.c...2022-03-1139 min
Getting Into InfosecNorman Weekes— From Contractor To Security Ops AnalystNorman Weekes is on the Security Operations Team at Salesforce. He is in charge of scanning their infrastructure and ensuring that everything is set up and operating properly.
Norman already spent almost a year in the information security world. This is also his first official full-time security job. After going through different job contracts, he believes that if everything's shut down early, there's no reason not to just get in a good routine and go after whatever certification or whatever job you want. This episode will undoubtedly inspire and assist job contractors who are considering a career i...2022-02-2533 min
Getting Into InfosecNiru Ragupathy - From Almost Biotech to QA to Google Security LeadNiru Ragupathy is a Security Engineer at Google and works as the Offensive Security Lead and manages part of the Offensive Security Team. She is currently the Tech Lead Manager. Niru sees managing as a challenging, interesting ride yet undervalued skill. She also considers it rewarding although it demands the investment of both time and effort.
She believes that it is important to start leading and take things slowly but not take the decision lightly. Having planned on taking Biotech in College but being persuaded by her parents, she was thrust to take on Computer Sciences since i...2021-08-0544 min
Getting Into InfosecJohn Gates - From Car Mechanic to Lead IT Security AnalystJohn Gates is a Lead IT Security Operations Analyst for a global food brand. John has always liked to know how do things work - and that has proven to be a beneficial trait - from his first job as a car mechanic to IT consultancy and education to his current role. He’s also an advisor and former board member at OpsecEdu, an organization educating technologists in state, local, and education agencies on security best practices.
LINKS
Linkedin: https://www.linkedin.com/in/johngates/
OpsecEdu: https://www.opsecedu.com/
Intro Musi...2021-06-1636 min
Getting Into InfosecSamantha Cowan - From National Parks Service To Head Of ComplianceSamantha Cowan is the Head of Compliance at HackerOne. She's the former Director of Compliance at OneLogin and former Security Engineer at CoverHound, Cyber Policy, and Zenefits. Sam initially perceived Infosec as an "unhappy job", but later found herself taking her MBA and paving her way into the security industry. Despite having her master's degree, she was not an exemption to facing rejections when applying for cybersecurity. Her episode is mind-blowing as she shares how you can break into boundaries by being confident in yourself and by not compromising to being seen as a token hire.
LINKS2021-06-0139 min
Getting Into InfosecBetsy Bevilacqua - From Almost Lawyer to CISO and Security LeaderBetsy Bevilacqua is the current VP of Information Security at Chainalysis. Initially, she had her mind set on law school until she did a self-audit and realized that she enjoyed computers and tech much more. Her journey into infosec led her to move from Kenya to the US to obtain a degree in Security and explore various companies involved in academia, food and facilities, healthcare, telephone communications, and finance to more traditional tech. Her interview is full of advice for those looking to break in and those already in infosec.Computer
Links, Detailed Show Notes, and Transcript:2021-03-0140 min
Getting Into InfosecDr. Eric Cole - Accidental CIA Hacker To Fortune 500 Security Advisory To EntrepreneurDr. Eric Cole is an accomplished cybersecurity hacker and executive advisor. His career has been a mix of sixth-sense chance encounters and wisdom/foresight of the future. His uncanny ability to see the opportunity in cybersecurity combined with the wisdom to listen to those smarter than him is why he is where he is today. His interview is chock full of poignant advice and tips.
Dr. Eric Cole also has a creative side to him: he's a musician. He was a French horn player before and now, he's a drummer. He's known as the Tommy Lee of...2021-01-1147 min
Getting Into InfosecLisa Jiggetts - From Navy Cook To Pentester To Non-Profit Founder!Lisa Jiggetts knew from an early age that she was going to be in tech and cyber. A navy veteran who started off as a cook, she always found herself gravitating towards technology. She is also the Founder & Board of Director of the Women’s Society of Cyberjutsu, a non-profit that is dedicated to increasing the opportunities and advancement for women in cybersecurity. Check out her journey into the cybersecurity field.
Notes
Originally a cook in the military, then migrated to information security.
Looked for opportunities to transition into information security by talking to people in an...2020-11-2440 min
Getting Into InfosecEric Strom - From Lawyer to FBI Cyber Division Unit ChiefEric Strom is the Unit Chief of the Mission Critical Engagement Unit, Cyber Division. In this role, Mr. Strom oversees the FBI Cyber Division’s private sector outreach efforts to the 16 critical infrastructure sectors, forging partnerships with companies in those sectors to develop and share threat intelligence related to activities by sophisticated criminal organizations as well as nation-state actors.
Notes
Eric has been with the FBI for 21 years, since June 1999
Originally a lawyer practicing criminal defense and civil defense, then went to non-profit
Early on in the FBI, they had to do a lot of workarounds. Cy...2020-10-2441 min
Getting Into InfosecICS Gabe - Electrical Engineer to Accidental Cybersecurity ICS ExpertGabriel Agboruche (@ICS_Gabe) is a senior ICS and OT cybersecurity consultant, helping organizations solve their most challenging industrial control security problems. And that was a mouthful, but that's what he does. His journey's unique one, and almost didn't happen.
Notes
Gabe was a math whiz in the Detroit Public school system
During college, he had some unique experiences as an African American, one of which was due to him being the top of his class
Gabe was an electrical engineer working at a nuclear facility, then #Stuxnet happened
The demand for cybersecurity skills combined with...2020-10-1158 min
Getting Into InfosecBONUS - Lisa Jiggetts - Salary NegotiationsLisa Jiggetts is the founder of the Women's Society Of Cyberjutsu. After recording, we continued talking and the topic of salary negotiations came up. It was so good I started recording again. This topic is super important. I have seen both experienced and inexperienced people make these mistakes.LinksSalary Negotiation Tips: https://www.thebalancecareers.com/what-can-employers-say-about-former-employees-2059608 (see the video too)Lisa on Twitter: https://twitter.com/lisajiggettsA recruiter's comment on the topic: https://twitter.com/Zavala_CyberSN/status/1294398519994773505Getting Into InfosecAsk A Question: https://gettingintoinfosec.com/askWebsite: https://gettingintoinfosec.comAyman on...2020-08-1615 min
Getting Into InfosecSwitching Into Infosec Success Story And Lessons LearnedToday's episode features a story that was sent to me by a listener. He reached out to me on LinkedIn, telling me of his success story posted on Reddit. This is the audio version. I think you're going to be really interested in what he had to say. He talks about his struggles and what he went through in his journey to Information Security.
Original Reddit post:
https://www.reddit.com/r/ITCareerQuestions/comments/fw44sg/career_change_success_story_starting_my_first/
Getting Into Infosec Links:
Site: https://gettingintoinfosec.com/
Book: http...2020-07-1609 min
Getting Into InfosecBlack Lives MatterTranscript
Hey everyone…
So, as if this time was not hard enough as it was with Covid, the American Black community has been affected yet again.
It's difficult to post motivating content while so many are feeling a sense of outrage and so much going on. So I'm going to pause, slow down, or at least take into consideration the posting of new content during this period. Of course, people still need to work, so I can't stop completely, and I do have episodes coming down the pipe.
There's a personal sto...2020-06-0200 min
Inside The Media MindsInside the Media Minds Episode 42 -Getting Into Infosec/Ayman ElsawahOn this week’s episode of Inside the Media Minds, we travel back to RSA 2020 where we met with Ayman Elsawah, host of Getting Into Infosec Podcast and author of Breaking IN: A Practical Guide to Starting a Career in Information Security.2020-05-2110 min
Getting Into InfosecBONUS - Announcing Getting Into Infosec BITESHello! Wanted to let you know I'm creating daily (almost) videos on YouTube called Getting Into Infosec BITES: https://www.youtube.com/c/gettingintoinfosec
Please like, subscribe, and spread the word.
The best thing you can do to support this media is to spread the word and let others know. Thanks!
Links:
Site: http://gettingintoinfosec.com/
Book: http://breakingintoinfosec.com/
Twitter: https://twitter.com/coffeewithayman
See omnystudio.com/listener for privacy information.2020-05-1403 min
Getting Into InfosecKavya Pearlman - From Hairstylist to CISO to XR SuperheroKavya Pearlman is an award-winning cybersecurity professional with a deep interest in immersive and emerging technologies. Kavya is the founder of the non-profit XR Safety Initiative (XRSI). XRSI is the first global effort to promote privacy, security, ethics, and develop standards and guidelines for Virtual Reality, Augmented Reality, and Mixed Reality (VR/AR/MR), collectively known as XR.
Kavya is constantly exploring new technologies to solve current cybersecurity challenges.
Quotes:
"Money, money, money. How much money [are] you going to make? I was so put off. No, it's not about money. I really just...2020-04-1938 min
Getting Into InfosecBONUS - Pandemic and The Coming Recession / DepressionWe are in the middle of a worldwide pandemic (COVID-19), a recession is here, a depression might be coming, and everyone is remote! Everything has changed. What can you do? How can you find a job in these crazy times? What are the challenges? How can you make yourself valuable? What's going through the company or hiring manager's mind?Please share or leave an awesome review if you found this helpful.See omnystudio.com/listener for privacy information.2020-04-0306 min
Getting Into InfosecSyntax - Arrested Teenager to Motorcycle Racer To PentesterSyntax, an internal pentester for a large organization, had an interesting ride into infosec, filled with pitstops, detours, and countersteering along the way. At an early age, he was influenced by his father, got started hacking, and was wrongfully arrested for reporting a vulnerability in his High School. Hear his exciting journey into infosec, filled with life lessons.
Shownotes
Was arrested in High School for disclosing a vulnerability in the school IT system
Went to college for computer science, but dropped out
Inspired by the movie hackers
His first computer had a 1MB hard drive (yes...2020-03-1046 min
Getting Into InfosecBonus - Cyber Security Job Search Frustrations (Ivan)These are quick hallway conversations with recent graduates discussing the difficulties they've faced in their job search. I did not know any of these people before interviewing, and it's the first time I'm asking them these questions. This was recorded at RSA Conference 2020.
Getting Into Infosec:
Breaking IN: A Practical Guide to Starting a Career in Information Security: https://www.amazon.com/dp/B07N15GTPC/
T-Shirts, Mugs, and more: https://gettingintoinfosec.com/shop/
Sign up for sneak peeks, updates, and commentary: https://pages.gettingintoinfosec.com/subscribe
See omnystudio.com/listener for privacy information.2020-03-0702 min
Getting Into InfosecBonus - Cyber Security Job Search Frustrations (Zoe)These are quick hallway conversations with recent graduates discussing the difficulties they've faced in their job search. I did not know any of these people before interviewing, and it's the first time I'm asking them these questions. This was recorded at RSA Conference 2020.Getting Into Infosec:Breaking IN: A Practical Guide to Starting a Career in Information Security: https://www.amazon.com/dp/B07N15GTPC/T-Shirts, Mugs, and more: https://gettingintoinfosec.com/shop/Sign up for sneak peaks, updates, and commentary: https://pages.gettingintoinfosec.com/subscribeSee omnystudio.com/listener for privacy information.2020-03-0604 min
Getting Into InfosecBonus - Cyber Security Job Search Frustrations (Jayesh)These are quick hallway conversations with recent graduates discussing the difficulties they've faced in their job search. I did not know any of these people before interviewing, and it's the first time I'm asking them these questions. This was recorded at RSA Conference 2020.
Getting Into Infosec:
Breaking IN: A Practical Guide to Starting a Career in Information Security: https://www.amazon.com/dp/B07N15GTPC/
T-Shirts, Mugs, and more: https://gettingintoinfosec.com/shop/
Sign up for sneak peeks, updates, and commentary: https://pages.gettingintoinfosec.com/subscribe
See omnystudio.com/listener for privacy information.2020-03-0603 min
Getting Into InfosecBonus - David Zeichick - Cybersecurity College ProfessorSo as I was at RSAC, I was trying to keep an eye out for those looking to get into the field. RSA is not usually the place for that, but I saw the NetWars tournament and figured that might be a good place to start. On my way there, I met David Zeichick, who had "College Day" on his badge. Intrigued, I asked about "College Day," and he told me all about it.
I sat down with him for an impromptu interview on the topic.
Links
David on Twitter: https://twitter.com/dzeichick
2020-03-0411 min
Getting Into InfosecTanya Janca - From Insecure Developer to Appsec, Diversity/Inclusion Advocate, and MentorBIO
Tanya Janca, also known as SheHacksPurple, is the author of ‘Alice and Bob Learn Application Security.’ She is also the founder of We Hack Purple, an online learning academy, community, and podcast that revolves around teaching everyone to create secure software. Tanya has been coding and working in IT for over twenty years, won numerous awards, and has been everywhere from startups to public service to tech giants (Microsoft, Adobe, & Nokia). She has worn many hats: startup founder, pentester, CISO, AppSec Engineer, and software developer. She is an award-winning public speaker, active blogger & streamer and has deliv...2020-02-2438 min
Getting Into InfosecNick Vissari - Engineering Dropout to Math Tutor to Security Architect/EngineerNick Vissari went from being an engineering dropout (he didn't like creative writing) to a tech consultant to a math tutor. His penchant for fixing things homed him back into tech, where he is now responsible for security in a large school district. He recently went back to school and received his cybersecurity degree as well.
Notes
At 10-years-old, his Dad had problems putting the computer together, so he helped his dad
Family never stifled any inquisitiveness he had
Started as a math tutor at the school system
How he initially had the wrong attitude in...2020-02-0435 min
Getting Into InfosecPage Glave - Professor of Kinesiology to Cybersecurity Analyst!Page Glave was a tenured Associate Professor of Kinesiology with a focus in exercise science and was successful in her field. However, she came to the realization that she can't see herself doing this for the rest of her life. She offers lots of great advice on resume tips when switching, homelabs, certifications, and how she was able to break into the field. This is her story.
BIO
I am an analyst, project manager, ethical hacker, and tech consultant with more than 10 years’ experience with research and project management. I spent a while in higher edu...2019-11-1630 min
Getting Into InfosecNick Jeswald - Confessions of a Cybersecurity Recruiter (Part 2)Part 2 of 2 - Nick Jeswald has been an external and internal recruiter in security. He shares with us what he looks for in a candidate, common mistakes made by candidates, and the nuances of hackers he's learned over the years.
Show Notes
SEE PREVIOUS EPISODE FOR COMPLETE NOTES & RECRUITING TIPS FROM NICK.
Getting Into Infosec:
Follow Me on Twitter: https://twitter.com/coffeewithayman
Subscribe To YouTube: https://www.youtube.com/channel/UCg6gV_gdfc188HZdN8LUx4A
Checkout My Book: https://amzn.to/2HP2i25
Sign up for updates and commentary: https...2019-11-0247 min
Getting Into InfosecNick Jeswald - Confessions of a Cybersecurity Recruiter (Part 1)Part 1 of 2 - Nick Jeswald has been an external and internal recruiter in security. He shares with us what he looks for in a candidate, common mistakes made by candidates, and the nuances of hackers he's learned over the years.
BIO:
I've been in infosec for 8 years, and in various IT roles since 1996 (Developer -> Sales Engineer -> BD Specialist -> Security BD -> Security Recruiting -> Dir. Corp Dev). However, I've also been one of the top recruiters for each company I worked at whatever role I've had.
Show Notes:
Internal...2019-10-2536 min
Getting Into InfosecSeptember 2019 UpdateSummer was crazy. My day job was keeping me super busy, and I've been really mentally occupied lately dealing with kids, family, and school. I miss producing shows and will be getting back into it. Have some really good shows queued up! I've still active on Twitter when possible, so we can stay in touch there in between shows.
Oh, and by the way, it's been a year since I started podcasting! Pretty cool. So many things I want to do with the show, like animating my spoof ads and transcribing the shows.
Anyway, just...2019-09-2302 min
Getting Into InfosecFareedah Shaheed - From Tech Curious to Information SecurityFareedah, a lifelong learner, was always interested in technology and grew up reading her father's Cisco books. His influence led her to the field of information security, where she stepped up and is always tackling new challenges.
BIO
Fareedah Shaheed was born in Maryland, but spent most of her childhood outside of the US. She returned to the States in 2013 and attended the Community College of Baltimore County (CCBC), where she majored in cybersecurity.
Her experiences with different cultures and the tech field led her to combine her interest in psychology with cybersecurity...2019-07-3132 min
Getting Into InfosecBONUS - Updates, Defcon, MoreHey, everyone!
It's been a while, I know. Life has been busy. Lots of transitions, so schedule has taken time to get used to.
Links
Security Sandbox Podcast: https://podcasts.apple.com/us/podcast/hacker-culture-fm/id1453203447
Sean Sun: https://twitter.com/seanqsun
Hacker Culture FM: https://www.hackerculture.fm/
Defcon Sticker Swap: https://twitter.com/dcstickerswap
Outro Music: https://soundcloud.com/southlondonhifi
Getting Into Infosec:
Follow Me on Twitter: https://twitter.com/coffeewithayman
Subscribe To YouTube: https://www.youtube.com/channel/UCg6gV_gdfc188HZdN8LUx4A
2019-07-2604 min
Fuel Your Mind With The Most Binge-Worthy Full Audiobook Today!Breaking In: A Practical Guide to Starting a Career in Information Security by Ayman ElsawahPlease visithttps://thebookvoice.com/podcasts/2/audible/18375to listen full audiobooks.
Title: Breaking In: A Practical Guide to Starting a Career in Information Security
Author: Ayman Elsawah
Narrator: Kati Fredlund
Format: mp3
Length: 1 hr and 43 mins
Release date: 06-19-19
Ratings: 4.5 out of 5 stars, 16 ratings
Genres: Security & Encryption
Publisher's Summary:
Are you new to the information security field? Lost trying to figure a way to get a job as a Security Analyst? Overwhelmed by all the information out there and not sure where to start? Can't afford for certifications? If so, this audiobook is for you. You will learn: The information...2019-06-191h 43
Heroes of ITEnabling and Empowering a Security Culture: Ayman Elsawah - Cloud Security LabsCyber Security is a huge part of IT today, and is something that not only spends a lot of time on our minds, also tends to keep us up at night. In this week's episode we discuss empowering your company culture with a security mindset, and of course tools and techniques to keep your business secure. You don't need security in your title to do security. Enjoy and Subscribe! Continue the conversation by Joining the tabGeeks slack community: no sponsors and no assholery allowed at tabGeeks.com/Slackor on twitter by following me @Mr...2019-06-1854 min
Getting Into InfosecKeya Horiuchi - From Teacher, Filmmaker, and Website Design to Security Engineer!Keya was a public school teacher who stood out from the crowd. She loves problem-solving and challenging environments. Keya was also a filmmaker and web designer. She's currently a detection security engineer who gets knee-deep in malware on a daily basis.
Notes:
Knew she didn't want to be a teacher her whole life
Was the only one in the rational thinking group at her school
Enjoys rational thinking and the problem-solving process
Prototyped a mock medical device with a Raspberry Pi and won a national competition!
Quotes:
"Easy to get into what you're...2019-06-1529 min
Get Published PodcastAyman Elsawah - Using Quora to Connect With Your AudienceIn episode 321 of the Get Published Podcast, Host and 14-Time Bestselling Author Paul G. Brodie interviews Ayman Elsawah about his author journey and how to connect with your audience on Quora. Find out more about our Publishing Services at www.GetPublishedPodcast.com2019-06-1100 min
Getting Into InfosecBONUS - Audiobook Sample!Listen to the retail audio sample of my book: Breaking IN - A Practical Guide to Starting a Career In Information Security.
Kati Fredlund narrates the book. She did an amazing job!
You can read a sample or purchase the whole book here: https://t.co/DDXxfVwpD7
Full Audiobook to be released soon!See omnystudio.com/listener for privacy information.2019-06-0503 min
Getting Into InfosecHossam Mohamed - Young Hacker to "Not A Security Researcher"A 19-year-old "not a security researcher" facing limitations because of his age and not having the right "prerequisites," Hossam has had to pave his own path. He also dreams in code and is one of the youngest OSCEs in the world!
BIO
Hossam Mohamed is one of the youngest OSCE in the world and currently working in the cybersecurity domain for a financial company in Istanbul. His area of interest includes exploit development, offensive security, secure web development, and malware analysis. He is a big Python lover.
Notes
On the organizing team...2019-05-2628 min
Getting Into InfosecBONUS - Consuming VS ProducingMy thoughts on consuming vs. production and how it relates to Getting Into Infosec. Sometimes, we get stuck learning, consuming security news, trends and etc, but we forget to produce something. Whether it be testing a new exploit we heard about, trying something new in our lab, or applying something we learned the day before, finding the right balance is important. If we're stuck, take little steps—better than no steps.
Links:
https://www.google.com/search?q=producing+vs+consuming
https://lifehacker.com/start-every-day-as-a-producer-not-a-consumer-5887345
Getting Into Infosec:
Tw...2019-05-2101 min
Getting Into InfosecIzzy - Random and Unplanned: From Annuities to ISO!Ismaelle Vixsama (aka Izzy) has a knack for finding strategic flaws and speaking up about them. Doing so helped her get her first full-time job as well as have repercussions for defensive egos. Her whole career is a war story.
BIO:
Izzy is an ISMS manager with 7 years of experience. She has worked in FinTech, Government, and Security R&D. Her work has allowed her to work on several mainstream products and services with some of the most well-recognized brands.
Notes:
Creates a security program around a company's information systems
Played the...2019-05-1336 min
Getting Into InfosecDavid Scrobonia - Lifelong builder, Appsec Engineer, Creator of ZAP Heads Up DisplayFrom Zero to One, David is a lifelong builder. Wherever he goes, he just builds things. From an electric car to Adhoc android apps to ZAP HUD to an awesome heads up display for ZAP Proxy, he's a game-changer, IMHO. We discuss the lack of UX in the security tooling community, how contributing to Open Source got him his job, and even about imposter syndrome.
BIO
David Scrobonia is part of the Security Engineering team at Segment, working to secure modern web apps and AWS infrastructure. He contributes to open source in his spare time...2019-05-0434 min
Getting Into InfosecBONUS - CliffsNotes To The First 20 Episodes!Having completed 20 episodes, I decided to take a moment to go over each episode briefly.
Thanks to call my guests!
Ep01 - Dan Borges: https://twitter.com/1njection
Ep02 - 0daySimpson: https://twitter.com/0daySimpson
Ep03 - Christina Hanson
Ep04 - Matt Toth: https://twitter.com/willhackforfood
Ep05 - Rob Carson: https://twitter.com/robcarson05
Ep06 - Robin Stuart: https://twitter.com/rcstuart
Ep07 - Clay Wells: https://twitter.com/ttheveii0x
Ep08 - Elvis Chan: https://twitter.com/FBISanFrancisco
2019-04-2730 min
Getting Into InfosecBONUS - MCOHMI New Song, Trap Music, and Domain Song BackgroundMC OHM-I (Leron Gray) talks about his next project about tabs in the browser, trap music, and some background on his awesome song, "Domain."
Getting Into Infosec
Twitter: https://twitter.com/coffeewithayman
YouTube: https://www.youtube.com/channel/UCg6gV_gdfc188HZdN8LUx4A
Book: https://www.amazon.com/Breaking-Step-Step-Starting-Information-ebook/dp/B07N15GTPC/
See omnystudio.com/listener for privacy information.2019-04-1703 min
Getting Into InfosecLeron Gray - From Navy E6 to Pentester, SANS Mentor and Nerdcore Rapper!Leron Gray is a man of many talents. Although he didn't really get into infosec until much later in life, he always had a creative side. He now finds himself as a pentester working from home and a nerdcore rapper producing amazing beats!
BIO
Leron is a penetration tester and a ten-year Navy veteran with four years of experience as a Cryptologic Technician (Networks), focusing primarily on offensive cyber operations. He holds a Bachelor's degree from Dakota State University in Cyber Operations. With a passion for Python, he loves automating tedious daily routine tasks for...2019-04-1337 min
Getting Into InfosecJared Folkins - 18 YRO Manager To Education Security To Human HeroJared Folkins understands people, technology, and the world around him. He can smell a toxic environment from a mile away and has used that EIQ spider-sense for good. Jared shares with us some VERY personal stories (tear-jerker warning!) in integrity and life decisions as well a bunch of on-the-job war stories, including a famous one featured in the news! This is probably my most dramatic episode yet.
Notes:
At 18, he got promoted to manage a team of 50 because he wasn't lazy.
In hindsight, he was able to see indicators of the dot com...2019-04-0354 min
Getting Into InfosecMasha Sedova - From Generations of CS to Behavioral Science and EntrepreneurshipMasha Sedova comes from a history of computer scientists! Her grandmother was in the first Computer Science graduating class in 1954 under Stalin in the Soviet Union! She loves challenges and is now utilizing what she thought was a waste of time in Liberal Arts to conquer challenges in Information Security using behavioral science, emotional intelligence, and other human factors.
BIO
Masha Sedova is an industry-recognized people-security expert, speaker, and trainer focused on engaging people to be key elements of secure organizations. She is the co-founder of Elevate Security, delivering the first people-centric security platform that...2019-03-2345 min
Getting Into InfosecBONUS - InfosecJon Learns Trust But Verify The HARD wayInfosecJon expands on some CRAZY follies he experienced during his times in the Navy. He learns through trial by fire, literally: trust but verify!
Notes
Jon almost gets crushed inside the engine of Naval ship
A boiler exploded and Jon, a jr. engineer, was left in charge of the situation and had to give orders
Jon got soaked with engine Oil on a running ship, resulting in the loss of pitch-control
Luckily, Jon was wearing a PEP suit
Tag-out manual: https://www.public.navy.mil/NAVSAFECEN/Documents...2019-03-2106 min
Getting Into InfosecInfosecJon - From Rudderless Youth to Navy Engineer to Security ProfessionalInfosecJon runs a website cataloging his learning and dedicated to helping others get in the field. He shares his personal story from a directionless youth to enlisting in the Navy (and its follies) and his tribulations getting into the field. He also shares some interesting Navy stories. Look out for the bonus episode!
BIO
Jon is a father, husband, and a veteran. He went from an aimless youth to enlisting into a career path he never liked. After 7 years as an electrical engineer, he got the chance to pursue his dream of working in information...2019-03-1645 min
Getting Into InfosecInfosecSherpa - From Travel Agent to Law Librarian to Security Analyst!Tracy Maleeff (@InfosecSherpa) was a professional law librarian and at the top of her game. Looking for change and meaning, she searched until she found the field of Information Security. This is her journey.
BIO
Tracy Z. Maleeff (/may-leaf/), @InfoSecSherpa, is an independent information professional providing research and social media consulting with a focus on information security. She is a frequent presenter on best practices of data mining from social media, professional networking, and introduction to information security topics. Tracy has 15 years of experience as a librarian in academia, corporate, and law firm industries and...2019-03-0144 min
Getting Into InfosecAdrian Kaylor - From Network Admin to Trainer to Sales Engineer for LifeAdrian is a Sr. Sales Engineer at Splunk who focuses on security. He has worked for various security startups in the Bay Area for the past 15 years from vulnerability management to endpoint investigation to ML-based threat hunting.
Notes:
Had an interest in security early on, starting with opening binaries on Sierra King's quest games and looking for hints.
Took any opportunity he got to get exposed to security
His job as an instructor was very useful during support and later as a sales engineer
Keeps a Trello board for...2019-02-2234 min
Getting Into InfosecNipun Gupta - From Security Consultant to Security InnovatorNipun graduated during the recession, but found a job as a consultant which helped him gain experience quickly. He was in fact discouraged to pursue a career in information security due to his immigrant status. Nipun is now a Cyber Security Executive focused on innovation.
BIO:
Nipun Gupta is a Cyber Security Executive at a large global financial institution focusing on innovation. Armed with many years of experience helping Fortune 500 companies solve cyber risk challenges, Nipun is tasked to help his employer discover, adopt, access new cybersecurity solutions protecting against emerging threats.
In...2019-02-1023 min
Getting Into InfosecBONUS - My Book is OUT: Breaking IN: A Step-by-Step Guide to Starting a Career in Information SecurityMy book is out!
Breaking IN: A Step-by-Step Guide to Starting a Career in Information Security
https://www.amazon.com/gp/product/B07N15GTPCSee omnystudio.com/listener for privacy information.2019-01-2600 min
Getting Into InfosecMarcus Carey - Childhood Builder/Breaker to Navy Cryptologist to Founder and MentorMarcus Carey has been hacking since he was five. A true MacGuyver, he had to make do with the little resources available to him. He later enrolled in the Navy, worked for 3- letter agencies including the NSA, and now has his own security startup. Marcus shares a TON with us in this episode.
BIO
Marcus is renowned in the cybersecurity industry and has spent his more than 20-year career working in penetration testing, incident response, and digital forensics with federal agencies such as NSA, DC3, DIA, and DARPA. He started his career in cryptography...2019-01-1143 min
Getting Into InfosecJack Rhysider - From Odd-jobs to Network Analyst to SOC Architect to... Darknet Diaries!With an engineering background, Jack found himself doing odd jobs at first. Looking to get back into tech, he certed up and got a job in the NOC (Network Operation Center) and eventually became a SOC architect building a SOC from scratch. Looking to do something different, he started Dark Net Diaries, and it's been an adventure since! This is Jack Rhysider's origin story.
BIO
Jack Rhysider started his professional career in a NOC. He then became a network security engineer doing a lot of work to harden the network and detect threats in the...2019-01-0247 min
Getting Into InfosecYaron Levi - Entrepreneur to Security Architect to CISO and Security ChampionYaron Levi is the CISO for Blue Cross and Blue Shield of Kansas City. We talk about what he looks for in people when hiring in Infosec and a time when he took a chance on someone (against the opinion of his peers), and his chance was a big success. We also discuss a breach he had to deal with only 3 months into his job!
BIO
Yaron Levi is the CISO for Blue Cross and Blue Shield of Kansas City (Blue KC). In this role, he manages a team responsible for information risk management, cyber...2018-12-2534 min
Getting Into InfosecInfoSteph - From Journalism to IT Support to Security AnalystSteph is brand new to the infosec field! We go over her interesting and eventful path into Information Security, reflections on her role today, and some fascinating war stories!
BIO:
Steph is a Security Analyst for a retail company makes up the team of one. She has a background in journalism and web hosting. She is the creator and editor of StephAndSec.com, a blog focused on technology, inclusion, and lifetime learning. Stephanie's life work is to encourage and fight for more diversity and inclusion in tech spaces for more innovative and original collaboration. She...2018-12-1953 min
Getting Into InfosecVirtual Kyle Kennedy - Stories, not resumes: Breaking educational and other barriers in cybersecurityToday's episode is a reading of an amazing written by Kyle Kennedy, president of brainbabe.org. The reading is performed by Allison, an IBM Watson personality. I also go through some recent resources discovered to help you on your journey to a Career in Infosec.
BIO:
Kyle F. Kennedy is a social cybersecurity expert and president of brainbabe.org. His organization provides foundational soft-skills training for a small fee (supported by corporation donations) and plans to launch soft-skill Masterclasses in 2019. They helped organize an event called Day of Shecurity for women of diverse backgrounds to...2018-12-1108 min
Getting Into InfosecElvis Chan - From Making Computer Chips to FBI Supervisory Special Agent!Elvis Chan is a Supervisory Special Agent Elvis Chan, who works cybersecurity matters for the FBI San Francisco Division. We discuss how we got into the FBI, Life in the FBI Cybersecurity Division, and how to get involved.
The FBI is always looking for qualified applications for Special Agent and professional staff positions. Please see https://www.fbijobs.gov/ for more details.
Notes:
There are three main roles in CyberSecurity at the FBI:
Special Agent (Gun Carrying Badge)
Intelligence Analyst
Computer Scientist
It may be quiet on the outside, but you can bet...2018-12-0535 min
Getting Into InfosecClay Wells - From SysAdmin to Security Architect to Con Organizer!Clay Wells has been living in kernel/userland since Red Hat 4.0 Colgate. Worklife has primarily been in academia and has included programming, system administration, and information security. He's a point of contact for the DC215 group and one of the Blue Team Village coordinators at DEF CON. He also created unofficial CTF challenges for local hacker cons and organizers for the first annual WOPR Summit this March 2019 in Atlantic City.
Clay, a security architect, musician, Defcon Blue Team Village Co-Organizer, and organizer of the first annual WOPR Summit, shares some really insightful tips on making it Information...2018-11-2734 min
Getting Into InfosecBONUS: Robin Stuart - Road to Becoming a Cyber Crime AuthorRobin Stuart is a debut author in cybercrime fiction with a short story called "SegFault" in the Sisters in Crime NorCal anthology Fault Lines, which is due in early 2019!!!
Notes
Wrote her first full-length mystery in the mid-'90s!
Pitching is basically a job interview
Honing your pitch
You only get one shot at that first impression
She has a backlog of stories to tell... Stay Tuned!!! (So Excited!)
Links
The New York Pitch Fest: http://newyorkpitchconference.com/
Mystery Writers: https://mysterywriters.org/
Sister in Crime Northern California Chapter: http://www.sincnorcal.org/
P...2018-11-1818 min
Getting Into InfosecRobin Stuart - From Paralegal to Malware Researcher (and Cyber Crime Author!)Robin Stuart started off as a paralegal until she was challenged one day to get her boss's password (hint: do not challenge Robin). Fast forward, she switched careers to technology but kept a lookout for a career in security.
Bio
Veteran cybercrime investigator and contributing author to the Handbook for Information Security by Wiley, Robin is a debut author in cybercrime fiction with a short story in the Sisters in Crime NorCal anthology Fault Lines, which is due out in early 2019.
She consults on all things cybersecurity for Fortune 100 companies, television shows, and...2018-11-1441 min
Getting Into InfosecRob Carson - From USMC Infantry Officer to Information Security OfficerSpeaker Bio
Rob Carson, the founder of Semper Sec, knows how to simplify the problem and deliver solutions.
His clients base includes:
Fortune 200 Companies
US Government Contractors
State and Local Governments
Fuel Retailers
Software and hardware manufacturers
His distinguished career includes service as a Marine Corps Infantry Officer, as well as leading roles in IT and Security. Before devoting his work full-time to facilitating his client's success, he built highly successful information security programs for ISO 27001:2005/2013, PCI, HIPAA, NIST 800-171, GDPR. He also volunteers his time as the Chief Security Officer for...2018-11-0732 min
Getting Into InfosecMatt Toth - From Slinky Network Support Engineer to Security Sales EngineerMatt Toth is a Senior Security and Veteran Sales Engineer. Having collaborated with the Department of Defense on War Games and advised senior leaders on possible cyber threats, Matt has two decades of IT experience with a focus on cybersecurity. With a passion for security, Matt is deeply engaged with the community to educate and prepare the next generation of cyber professionals.
On top of that, he’s a good friend of mine in the industry with solid advice for those looking for a career in Information Security.
In our chat, Matt breaks down a Sa...2018-10-301h 02
Getting Into InfosecChristina Hanson - From HOA Manager to Headfirst Into InfoSec!Christina Hanson is a security analyst working for Truvantis Cyber Security Consulting and one of my former boot camp students. She has extensive technical experience and a deep understanding of the collaborative nature of InfoSec, not to mention how women and other underrepresented groups in the community have a more difficult time navigating this industry due to institutional barriers.
In our discussion, Christina touches on the wide variety of resources and events that helped her enter information security, why teamwork is just as important as technical work, and why InfoSec's responsibilities will continue to grow in the...2018-10-2242 min
Getting Into Infosec0day - From "Geek Squad" tech to DevSecOps0day (“Zero Day”) is a security researcher who specializes in distributed systems security.
Throughout his career journey through a "Geek Squad"-like service at Circuit City ("Firedog") to trading floors and corporate information security, he’s amassed significant experience in the industry. He is an example of how security consciousness is important even before you're an official security "pro."
In our conversation, 0day discusses getting into computers as an inner-city kid, acknowledging how our hangups can affect the growth of InfoSec, the benefits of older technology, and much more.
Episode Highlights
0day de...2018-10-1541 min
Getting Into InfosecDan Borges - From Infosec ITAdmin to Red Teamer to CTF OrganizerPermalink and Transcript: http://gettingintoinfosec.com/dan
In this first episode, I chat with Dan Borges, a professional red teamer, blogger, and security tool developer.
Dan Borges discusses his early experiences using and exploiting computer systems, how InfoSec experts work with companies, and the new tools he and others created and released this year!
Episode Highlights:
Dan explains how he became involved in information security,including his introduction to programming through a Lego roboticsprogram.
His early experiences as a pen-tester—i.e. a penetration tester, who2018-10-0858 min
Getting Into InfosecTrailerHi there! I am Ayman Elsawah, the host of a new podcast focused on helping you learn more about the information security field and how to be successful in it. We will walk through the shoes of seasoned information security experts as well as those new to the field, learn from their experiences, and find out how they got started. Join me on this wonderful journey!
Music: "Modem" by @SkilldrickSee omnystudio.com/listener for privacy information.2018-09-0600 min