Shows
Hacker Valley StudioHow to Hack your Career: Building a vCISO Business with Ayman ElsawahIn this episode, Ron Eddings gets a chance to speak with Ayman Elsawah, Founder of Cloud Security Labs, and have him share his experience with becoming a vCISO. Ayman will break down the vast business of security consulting and help you determine the best approach and next steps to catalyze you on your way to owning your time and your own business.
Impactful Moments:
00:00 - Welcome
01:14 - Introducing guest, Ayman Elsawah
07:08 - Types of vCISOs
09:55 - How to Become a vCISO
13:40 - Join Our Mastermind!
14:24...2024-04-2331 min
Getting Into InfosecSamantha Cowan - From National Parks Service To Head Of ComplianceSamantha Cowan is the Head of Compliance at HackerOne. She's the former Director of Compliance at OneLogin and former Security Engineer at CoverHound, Cyber Policy, and Zenefits. Sam initially perceived Infosec as an "unhappy job", but later found herself taking her MBA and paving her way into the security industry. Despite having her master's degree, she was not an exemption to facing rejections when applying for cybersecurity. Her episode is mind-blowing as she shares how you can break into boundaries by being confident in yourself and by not compromising to being seen as a token hire.
LINKS2021-06-0139 min
Getting Into InfosecLisa Jiggetts - From Navy Cook To Pentester To Non-Profit Founder!Lisa Jiggetts knew from an early age that she was going to be in tech and cyber. A navy veteran who started off as a cook, she always found herself gravitating towards technology. She is also the Founder & Board of Director of the Women’s Society of Cyberjutsu, a non-profit that is dedicated to increasing the opportunities and advancement for women in cybersecurity. Check out her journey into the cybersecurity field.
Notes
Originally a cook in the military, then migrated to information security.
Looked for opportunities to transition into information security by talking to people in an...2020-11-2440 min
Getting Into InfosecEric Strom - From Lawyer to FBI Cyber Division Unit ChiefEric Strom is the Unit Chief of the Mission Critical Engagement Unit, Cyber Division. In this role, Mr. Strom oversees the FBI Cyber Division’s private sector outreach efforts to the 16 critical infrastructure sectors, forging partnerships with companies in those sectors to develop and share threat intelligence related to activities by sophisticated criminal organizations as well as nation-state actors.
Notes
Eric has been with the FBI for 21 years, since June 1999
Originally a lawyer practicing criminal defense and civil defense, then went to non-profit
Early on in the FBI, they had to do a lot of workarounds. Cy...2020-10-2441 min
Getting Into InfosecICS Gabe - Electrical Engineer to Accidental Cybersecurity ICS ExpertGabriel Agboruche (@ICS_Gabe) is a senior ICS and OT cybersecurity consultant, helping organizations solve their most challenging industrial control security problems. And that was a mouthful, but that's what he does. His journey's unique one, and almost didn't happen.
Notes
Gabe was a math whiz in the Detroit Public school system
During college, he had some unique experiences as an African American, one of which was due to him being the top of his class
Gabe was an electrical engineer working at a nuclear facility, then #Stuxnet happened
The demand for cybersecurity skills combined with...2020-10-1158 min
Getting Into InfosecBONUS - Lisa Jiggetts - Salary NegotiationsLisa Jiggetts is the founder of the Women's Society Of Cyberjutsu. After recording, we continued talking and the topic of salary negotiations came up. It was so good I started recording again. This topic is super important. I have seen both experienced and inexperienced people make these mistakes.LinksSalary Negotiation Tips: https://www.thebalancecareers.com/what-can-employers-say-about-former-employees-2059608 (see the video too)Lisa on Twitter: https://twitter.com/lisajiggettsA recruiter's comment on the topic: https://twitter.com/Zavala_CyberSN/status/1294398519994773505Getting Into InfosecAsk A Question: https://gettingintoinfosec.com/askWebsite: https://gettingintoinfosec.comAyman on...2020-08-1615 min
Getting Into InfosecSwitching Into Infosec Success Story And Lessons LearnedToday's episode features a story that was sent to me by a listener. He reached out to me on LinkedIn, telling me of his success story posted on Reddit. This is the audio version. I think you're going to be really interested in what he had to say. He talks about his struggles and what he went through in his journey to Information Security.
Original Reddit post:
https://www.reddit.com/r/ITCareerQuestions/comments/fw44sg/career_change_success_story_starting_my_first/
Getting Into Infosec Links:
Site: https://gettingintoinfosec.com/
Book: http...2020-07-1609 min
Getting Into InfosecBlack Lives MatterTranscript
Hey everyone…
So, as if this time was not hard enough as it was with Covid, the American Black community has been affected yet again.
It's difficult to post motivating content while so many are feeling a sense of outrage and so much going on. So I'm going to pause, slow down, or at least take into consideration the posting of new content during this period. Of course, people still need to work, so I can't stop completely, and I do have episodes coming down the pipe.
There's a personal sto...2020-06-0200 min
Getting Into InfosecBONUS - Announcing Getting Into Infosec BITESHello! Wanted to let you know I'm creating daily (almost) videos on YouTube called Getting Into Infosec BITES: https://www.youtube.com/c/gettingintoinfosec
Please like, subscribe, and spread the word.
The best thing you can do to support this media is to spread the word and let others know. Thanks!
Links:
Site: http://gettingintoinfosec.com/
Book: http://breakingintoinfosec.com/
Twitter: https://twitter.com/coffeewithayman
See omnystudio.com/listener for privacy information.2020-05-1403 min
Getting Into InfosecPage Glave - Professor of Kinesiology to Cybersecurity Analyst!Page Glave was a tenured Associate Professor of Kinesiology with a focus in exercise science and was successful in her field. However, she came to the realization that she can't see herself doing this for the rest of her life. She offers lots of great advice on resume tips when switching, homelabs, certifications, and how she was able to break into the field. This is her story.
BIO
I am an analyst, project manager, ethical hacker, and tech consultant with more than 10 years’ experience with research and project management. I spent a while in higher edu...2019-11-1630 min
Getting Into InfosecNick Jeswald - Confessions of a Cybersecurity Recruiter (Part 2)Part 2 of 2 - Nick Jeswald has been an external and internal recruiter in security. He shares with us what he looks for in a candidate, common mistakes made by candidates, and the nuances of hackers he's learned over the years.
Show Notes
SEE PREVIOUS EPISODE FOR COMPLETE NOTES & RECRUITING TIPS FROM NICK.
Getting Into Infosec:
Follow Me on Twitter: https://twitter.com/coffeewithayman
Subscribe To YouTube: https://www.youtube.com/channel/UCg6gV_gdfc188HZdN8LUx4A
Checkout My Book: https://amzn.to/2HP2i25
Sign up for updates and commentary: https...2019-11-0247 min
Getting Into InfosecSeptember 2019 UpdateSummer was crazy. My day job was keeping me super busy, and I've been really mentally occupied lately dealing with kids, family, and school. I miss producing shows and will be getting back into it. Have some really good shows queued up! I've still active on Twitter when possible, so we can stay in touch there in between shows.
Oh, and by the way, it's been a year since I started podcasting! Pretty cool. So many things I want to do with the show, like animating my spoof ads and transcribing the shows.
Anyway, just...2019-09-2302 min
Getting Into InfosecFareedah Shaheed - From Tech Curious to Information SecurityFareedah, a lifelong learner, was always interested in technology and grew up reading her father's Cisco books. His influence led her to the field of information security, where she stepped up and is always tackling new challenges.
BIO
Fareedah Shaheed was born in Maryland, but spent most of her childhood outside of the US. She returned to the States in 2013 and attended the Community College of Baltimore County (CCBC), where she majored in cybersecurity.
Her experiences with different cultures and the tech field led her to combine her interest in psychology with cybersecurity...2019-07-3132 min
Getting Into InfosecBONUS - Updates, Defcon, MoreHey, everyone!
It's been a while, I know. Life has been busy. Lots of transitions, so schedule has taken time to get used to.
Links
Security Sandbox Podcast: https://podcasts.apple.com/us/podcast/hacker-culture-fm/id1453203447
Sean Sun: https://twitter.com/seanqsun
Hacker Culture FM: https://www.hackerculture.fm/
Defcon Sticker Swap: https://twitter.com/dcstickerswap
Outro Music: https://soundcloud.com/southlondonhifi
Getting Into Infosec:
Follow Me on Twitter: https://twitter.com/coffeewithayman
Subscribe To YouTube: https://www.youtube.com/channel/UCg6gV_gdfc188HZdN8LUx4A
2019-07-2604 min
Heroes of ITEnabling and Empowering a Security Culture: Ayman Elsawah - Cloud Security LabsCyber Security is a huge part of IT today, and is something that not only spends a lot of time on our minds, also tends to keep us up at night. In this week's episode we discuss empowering your company culture with a security mindset, and of course tools and techniques to keep your business secure. You don't need security in your title to do security. Enjoy and Subscribe! Continue the conversation by Joining the tabGeeks slack community: no sponsors and no assholery allowed at tabGeeks.com/Slackor on twitter by following me @Mr...2019-06-1854 min
Getting Into InfosecKeya Horiuchi - From Teacher, Filmmaker, and Website Design to Security Engineer!Keya was a public school teacher who stood out from the crowd. She loves problem-solving and challenging environments. Keya was also a filmmaker and web designer. She's currently a detection security engineer who gets knee-deep in malware on a daily basis.
Notes:
Knew she didn't want to be a teacher her whole life
Was the only one in the rational thinking group at her school
Enjoys rational thinking and the problem-solving process
Prototyped a mock medical device with a Raspberry Pi and won a national competition!
Quotes:
"Easy to get into what you're...2019-06-1529 min
Getting Into InfosecHossam Mohamed - Young Hacker to "Not A Security Researcher"A 19-year-old "not a security researcher" facing limitations because of his age and not having the right "prerequisites," Hossam has had to pave his own path. He also dreams in code and is one of the youngest OSCEs in the world!
BIO
Hossam Mohamed is one of the youngest OSCE in the world and currently working in the cybersecurity domain for a financial company in Istanbul. His area of interest includes exploit development, offensive security, secure web development, and malware analysis. He is a big Python lover.
Notes
On the organizing team...2019-05-2628 min
Getting Into InfosecBONUS - Consuming VS ProducingMy thoughts on consuming vs. production and how it relates to Getting Into Infosec. Sometimes, we get stuck learning, consuming security news, trends and etc, but we forget to produce something. Whether it be testing a new exploit we heard about, trying something new in our lab, or applying something we learned the day before, finding the right balance is important. If we're stuck, take little steps—better than no steps.
Links:
https://www.google.com/search?q=producing+vs+consuming
https://lifehacker.com/start-every-day-as-a-producer-not-a-consumer-5887345
Getting Into Infosec:
Tw...2019-05-2101 min
Getting Into InfosecIzzy - Random and Unplanned: From Annuities to ISO!Ismaelle Vixsama (aka Izzy) has a knack for finding strategic flaws and speaking up about them. Doing so helped her get her first full-time job as well as have repercussions for defensive egos. Her whole career is a war story.
BIO:
Izzy is an ISMS manager with 7 years of experience. She has worked in FinTech, Government, and Security R&D. Her work has allowed her to work on several mainstream products and services with some of the most well-recognized brands.
Notes:
Creates a security program around a company's information systems
Played the...2019-05-1336 min
Getting Into InfosecDavid Scrobonia - Lifelong builder, Appsec Engineer, Creator of ZAP Heads Up DisplayFrom Zero to One, David is a lifelong builder. Wherever he goes, he just builds things. From an electric car to Adhoc android apps to ZAP HUD to an awesome heads up display for ZAP Proxy, he's a game-changer, IMHO. We discuss the lack of UX in the security tooling community, how contributing to Open Source got him his job, and even about imposter syndrome.
BIO
David Scrobonia is part of the Security Engineering team at Segment, working to secure modern web apps and AWS infrastructure. He contributes to open source in his spare time...2019-05-0434 min
Getting Into InfosecBONUS - CliffsNotes To The First 20 Episodes!Having completed 20 episodes, I decided to take a moment to go over each episode briefly.
Thanks to call my guests!
Ep01 - Dan Borges: https://twitter.com/1njection
Ep02 - 0daySimpson: https://twitter.com/0daySimpson
Ep03 - Christina Hanson
Ep04 - Matt Toth: https://twitter.com/willhackforfood
Ep05 - Rob Carson: https://twitter.com/robcarson05
Ep06 - Robin Stuart: https://twitter.com/rcstuart
Ep07 - Clay Wells: https://twitter.com/ttheveii0x
Ep08 - Elvis Chan: https://twitter.com/FBISanFrancisco
2019-04-2730 min
Getting Into InfosecBONUS - MCOHMI New Song, Trap Music, and Domain Song BackgroundMC OHM-I (Leron Gray) talks about his next project about tabs in the browser, trap music, and some background on his awesome song, "Domain."
Getting Into Infosec
Twitter: https://twitter.com/coffeewithayman
YouTube: https://www.youtube.com/channel/UCg6gV_gdfc188HZdN8LUx4A
Book: https://www.amazon.com/Breaking-Step-Step-Starting-Information-ebook/dp/B07N15GTPC/
See omnystudio.com/listener for privacy information.2019-04-1703 min
Getting Into InfosecJared Folkins - 18 YRO Manager To Education Security To Human HeroJared Folkins understands people, technology, and the world around him. He can smell a toxic environment from a mile away and has used that EIQ spider-sense for good. Jared shares with us some VERY personal stories (tear-jerker warning!) in integrity and life decisions as well a bunch of on-the-job war stories, including a famous one featured in the news! This is probably my most dramatic episode yet.
Notes:
At 18, he got promoted to manage a team of 50 because he wasn't lazy.
In hindsight, he was able to see indicators of the dot com...2019-04-0354 min
Getting Into InfosecBONUS - InfosecJon Learns Trust But Verify The HARD wayInfosecJon expands on some CRAZY follies he experienced during his times in the Navy. He learns through trial by fire, literally: trust but verify!
Notes
Jon almost gets crushed inside the engine of Naval ship
A boiler exploded and Jon, a jr. engineer, was left in charge of the situation and had to give orders
Jon got soaked with engine Oil on a running ship, resulting in the loss of pitch-control
Luckily, Jon was wearing a PEP suit
Tag-out manual: https://www.public.navy.mil/NAVSAFECEN/Documents...2019-03-2106 min
Getting Into InfosecInfosecJon - From Rudderless Youth to Navy Engineer to Security ProfessionalInfosecJon runs a website cataloging his learning and dedicated to helping others get in the field. He shares his personal story from a directionless youth to enlisting in the Navy (and its follies) and his tribulations getting into the field. He also shares some interesting Navy stories. Look out for the bonus episode!
BIO
Jon is a father, husband, and a veteran. He went from an aimless youth to enlisting into a career path he never liked. After 7 years as an electrical engineer, he got the chance to pursue his dream of working in information...2019-03-1645 min
Getting Into InfosecInfosecSherpa - From Travel Agent to Law Librarian to Security Analyst!Tracy Maleeff (@InfosecSherpa) was a professional law librarian and at the top of her game. Looking for change and meaning, she searched until she found the field of Information Security. This is her journey.
BIO
Tracy Z. Maleeff (/may-leaf/), @InfoSecSherpa, is an independent information professional providing research and social media consulting with a focus on information security. She is a frequent presenter on best practices of data mining from social media, professional networking, and introduction to information security topics. Tracy has 15 years of experience as a librarian in academia, corporate, and law firm industries and...2019-03-0144 min
Getting Into InfosecAdrian Kaylor - From Network Admin to Trainer to Sales Engineer for LifeAdrian is a Sr. Sales Engineer at Splunk who focuses on security. He has worked for various security startups in the Bay Area for the past 15 years from vulnerability management to endpoint investigation to ML-based threat hunting.
Notes:
Had an interest in security early on, starting with opening binaries on Sierra King's quest games and looking for hints.
Took any opportunity he got to get exposed to security
His job as an instructor was very useful during support and later as a sales engineer
Keeps a Trello board for...2019-02-2234 min
Getting Into Infosec0day - From "Geek Squad" tech to DevSecOps0day (“Zero Day”) is a security researcher who specializes in distributed systems security.
Throughout his career journey through a "Geek Squad"-like service at Circuit City ("Firedog") to trading floors and corporate information security, he’s amassed significant experience in the industry. He is an example of how security consciousness is important even before you're an official security "pro."
In our conversation, 0day discusses getting into computers as an inner-city kid, acknowledging how our hangups can affect the growth of InfoSec, the benefits of older technology, and much more.
Episode Highlights
0day de...2018-10-1541 min
Getting Into InfosecDan Borges - From Infosec ITAdmin to Red Teamer to CTF OrganizerPermalink and Transcript: http://gettingintoinfosec.com/dan
In this first episode, I chat with Dan Borges, a professional red teamer, blogger, and security tool developer.
Dan Borges discusses his early experiences using and exploiting computer systems, how InfoSec experts work with companies, and the new tools he and others created and released this year!
Episode Highlights:
Dan explains how he became involved in information security,including his introduction to programming through a Lego roboticsprogram.
His early experiences as a pen-tester—i.e. a penetration tester, who2018-10-0858 min