keywords

cybersecurity, leadership, startups, failure, vendor trust, HACKERverse, communication, investment, innovation, beginner's mindset, job search, LinkedIn, networking, AI, personal branding, cybersecurity, lifestyle polygraph, superheroes, career advice, mentorship

summary

In this episode of No Password Required, host Jack Clabby and co-host Kaylee Melton engage in a thought-provoking conversation with Mariana Padilla, co-founder and CEO of HACKERverse.AI. The discussion revolves around the importance of embracing failure as a learning opportunity, the role of leadership in fostering a positive work environment, and the challenges faced in the cybersecurity vendor landscape. Mariana shares her insights on the need for better communication in the industry and the importance of a beginner's mindset in driving innovation. The conversation also touches on the future of investment in cybersecurity and the necessity of rebuilding trust within the industry. In this engaging conversation, Mariana discusses the challenges of job searching in the current landscape dominated by AI and the importance of networking and personal branding. She emphasizes that building trust and connections is crucial in the cybersecurity field. The discussion transitions into a fun segment called the lifestyle polygraph, where Mariana shares her thoughts on superheroes and their relevance to personal and professional growth. The episode concludes with Mariana providing insights on how to connect with her and her work.

takeaways

Embracing failure is crucial for personal and professional growth.

Leadership should focus on transparency and learning from mistakes.

A beginner's mindset can lead to innovative solutions in cybersecurity.

The cybersecurity industry struggles with communication and trust.

Venture capital influences the direction of cybersecurity startups.

Sustainable business practices are essential for long-term success.

The sales process in cybersecurity needs to be more efficient.

Understanding vendor interoperability is critical for security.

Cybersecurity vendors must demonstrate product viability effectively.

The industry must evolve to meet the rapid pace of technological change. You're competing against AI for some of these jobs.

Networking is so, so, so important.

The online application system has been dying for quite some time.

Your personal brand matters and you have to have one.

Conferences are a prime opportunity to peacock a little bit.

Batman has real feelings and real demons.

The correct answer is Star Trek.

Margot Robbie, I really like her.

You're on the fantasy cybersecurity squad.

Come follow me on LinkedIn for lots of shenanigans.

titles

Embracing Failure in Cybersecurity

The Importance of Leadership in Startups

Innovating with a Beginner's Mindset

HACKERverse: Revolutionizing Cybersecurity

Sound Bites

"It's all about leadership and leading by example."

"I think we have a gap here."

"We should focus on sustainably built businesses."

"It's just a bunch of nonsense."

"Networking is so, so, so important."

"Batman has real feelings and real demons."

"The correct answer is Star Trek."

"Margot Robbie, I really like her."

"You're on the fantasy cybersecurity squad."

Chapters 

00:00 Introduction to Cybersecurity Conversations

02:00 Embracing Failure as a Learning Opportunity

06:02 The Role of Leadership in Startups

09:00 The Value of a Beginner's Mindset

11:58 Understanding HACKERverse's Mission

13:59 Challenges in the Cybersecurity Vendor Landscape

17:08 Shaking Up the Status Quo in Cybersecurity

21:52 The Future of Investment in Cybersecurity

24:36 Navigating Job Searches in the Age of AI

29:35 The Importance of Personal Branding

30:23 Lifestyle Polygraph: Fun and Games

39:05 Superheroes and Their Lessons

43:45 Connecting with Mariana: Final Thoughts

summary

In this episode of No Password Required, host Jack Clabby and guest Trevor Hilligoss discuss various aspects of cybersecurity, including the transition from military service to the private sector, the importance of leadership in tech, and the misconceptions surrounding cyber threats. Trevor shares insights from his career, emphasizing the need for a proactive approach to cybersecurity and the value of empowering teams to innovate and learn from failures. In this engaging conversation, the speakers delve into memorable experiences in cybersecurity, including impactful interactions and the importance of sharing knowledge. They explore personal preferences through a fun lifestyle polygraph segment, discussing walk-up songs, breakfast favorites, and nerd culture. The conversation also touches on the lighter side of cybersecurity with prank calls and the dynamics of building an escape room team. The episode concludes with contact information and an invitation to connect further.

takeaways

• Trevor emphasizes the importance of metaphors in understanding cybersecurity.
• The public often fears sophisticated threats while ignoring more common dangers.
• Leadership in cybersecurity should focus on empowering teams rather than micromanaging.
• A proactive approach in cybersecurity can prevent victimization before it occurs.
• Technical leaders should understand core concepts to effectively guide their teams.
• Misconceptions about cyber criminals often stem from Hollywood portrayals.
• The military experience can significantly shape leadership styles in tech.
• Daily life in cybersecurity involves constant learning and adaptation.
• Sophistication in cyber threats does not always correlate with success.
• Cybersecurity is about both fighting threats and fortifying defenses. Memorable interactions can lead to impactful collaborations in cybersecurity.
• Sharing knowledge can help mitigate cyber threats effectively.
• Personal preferences can reveal a lot about an individual's character.
• Walk-up songs can reflect one's personality and professional identity.
• Breakfast choices can be a blend of cultural influences and personal tastes.
• Building a team for an escape room requires diverse skills and personalities.
• Nerd culture can foster connections and shared interests among individuals.
• Prank calls can be a humorous way to engage with public figures.
• Culinary competitions highlight the absurdity of turning survival into entertainment.
• Networking in cybersecurity can lead to unexpected opportunities.

titles

• Cybersecurity Connections: Memorable Moments
• The Lifestyle Polygraph: Fun and Insights
• Walk-Up Songs: A Reflection of Identity
• Breakfast Favorites: A Culinary Journey

Sound Bites

• "Tell them what needs to get done."
• "Empower your people to fail."
• "We can stop that identity theft."
• "I was in Europe giving a talk."
• "I sent him everything that we had."
• "I would get Jack Sparrow."
• "I love Star Wars."
• "I would call Gordon Ramsey."

Chapters

00:00 Introduction to Cybersecurity Insights

02:54 Career Path and Unexpected Experiences

05:55 Transitioning from Military to Cybersecurity

09:07 Daily Life at Spy Cloud

12:12 Leadership Philosophy and Management Style

14:53 The Nature of Cyber Threats

17:50 Technical Skills in Leadership

20:52 Misconceptions About Cyber Criminals

25:32 Memorable Cybersecurity Interactions

28:12 Lifestyle Polygraph Introduction

28:35 Walk-Up Songs and Personal Preferences

32:07 Breakfast Favorites and Culinary Influences

34:40 Building the Ultimate Escape Room Team

37:36 Nerd Culture and Personal Interests

39:02 Prank Calls and Culinary Competitions

41:20 Closing Thoughts and Contact Information

Summary 

The conversation discusses the extradition case of Julian Assange and the role of the US prison system in the decision. It also explores Tanya Janca's role at Semgrep and her passion for affordable cybersecurity education. Additionally, it touches on Tanya's experience in election security and the importance of transparency in the process. Tanya discusses her volunteer work with the Canadian government, where she helps educate students about cybersecurity. She talks about the importance of teaching young people about privacy, protecting digital devices, and understanding cyber threats. Tanya also mentions her involvement in the Cyber Titan competition and her efforts to promote cybersecurity as a career. She shares her experience writing the book 'Alice and Bob Learn Application Security' and her unique approach to making technical concepts accessible through stories and different learning styles. Tanya also talks about the importance of mentoring and how she has benefited from mentors throughout her career.

Keywords 

Julian Assange, extradition, US prison system, cybersecurity education, Semgrep, election security, transparency, volunteer work, Canadian government, cybersecurity education, privacy, digital devices, cyber threats, Cyber Titan, promoting cybersecurity, career, Alice and Bob Learn Application Security, technical concepts, stories, learning styles, mentoring

Takeaways

• The extradition case of Julian Assange highlights the differences in prison systems between the US and other Western democracies.
• Tanya Janca's role at Semgrep involves community management and education in the field of cybersecurity.
• Affordable cybersecurity education is crucial for organizations to effectively use security tools and integrate them into their programs.
• Election security requires centralization, knowledge sharing, and transparency to ensure public trust in the process. Volunteer work with the Canadian government focuses on educating students about cybersecurity, including topics like privacy and protecting digital devices.
• Promoting cybersecurity as a career is important, and initiatives like the Cyber Titan competition help engage high school students in learning about cybersecurity.
• Tanya's book 'Alice and Bob Learn Application Security' uses stories and different learning styles to make technical concepts accessible.
• Mentoring is valuable for personal and professional growth, and Tanya has both benefited from mentors and become a mentor herself.

Titles

• The Importance of Transparency in Election Security
• Cybersecurity as a Career: The Cyber Titan Competition
• The Value of Mentoring: Tanya's Experience as a Mentor and Mentee

Sound Bites

• "I am head of community and education, which is a role they made up just for me."
• "They decided, I think in 2017, we need to make a task force to make sure they know cyber."
• "Defenders need to understand attacks or they can't be good at defending, right? Like we're teaching them ethics as we teach them how to hack."
• "Alice and Bob are going to learn secure coding this time."

Chapters

00:00 The Extradition Case of Julian Assange

08:18 Affordable Cybersecurity Education at Semgrep

30:40 Tanya's Volunteer Work with the Canadian Government

31:35 Promoting Cybersecurity as a Career

34:02 Making Technical Concepts Accessible: 'Alice and Bob Learn Application Security'

39:45 The Value of Mentoring

Summary

In this episode of the No Password Required podcast, host Jack Clabby and co-host Kayley Melton interview Tamiko Fletcher, the CISO at Kennedy Space Center. Tamiko shares her journey from a small town in South Carolina to working at NASA and discusses her role as a CISO. She emphasizes the importance of mentorship, outreach, and diversity in the cybersecurity field. Tamiko also talks about the unique challenges of cybersecurity at NASA, such as patching during launches and balancing innovation with security. 

She emphasizes the need to know and learn about individuals' strengths, interests, and motivations in order to effectively place them on teams and utilize their skills. Tamiko also shares her experiences working at NASA and the changes she has witnessed over the years, including the evolution of IT and the increasing diversity at the Kennedy Space Center. She highlights the excitement and pride she feels when witnessing a launch and the impact of NASA's work on the world.

Keywords

NASA, cybersecurity, CISO, career trajectory, mentorship, outreach, diversity, patching, innovation, security, NASA, Kennedy Space Center, cybersecurity, teamwork, understanding people, IT evolution, diversity, launches, personal experiences, imposter syndrome, work-life balance, advocating for oneself, UFOs

Takeaways

• Tamiko Fletcher shares her journey from a small town in South Carolina to working at NASA as the CISO at Kennedy Space Center.
• She highlights the importance of mentorship, outreach, and diversity in the cybersecurity field.
• Tamiko discusses the unique challenges of cybersecurity at NASA, such as patching during launches and balancing innovation with security.
• She emphasizes the need for flexibility and adaptability in the ever-changing cybersecurity landscape. Understanding and valuing people is crucial in the workplace, as it allows for effective team placement and utilization of individual skills.
• The evolution of IT and the increasing diversity at NASA's Kennedy Space Center have been significant changes over the years.
• Witnessing a launch at NASA is an exciting and prideful experience, reminding employees of the impact of their work.
• Advocating for oneself and setting boundaries is important for maintaining work-life balance and overall well-being.

Sound Bites

• "I'm from a small town called Manning, South Carolina. If you look it up on the map, it's near Travel America. It's probably the best thing we got going for it, honestly."
• "Success stories like yours are common at NASA. And it's also based on one's definition of success, right? So everyone has their own definition of what success is for them."
• "I try to actually know and learn people... because I want to understand what makes them tick so I know where to place them on a team."
• "We are human first and then we are who our job is. And I want to be able to utilize that person, that whole person, what makes them happy, what makes them excited to come in every day."
• "I have a vast variety of folks on the team who help get cyber done."

 

Chapters

00:00 Introduction and Welcome to the Podcast

08:00 Education and Career Trajectory

25:48 Challenges and Innovations in Cybersecurity at NASA

34:4 8Building a Team and Emphasizing Diversity

41:30 The Diversity of the Cyber Team at NASA

54:25 Instilling Values in Teams to Change the Work Environment

Summary

Roman Sanikov, is the president of Constellation Cyber and specializes in cyber threat intelligence. In this episode, Roman discusses the importance of collaboration and transparency in the cybersecurity industry, particularly in combating ransomware attacks. He also emphasizes the need for a holistic approach to cybersecurity, involving education and empowerment for both employees and consumers. In this episode, Roman Reinhart shares his experiences as an undercover agent in the cybercrime world. He discusses maintaining a persona, dealing with forum behavior, and memorable arrests. He also emphasizes the importance of redemption and second chances. Roman also talks about his involvement with Helpster USA, an organization dedicated to providing life-saving treatment to young people in developing economies. He shares his hobbies of mushrooming and highlights the satisfying moments at work. Finally, he reflects on the cultural differences he experienced after moving overseas.

Takeaways

• Pig butchering schemes are a significant cause of financial losses globally, and it is important to approach the topic with compassion and nuance.
• Many scammers involved in these schemes are forced into this life against their will, either through human trafficking or being lured into it with false promises.
• Collaboration and transparency are crucial in the cybersecurity industry to effectively combat ransomware attacks and mitigate their secondary and tertiary impacts.
• A holistic approach to cybersecurity, involving education and empowerment for employees and consumers, is necessary to create a more secure environment. Maintaining a persona in the cybercrime world requires careful observation and adaptation.
• Memorable arrests can lead to redemption and second chances for individuals involved in cybercrime.
• Helpster USA provides life-saving treatment to young people in developing economies.
• Mushrooming is a rewarding hobby that allows for outdoor exploration and collection.
• Satisfying moments at work include helping clients have eureka moments and making positive changes.
• Cultural differences, such as politeness, can take time to understand and adapt to.

Chapters

00:00 Introduction to Pig Butchering Schemes (opening conversation)

02:18 Online Scams and Exploitation

03:41 Forced Labor and Human Trafficking

04:41 Approaching Scams with Compassion

05:39 Guest Introduction: Roman Sanikov

07:01 Roman's Role at Constellation Cyber

08:22 Promoting Transparency in Ransomware Incidents

10:17 Mitigating Secondary and Tertiary Impacts of Ransomware Attacks

11:14 The Ripple Effect of Ransomware Attacks

13:10 The Importance of Collaboration in Cybersecurity

14:58 Roman's Career Path and Background

19:34 Educating and Empowering Employees and Consumers

21:28 Avoiding Victim-Blaming in Cybersecurity

24:16 The Need for Collaboration and Transparency in the Industry

25:10 Balancing Non-Traditional Pursuits with College

26:37 Undercover Work and Building Relationships

33:07 Maintaining a Persona

36:25 Dealing with Forum Behavior

38:18 Memorable Arrests

41:25 Redemption and Second Chances

45:13 Helpster USA

48:16 Eccentricities of NHL Players

50:56 Life's Unexpected Moments

56:19 The Joy of Mushrooming

58:43 Satisfying Moments at Work

01:01:04 Learning Politeness in America

Summary

In this episode, Jo Anna joins Carlton Fields P.A. Jack Clabby and KnowBe4’s VP of Remote Publishing Teams Kayley Melton to tell the story of how her career has changed since starting at Rice University 17 years ago. From her early days as a receptionist at a hair salon to her current role as a security analyst, Jo Anna shares her journey in the cyber world and her fascination with artificial intelligence, stemming from her compliance-related responsibilities. Emphasizing a realism-based view on AI, she passionately advocates for a comprehensive understanding of AI, emphasizing that it’s neither inherently good nor bad.

Takeaways

• Stolen recordings from popular artists can sell for high prices on the black market.
• Cyber criminals are involved in various illegal activities, including stealing cryptocurrency and trading stolen, unreleased rap recordings.
• Law enforcement plays a crucial role in investigating and apprehending cyber criminals, and these crimes can have real-life consequences.
• The intersection of cybersecurity and AI presents challenges in assessing the risks associated with AI technologies.
• Community outreach and education are important in promoting cybersecurity awareness and encouraging more people to pursue careers in the field.

Chapters

00:00 Stolen Recordings and Cyber Criminals

01:29 Arrest of a Florida Man and Stolen Rap Recordings

02:27 The Allegations and Nicknames

03:26 The Connection Between Cyber Crime and Rap Music

04:23 Real-Life Consequences of Cybersecurity Crimes

05:52 The Role of Law Enforcement in Cybersecurity Crimes

06:50 Introduction of Guest Joanna Parker-Martin

07:18 Joanna's Role at Rice University

08:15 Protecting Data at Rice University

09:08 Joanna's Journey into Cybersecurity

10:04 Overcoming Challenges and Changing Career Paths

18:14 Joanna's Interest in Artificial Intelligence

19:22 The Intersection of Cybersecurity and AI

20:46 The Challenges of Assessing AI Risk

21:13 The Inevitability of AI

22:37 The Risks of Facial Recognition Technology

27:26 Joanna's Involvement with WiCys

29:48 Community Outreach and Cybersecurity Education

30:10 Misconceptions About Cybersecurity Professionals

32:32 The Lifestyle Polygraph

43:35 Joanna's Preference for Sponge Cake in Strawberry Shortcake

SummaryThe conversation discusses the arrest of Ola Segun Simpson Adagorin, a Nigerian national facing US federal charges for a business email compromise scheme. The collaboration between the FBI and Ghana is highlighted, along with the role of the legal attache job in solving crimes with international impact. The scheme and indictment details are explored, emphasizing the sophistication of the attack. Dr. Diana Burley, Vice Provost for Research and Innovation at American University, shares insights on cybersecurity education and workforce readiness. The importance of understanding human behavior in cybersecurity is discussed, along with strategies for engaging in conversations and addressing the search for cyber unicorns. In this episode, the importance of password security and the various methods to enhance it are discussed. The conversation covers common password mistakes, the use of password managers, multi-factor authentication, biometric authentication, and the future of password security.

Takeaways

• Collaboration between law enforcement agencies is crucial in solving cybercrime cases with international implications.
• Understanding human behavior is essential in addressing cybersecurity challenges and shaping effective policies.
• Digital literacy and foundational cybersecurity skills should be integrated into education across disciplines.
• Creating a culture of cybersecurity requires a balance between rules and creativity, and a focus on psychological safety.
• Engaging in conversations with strangers can be facilitated by finding common interests and making personal connections. Create strong and unique passwords for each online account.
• Avoid common password mistakes such as using personal information or easily guessable patterns.
• Consider using a password manager to securely store and generate passwords.
• Enable multi-factor authentication whenever possible for an added layer of security.
• Biometric authentication, such as fingerprint or facial recognition, can provide convenient and secure access to devices and accounts.
• Passwordless authentication methods, such as biometrics or hardware tokens, may become more prevalent in the future.
• Stay informed about emerging technologies and best practices in password security.

Chapters

00:00 Introduction and Arrest of Ola Segun Simpson Adagorin

01:24 Collaboration between FBI and Ghana

03:15 Scheme and Indictment Details

04:44 Legal Attache Job and Collaboration

06:10 Deterrence and Sealed Indictments

07:36 Introduction of Dr. Diana Burley

08:31 Dr. Burley's Background and Role at American University

09:23 Interest in Cybersecurity and Technology

10:21 American University's Role in Educating Policymakers

12:15 Engaging with Leaders and Shaping Policy

13:36 Engaging with Students and Future Leaders

14:28 American University's Focus on Policy and Research

15:27 Misconceptions about the Cybersecurity Workforce

16:23 Digital Literacy and Foundational Cybersecurity Skills

18:45 Retaining Skilled Members in the Academic Environment

19:43 Benefits of Engaging as a University Faculty Member

20:37 Understanding Human Behavior in Cybersecurity

22:05 Insights from Research on Human Behavior

23:25 Understanding Employee Behavior in Cybersecurity

24:47 Creating a Culture of Cybersecurity

27:08 Strategies for Initiating Conversations with Strangers

31:50 The Cyber Unicorn Project

35:08 Addressing the Search for Cyber Unicorns

41:45 Lifestyle Polygraph

50:57 Understanding Irrational Behavior and Self-Awareness

53:37 Engaging in Conversations with Strangers

02:30 The Importance of Password Security

10:15 Common Password Mistakes

18:45 Password Managers

27:10 Multi-Factor Authentication

35:40 Biometric Authentication

44:20 Passwordless Authentication

52:30 Future of Password Security

58:21 Conclusion

Summary

In this episode, Jack Clabby and Kayley Melton discuss the upcoming Sunshine Cyber Conference and their collaboration with Winn Schwartau. They also talk about the importance of diverse cybersecurity talent and their plans for a joint session at the conference. The hosts then interview Lisa Plaggemier, the executive director at the National Cybersecurity Alliance, who shares her career journey and the role of creativity and curiosity in cybersecurity. They also discuss the impact of COVID-19 on the cybersecurity industry and the importance of humor and satire in cybersecurity training. The episode concludes with a lifestyle polygraph segment. In this episode, the conversation covers various topics related to comedy, storytelling, and implementing change in organizations. The power of the internet is discussed, highlighting the potential consequences of online content. The guest shares her favorite comedy movies, emphasizing the comedic element in her expertise. The use of humor in training and awareness programs is explored, along with the challenges of implementing change in organizations. Dealing with roadblocks in security and the passion for security awareness are also discussed. The episode concludes with information on how to get in touch with the guest and a recap of what was learned.

 

Takeaways

• The Sunshine Cyber Conference features keynote speakers from the No Password Required podcast, including Winn Schwartau.
• The hosts will be doing their first on-site remote recording at the Sunshine Cyber Conference, featuring keynote speaker Tamiko Fletcher.
• The National Cybersecurity Alliance focuses on training and awareness, using creativity and humor to engage and educate people.
• Comedy movies, such as Monty Python and the Holy Grail, can be a source of expertise and inspiration.
• Humor can be effectively used in training and awareness programs to engage and educate participants.
• Implementing change in organizations can be challenging, but finding allies and overcoming roadblocks is essential.

 

Chapters

00:00 Introduction

01:28 Fishing for Potential, the RTFM Guide to Diverse Cybersecurity Talent

02:25 Live On-Site Remote Recording and Keynote Speakers

03:51 Sunshine Cyber Conference and Registration

04:46 Interview with Lisa Plaggemier

05:15 Background and Role at the National Cybersecurity Alliance

05:53 Transition to Security and Marketing Collaboration

06:22 Incident Response and Training and Awareness

07:20 Leadership and Skills in Cybersecurity

08:18 Kubikle Series and Creativity in Security

09:17 Curiosity and Creativity in Cybersecurity

10:48 Naming and Shaming in Pen Tests and Phishing Testing

11:41 DDoS Attack and Incident Response

12:38 Neurodiversity and Cybersecurity

13:21 Leading a Team During COVID-19

14:21 Creating Engaging Training Content

15:19 Global Data and Data Privacy Laws

16:18 Humor and Satire in Cybersecurity Training

18:47 Kubikle Series and Satire in Cybersecurity

20:41 Creating Kubikle Series and Future Plans

23:03Trust in Password Managers

24:22 The Importance of Curiosity in Cybersecurity

25:52 The Oh Behave Report and Behavioral Science

26:50 Communicating Security Information Effectively

28:44 Naming and Shaming in Phishing Testing

29:39 Accepting Risk and Escalation Plans

30:38 The Role of Security Teams and HR

32:35 Building Trust in Password Managers

33:32 Global Data and Cybersecurity Awareness

36:51 The Importance of Curiosity in Cybersecurity Hiring

40:03 The Underground Student-Led Newspaper

41:12 The Significance of Curiosity and Creativity in Career

50:44 The Power of the Internet

51:14 Favorite Comedy Movies

52:12 Using Humor in Training and Awareness

53:38 Implementing Change in Organizations

54:55 Dealing with Roadblocks in Security

55:45 Passion for Security Awareness

56:06 How to Get in Touch

56:37 What Was Learned

57:11 Closing Remarks

Jayson Street — Chief Adversarial Officer at Secure Yeti, a DEF CON Groups Global Ambassador, and a world-class awkward hugger Jayson Street, the dynamic Chief Adversarial Officer at Secure Yeti, has worn many masks throughout his life and career. He was once named a “World-Class Hacker” on the National Geographic series "Breakthrough Cyber-Terror," but he prefers the simpler title of Hacker, Helper, and Human. In this episode, Jayson joins Carlton Fields P.A.’s Jack Clabby and KnowBe4’s VP of Remote Publishing Teams Kayley Melton to talk about his journey of self-discovery that led him from being an award-winning janitor at McDonald's to one of the world’s most infamous ethical hackers. From his early childhood, Jayson has embraced hacking as a way of life, embodying the spirit of relentless exploration, innovation, and resilience. Like our favorite co-host Kayley, Jayson uncovered a new layer of his identity in his adulthood when he discovered that he is neurodivergent. He dives deep into how this new understanding altered his perception of himself, allowed him to embrace the various “masks” he wears throughout life, and discovered that his unique mind is actually his superpower. He also shares extraordinary stories of how he gained entry into some of the hardest-to-access cyber targets in the world. To start off the show, Jack and Kayley talk about the celebrity that’s topping the Hacker Celebrity Hot List as the celeb whose name is used most by cybercriminals when creating online scams. Hint: he’s just Ken… You can follow Jayson on LinkedIn here: https://www.linkedin.com/in/jstreet/ You can follow Jayson on Twitter here: @jaysonstreet You can learn more about Jayson here: https://jaysonestreet.com You can learn more about Secure Yeti here: https://www.secureyeti.com/

Kristin Demoranville — CEO and Founder of AnzenSage, defender of the food sector, and friend to primates What is the role of cybersecurity in food safety? Kristin Demoranville, CEO and Founder of AnzenSage, is committed to shielding the food sector from potential cybersecurity threats and ensuring the resilience of the entire food supply chain. Her dedication is not just a professional pursuit; it's a mission to prevent any compromise to public health. In this episode, Carlton Fields Cybersecurity Attorney Jack Clabby and No Password Required producer Rex Wilson speak with Kristin about everything from the deployment of autonomous tractors to the secure refrigeration of airport food, and Kristin sheds light on the other facets of daily life that are linked to the food supply chain. Kristen also shares how her love for wildlife led to her working with primates at the Louisville Zoo before making the transition into cybersecurity, and the value that podcasting has brought to her life. Kristen’s podcast, the Bites & Bytes Podcast, is her platform for discussing cybersecurity and food safety, and is recommended listening for fans of No Password Required. Bites & Bytes has fast become a medium for Kristin to share insights, connect with audiences, and explore the intersections of her diverse interests. Jack and Rex also delve into the intricacies of the Environmental Protection Agency's recent decision not to include cybersecurity in water system audits, and the questions this may raise about the security of water utility infrastructure. You can follow Kristin on LinkedIn here: https://www.linkedin.com/in/demoranvillekristin/ You can follow Kristin on Twitter here: @demokris You can learn more about AnzenSage here: https://www.anzensage.com/

Jessica Gulick — Founder and Commissioner of the US Cyber Games, CEO of the cyber marketing firm Katzcy, and someone who values perseverance over perfection Jessica Gulick is a woman of many trades. She is the Founder and CEO of the cyber marketing firm Katzcy, the Founder and Commissioner of the US Cyber Games, and a trailblazer who is working to make cybersecurity a sport that thrives. In this episode, Jessica joins Carlton Fields P.A.’s Jack Clabby and KnowBe4’s Kayley Melton to share her experiences as a female entrepreneur and the role that perseverance has played throughout her career. She also talks about the inception of the US Cyber Games, its commitment to bringing together elite cyber athletes, coaches, and industry leaders, and the purpose she hopes it will serve in the cyber world. Jack and Kayley also discuss the recent developments of Droidish, which may sound like a new Star Trek language but is actually the language being developed by the US military to allow AI drones to communicate with one another to become useful “tools” for many different purposes. You can follow Jessica on LinkedIn here: https://www.linkedin.com/in/jessicagulick/ You can follow Jessica on Twitter here: @CyberRiskLady You can learn more about US Cyber Games here: https://www.playcyber.com/

Allan Liska —Threat Intelligence Analyst at Recorded Future, the Ransomware Sommelier, and a guy with a mildly exciting expense account Allan Liska is a Threat Intelligence Analyst at Recorded Future. In this episode, Allan returns to No Password Required to talk with Carlton Fields Attorney Jack Clabby and KnowBe4’s Kayley Melton about his experiences in the ever-evolving battlefield of cyber threats, what has changed in ransomware since his first time on the show, and his perspective on the power of AI in the battle against cyber threats. He also updates us on his passion project: the upcoming release of the Yours Truly, Johnny Dollar comic book. In this thrilling new venture, Allan breathes new life into iconic insurance investigator Johnny Dollar by casting him in a role that hits close to home: a ransomware investigator. The best part was that he gifted the No Password Required team the chance to act out a scene from the comic. Jack and Kayley also talk about the dismantling of Qakbot, marking one of the largest-ever U.S.-led enforcement actions against a botnet (and also marking one of the best U.S. mission titles - Operation Duck Hunt.) You can follow Allan on LinkedIn here: https://www.linkedin.com/in/allan2/ You can follow Allan on Twitter here: @uuallan You can learn more about Recorded Future here: https://www.recordedfuture.com/

keywords

cybersecurity, zero trust, public speaking, ThreatLocker, AI threats, layered security, Rob Allen, cybersecurity insights, personal growth, industry challenges, technology, wearables, Buc-ee's, sports, DIY, tech addiction, Vision Pro, personal achievements, American culture, cybersecurity

summary

In this episode of the No Password Required podcast, host Jack Klabby engages with cybersecurity experts Kaylee Melton and Rob Allen, discussing Rob's journey to ThreatLocker, the importance of overcoming public speaking fears, and the principles of Zero Trust security. They explore common mistakes organizations make when implementing Zero Trust, the future of cybersecurity in relation to AI threats, and the public's perception of cybersecurity incidents. The conversation also touches on the significance of layered security approaches and personal experiences in the industry, culminating in a fun lifestyle polygraph segment. In this engaging conversation, the speakers delve into their personal tech addictions, particularly focusing on extravagant purchases like the Vision Pro. They explore the future of wearable technology and its integration into daily life. The discussion shifts to the uniquely American experience of visiting Buc-ee's, a gas station that offers much more than fuel. They also debate the joy derived from sports victories versus personal achievements like hitting a hole in one. Finally, the conversation wraps up with a humorous take on the challenges of mastering DIY skills.

takeaways

• Rob Allen's journey from engineer to Chief Product Officer at ThreatLocker showcases career growth in cybersecurity.
• Public speaking can be daunting, but practice and experience help overcome fears.
• Zero Trust is a mindset focused on security, not just a product to buy.
• Organizations often hesitate to adopt Zero Trust due to misconceptions about efficiency.
• Inertia is a major obstacle for companies considering Zero Trust implementation.
• AI can be a double-edged sword in cybersecurity, used for both protection and attacks.
• Many smaller cybersecurity incidents go unreported compared to major breaches.
• Layered security should involve diverse approaches, not just similar detection tools.
• Stress in the workplace can be managed by adopting a laid-back mindset.
• Mentorship plays a crucial role in personal and professional development. Some people have good addictions and some have bad ones.
• The Vision Pro is an expensive but amazing piece of tech.
• Wearable technology is becoming increasingly common.
• Buc-ee's is a unique and quintessentially American experience.
• Experiencing a sports win can be as joyful as personal achievements.
• DIY skills can be both challenging and rewarding.
• Tech purchases often lead to guilt and reflection.
• The future of wearables may include more practical and stylish designs.
• Personal experiences shape our views on technology and culture.
• Mastering DIY can lead to greater independence and satisfaction.

titles

• Tech Addictions: The Price of Innovation
• The Future of Wearables: Are We Ready?
• Buc-ee's: A Journey into American Culture
• Sports Wins vs. Personal Achievements: What Brings More Joy?

Sound Bites

• "It's a process, you know, start somewhere."
• "Deny by default, permit by exception."
• "Zero Trust is not a product. It's a mindset."
• "The beauty of Zero Trust is it's not reactive."
• "AI is just as likely to be used against you."
• "I am never going to be that guy."
• "Buc-ee's is the most American thing ever."
• "I would very much like to have a hole in one."
• "I would like to be good at DIY."

Chapters

00:00 Introduction to Cybersecurity Insights

03:05 Rob Allen's Journey to ThreatLocker

05:49 Overcoming Public Speaking Fears

08:55 Understanding Zero Trust Security

12:12 Common Mistakes in Zero Trust Implementation

15:02 The Future of Zero Trust and AI Threats

18:05 Public Perception of Cybersecurity

21:08 Layered Security Approaches

24:02 Personal Experiences and Lessons Learned

26:58 Lifestyle Polygraph and Fun Questions

27:11 Tech Addictions and Unnecessary Purchases

32:05 The Future of Wearable Technology

34:08 Experiencing Buc-ee's: The Most American Gas Station

36:44 Joyful Moments: Sports Wins vs. Personal Achievements

39:03 Mastering DIY Skills: A Personal Journey

Courtney H. Jackson — CEO of Paragon Cyber Solutions, family-night game champion, and calculated-risk taker Courtney H. Jackson is the CEO of Paragon Cyber Solutions, a Tampa-based cybersecurity solutions provider. If Courtney’s name sounds familiar, that may be because she was awarded the Global 2022 Cybersecurity Woman Entrepreneur of the Year! In addition, Courtney is a 2023 Business Woman of the Year Honoree and a veteran of the U.S. Navy, where she was introduced to the world of cyber and IT. In this episode of No Password Required, Courtney joins Carlton Fields P.A. Jack Clabby and KnowBe4’s Kayley Melton to talk about her path to becoming a CEO, the resources that she wished she’d had when starting her career in this industry, how she uses a Cybersecurity Apprenticeship program approved by the Department of Education and Department of Veterans Affairs and SkillBridge to fill her growing team with talent, and the “one” family-night game that brings out her family’s competitive spirit. Jack and Kayley also talk about the unlikely duo behind the 2016 Bitfinex hack - one of whom is most known by her persona as the aspiring rapper “Razzlekhan.” You can follow Courtney on LinkedIn here: https://www.linkedin.com/in/courtneyhjackson/ You can follow Courtney on Twitter here: @mrschjackson You can learn more about Paragon Cyber Solutions here: https://paragoncybersolutions.com/

Lisa Ventura — founder of Cyber Security Unity, Member of the Order of the British Empire, and appreciator of 80s soap operas Lisa Ventura MBE is the founder of Cyber Security Unity, a UK-based organization seeking to unite the cyber security industry globally. In this episode of No Password Required, Lisa joins Carlton Fields, P.A.’s Jack Clabby and KnowBe4’s Kayley Melton to share how she went from working on the UK version of “Who Wants to be a Millionaire?” to becoming an award-winning leader in the cybersecurity industry. She also tells us about receiving her honorary award from the British Parliament, her love of 1980s U.S. soap operas, and the sci-fi world she’d most want to live in. Jack and Kayley discuss the drastic increase in the amount of cash Americans lost to text-messaging scams in recent years. Why is this type of attack showing so much growth? How can consumers continue moving forward? They talk about all of that and more. A special thanks to the great Sarina Gandy for producing this episode. You can connect with Lisa on Twitter here: @cybergeekgirl You can connect with Lisa on her personal website here: https://lisaventura.co.uk/ You can learn more about Cyber Security Unity here: https://csu.org.uk/

Nick Biasini - Threat researcher at Cisco Talos and a veteran of the highest profile cyber incidents who roasts his own coffee beans Nick Biasini leads a team of threat researchers at Cisco Talos who patrol the cutting edge of the threat landscape. Not only has he investigated some of the most significant cyberattacks in history, but he also has hands-on experience with the 1980 Olympic bobsled track. In this episode of No Password Required, Nick joins Carlton Fields’s Jack Clabby and KnowBe4’s Kayley Melton to talk about his start as an FAA security analyst, some of his top discoveries during his threat research days, and the value of getting comfortable with failure. He shares his story of investigating the SamSam ransomware and his predictions for how AI might be able to support businesses in the future. Kayley and Jack break down the $10 million reward for information leading to the arrest or conviction of alleged Russian ransomware affiliate Mikhail Matveev. You can connect with Nick on Twitter here: @infosec_nick Check it out on YouTube here: https://tinyurl.com/4mtbd4ed

Gotham Sharma is a cybersecurity consultant, writer, educator, and stand-up comic. He’s on a mission to help folks build successful careers in information security through his latest venture, AccessCyber.co. In his training, Gotham leverages humor to make security awareness and education relatable to audiences of various technical backgrounds. Inspired by satire publications like The Onion, Gotham recently launched an infosec magazine called Brute Farce Attack, one of the many projects on his growing list of side hustles. In this episode of No Password Required, Gotham joins Carlton Fields’s Jack Clabby and KnowBe4’s Kayley Melton to share how his life changed after a well-intentioned anti-mentor inspired him. Jack and Kayley discuss IARPA’s plan to hack hackers’ brains as the agency considers reimagining security with cyberpsychology-informed network defenses. You can connect with Gotham on Twitter here: @GothamJSharma You can learn more about AccessCyber here: https://accesscyber.co/ You can learn more about Brute Farce Attack here: https://www.brutefarceattack.com/

Bianca Lewis, also known by her hacker handle BiaSciLab, is a next-generation teenage hacker and the CEO of Girls Who Hack. Bianca’s cybersecurity journey started at age 11 when she was part of a team who successfully compromised a simulated election-reporting system at DEF CON 26. In this episode of No Password Required, Bianca joins Jack Clabby and KnowBe4’s Kayley Melton to share her experiences as a teenage hacker, her advice for being a confident public speaker, and her other biggest passion in life: the theatre. Jack and Kayley discuss the joint investigation between German police, the FBI, and law enforcement in Ukraine and the Netherlands and how they took down the DoppelPaymer ransomware group. You can connect with Bianca on Twitter here: @BiaSciLab

Louis Nyffenegger is the founder and CEO of PentesterLab. On this episode of No Password Required, Louis shares how he built his penetration-testing training company, why empathy is crucial to application security, and what can be learned from having hobbies you’re not good at. He also tells us his favorite pen testing story, explains the early days of smartwatch security, and describes his journey from France to Australia. The entire No Password Required team (Ernie, Jack, Rex, Devin, and Sarina) celebrate Ernie’s final episode by participating in a game show challenge about his life. Learn how many tattoos he has, how many countries he’s been to, and more juicy facts that we’ve all been dying to know. You can connect with Louis on Twitter here: @snyff You can learn more about the PentesterLab here: https://www.pentesterlab.com/

Joey deVilla is a Senior R&D Content Engineer at Auth0, a division of Okta. After hours, Joey is known as the Accordion Guy and spends his time playing music and sharing his nerdy takes on his two personal blogs. In this episode, Joey joins Jack and guest-host Tashya Denose (host of the Do We Belong Here podcast) to talk about his love for the tech community, his unique assortment of passions, hobbies, and jobs, and how he continues to trust the serendipity of his life even when the path seems unclear. Tashya and Jack talk about DoNotPay’s $1 million offer to lawyers to let AI take their place before the Supreme Court and what this kind of technology could mean for the future. You can connect with Joey here: globalnerdy.com and here: joeydevilla.com You can learn more about the Legendary Nanaimo Bar here: https://www.nanaimo.ca/about-nanaimo/nanaimo-bars

General (Ret.) Frank McKenzie is the Executive Director of the Global and National Security Institute at the University of South Florida and the Executive Director of Cyber Florida. In April 2022, General McKenzie retired from the Marine Corps after completing over 42 years of service. He joins the No Password Required team to discuss the evolution of his leadership style over time, a typical morning for a four-star military general, and his preference for Star Trek over Star Wars. In honor of the holidays, Ernie and Jack discuss one of the most iconic (and shocking) Christmas movies of all time - Gremlins.

Andy Sekela is the Private Sector Coordinator for the FBI Tampa Division, who may just be on a mission to have the world’s coolest resumé. In this episode, Andy joins the No Password Required team to talk about his diverse career path, including his time as an officer on a nuclear submarine, public corruption investigations, and his best “wow, I’m an FBI agent” story. He also explains the FBI's role in investigating cybersecurity breaches, what happens after an IC3 report, and career opportunities at the agency. Jack and Ernie discuss the dark web's recent offer for sale of 487 million WhatsApp numbers and how modern businesses handle suspected website scraping.

Hannah Sutor is the Senior Product Manager at GitLab and Digital Privacy Advocate at The Privacy Chick. Hannah joins the No Password Required team to talk about how she discovered privacy and cybersecurity in college, what she expects for the future of usernames and passwords, and her adventures while traveling in an RV with her family for a year. Bonus: she also reveals her recipe for the best pumpkin spice latte. Ernie and Jack discuss the proposed U.S. labeling program for IoT consumer devices and some potential cyber and privacy implications.

keywords

cybersecurity, 5G, 6G, AI, quantum computing, global collaboration, career advice, creativity, technology, Dr. Anmol Agarwal

summary

In this episode of No Password Required, host Jack Clabby and cybersecurity expert Dr. Anmol Agarwal discuss the evolving landscape of cybersecurity, focusing on the challenges and innovations surrounding 5G and 6G networks, the integration of AI and quantum computing, and the importance of global collaboration in addressing cybersecurity threats. Dr. Agarwal shares her insights on the significance of creativity in the field, offers advice for those entering the cybersecurity space, and engages in a fun lifestyle polygraph segment that highlights her personal interests and professional aspirations.

takeaways

• Start posting about what you're learning immediately to gain exposure.
• The transition from 5G to 6G involves long-term security thinking.
• AI and quantum computing are complementary technologies in cybersecurity.
• Global collaboration is essential for effective cybersecurity solutions.
• Creativity is crucial in addressing emerging cybersecurity challenges.
• Focus on personal interests rather than peer pressure in career choices.
• Healthcare is a sector particularly vulnerable to AI-driven attacks.
• Continuous learning and sharing knowledge is vital for career growth.
• Security standardization is a key aspect of developing new technologies.
• Engagement and interaction are important in educational and professional settings.

titles

• Navigating the Future of Cybersecurity
• The 6G Security Landscape
• AI and Quantum: The New Frontier
• Collaborative Cybersecurity: A Global Perspective

Sound Bites

• "Start posting about what you're learning immediately."
• "We're going to be thinking in a serious way."
• "My role specifically on this team is security standardization."
• "I want to work on AI security."
• "Security is a team effort."
• "AI can make mistakes as well."
• "Focus on what you like instead of worrying about others."
• "Creativity is probably the most important thing."
• "I would add a journalist to my cybersecurity dream team."

Chapters

00:00 Introduction to Cybersecurity Insights

02:30 Exploring 5G and 6G Security Challenges

11:10 The Intersection of AI, Quantum Computing, and Cybersecurity

18:00 Global Collaboration in Cybersecurity

24:57 Advice for Aspiring Cybersecurity Professionals

26:48 The Role of Creativity in Cybersecurity

31:27 Lifestyle Polygraph: Fun and Insightful Questions

Charles Shirer is the Chief Executive Officer of GlobalWave Consulting, an IT and cybersecurity consultancy. Known as the @bsdbandit to his 20,000+ Twitter followers, Charles is often considered the most positive person in cybersecurity (and for good reason!). In this episode, Charles joins the No Password Required team to tell us about how his childhood love for video games led to his passion for everything computer-related, what inspires him to share motivational messages on Twitter, and the importance of striving for a positive mindset in life. Jack and Ernie discuss the United Kingdom’s potential privacy enforcement against TikTok, and the regulatory regime for collecting the personal data of minors.

Kayley Melton is the Vice President of Security Awareness Company Courseware and Labs at KnowBe4. Although she can’t share too much about what the "labs" portion of her job entails, let's face it, the secrecy makes her even cooler. Kayley joins the No Password Required team to tell us about her journey from an Appalachian farm to fine arts major at a self-described “bougie” college, and from there to VP at a leading security awareness company and the challenges that she overcame to get there. Kayley also shares the story of how a Craigslist ad changed her life, who the Chewbacca is to her Han Solo, and the lessons she’s had to learn as a woman in this industry. Ernie, Jack, and Pablo discuss something likely to shock 90s babies; the cybercriminal “TarTarX” has stolen the data of 69 million Neopets users.

Serge Jorgensen is a founding partner and CTO at Sylint Group, where he provides response and remediation guidance on international espionage incidents, cyber-security attacks, and counter cyber-warfare. An engineer by training, he has a bias for action over theory. In this episode, Serge joins the No Password Required team to talk about his time in the industry, his experience coaching sailing at the Paralympic Games, and his favorite childhood toy. Ernie, Jack, and Pablo discuss the cybercriminals that are posing as Twitter employees and journalists to breach academic and Middle East policy data. In the Technologue segment, Pablo teaches the team the history of the world’s largest hacking competition, DEF CON.

Tashya Denose is a Senior Manager of Cybersecurity Analysis at Capital One. In this episode, Tashya joins the No Password Required team to discuss the state of the cybersecurity pipeline and what needs to be done and a LOT of other rad stuff (including her feelings about the word “rad” making a comeback!) Ernie, Jack, and Pablo discuss the rogue freelancers that were taking advantage of remote work opportunities to hide their true identities and earn money for North Korea. Pablo presents the new Technologue game show where the team attempts to answer questions about the first-ever computer worm.

Vice Admiral Mike McConnell is the former director of the National Security Agency (NSA) and the current Executive Director of Cyber Florida. In this two-part episode, VADM McConnell stuns the No Password Required team to silence with stories of his life, which just so happens to resemble a riveting Grisham novel. A few highlights include the reason he refuses to drink cheap beer (or formaldehyde), some iconic moments during his time at the NSA, and more. Ernie, Jack, and Pablo break down the Strengthening Cybersecurity Act and the biggest commitment one can make: cowboy boots. In the Technologue segment, Pablo discusses the importance of cloud vulnerability evolution.

Vice Admiral Mike McConnell is the former director of the National Security Agency (NSA) and the current Executive Director of Cyber Florida. In this two-part episode, VADM McConnell stuns the No Password Required team to silence with stories of his life, which just so happens to resemble a riveting Grisham novel. A few highlights include the reason he refuses to drink cheap beer (or formaldehyde), some iconic moments during his time at the NSA, and more. Ernie, Jack, and Pablo break down the Strengthening Cybersecurity Act and the biggest commitment one can make: cowboy boots. In the Technologue segment, Pablo discusses the importance of cloud vulnerability evolution.

Dr. Melissa Dark is the Founder of DARK Enterprises, a non-profit organization dedicated to developing and supporting cybersecurity education at the secondary level. Before that, Dr. Dark worked in graduate and college cybersecurity education for over 20 years, as a professor at Purdue University. In this episode, Dr. Dark joins the No Password Required team to discuss her career in “training the trainers,” the early days of cybersecurity education as an academic subject, and how to encourage cybersecurity awareness among today’s students. Ernie and Jack discuss the Pinellas Park, Florida, cybersecurity analyst alleged to have stolen almost $600,000 in cryptocurrency and how he supposedly did it.

Thomas Vaughn is the current Chief Information Security Officer (CISO) of the City of Tallahassee and the former CISO of Florida. A kindhearted introvert who began his career in the Army and then the U.S. Coast Guard, Thomas thrives on helping other people however he can, whether it’s with cybersecurity practices or serving as a volunteer fireman in his spare time. In this episode, Thomas joins the No Password Required team to talk about his journey from the military to cybersecurity, the top-tier candy that he can’t live without, and the philosophical lessons that he carries with him throughout his life. Ernie, Jack, and Pablo discuss the UCF student who created an algorithm to track Elon Musk’s private jet. In the Technologue segment, Pablo explains web tracking and what it means for the everyday internet user.

Debbie Janeczek is the Cyber Threat Management Leader and Technology Executive at Wells Fargo. At her core, Debbie is an outdoorswoman who is passionate about conquering the mountains of Colorado and beyond with her sidekick, her dog, Jack. In this episode, Debbie joins the No Password Required team to talk about her journey from becoming a Naval Intelligence officer where she hated all things cybersecurity to becoming a leader in the industry thanks to inspiration from the great leaders surrounding her (lucky for us!) Debbie is passionate about practicing mindfulness and embracing nature to maintain a healthy work-life balance and stay grounded in the chaos of the ever-changing cybersecurity world. Ernie and Jack (co-host Jack, not dog Jack) discuss the relaunching of the darknet market AlphaBay by one of the previous founders who escaped the bust in 2017, DeSnake, and the long-standing debate of how exactly to pronounce his name. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

In this conversation, Tanya Janca discusses the importance of secure coding in the cybersecurity landscape, sharing her journey and experiences as both a developer and educator. She emphasizes the need for software developers to understand security principles, the role of OWASP in providing resources, and the challenges of balancing user experience with security measures. Tanya also highlights the significance of validation in development and the implications of implied trust in cybersecurity practices.

In this early-pandemic episode, Allan Liska, a senior security architect at Recorded Future discusses ransomware, why the best cybersecurity advice will almost never land you a talk at Black Hat, and why calling someone JarJar cuts way deeper than calling them a script kitty. The team also discusses Alan's path into the cybersecurity world; we knew the No Password Required tradition of atypical paths into the cyber world was safe when he started his journey with a sociology degree and a willingness to crawl under a desk. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

In this lost episode from season 1 of No Password Required, Jack Clabby sits down with hosts Ernie Ferraresso and Bill McQueen to discuss cyber liabilities and the potential legal consequences that businesses face from cybersecurity breaches and, more importantly, what they can do to protect themselves. Note that this episode was recorded on 2/27/2020. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Asim Fareeduddin is the Vice President of IT Security & Regulatory Controls Assurance at the RELX Group. In addition to his impressive professional resume, Asim is a guy who is never afraid to take a chance - from stand-up comedy to teaching masters-level students at Georgia State University; he’s done it all. In this episode, Asim joins the No Password Required team to talk about how he went from an accountant to Vice President of a global company, how becoming a dad has changed him, and his most cherished accomplishment - high-fiving Busta Rhymes at the 2006 B.E.T. Awards. Ernie and Jack talk about why fist bumps have officially surpassed handshakes as the coolest greeting. More importantly, they discuss cyber workforce development and why right now may be the best time for new workers to join the industry. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Winn Schwartau is a security, privacy, infowar, and cyber-terrorism expert who has been paving the way in cybersecurity since 1983. He is often referred to as the “Civilian Architect of Information Warfare” and is known for his straight-shooting, no-BS originality. In this episode, Winn joins the No Password Required team to talk about how he went from the world of rock-and-roll to cybersecurity, times when he pissed off the CIA, and why Louis Armstrong wasn't the best teacher he ever had (you read that right!) Ernie, Clabby, and Pablo talk about the reality of cybersecurity policies and employee training. In the Positively Cyber segment, Pablo introduces Snoop Dogg as the Dark Net Intelligence Analyst of our fictitious organization. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Charity Wright is a Cyber Threat Intelligence Analyst at Recorded Future who specializes in Chinese threats and disinformation. Charity is a Super Mario-loving extrovert who utilizes her research and inferencing skills in both of her full-time jobs; threat analyst and mom. Charity is a Chinese Linguist who often spends her workdays scrolling through social media searching for trolls and Chinese disinformation/propaganda. In this episode, Charity joins the No Password Required team to talk about how she came to be a linguist in the U.S. military, possibilities of where China will go in the future, and why curiosity has been one of the most essential aspects of her career. Ernie, Clabby, and Pablo talk about Clabby’s “Yahoo! news rule” and the channels they use to stay informed in the ever-changing cyber industry. In the Positively Cyber segment, Pablo introduces the sophisticated, yet mysterious, Jay Gatsby as the Chief Financial Officer of our fictitious cybersecurity organization. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Dr. Greg Hall is a Research Scientist at the Institute for Human-Machine Cognition and the University of West Florida. Dr. Hall is a Corvette-driving car lover who considers ALF to be one of the classics and has great taste in hats. He also does research in full-spectrum cyber operations and contributes to the Florida Cyber Range, a digital platform that provides training and testing solutions for academic, government, military, and industry. In this episode, Dr. Hall joins the No Password Required team to discuss his research in full-spectrum cyber operations, why the sit-and-spin has made a place in history as the best (and possibly most dangerous) childhood toy, and more. Ernie, Clabby, and Pablo discuss the government’s Rewards for Justice Program and the new $10 million reward for information. In the “Positively Cyber” segment, Pablo challenges Clabby by welcoming Harvey Specter to our fictitious cybersecurity organization as a Privacy and Cybersecurity Lawyer. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Dan Burke is the Cyber Practice Leader at Woodruff Sawyer, one of the largest insurance brokerage and consulting firms in the US. Dan is a natural optimist and family man who believes every day is going to be the best day and the next shot will always be his greatest golf shot. In this episode, Dan joins the No Password Required team to talk about his personal connection to Colby-jack cheese, the most misunderstood things about cyber risk and insurance, and his bucket-list golfing spots. Ernie, Clabby, and Pablo discuss the recent Colonial Pipeline/Bitdefender controversy and the pros and cons of publicizing intelligence that could help ransomware victims. In the “Positively Cyber” segment, Pablo introduces the iconic Winston Wolfe to our fictitious cybersecurity organization as a Data Loss Prevention freelancer. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Phillip Tarrant is the SOC Technical Manager at Compuquip Cybersecurity who is passionate about many things in life, including his pet chickens, building things both with and without a keyboard, disconnecting in nature, and welcoming people into the field of cybersecurity. In this episode, Phillip joins the No Password Required team to talk about his unique journey into the field of cybersecurity, why chicken diapers are crossing the line, why the Empire is in serious need of some data protection policies, and more. Ernie, Clabby, and Pablo discuss the presidential administration’s new cybersecurity initiatives in response to the SolarWinds attack and what they mean for the future. In the “Positively Cyber” segment, Pablo compares two members of the Mystery Incorporated gang and analyzes whether Scooby-Doo or Velma would be the better fit for our fictitious cybersecurity organization. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Rachel Tobac is the CEO and co-founder of Social Proof Security who hopes to one day work herself out of a job by improving education and awareness of social engineering attacks. In this episode, Rachel joins the No Password Required team to talk about her path from studying behavioral psychology to starting a successful cybersecurity company, why shih tzus would be the best canine cybersecurity professional, how her quirky skills serve as an asset to her company, her passion for improving diversity in the cyber and technology industries, and more. BONUS: she sings an info-sec sea shanty that is as catchy as it is informative. Clabby and Ernie talk about the recent hack on the Molson Coors Beverage Company, and in the “Positively Cyber” segment, Pablo analyzes why the Mandalorian would be the perfect fit for showing our new recruits “the way” in our fictitious cybersecurity organization. You should check this episode out soon; if Rachel is correct about the time travel butterfly effect, you may never get another chance... Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Roger Grimes is the defense-driven evangelist at KnowBe4 who confidently defines himself as the best in the world at defending against hackers. In this episode, Roger joins the No Password Required team to discuss how being a terrible accountant led him to the world of cybersecurity, why octopi cannot be trusted, and why music is the best way to create powerful connections. Additionally, Clabby and Pablo discuss insights from the National Security Agency’s 2020 cybersecurity year in review. In the “Positively Cyber” segment, Pablo analyzes why Hermione Granger’s work ethic and determination would make her the perfect fit for Senior Director of Threat Intelligence in our fictitious cybersecurity organization. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Summary

This conversation explores the U.S. Army's investment in cybersecurity compliance for small businesses, the importance of mentorship in the defense industry, and the unique career path of Sabrina McIntyre at KPMG. Sabrina discusses her transition from art to cybersecurity, the challenges of navigating compliance standards, and her advocacy for women in the field. The episode also touches on the intersection of art and cybersecurity, the vision for a cybersecurity museum, and fun personal insights from Zabrina's life.

Takeaways

• The U.S. Army is investing in small business cybersecurity compliance.
• Certification programs can help defense contractors meet compliance.
• Creating a secure environment for small businesses is essential.
• Mentorship programs are crucial for small business growth.
• Zabrina's career path showcases the value of diverse experiences.
• Understanding compliance standards like PCI DSS is challenging but necessary.
• Being open to new opportunities can lead to fulfilling career paths.
• Women in Cybersecurity is making strides in community building.
• Creativity is important in the cybersecurity field.
• Cybersecurity education should be accessible to all.

titles

• Investing in Cybersecurity for Small Businesses
• Navigating Compliance in the Cybersecurity Landscape
• Zabrina McIntyre: A Unique Career Journey
• Empowering Women in Cybersecurity

Sound Bites

• "Certification program for defense contractors"
• "Largest federal government mentor-protege program"
• "Cybersecurity maturity model is crucial"
• "Be your own best advocate in your career"
• "If you can see it, you can be it"
• "We need more creative people in cybersecurity"
• "Cybersecurity should be accessible to everyone"
• "Umbrellas don't work in Seattle"

 

Chapters

00:00 Introduction to the Next Generation Commercial Operations Program

02:51 The Importance of Cybersecurity Compliance for Small Businesses

05:45 Zabrina McIntyre's Role at KPMG

08:54 Zabrina's Unique Career Path

11:51 Navigating Cybersecurity Standards

14:48 Advice for Aspiring Cybersecurity Professionals

17:58 Women in Cybersecurity: Building Community

20:59 The Intersection of Art and Cybersecurity

24:04 Zabrina's Vision for a Cybersecurity Museum

27:02 Lifestyle Polygraph: Fun Questions with Zabrina

30:09 Key Takeaways and Closing Thoughts

 

Shane Young is a penetration tester at Rapid7 whose real-life acting and cyber skills would have been a great addition to the “Oceans 11” team. In this episode, Shane joins the No Password Required team to share some of his exciting stories as a penetration tester, how hacking his high school's network got him into the world of cybersecurity, and why LEGO bricks are really made for adults, not kids. Additionally, Shane, Ernie, and Clabby discuss The Mandalorian and the Star Wars universe (no spoilers!) Clabby and Ernie explore the controversial GoDaddy phishing campaign and the ethical ramifications of company phishing tests. In the “Positively Cyber” segment, Pablo Torres analyzes why Mulan has the skills and dedication to be a savvy network defender in our fictitious cybersecurity organization. LEGO® is a trademark of the LEGO Group of companies, which doesn't sponsor, authorize, or endorse this podcast. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Melinda Lemke is the Head of Information Security at King & Spalding with a decade of leadership experience in the cyber industry. In this episode, Melinda joins the No Password Required team to talk about her experience as a woman and leader in this field, how professional mentors can enhance success, and the best yacht-rock bands of all time. Maybe most importantly, the team discusses the John Hughes movie universe and why Kevin McAllister is a better problem-solver than Ferris Bueller. Additionally, Ernie and Clabby explore the importance of password security and real-world ransomware attacks, including the ransomware attacks on Miami-Dade county schools. In the “Positively Cyber” segment, Pablo Torres explores the reasons why John Wick would be the perfect candidate for an elite penetration-tester position in our fictitious cybersecurity organization. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

Stephen “Scuba” Gary is a cyber intelligence professor at the University of South Florida with over 15 years of experience in the cybersecurity industry. In this episode, Scuba joins the No Password Required team to discuss his journey in the field of cybersecurity, how one gets the nickname Scuba without scuba diving, and why math nerds throw the best parties. Scuba, Ernie, and Clabby analyze ransomware attacks in Florida, security lessons to be learned from the 2020 elections, and more. In the “Positively Cyber” segment, Pablo Torres explores why Peter Quill, aka the Star Lord, aka the leader of the Guardians of the Galaxy, would be a perfect fit for Chief Technology Officer in a fictitious cybersecurity organization. Follow us on Facebook, Instagram, Twitter and LinkedIn | @NoPasswordPod

With the rise of cybercrime comes the need for cyber forensics, and this episode’s guest, Dr. LeGrande Gardner has been in the field of digital evidence for more than 30 years. Currently, he is an instructor in the Criminology Department at the University of South Florida, where he also serves as the Director of the MS in Cybercrime degree program and administrates the Graduate Certificate Program in Digital Forensics.  

Co-hosts Bill McQueen and Ernie Ferraresso joined Dr. Gardner for a discussion about digital evidence, its role in the justice community, and opportunities for the future. The field of cyber forensics started rather simply, as a way to detect and connect the pieces of a crime.  As evidence was being submitted into the justice system, a need for increased scientific methodologies and protocols grew to preserve legal integrity and the rights of the accused.  

Cyber forensic professionals are able to examine a range of devices, networks--even the cloud--to uncover criminal activity and gather evidence that can lead to legal prosecution. Dr. Gardner discusses how advances in computer science have made an impact in the ability to locate criminals. In his first example, he shares how hash algorithms are used to catch pedophiles and provide a digital footprint to catch larger pedophile rings. Next, he details the Target breach, where criminals were able to hack the nationwide retailer via their air conditioning’s computerized system. Then, he talks about how search warrants involving cybercrime uncovered how criminals were using their neighbor’s open IP addresses, putting routers unknowingly in their attics, and other deviousness that thwarted detection and capture. Unfortunately, Dr. Gardner reveals, international criminals are even more elusive, but that having solid cyber forensics can help law enforcement agencies from multiple countries coordinate efforts.

Cyber forensics now has several sub-specialties, such as cloud forensics, network forensics, malware forensics, IoT forensics, and vehicle forensics.  Many colleges and universities are developing programs and training around these expanding and evolving sub-specialties. Dr. Gardner points out that this is a great time to be a cybercriminal and there will be an increased need for cyber forensic technicians and digital evidence specialists to combat the widespread crime.  

There is a push for law enforcement officers to receive training in cyber forensics to facilitate crime scene collections, recognize patterns, and maintain protocols.  Dr. Gardner’s history in law enforcement and as a Task Force Agent with the FBI’s Cyber Crime Unit gave him a special insight to device and data collection at crime scenes and he shares his thoughts on training opportunities in police academies.  

Hackers and cyber criminals aren’t the only reasons the field of cyber forensics is growing.  Corporations are also employing their own forensic teams. Companies use digital evidence to substantiate their security and to protect themselves if a situation with an employee requires documentation.  Civil matters are increasingly including digital evidence, and professionals are being called upon to provide expert testimony.

The need for cyber forensics professionals is growing exponentially, according to Dr. Gardner. There is no end in sight for the potential of this field and the importance it will play in protecting our security and stopping crime.

TIME STAMPS

00:43  Meet Our New Co-host: Ernie Ferraresso, Associate Program Director of Cyber Florida

02:43 Who is Dr. LeGrande Gardner, Director of the MS in Cybercrime Degree Program, University of South Florida

03:15  What is Cyber Forensics and Digital Evidence?

04:47  Recognizing the field of Cyber Forensics

05:59  Following the Rules of Evidence and Procedure

06:33  The Growing Impact of Digital Evidence and Digital Exploitation  

07:35  Evolving Field of Cyber Forensic Careers

08:58  Collecting Cyber Forensic Data  

09:51  Digital Evidence as a Science

12:52 Components of Digital Evidence

13:45 Hash Algorithms, Digital DNA

14:25 Child Pornography Hash Algorithms

14:55  Hash Algorithms are like Fingerprints  

16:37  Verifying and Preserving Digital Evidence Using Scientific Protocols

18:29  Training to be a Cyber Forensic Technician or Specialists

21:34  Specialized Cyber Forensic Fields

24:01 Criminals, Digital Evidence & Law Enforcement

26:30 Training Law Enforcement for Digital Evidence Collection

28:24 Finding Breaches and Identifying Vulnerabilities

31:00 How to Start a Cyber Forensic Investigation

31:29 Cyber Forensic Incident Response

34:38  Cyber Police of the Future

35:35  Trends in Cyber Forensic Prosecutions

37:05 International Cyber Criminals and Cyber Forensics

38:19 Every Cop as a Cyber Cop

38:39 How is Cybercrime Changing  

41:26 The Future of the Cyber Forensic Field

42:24  Corporate Digital Forensic Units and Civil Courts

44:43  Cyber Forensic Academics, Digital Certifications and Careers