Dr. Johannes Ullrich is currently responsible for the SANS Internet Storm Center (ISC) and the GIAC Gold program . In 2000, he founded DShield.org , which is now the data collection engine behind the ISC. His work with the ISC has been widely recognized, and in 2004, Network World named him one of the 50 most powerful people in the networking industry. Prior to working for SANS, Johannes worked as a lead support engineer for a web development company and as a research physicist. Johann...
Oct 03, 2017•41 min•Transcript available on Metacast Jorge Orchilles , author of Microsoft Windows 7 Administrator’s Reference , holds a Masters of Science in Management Information Systems from Florida International University, leads a security team in a large financial institution, and serves on the board of the Information Systems Security Association South Florida Chapter. Jorge has been involved in the Information Technology field since 2001. Realizing his passion for IT, he founded The Business Strategy Partners – IT Consultants branch in 20...
Sep 25, 2017•47 min•Transcript available on Metacast David Kovar is the President and founder of Kovar & Associates where he leads the development of URSA – Unmanned & Robotics Systems Analysis – a suite of tools designed to collect, integrate, analyze, and present UAV related data for many purposes including fleet management, criminal investigations, failure analysis, and predictive analysis. He also leads the firm’s consulting practice which addresses UAV cyber security and UAV threat management. David founded the practice of UAV forensi...
Sep 18, 2017•53 min•Transcript available on Metacast Harlan Carvey is currently the Director of Intelligence Integration at Nuix . Harlan has been involved in information security for 28 years, which began during his military career. After leaving active duty 20 years ago, he started in consulting, performing vulnerability assessments and penetration testing. From there, it was a natural progression to digital forensics and incident response services. Harlan is an accomplished public speaker and a prolific author. He is the author of several ...
Sep 11, 2017•1 hr 1 min•Transcript available on Metacast Perry Carpenter currently serves as Chief Evangelist and Strategy Officer for KnowBe4 . Previously, Perry led security awareness, security culture management, and anti-phishing behavior management research at Gartner Research , in addition to covering areas of IAM strategy, CISO Program Management mentoring, and Technology Service Provider success strategies. With a long career as a security professional and researcher, Perry has broad experience in North America and Europe, providing secur...
Sep 04, 2017•45 min•Transcript available on Metacast Ryan Kalember has over 15-years of experience in the information security industry. Ryan currently leads cybersecurity strategy for Proofpoint and is a sought-out expert for media commentary on breaches and best practices for enterprises as well as consumers. He joined Proofpoint from WatchDox where he served as chief marketing officer and was responsible for successfully building and leading the marketing team through the company’s acquisition by Blackberry. Prior to WatchDox, Ryan was instrume...
Aug 28, 2017•52 min•Transcript available on Metacast Jobert Abma is a co-founder and technical lead at HackerOne , one of the leading bug bounty service platforms. He is an avid hacker, developer and advocate for transparent and safe vulnerability disclosure. He and co-founder Michiel Prins have been named one of Forbes 30 under 30 for 2017 in tech . As a hacker himself, Jobert has reported critical vulnerabilities to GitLab, Yahoo, Slack, Snapchat among others. Before founding HackerOne, he was a successful penetration tester for a company h...
Aug 21, 2017•50 min•Transcript available on Metacast Joseph Carson is a cyber security professional and ethical hacker with more than 25 years’ experience in enterprise security specializing in blockchain, endpoint security, network security, application security & virtualization, access controls, and privileged account management. He currently serves as Chief Security Scientist at Thycotic . Joseph is a Certified Information Systems Security Professional (CISSP), active member of the cyber security community, frequent speaker at cyber se...
Aug 14, 2017•55 min•Transcript available on Metacast This is a solo episode between interviews. I have been doing IT and security consulting for a long time. Over this time, I have noticed a few things that are worth noting when hiring a security consultant. In fact, I would say until you perform some basics and perform some due diligence on your own, don't hire me or any other security consultant. Yes, this seems a little counter intuitive for me to say, "Don't hire me," but there are many common elements I see in environment after environment bo...
Aug 07, 2017•6 min•Transcript available on Metacast Brett Shavers is a consultant to corporations and government agencies in computer related cases as well as being the author of " Placing the Suspect Behind the Keyboard ", co-author of " Hiding Behind the Keyboard " and co-author of the “ X-Ways Forensics Practitioner's Guide ." Brett began his career as a digital forensics investigator in law enforcement and was trained by the Federal Law Enforcement Training Center, the US Department of Homeland Security, the National White Collar Crime Center...
Jul 31, 2017•48 min•Transcript available on Metacast Lance Spitzner is the Director of the SANS Security Awareness program. Lance has over 20 years of security experience in cyber threat research, awareness, and training. He invented the concept of honeynets, founded the Honeynet Project , and published three security books . Lance has worked and consulted in over 25 countries and helped over 350 organizations plan, maintain, and measure their security awareness programs. In addition, Lance is a member of the Board of Directors for the National Cy...
Jul 24, 2017•45 min•Transcript available on Metacast Casey Ellis is founder and CEO of Bugcrowd . He started life in infosec as pentester, moved to the dark side of solutions architecture and sales, and finally landed as a career entrepreneur. He’s been in the industry for 15 years, working with clients ranging from startups to government to multinationals, and awkwardly straddles the fence of the technical and business sides of information security. Casey pioneered the Bug Bounty as-a-Service model launching the first programs on Bugcrowd in 2012...
Jul 17, 2017•34 min•Transcript available on Metacast Rob Reck and Alex Wood are both seasoned security professionals in the Denver, CO area and hosts of their own podcast, Colorado = Security . Rob is the Chief Information Security Officer at Ping Identity . In addition to his job at Ping Identity, Robb is an active member of the Colorado security community. In early 2017 he co-founded the Colorado = Security podcast with Alex. Robb serves on the board for the mountain region’s largest security conference, Rocky Mountain Information Security Confe...
Jul 10, 2017•45 min•Transcript available on Metacast This is another short podcast before we get back into full interviews next week. In this episode, I explore the concept of Independence. In the US, this week we are celebrating Independence Day. This got me thinking about what that means in my business experience. I wanted to share a few observations for those who are thinking about going out on their own either as an independent contractor or to start their own business. Please take a listen and let me and oth...
Jul 03, 2017•6 min•Transcript available on Metacast So many of you are wondering why the break in Cyber Security Interviews. There is a bit of a story that goes along with it. I wanted to share this story because I think sheds light into life and career changes that others can learn from. Sharing stories on careers and challenges is a big part of this podcast. Many people can feel alone in their cyber security journeys and I some of the struggles that I have been going through lately can allow those going through their own challenges feel connect...
Jun 26, 2017•8 min•Transcript available on Metacast Alex Kreilein and David Odom are both Managing Partners at SecureSet Accelerator . SecureSet is a Denver, CO based firm which is a startup accelerator ( SecureSet Accelerator ) taking on the lack of novel and quality products in the information security field. In addition to overseeing the SecureSet Accelerator, Alex is also the Cofounder of SecureSet and the companies former CTO. He served as a Tech Strategist for the Department of Homeland Security, Guest Researcher to the National Instit...
Apr 24, 2017•57 min•Transcript available on Metacast Troy Hunt is an internationally recognized cyber security researcher , speaker , blogger , and instructor . He is the author of many top-rating security courses for web developers on Pluralsight and is a Microsoft Regional Director and a six time Microsoft Most Valued Professional (MVP) specializing in online security and cloud development. Prior to becoming an independent security consultant, Troy worked at Pfizer with the last seven years being responsible for application architecture in the A...
Apr 17, 2017•43 min•Transcript available on Metacast Jad Saliba is the founder and CTO of Magnet Forensics , a leading digital forensics company. Jad guides the organization to create products that meet the needs of customers from law enforcement, consultancies, or the corporate world. A former digital forensics investigator with a background in computer science, Jad can uniquely identify issues faced by forensics professionals and apply new ways of using technology to solve these problems. Prior to starting Magnet Forensics, Jad spent seven years...
Apr 10, 2017•44 min•Transcript available on Metacast Theresa Payton is one of the nation’s leading experts in cybersecurity and IT strategy. As CEO of Fortalice Solutions , an industry-leading security consulting company, and co-founder of Dark Cubed , a cybersecurity product company, Theresa is a proven leader and influencer who works with clients and colleagues to uncover strategic opportunities and identify new and emerging threats. Theresa began her career in financial services, where she coupled her deep understanding of technology systems wi...
Apr 03, 2017•53 min•Transcript available on Metacast Hal Pomeranz is the Founder and Principal Consultant for Deer Run Associates with over 25 years of cyber security experience. As a digital forensic investigator, Hal has consulted on cases ranging from intellectual property theft, to employee sabotage, to organized cybercrime, and malicious software infrastructures. He has worked with law enforcement agencies in the United States and Europe, and with global corporations. While perfectly at home in the Windows and Mac forensics world, Hal is a re...
Mar 20, 2017•51 min•Transcript available on Metacast In this episode I am speaking with Marie Hattar and David Ginsburg . This is also my first podcast episode with two guests. Marie is the CMO at IXIA and is responsible for their brand and global marketing efforts. Marie has more than 20 years of marketing leadership experience spanning the security, routing, switching, telecom and mobility markets. Before joining Ixia, Marie was CMO at Check Point Software Technologies where she reestablished the company as the leading end-to-end security ...
Mar 13, 2017•50 min•Transcript available on Metacast Kristin Lovejoy is the CEO of BluVector . Prior to her role at BluVector, she served as general manager of IBM’s Security Services Division, charged with development and delivery of managed and professional security services to IBM clients worldwide. In addition, she served as IBM's Global CISO and VP of IT Risk. Kris is a recognized expert in the field on security, risk, compliance and governance, with appearances in Forbes, CNBC, NPR and USA Today. Within the past five years she has been recog...
Mar 06, 2017•52 min•Transcript available on Metacast Cris Thomas (aka Space Rogue) is a strategist for Tenable . With more than two decades of experience, he commands an uncanny ability to link disparate events, read between the lines and distill complex, technical information into readily understandable, accessible and actionable intelligence. Cris is a founding member of L0pht Heavy Industries , a hacker think tank from the late '90s and has testified before the U.S. Senate Committee on Homeland Security and Governmental Affairs . He has also be...
Feb 27, 2017•31 min•Transcript available on Metacast The RSA Conference (or "RSAC") held annually in San Francisco, CA has become one of the largest information security conferences. I was able to get a press pass to the event this year and was pitched heavily for product focused interviews. Most I kindly declined, but there were a few people I did connect with and recorded some great conversations which I will post in the coming weeks. I recorded episodes with: Cris Thomas (aka Space Rogue) , Strategist for Tenable Network Security Kristin&n...
Feb 20, 2017•7 min•Transcript available on Metacast Dr. Gary McGraw is the Vice President of Security Technology at Synopsys (SNPS). Gary quite literally helped create the field of software security. He is a globally recognized authority on software security and the author of several bestselling books on this topic. His titles include Software Security , Exploiting Software , Building Secure Software , Java Security , Exploiting Online Games , and 6 other books . He is also the editor of the Addison-Wesley Software Security series. Gary...
Feb 13, 2017•53 min•Transcript available on Metacast Cindy Murphy served in law enforcement for more than thirty years (twenty-five of those years at the Madison Police Department in Wisconsin) before leaving the force to launch Gillware Digital Forensics , where she is co-owner and serves as president and lead examiner. Her peers have called her "one of the most dedicated people in the field of digital forensics." Cindy has also been teaching digital forensics since 2002, is a certified SANS instructor and helped develop...
Feb 06, 2017•1 hr 5 min•Transcript available on Metacast Scott Schober is the President and CEO of Berkeley Varitronics Systems (BVS), a 44 year-old company and leading provider of advanced, world-class wireless test and security solutions. Scott starting with BVS in 1989 and the company’s product line of wireless test and security instruments has increased to over 100 products with a core focus on Wi-Fi, Cellular, WiMAX, LTE, IoT as well as other advanced radio devices. As an experienced software engineer, Scott has developed cell...
Jan 30, 2017•42 min•Transcript available on Metacast Early each year, for the past 12 years, the hacker conference ShmooCon takes place in Washington, DC. This year I was honored and fortunate to get a press pass to this sold out event which the organizers call, "an annual east coast hacker convention hell-bent on offering three days of an interesting atmosphere for demonstrating technology exploitation, inventive software and hardware solutions, and open discussions of critical infosec issues." It was a great time and in this episode I will recap...
Jan 23, 2017•11 min•Transcript available on Metacast Defined by his peers as a “passionate, experienced and visionary individual who is always striving to improve himself,” Ismael Valenzuela is one of the few individuals that has done almost all in the InfoSec arena, from founding one of the first IT Security companies in Spain to managing a distributed CERT across the world as well as teaching for highly reputed institutions such as SANS , BSi or the Spanish National Center of Intelligence. His command of both the business and technical aspects o...
Jan 16, 2017•1 hr 1 min•Transcript available on Metacast Dr. Darren Hayes is the Director of Cybersecurity and an Assistant Professor at Pace University , New York and a leading expert in the field of digital forensics and cyber security. In 2013, he was listed as one of the Top 10 Computer Forensics Professors, by Forensics Colleges . He has developed four distinct courses in digital forensics, at Pace University, at the undergraduate and graduate levels. Also through Pace, Darren continually conducts research to support of law enforcement agenc...
Jan 09, 2017•58 min•Transcript available on Metacast 
