Episode 33 – 3 Pillars for Starting a Security Program

Episode 33 – 3 Pillars for Starting a Security Program

 
 
00:00 / 43:12
 
1X
 

John talks about 3 pillars he uses for starting a new security program.

Episode 32 – Fireside Chat with Deviant Ollam

Episode 32 – Fireside Chat with Deviant Ollam

 
 
00:00 / 57:52
 
1X
 

I sit down with Deviant Ollam to have a casual conversation about physical penetration testing and hear some great stories from the road.

Episode 31 – Killing the Pen Test with Adrian Sanabria

Episode 31 – Killing the Pen Test with Adrian Sanabria

 
 
00:00 / 49:04
 
1X
 

Adrian Sanabria joins me to talk about killing what we know as the pen test and replacing it with something better!

Episode 30 – Infosec D&D Tabletop with Jerry Bell and Andrew Kalat from Defensive Security

Episode 30 – Infosec D&D Tabletop with Jerry Bell and Andrew Kalat from Defensive Security

 
 
00:00 / 55:52
 
1X
 

Jerry Bell and Andrew Kalat from the Defensive Security podcast join me for another Infosec D&D Tabletop game! What maddening scenarios have I found that they will need to overcome?

Episode 29 – The Importance of Community in Infosec w/ Cheryl “3ncr1pt3d” Biswas

Episode 29 – The Importance of Community in Infosec w/ Cheryl “3ncr1pt3d” Biswas

 
 
00:00 / 46:15
 
1X
 

Cheryl “3ncr1pt3d” Biswas joins me to talk about how our Infosec community differs, as well as some cons like the Diana Initiative.

Episode 28 – John’s Weird Path To #Infosec And Other Ramblings

Episode 28 – John’s Weird Path To #Infosec And Other Ramblings

 
 
00:00 / 42:28
 
1X
 

With no guest this week, John talks about his own personal path to #infosec and other thoughts on his journey.

Episode 27 – Infosec and Mental Health with Danny Akacki

Episode 27 – Infosec and Mental Health with Danny Akacki

 
 
00:00 / 47:50
 
1X
 

Danny Akacki joins me to talk about his own mental health and the site he created, infosanity.org, to help others who may be struggling.

Episode 26 – DFIR in the Cloud with Jonathon Poling

Episode 26 – DFIR in the Cloud with Jonathon Poling

 
 
00:00 / 49:15
 
1X
 

Jonathon Poling (@JPoForenso) comes back to talk about #DFIR in the #cloud, what’s easier, what’s harder, and what’s different. A must for anyone on a #blueteam.

Episode 25 – Securing The Crowd with Nicolas Valcarcel

Episode 25 – Securing The Crowd with Nicolas Valcarcel

 
 
00:00 / 54:22
 
1X
 

Nicolas Valcarcel joins me to talk about his experience with the crowd, crowdsourcing, as well as Infosec and shares his experiences and thoughts on how best to secure it for use in your organization.

Episode 24 – Fireside Chat with Joe Gray

Episode 24 – Fireside Chat with Joe Gray

 
 
00:00 / 54:45
 
1X
 

In this casual fireside-style chat I speak with Joe Gray about TTHG, Conferences and Discount Codes!

Episode 23 – Speaking to Developers with James Jardine

Episode 23 – Speaking to Developers with James Jardine

 
 
00:00 / 1:11:13
 
1X
 

I speak with James Jardine from the DevelopSec Podcast on communication strategies to use when speaking with developers.

Episode 22 – Open Source Intelligence Techniques with Michael Bazzell

Episode 22 – Open Source Intelligence Techniques with Michael Bazzell

 
 
00:00 / 33:29
 
1X
 

I speak with the Godfather of OSINT, Michael Bazzell, about his book and various OSINT topics.

Episode 21 – The Myth of the Purple Teamer with Haydn Johnson

Episode 21 – The Myth of the Purple Teamer with Haydn Johnson

 
 
00:00 / 47:54
 
1X
 

I speak with Haydn Johnson about the myth of the purple teamer, that is, an individual who does both red and blue team activities as part of their day job.

Episode 20 – Physical Penetration Testing with Jek Hyde

Episode 20 – Physical Penetration Testing with Jek Hyde

 
 
00:00 / 53:41
 
1X
 

I speak with the legendary Jek Hyde about physical penetration testing.

Episode 19 – Speaking to Executives with Tracy Maleeff

Episode 19 – Speaking to Executives with Tracy Maleeff

 
 
00:00 / 1:10:13
 
1X
 

Tracy Maleeff joins me to talk about strategies for communicating with senior leadership, which is a key skill for all infosec professionals