Hacking into Security - Career Talks

Hacking into Security - Career Talks

di Ricki Burke
Hacking into Security #27 - US Marine to Red Teaming and Purple Teaming, with @mubix (Rob Fuller)
In this episode, we catch up with @mubix (Rob Fuller), a is red teamer turned purple teamer. He started his career in the United States Marine Corps working with explosives and has gone on to have a highly successful career in the security industry working at companies like Rapid7, GE, Uber, Cruise Automation and now Balck Hills Information Security, as well as contributing back in many ways to the security community and speaking at many conferences around the world. Mubix shares his journey, stories along the way, as well as going deeper into both red and purple teaming.
Hacking into Security #26 - Poker player, Developer, Penetration Tester, top 20 bug hunter and Global Head of Security Operations and Researcher Enablement at Bugcrowd, with Michael Skelton (@Codingo)
In this episode, we catch up with Michael Skelton (@Codingo) Global Head of Security Operations and Researcher Enablement at Bugcrowd. Codingo has a non-traditional career path and he shares his journey on how he got to where he is, including the challenges of breaking into the infosec industry. As someone who got to be a Top 20 bug hunter on Bugcrowd and now the Global Head of Security Operations and Researcher Enablement at Bugcrowd, Codingo shares not only career advice but also tips on bug bounties.
Hacking Into Security #25 - From marketing to InfoSec Advocate & Activist, with Chloé Messdaghi
In this episode, we catch up with Chloé Messdaghi, VP of Strategy at Point3 Security. Chloé is a humanitarian Advocate in the Cybersecurity space. She started her career in marketing but got the opportunity to move into infosec in 2017. Chloé shares some of the experiences that led her to nearly quit the industry but instead has gone on to become a voice in the community. As well as speaking many conferences, Chloé is the founder of WeAreHackerz (formerly known as WomenHackerz) & the President and cofounder of Women of Security (WoSEC), podcaster for ITSP Magazine's The Uncommon Journey, and runs the Hacker Book Club.
Hacking Into Security #24 - Finding vulnerabilities, with Elliot Alderson (@fs0c131y) - Baptiste Robert
In this episode, we catch up with Baptiste Robert, who goes by the handle @fs0c131y. Baptiste is a Security Researcher based in France with a big focus on android. We walk through his journey from graduating with a network and telecommunication to finding vulnerabilities and creating a large following. We also cover how has a security researcher, Baptise finds his projects and his plans for the future around battling disinformation.
Hacking Into Security #23 - Finding vulnerabilities as a teenager, first job at 17, bug bounties and more, with Shubs - @infosec_au, @notnaffy
In this episode, we catch up with Shubs (Shubham Shah, @infosec_au, @notnaffy), CTO of Assetnote. A passion for hacking grew early in Shubs' life. He was demonstrating good skills in hacking but faced with a tough decision at an early age. Follow his parents wishes and attend university or his own path and get a job. We talk through Shubs's incredible journey which saw him land his first job in the industry at 17 years old, his success in bug bounties and going on to co-found the company Assetnote. Shubs also shares some practical tips for aspiring hackers and bug bounty hunters. Recommended blog by Shubs on bug bounties - High frequency security bug hunting: 120 days, 120 bugs https://shubs.io/high-frequency-security-bug-hunting-120-days-120-bugs/
Hacking Into Security #22 - QA to Senior Security Advisor and beyond, with Brendan Seerup @SparkleOps
In this episode, we catch up with Brendan Seerup, or sometimes better known as SparkleOps. Brendan is currently a Senior Security Advisor at REA Group, but less than 5 years ago he was working as a Quality Assurance Manager. Brendan talks about how he always saw security as part of QA, hardware hacking and how he went from not presenting to speaking at six security cons in a year. He gives practical advice for people with a similar background and talks about what the future looks like and how he can make an even bigger impact combining his skills and experience.
Hacking Into Security #21 - Drone Security, with Mike Monnik - CTO of DroneSec
In this episode, we catch up with Mike Monnik, CTO of DroneSec, offensive security professional and Co-organiser of SecTalks Melbourne. Mike was advised early in his career to pick up a specialist area. That area turned out to be drones, and a passion was formed. Starting as a side hustle and whilst working as a penetration tester, Mike started building a (not-for-profit) drone security company. This eventually turned into a business and Mike walks us through this story and what the drone security industry looks like. He discusses what the future could look like for the industry and how others who share a similar passion could pivot into a full-time role in drone security. Here are some resources Mike recommends: DroneSec UAV Threat Intel Platform: https://dronesec.com/pages/notify CREST ASSURE Program: https://www.crest-approved.org/assure/index.html Christchurch Mosque shooter used drones to surveil target site: https://www.stuff.co.nz/national/christchurch-shooting/122232602/christchurch-mosque-terrorist-used-drone-over-mosque-before-march-15-attack ISIS fighter killed by own drone: https://www.thesun.co.uk/news/9797095/isis-fighter-killed-by-drone-bomb/ Gangs using drones to infect pig pens: https://www.businessinsider.com/chinese-gangs-are-spreading-african-swine-fever-to-profit-2019-12?r=AU&IR=T (editors note: swine flu not bird flu as mentioned in the podcast) Pig pen farms disrupt aviation with drone jammers: https://www.reuters.com/article/us-china-swinefever/commercial-pig-farm-in-china-jams-drone-signal-to-combat-swine-fever-crooks-idUSKBN1YO0JE Cartels using drones as temporary airstrips: https://www.washingtonpost.com/world/2020/07/05/guatemala-cocaine-trafficking-laguna-del-tigre/ A journalist uses a drone to exfiltrate hard drives: https://www.bbc.com/news/technology-49689833 Researchers use drone projectors to disrupt smart vehicles: https://thenextweb.com/cars/2020/02/05/teslas-autopilot-dangerously-fooled-by-drone-mounted-projectors/ DJI Bug Bounty Program: https://security.dji.com/policy
Hacking Into Security #20 - The origins of Hackers, with Iain Dickson, ComfyCon AU Founder, Cyber Technical Lead
In this episode, we catch up with Iain Dickson, ComfyCon AU Founder, Cyber Technical Lead for Leidos Australia. Iain walks us through a presentation on the origins of Hackers and defines the different types of threat actors,
Hacking Into Security #19 - Advising CIOs on their first security hire, with Claire Pales
In this episode, we catch up with Claire Pales. Claire is the Director and Founder of 27 Lanterns, author of The Secure CIO book, host of The Secure CIO podcast and mum of four. We cover Claire's unique insight as she comes from a security leadership background and now advises organisations in hiring their first CISO. We also discuss the challenges of coming back to Australia with overseas experience.
Hacking Into Security #18 - VCs in cybersecurity and Unit 8200, with Ofer Schreiber
In this episode, we catch up with Ofer Schreiber, Partner & Head of Israel Office at the American-Israeli venture capital firm, YL Ventures. We talk about the cybersecurity from the lens of a venture capital firm. Ofer shares his unique background and experience having come through Unit 8200 and now looks at and manages investments on the behalf of YL Ventures. Ofer talks about what his firm looks for when investing in entrepreneurs and provides advice for people who aspire to build the next cybersecurity startup.
1 di 3