Welcome to Episode 7 of the Distilled Security Podcast!

In this episode, hosts Justin, Rick, and Joe are joined by special guest Brandon Eckert to explore his fascinating journey in cybersecurity, share industry insights, and enjoy a fun debate on Thanksgiving favorites. Here’s what’s in store:

Topics Covered:

🔹 Navigating a Career in Cybersecurity
Reflections on starting out in cybersecurity, overcoming challenges in small-town IT careers, and the role of certifications in shaping career success.

🔹 The Value of Certifications
How certifications like OSCP contribute to career growth, practical knowledge, and their relationship with networking and formal education.

🔹 Mentorship and the Pittsburgh Cybersecurity Community
The importance of fostering growth, mentoring local talent, and giving back to the Pittsburgh security community.

🔹 Networking vs. Certifications
A discussion on what matters more for career advancement and the unique benefits of each.

🔹 Auditor Stories and Lessons Learned
Hear hilarious and insightful tales from hospital audits, ethical dilemmas, and tips for managing challenging auditor experiences.

🔹 Business Continuity Challenges
How organizations can prepare for rare but impactful events, like solar flares, while building strong auditor relationships.

🔹 Thanksgiving Favorites
A lighthearted wrap-up featuring turkey tips, stuffing recipes, and the ultimate leftover turkey sandwich.

🔸 Links
Widow Jane Black Opal: https://widowjane.com/

🔸 Spirits
Widow Jane Black Opal
A rare blend of bourbons, each aged for at least 20 years and finished in Japanese Mizunara oak. Notes of toffee, plum, and tobacco make this whiskey an extraordinary treat.

🔸Hosts

• Justin Leapline
• Joe Wynn
• Rick Yocum

🔸 Guest
🙋🏻‍♂️ Brandon Eckert

🎙 Connect with Us
Website: Distilled Security Podcast
X: @DisSecPod
Email: hello@distilledsecuritypodcast.com

Episode 6: SEC Penalties, M&A Security, and Due Diligence

Welcome back to the Distilled Security Podcast! In this episode, hosts Justin, Rick, and Joe dive into the latest in cybersecurity, from regulatory challenges to pop culture:

Topics Covered

1. SEC Penalties for Cybersecurity Disclosures
   Discussing recent SEC penalties due to lapses in cybersecurity disclosure, the implications for companies, and how organizations can stay compliant.
2. Cybersecurity Materiality and Disclosure Practices
   Tips on navigating the materiality assessment of cybersecurity incidents and ensuring compliance with auditors' disclosure requirements.
3. Preparedness Through Tabletop Exercises
   Exploring tabletop exercises as a method to enhance readiness for cybersecurity disclosures.
4. Security in Mergers & Acquisitions
   The importance of aligning security philosophies, protecting supply chain integrity, and fast decision-making in M&A processes.
5. Pre-Mortem Analyses for Risk Mitigation
   Utilizing pre-mortem analyses to identify risks in acquisitions and ensure security compatibility before a merger.
6. Best Practices for Selling a Company with Strong Security
   Tips on audit readiness, maintaining a secure posture, and what security leaders should prioritize to avoid penalties or discounts during acquisitions.
7. Information Control in Modern Warfare
   How controlling information plays a strategic role, with examples from cyberpunk themes to illustrate the power of data control.
8. Favorite Cybersecurity Movies
   A fun review of iconic cybersecurity movies, highlighting elements like data movement, IP address inaccuracies, and common movie hacking tropes.
9. Due Diligence Strategies for Small Businesses
   Key steps for conducting effective due diligence, including using a risk-based approach to compliance and managing contracts efficiently.

Links

• Cyber Scoop

Spirits

• Barrell Seagrass - A unique blend of American and Canadian rye whiskeys, each carefully selected and finished in Martinique Rhum, Madeira, and apricot brandy barrels.

Hosts

• Justin Leapline
• Joe Wynn
• Rick Yocum

Connect with Us

• Website: Distilled Security Podcast
• Twitter: @DisSecPod
• Email: hello@distilledsecuritypodcast.com

Time Stamps

• [00:01:25] SEC penalties for cybersecurity disclosure lapses
• [00:05:16] Working with external auditors on cybersecurity disclosures
• [00:09:30] Assessing cybersecurity materiality in disclosures
• [00:11:45] Tabletop exercises to improve disclosure preparedness
• [00:14:36] Cybersecurity considerations in M&A
• [00:19:12] Making fast, informed security decisions
• [00:23:06] Pre-mortems for assessing acquisition risks
• [00:25:12] Compatibility of security philosophies in M&A
• [00:30:20] Securing supply chains in acquisitions
• [00:34:23] Steps to sell a company securely
• [00:37:06] Preparing for audits in the sale process
• [00:42:07] Hosts discuss favorite cybersecurity movies
• [00:45:57] The strategic role of information in warfare
• [00:48:49] Data transport themes in cyberpunk films
• [00:52:36] The infamous fake IP addresses in movies
• [00:56:01] Due diligence for small businesses and startups
• [01:00:47] Centralized vs. decentralized security strategies
• [01:02:20] Adopting a risk-based approach for security questionnaires
• [01:06:05] Negotiating buyer risk assessments
• [01:10:11] Leveraging compliance automation tools
• [01:12:55] Managing contract risks effectively
• [01:16:10] Ensuring alignment between contract terms and security questionnaires

Join hosts Justin, Rick, and Joe as they cover:

• Resume Review Insights: Joe offers valuable tips on resume writing, focusing on showcasing accomplishments and using metrics to stand out.
• Passion Projects and Hobbies: The team discusses how personal projects and volunteer work can make resumes more compelling by demonstrating a passion for the field.
• Community Engagement at TRISS: The hosts invite listeners to their booth at the upcoming Three Rivers Information Security Symposium (TRISS), where they will be offering resume reviews and engaging with attendees.
• Counter-Espionage and Pagers: A fascinating look at the use of pagers in recent counter-espionage operations, analyzing their effectiveness and ethical concerns.
• Supply Chain Security Concerns: A discussion on the risks tied to supply chain vulnerabilities, focusing on hardware inspections.
• Tabletop Exercises in Cybersecurity: The hosts highlight the importance of tabletop exercises to prepare organizations for security incidents, contrasting them with current trends in incident response training.
• School Violence Threats: An examination of the rise in school violence threats and the challenges schools face in managing these situations.

Links

• Three Rivers Information Security Symposium (TRISS)
• US Maritime Trade and Port Cybersecurity

Spirits

• Boone 1833 12-Year-Old, Snyder's Flask (discontinued) - https://boonedistilling.com/

Hosts

• Justin Leapline - LinkedIn
• Joe Wynn - LinkedIn
• Rick Yocum - LinkedIn

Connect with Us

• Website: Distilled Security Podcast
• Twitter: @DisSecPod
• Email: hello@distilledsecuritypodcast.com

Episode 4: Ethics in Cybersecurity, Career Development, and Data Protection

In Episode 4, we are joined by Doug Salah to explore some critical topics in cybersecurity and career growth.

Key Topics

• Doug Salah’s Cybersecurity Journey: His transition into cybersecurity and current role in the industry.
• Networking in Cybersecurity: The value of building connections at cybersecurity conferences.
• TRISS (Three Rivers Information Security Symposium): Insights into TRISS, its scholarships, and its impact on the community.
• Mid-Career Development: Doug’s thoughts on transitioning mid-career, setting goals, and maintaining integrity.
• Cybersecurity Ethics: A deep dive into ethics in the industry, ethical decision-making, and creating a Cyber Code of Honor.
• The Four Agreements: How Doug relates his personal ethics to the principles in The Four Agreements.
• Featured Spirit – Compass Box Spice Tree Scotch: A review of this week’s featured Scotch.
• National Public Data Background Check Breach: Discussion of the recent breach and its implications for data protection.
• Data Protection Tips: Tips on freezing credit and using services like Delete Me to protect personal data.

Links

• Three Rivers Information Security Symposium (TRISS) - https://www.threeriversinfosec.com/
• The Four Agreements - https://www.amazon.com/Four-Agreements-Practical-Personal-Freedom/dp/1878424319
• Delete Me Service - https://joindeleteme.com/
• The Code Of Honor - Embracing Ethics in Cybersecurity

Spirits

• Compass Box Spice Tree Scotch - https://www.compassboxwhisky.com/products/the-spice-tree

Hosts

• Justin Leapline - https://www.linkedin.com/in/justinleapline/
• Joe Wynn - https://www.linkedin.com/in/wynnjoe/
• Rick Yocum - https://www.linkedin.com/in/rickyocum/

Guest

• Doug Salah - https://www.linkedin.com/in/dougsalah/

Connect with Us

• Website: Distilled Security Podcast
• Twitter: @DisSecPod
• Email: hello@distilledsecuritypodcast.com

Episode 3 of the Distilled Security Podcast is here!

Join us this week as we jump into:

• CrowdStrike Incident Analysis: A deep dive into a recent mishap by CrowdStrike that led to significant financial losses and operational disruptions, including 5.4 billion in estimated losses.
• Vendor Accountability: Exploring the legal and financial repercussions of security vendor failures.
• Business Continuity Planning: The importance of preparing for security vendor failures, including considering alternate vendors and the complexities of implementing such strategies.
• Kernel-Level Security Risks: A discussion surrounding kernel-level operations in security software, focusing on the controversy between CrowdStrike and SentinelOne.
• Manual Workarounds and Legacy Systems: The challenges of maintaining business operations during security incidents.
• Ransomware Recovery vs. Vendor Failures: Comparing ransomware attacks' impact and recovery processes with security vendor-induced failures.
• Password Management Vulnerabilities: The risks associated with dependency on password management systems like Thycotic/Delinea and LastPass, and the potential fallout if these systems experience downtime.
• BSides Pittsburgh Recap: the biggest BSidesPGH event yet. Hear the notes and highlights from the conference.
• North Korean Spy Hired By KnowBe4: Hear how a spy for N. Korea got by the defenses of KnowBe4, how they caught them, and steps they implemented to avoid this in the future.
• CISOs as Scapegoats: Are CISOs being pegged as scapegoats unfairly?

Links

• Crowdstrike Incident - https://www.crowdstrike.com/falcon-content-update-remediation-and-guidance-hub/
• SentinelOne Response to Crowdstrike - SentinalOne on Crowdstrike Outage - https://www.crn.com/news/security/2024/sentinelone-ceo-on-crowdstrike-outage-not-just-an-honest-mistake
• BSidesPGH - https://www.bsidespgh.com/
• TRISS - https://www.threeriversinfosec.com/
• KnowBe4 // N. Korean Spy - https://blog.knowbe4.com/cyberheistnews-vol-14-31-how-the-whole-world-now-knows-about-fake-north-korean-it-workers
• CISO as Scapegoats - https://www.thestack.technology/were-becoming-scapegoats-how-have-cisos-responded-to-sec-cyber-risk-disclosure-rules/

Spirits

• Rabbit Hole Cavehill // Four Grain Tripple Malt - https://www.rabbitholedistillery.com/pages/cavehill/

Hosts

• Justin Leapline - https://www.linkedin.com/in/justinleapline/
• Joe Wynn - https://www.linkedin.com/in/wynnjoe/
• Rick Yocum - https://www.linkedin.com/in/rickyocum/

Connect with Us

• Website: https://distilledsecuritypodcast.com
• Twitter: @DisSecPod
• Email: hello@distilledsecuritypodcast.com

Episode 2 of the Distilled Security Podcast is here!

Join us this week as we jump into:

• Exploring the critical importance of tailoring security frameworks: Aligning with an organization's specific goals and objectives
• Highlighting frameworks like NIST CSF and CIS to advance security programs effectively
• Insights on aligning KPIs with the NIST CSF framework
• Complementary use of frameworks like CIS to enhance security control measurement
• Perspective on compliance and regulatory requirements
• The role of AI in security programs
• Threats posed by deepfakes: Incorporating safeguards to protect organizations from deepfake risks and effectively leverage AI within security programs

Chapters
00:00:00 - Introduction and Episode Overview
00:00:44 - Discussion on Security Frameworks
00:05:43 - Tailoring Frameworks
00:08:19 - Mapping and Compliance Challenges
00:17:16 - Tailoring for Small Organizations
00:19:15 - Upcoming Conferences
00:21:30 - Bourbon Review
00:25:00 - Audit Preparation Tips
00:27:02 - AI in Security
00:35:09 - Privacy Concerns with AI Toys
00:41:22 - Deepfakes in Security
01:05:59 - Closing Remarks

Links and references
https://securecontrolsframework.com

https://www.nist.gov/cyberframework

https://csrc.nist.gov/pubs/sp/1300/final

https://www.cisecurity.org/insights/white-papers/cis-controls-sme-guide

Drink
Whiskey Thief Door Knocker

Hosts

• Justin Leapline - https://www.linkedin.com/in/justinleapline/
• Joe Wynn - https://www.linkedin.com/in/wynnjoe/
• Rick Yocum - https://www.linkedin.com/in/rickyocum/

Connect with Us

• Website: https://distilledsecuritypodcast.com
• Twitter: @DisSecPod
• Email: hello@distilledsecuritypodcast.com

Welcome to the first episode of Distilled Security!

Join us as we dive into a variety of exciting topics, including:

• Is College Worth It?: We explore the value of higher education in today's world.
• Microsoft and Executive Compensation: Analyzing cybersecurity in executive pay at Microsoft.
• BSides Pittsburgh: Exciting talks are coming to BSidesPGH.
• Starting as a New CISO: Things to do first coming into a new company.

Grab your favorite cocktail and tune in for an engaging and fun-filled discussion!

Hosts

• Justin Leapline - https://www.linkedin.com/in/justinleapline/
• Joe Wynn - https://www.linkedin.com/in/wynnjoe/
• Rick Yocum - https://www.linkedin.com/in/rickyocum/

Connect with Us

• Website: https://distilledsecuritypodcast.com
• Twitter: @DisSecPod
• Email: hello@distilledsecuritypodcast.com

Join us on Distilled Security as we delve into the fascinating world of cybersecurity. Each episode, we break down intriguing topics, analyze the latest news, and engage in in-depth conversations with our hosts and invited guests. Whether you're a seasoned professional or just curious about cybersecurity, our podcast offers valuable insights and thought-provoking discussions to keep you informed and entertained. Tune in and stay ahead of the curve in the ever-evolving landscape of cybersecurity.