401 Access Denied

As a virtual CISO and cybersecurity consultant, Gideon Rasmussen helps new CISOs and organizations that are bringing on a CISO for the first time build a program architecture, conduct budgetary assessments, and translate cybersecurity into business impact the board understands. Gideon and Joe discuss the importance of consistent process execution, QA, and automation to help teams avoid things slipping through the cracks and experiencing “compliance jitter.” They dig into the latest update for the NIST Cybersecurity Framework, and share ways to use risk assessments and incident response exercises to improve cyber resilience. If you’ve got an upcoming board presentation and need to communicate risk to guide decisions, this episode has advice to help.

Connect with Gideon:

Website: https://www.gideonrasmussen.com/

LinkedIn: https://www.linkedin.com/in/gideonrasmussen/

Twitter: https://twitter.com/gideonras

Connect with Delinea:

Delinea Website: https://delinea.com/

Delinea LinkedIn: https://www.linkedin.com/company/delinea/

Delinea Twitter: https://twitter.com/delineainc

Delinea Facebook: https://www.facebook.com/delineainc

Delinea YouTube: https://www.youtube.com/c/delinea

Meet Tanel Sepp, Ambassador at Large for Cyber Diplomacy at Ministry of Foreign Affairs of Estonia. He talks with Joe about navigating Estonia’s security strategy as the country emerged from 2007 cyberattacks to become an international leader for digital governance, banking, and media. Learn about the latest advancements in cyber law, public-private partnerships, and multi-national bodies that are coordinating cybersecurity thought leadership and response activities.

Tanel on X(Twitter): @tanel_sepp

Tanel on LinkedIn: linkedin.com/in/tanel-sepp-79b89226b

Connect with Delinea:

Delinea Website: https://delinea.com/

Delinea LinkedIn: https://www.linkedin.com/company/delinea/

Delinea Twitter: https://twitter.com/delineainc

Delinea Facebook: https://www.facebook.com/delineainc

Delinea YouTube: https://www.youtube.com/c/delinea

Cyber criminals love to take advantage of human behavior, which is why social engineering remains a top attack vector. Hear how James McQuiggan, Security Awareness Advocate for KnowBe4, helps people make smarter security decisions, with training for all levels, phishing assessments, and mitigating controls. In this episode, James and Joe discuss emerging techniques driven by sophisticated, generative AI, and strategies you can employ to educate users and reduce risk of cyberattacks both at work and at home.

Connect with Delinea:

Delinea Website: https://delinea.com/

Delinea LinkedIn: https://www.linkedin.com/company/delinea/

Delinea Twitter: https://twitter.com/delineainc

Delinea Facebook: https://www.facebook.com/delineainc

Delinea YouTube: https://www.youtube.com/c/delinea

In this episode, Joseph Carson interviews Mikko Hypponen, a renowned cybersecurity expert, about notable cybersecurity events of 2023, including the rise of ransomware attacks and the success of cybercrime unicorns. They discuss specific cases such as the MGM Grand and Caesar's Palace attacks, as well as the Vastaamo incident in Finland. The conversation also touches on the growing threat of supply chain attacks and recommendations for combatting the coming surge of AI-driven attacks. They explore the potential battle between good AI and bad AI, with the rise of deep fake scams and the automation of malware campaigns.

Connect with Delinea:

Delinea Website: https://delinea.com/

Delinea LinkedIn: https://www.linkedin.com/company/delinea/

Delinea Twitter: https://twitter.com/delineainc

Delinea Facebook: https://www.facebook.com/delineainc

Delinea YouTube: https://www.youtube.com/c/delinea

Join the candid conversation between Joseph Carson and cybersecurity advisor Klaus Agnoletti on living and working with ADHD. Klaus shares his personal story of being diagnosed later in life and the strategies he uses to succeed, including adapting his work style and environment to match his needs. This thought-provoking discussion emphasizes the importance of embracing neurodiversity in the workplace and the benefits of bringing your whole self to your career.

Connect with Delinea:

Delinea Website: https://delinea.com/

Delinea LinkedIn: https://www.linkedin.com/company/delinea/

Delinea Twitter: https://twitter.com/delineainc

Delinea Facebook: https://www.facebook.com/delineainc

Delinea YouTube: https://www.youtube.com/c/delinea

Join host Joseph Carson for a compelling discussion with Bugcrowd founder Casey Ellis on the evolution of coordinated vulnerability disclosure. Ellis’ pioneering work connects ethical hackers with organizations to enhance their cyber resilience. He shares his experiences and unique insights into disclosure trends, including how changing regulations and emerging AI considerations are having an impact. Don't miss this engaging dialogue to learn how the next generation of builders and breakers can take the lead and collaborate for better security.

Connect with Delinea:

Delinea Website: https://delinea.com/

Delinea LinkedIn: https://www.linkedin.com/company/delinea/

Delinea Twitter: https://twitter.com/delineainc

Delinea Facebook: https://www.facebook.com/delineainc

Delinea YouTube: https://www.youtube.com/c/delinea

Steven Ursillo, Partner in the Risk & Accounting Advisory Services Practice and Leader of the Cybersecurity Group at Cherry Bekaert, joins Joe Carson to talk about meeting the challenges of costly, time-consuming compliance requirements. They discuss the nuances of cybersecurity frameworks like NIST CSF and ISO 27001, industry regulations like PCI, HIPAA, and SOX, and the differences between SOC1 and SOC2 examinations. Steven shares recommendations for scoping compliance programs and preparing for audits without breaking the bank or burning out your team. He offers advice on navigating the complexity of compliance based on your risk tolerance and strategies for using technology to make evidence collection and report building more efficient. Looking to the future, Steven and Joe dive into evolving compliance requirements for third-party risk and emerging concerns like Artificial Intelligence. If you’re preparing for an audit or looking to improve your compliance program, you’ll want to tune in.

Connect with Delinea:

Delinea Website: https://delinea.com/

Delinea LinkedIn: https://www.linkedin.com/company/delinea/

Delinea Twitter: https://twitter.com/delineainc

Delinea Facebook: https://www.facebook.com/delineainc

Delinea YouTube: https://www.youtube.com/c/delinea

Jason Haddix, CISO and Hacker in Charge at BuddoBot, joins Joe to discuss his journey from hacking to penetration testing and ultimately taking on cybersecurity leadership roles. You’ll see how starting as an offensive practitioner provides valuable exposure, and hones your abilities to report and present results and provide defensive and remediation advice. They share tips for leadership, including prioritization, communicating the business impact of security, and developing a strategy to align with business goals. Whether you're just starting out in cybersecurity or looking to advance your career, you’ll learn practical guidance you can put into action right away.

Connect with Delinea:

Delinea Website: https://delinea.com/

Delinea LinkedIn: https://www.linkedin.com/company/delinea/

Delinea Twitter: https://twitter.com/delineainc

Delinea Facebook: https://www.facebook.com/delineainc

Delinea YouTube: https://www.youtube.com/c/delinea

Dive into the fascinating world of hacking. Sick.Codes gives you a glimpse into hacker culture, including the importance of collaboration and knowledge sharing. You’ll also learn how hackers identifying vulnerabilities impacts the growing “right-to-repair” legislative movement that seeks to make it easier and cheaper for consumers to fix products by requiring manufacturers to share information. This episode is packed with advice on tools and strategies for IT and security pros looking to uncover vulnerabilities, reverse engineer threats, and try their hand at ethical hacking. Will you heed the call to get involved with the hacker community?

More from Sick.Codes:

Website: https://t.co/KWPQPyNuYa

Github: https://github.com/sickcodes 

X: https://twitter.com/sickcodes 

LinkedIn: https://linkedin.com/in/sickcodes/ 

Mastodon: https://sick.social 

YouTube: https://youtube.com/c/sickcodes 

HackerOne: https://hackerone.com/sickcodes

BugCrowd: https://bugcrowd.com/sickcodes

Docker Hub: https://hub.docker.com/r/sickcodes

Connect with Delinea:

Delinea Website: https://delinea.com/

Delinea LinkedIn: https://www.linkedin.com/company/delinea/

Delinea Twitter: https://twitter.com/delineainc

Delinea Facebook: https://www.facebook.com/delineainc

Delinea YouTube: https://www.youtube.com/c/delinea

Cybersecurity experts Joe Carson and Dara Gibson discuss the importance of viewing cybersecurity as a cross-functional problem rather than solely an IT issue. Boards are now requiring organizations to have cyber insurance in place, making it crucial for businesses to be prepared for these conversations. For those who are new to the topic or need a refresher, listen in to get Dara's recommendations on making sure your cyber insurance is protecting you and Joe's recommendations for having an offline response plan in case of an attack.

ABOUT DARA GIBSON

Dara Gibson is the Senior Manager for Cyber Insurability Services at Optiv, the cyber advisory and solutions leader. By blending innovative technologies, unique skill sets, and proven cyber strategies, she has created lasting partnerships with clients to protect shareholder value and corporate reputations. As a nationally recognized information security leader, she is responsible for designing cybersecurity awareness programs to foster expertise in relationship management with industry leading cyber insurance and legal providers for proactive and reactive cybersecurity capabilities.  Prior to joining Optiv, Dara was an Alliance Manager having expertise in business development and marketing operations for cyber law firms and cyber insurance companies with specific attention to MSSP Services, Pre-Breach Consultation Services, Digital Forensics and Incident Response (DFIR) Services, and Post-Breach Consultation Services.

Dara on LinkedIn: https://www.linkedin.com/in/dara-gibson/

Twitter: DaraIsagenix

Optiv on LinkedIn: https://www.linkedin.com/company/optiv-inc/

Connect with Delinea:

Delinea Website: https://delinea.com/

Delinea LinkedIn: https://www.linkedin.com/company/delinea/

Delinea Twitter: https://twitter.com/delineainc

Delinea Facebook: https://www.facebook.com/delineainc

Delinea YouTube: https://www.youtube.com/c/delinea

Hear how hackers target everything from airplanes to talking dolls. Pen testing expert Ken Munro discusses ways to close security gaps and protect embedded systems and connected devices.

Connect with Ken Munro:

Ken Munro on LinkedIn

Twitter: @TheKenMunroShow

Connect with Delinea:

Delinea Website

Delinea LinkedIn

Delinea Twitter

Delinea Facebook

Delinea YouTube

This week Joe Carson is joined by Merike Kaeo as they discuss the dynamic role of the CISO within an organization. They dive deeper into the role and how it interacts with different areas of the business, and what specific assets need protection and within what frameworks. An episode not to be missed!

Jump-start your cybersecurity career for FREE with Cybrary! 

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

In this episode we join host Joe Carson as he discusses state cybersecurity with Tonu Tammer of the Estonian National Cybersecurity Center. Tonu goes into the day-to-day operations of defending a country and its citizens from adversaries, as well as ransomware and DDOS attacks. Come along for an in-depth discussion with a cyber defender with years of experience in this exciting new episode!

Below are links referenced in the episode:

CERT-EE RFC 2350 | RIA

Reporting a cyber incident | RIA

Studies, analyses, overviews | RIA

Jump-start your cybersecurity career for FREE with Cybrary! 

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

From the first editing cuts to the design of the cover, join Joe Carson in speaking with expert book publisher Bill Pollock, as they break down the details on book editing. The journey from writing a first draft to publication can be wrought with challenges, but Bill walks through the process to bringing a cybersecurity book successfully to your audience. 

Jump-start your cybersecurity career for FREE with Cybrary! 

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Key Takeaways from the Verizon DBIR with Tony Goulding

Join host Joseph Carson and guest Tony Goulding as they break down the annual Verizon breach report. With over 16,000 incidents and more than 5,200 data breaches, there’s a lot to look at. Tony and Joe have some great takeaways from this critical annual report and share their expert insights on what’s new, what’s changed, and what we’re not doing so bad at (hint: MFA goes a long way!)

Jump-start your cybersecurity career for FREE with Cybrary! 

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

RSAC was the place to be for cybersecurity in 2023, and Joe Carson is joined by Bob Burns to talk all about it. From the sessions that really resonated to the incredible human connections and networking, join Joe and Bob to deconstruct this year’s most comprehensive conference. Were you at RSAC this year? Join us in the comments to let us know your favorite session!

Jump-start your cybersecurity career for FREE with Cybrary!

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Everybody’s talking about it - the AI revolution is here. But given the rapid evolution in this field, it’s hard to keep up with the sweeping effects this technology is causing. Luckily, Joe Carson is joined by longtime AI expert Diana Kelley to shed light on all of these changes. She addresses the many misconceptions and media misrepresentations surrounding AI, breaks down the different forms of this technology, and emphasizes the need for a better understanding of AI's capabilities and limitations. They also discuss the ethical and legal implications that will only become more potent as AI continues to advance. Now is the best time to learn about AI, and this episode is a great place to start!

Jump-start your cybersecurity career for FREE with Cybrary!

Follow Diana!

~LinkedIn

~RSA

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

In this eye-opening episode, dive into the captivating world of cybercrime and social engineering with our host, Joe Carson, and special guest Bryan Seely! Bryan, a keynote speaker and cybersecurity expert best known for his Secret Service exposé, discusses his journey from a young computer enthusiast to a renowned public speaker. Join them as they investigate the mindset and techniques used by hackers, such as the use of aliases to deceive and manipulate their targets, as well as the importance of responsible disclosure and changing cybersecurity laws.

Jump-start your cybersecurity career for FREE with Cybrary!

Follow Bryan!

~LinkedIn

~Twitter

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Given the complex and evolving nature of security, how do different countries approach cyber strategy on a global scale? In this episode of 401 Access Denied, Joe Carson is joined by the one and only Thaddeus E. Grugq (“The Grugq”), who brings along decades of security research and operational security experience. They explore various countries' approaches to cyber operations, including the US, UK and EU, India, Russia, and China. The Grugq also touches on the importance of legal frameworks, cooperation between different government entities, and the dynamic relationships between intelligence groups and law enforcement agencies.

Jump-start your cybersecurity career for FREE with Cybrary!

Follow The Grugq!

~LinkedIn

~Twitter

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

On paper, the board of a company should serve to protect the security of their business. But what functions are actually involved in that process? In this episode of 401 Access Denied, Joe Carson is joined by Delinea’s own CEO, Art Gilliland. Hear straight from the source what exactly goes into leading a company from the security practitioner’s perspective. This inside scoop will demystify what goes on in corporate board rooms, and the big decisions that trickle down through the rest of the company. Tune in to learn more from this unique vantage point!

Jump-start your cybersecurity career for FREE with Cybrary!

Follow Art!

~LinkedIn

~Twitter

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Did you know that May 4th is World Password Day? To celebrate, we invited top hacker Dustin Heywood (aka Evil Mog) to the 401 Access Denied Podcast to discuss the state of passwords! He and Joe Carson take a close look at where passwords currently stand in our rapidly evolving cyber climate, as well as what the future holds. Together, they answer the increasingly asked question, “Are passwords really dead?” Tune in to find out!

Jump-start your cybersecurity career for FREE with Cybrary!

Follow Evil Mog!

~LinkedIn

~Twitter

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Over the years, we’ve all seen a lot of the same cybersecurity-centric messaging. But realistically, how many of these talking points are still potent and relevant? Luckily, Joe Carson is joined by CISO and security consultant Dan Card to help answer that question! This humorous yet informative discussion takes a critical look at established “truths” in security to see if they still hold up. Tune in to learn about the communication disconnect between security practitioners and the average person.

Jump-start your cybersecurity career for FREE with Cybrary!

Follow Dan!

~LinkedIn

~Twitter

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Does your business have the infrastructure, tools, and people to stay ahead of cyber attacks? In this episode of 401 Access Denied, Joe Carson is joined by the one and only cyber unicorn - Bryson Bort! When it comes to building a company with the necessary foundation to maximize security, Bryson has you covered. As the founder of organizations including SCYTHE and GRIMM Cyber, he comes with a wealth of knowledge on how to protect your business from the ground up with stronger purple teaming. Join the fun in this exciting conversation!

Jump-start your cybersecurity career for FREE with Cybrary!

Follow Bryson!

~LinkedIn

~Twitter

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

How can programmers prevent breaches and bolster security from the root of their code? Joe Carson is joined by Mackenzie Jackson, a developer advocate for GitGuardian, who are leaders in helping keep secrets and credentials out of source code. Mackenzie explains the primary ways attackers are able to exploit these secrets, and how developers can defend against their attacks. These lessons are vital for overall security in all sectors, so don’t miss out on this episode!

Follow Mackenzie!

~LinkedIn

~Twitter

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE with Cybrary!

Through the first three episodes of our podcast mini-series with Patero, we’ve learned all about the opportunities and risks involved with quantum computing. In this fourth and final installment, Ron Lewis wraps up the discussion by answering the big question - what now? With a lot of uncertainty over our future with quantum, Ron takes a methodical and logical approach as to how we can best prepare ourselves for the inevitable shift that this technology will bring.

Discover Patero!

Learn more about the quantum threat!

See the research from NIST:

~NIST Announces First Four Quantum-Resistant Cryptographic Algorithms

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career today with Cybrary!

As technology advances, how can governments and organizations keep up in order to maintain, secure, and legitimize elections? In this episode of the 401 Access Denied Podcast, Joe Carson speaks with security engineer Christian Folini to discuss how diversifying tech is democratizing elections. Gain insight into the rise and impact of online voting, including the recent Estonian Prime Minister election where the predominant voting method was over the internet. You won’t want to miss this pertinent conversation!

Follow Christian!

~LinkedIn

~Twitter

~YouTube

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE with Cybrary!

The fields of technology and cybersecurity can be intimidating to jump into, especially for women and minorities. That didn’t stop Mari Galloway from carving out her own path full of successes. As the founder and CEO of Women’s Society of Cyberjutsu, Mari’s story is inspiring and a great example of how to overcome the odds in this domain.

Follow Mari!

~LinkedIn

~Twitter

Follow the Women's Society of Cyberjutsu!

~LinkedIn

~Twitter

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

How have businesses adapted to the ever-evolving field of cybersecurity over the years? Join Joe Carson as he catches up with long-time friend Brian Honan for an entertaining and informative conversation. Brian’s decades of experience in IT, cybersecurity, consulting, and executive leadership offers a unique perspective full of wisdom and anecdotes. Newcomers and cyber experts alike won’t want to miss this engaging discussion!

Follow Brian!

~LinkedIn

~Twitter

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE at Cybrary!

In the third episode of our fascinating podcast miniseries on quantum computing, we are joined again by Ron Lewis, VP of Customer Success and Innovation at Patero, for an in-depth discussion on the intersection of quantum and cybersecurity! Ron applies everything we've learned about quantum thus far to recent breaches and security news. How can quantum technology bolster your defense-in-depth strategy, help mitigate cyber threats, and protect the integrity of your network? Tune in to start utilizing quantum to revolutionize your organization's security solutions!

Discover Patero!

Learn more about the quantum threat!

See the research from NIST:

~NIST Announces First Four Quantum-Resistant Cryptographic Algorithms

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE at Cybrary!

Have you ever wondered how cybersecurity policy gets created, updated, and enforced? In this episode of the 401 Access Denied Podcast, Joe Carson speaks with Jen Ellis, founder of NextJenSecurity and board member of several major cybersecurity institutions including the UK Government, to discuss the ins and outs of cyber policy. Learn how entities, including governments, corporations, and individuals, interact with and are impacted by these policies. Jen is a leader in this space, so tune in and gain a lot of insight on this important topic!

Follow Jen!

~LinkedIn

~Twitter

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE at Cybrary!

In this episode of the Cybrary Podcast, we dive into the mission, vision, and future of Blacks in Cybersecurity (BIC) and how they're making waves in the industry. From the challenges they've faced to the opportunities they see, Michaela Barnett, CEO, and Arthur Pryor, Director of Operations, share their expertise and insights to help you navigate the cyber landscape. Plus, get the inside scoop on what to look out for and what advice to follow for anyone looking to break into the field by 2023. Tune in now for an electrifying episode you won't want to miss!

Discover Blacks in Cybersecurity!

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE at Cybrary!

How can you establish a better security culture for your business and life? In this episode of the 401 Access Denied Podcast, Joe Carson sits down with “Serial CISO” (Motorola, AstraZeneca) and Security Analyst Paul Simmonds, CEO of the Global Identity Foundation, to discuss why Zero-Trust has only intensified at the height of an ever-evolving digital age. You won’t want to miss Paul’s philosophy on securing your identity and assets against any given entity, risk, or persona!

Follow Paul!!

~LinkedIn

~Twitter

Check out the Global Identity Foundation!

~https://www.globalidentityfoundation.org/

Check out these blogs from the Global Identity Foundation!

~Mistaken Identity Part 1

~Mistaken Identity Part 2

~Mistaken Identity Part 3

~Mistaken Identity Part 4 

~Mistaken Identity Part 5 

Follow us on Social!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE at Cybrary!

In part 2 of our Quantum-focused series, the Cybrary Podcast welcomes back Ron Lewis, VP of Customer Success and Innovation at Patero. We've explored how quantum computing impacts cybersecurity professionals as both a threat to encryption and as a machine learning tool. In this episode, Ron shares his deep wealth of knowledge on the "Q's of Quantum" and the history of the field of study around Quantum Random Number Generation (QRNG).

Discover Patero!

Learn more about the quantum threat!

See the research from NIST:

~NIST Announces First Four Quantum-Resistant Cryptographic Algorithms

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE at Cybrary!

Who knew that casual livestream ethical hacking could lead to a full-time content creation career? The one-and-only Ben Sadeghipour aka NahamSec takes us down memory lane from the time he studied computer science and digital marketing in college to the moment he saw a promising future in bug bounty hunting. Get into the livestream hacker's mindset in this fun conversation about mentorship and community building in the cybersecurity space!

Follow NahamSec!

~Twitter 

~YouTube

~Twitch 

Consider Donating to the The Leukemia & Lymphoma Society® (LLS)

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE with Cybrary!

What were the biggest cybersecurity trends of 2022, and which types of threats do experts predict we should prepare for in 2023? Dan Lohrmann, Field CISO with Presidio, returns to the 401 Access Denied Podcast to provide a consolidated perspective on all the trends from an eventful year. From the war in Ukraine to the rise in cyber mercenary attacks, hacktivism, cloud hacks, and deepfakes, we're welcoming 2023 with a careful review of all the most memorable topics!

Read Dan's article on "The Top 23 Security Predictions for 2023"

~The Top 23 Security Predictions for 2023 Part 1 

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE at Cybrary!

Could an AI chatbot like ChatGPT help you co-author the next great cyberpunk novel? Or craft a phishing email and generate sock puppets - for ethical hacking research, of course! Join our security research team - incident responder Marc Balingit and adversary emulator Matt Mullins - as we wade into the fun (and sometimes ethically ambiguous) areas of AI tech in cybersecurity. Keep the conversation going as we explore how AI tools can impact productivity, learning, skill shortages, and more.

Check out the podcast on Youtube to watch Will, Matt, and Marc demo ChatGPT.

Explore ChatGPT in Cybrary's FREE challenge activity!  

Read all about the potential impact of A.I. chatbots on the cybersecurity world!  

Learn more about OpenAI on their website!

See How OpenAI became an AWS Certified Cloud Practitioner!

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

Cloud services have made it easier for users to stay connected and access resources from anywhere. But how can we reduce the security risks resulting from on-premises-to-cloud infrastructure migration? Security researcher Carlos Polop returns to the 401 Access Denied Podcast to expose the most unexpected cloud security flaws commonly leveraged by adversaries. From tackling misconfigurations to enhancing security controls, we cover top risk mitigation strategies recommended by cloud penetration testers!

Follow Carlos! (and join his Discord community!)

~Github

~Twitter 

Check out Carlos' latest book on cloud hack tricks

~Hacktricks Cloud

Learn more about Carlos's priviledge escalation tool

~Purple Panda

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE at Cybrary!

Cybersecurity needs dynamic minds to keep up with ever-evolving threats. How can managers foster an inclusive workforce that celebrates diversity of thought? Scott Gibson, Chief Strategy Officer at Melwood, discusses how a "double empathetic" approach can help security leaders improve sourcing best practices and meet their employees where they're at. Hear more about the steps that neurodivergent people can take to build their career-ready skills and succeed in cybersecurity.

Learn more about Melwood and the abilIT program!

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE at Cybrary!

Ethical hackers are motivated to make society safer, but how can they ensure that they are following the law? This episode of the 401 Access Denied Podcast explores all the gray areas of vulnerability disclosure policies, copyright laws, and end-user license agreements. Learn essential hacker safety tips from our hosts, Joe Carson and Chloé Messdaghi!

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE at Cybrary!

The quantum computing revolution is a hot topic in the technology world, but how exactly does it impact cybersecurity professionals? To what extent does quantum computing pose a threat to encryption, and how long do we have to prepare for it? Ron Lewis, VP of Customer Success and Innovation at Patero, helps us find a pragmatic approach to post-quantum resiliency. In the first episode of our Quantum and Cyber podcast series with Patero, you'll learn all about how to differentiate Shor's algorithm from Grover's, navigate the cryptographic saga of Bob and Alice, and realistically quantify post-quantum risks.

Discover Patero!

Learn more about the quantum threat!

See the research from NIST:

~NIST Announces First Four Quantum-Resistant Cryptographic Algorithms 

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE at Cybrary!

The art of hacking is often synonymous with high-profile cybercrime. But how can the cybersecurity and penetration testing community help more crafty hackers go from breaking bad to breaking good? Phil Wylie, author of "The Pentester Blueprint," joins Joe Carson and Chloé Messdaghi to discuss innovative ways of fostering a safe, supportive, and rewarding culture among ethical hackers. We explore how effective mentorship, gamified bug bounty challenges, and free training opportunities can positively impact cybersecurity job recruitment and satisfaction.

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE with Cybrary!

Some threat actor groups pursue state-sponsored espionage, and others conduct financially-motivated cyberattacks. APT41, also known as Double Dragon, happens to do both! Our adversary emulator and self-described Chief Thief, Matt Mullins, teams up with defensive security freelancer, Chris Daywalt, to discuss their latest threat actor campaign emulating APT41. Get caught up in the cat-and-mouse game between red and blue teamers in this conversation on reducing risk, enhancing alerts, and exploring realistic simulations!

Start the Double Trouble with Double Dragon Threat Actor Campaign to detect TTPs leveraged by real-world threat actor group, APT41!

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE at Cybrary!

When threat actors target enterprise security environments, they often seek to compromise the accounts with the most privileged access. How can organizations minimize security risks in a world where remote account access is growing? George Eapen, Group Chief Information Officer at Petrofac, discusses important strategies for reducing risk and increasing resilience in the face of threats like ransomware attacks. Learn more about how layered security controls, privileged access management, and employee training can foster a positive organizational security culture.

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE at Cybrary!

Interested in switching your career to cybersecurity, but don't know where to start? Need to brush up on your cyber basics? In this episode of the Cybrary Podcast, we are joined by our very own course managers Sara Faradji and Jenn Barnabee. Jenn goes into detail on the making of her new Entry-Level Cybersecurity Training (ELCT) course that is intended for absolute beginners with no prior knowledge of the industry! Get the inside scoop on how you can gain the foundational knowledge to take the next step towards your cybersecurity career or goals.

Check out Jenn's Entry-Level Cybersecurity Training course at Cybrary!

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE at Cybrary!

Learn more about Cybrary! 

Feeling fatigued from all the fear and uncertainty surrounding cybersecurity news? Take a breather in this engaging podcast conversation with Ian Murphy, founder of CyberOff and affectionately known as "The Monty Python of Cyber"! Join in the fun as Ian breaks down the complexities of cybersecurity to focus on the value of human impact, bravery, and connectedness in this dynamic field.

Check out CyberOff!

Connect with Ian!

~LinkedIn 

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE at Cybrary!

Have you ever thought about pursuing a cybersecurity career, but you don't imagine yourself as a "tech person"? Tennisha Martin, founder and Executive Director of Black Girls Hack, discusses strategies for both front and backdoor entrances into the dynamic world of cybersecurity. Learn how to take advantage of networking, resume review, and hands-on training opportunities so that you can see yourself in cyber!

Join Black Girls Hack! 

~Black Girls Hack Website 

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE at Cybrary!

With the state of cybersecurity in constant flux, how can security teams better prepare both their organizations and society for the challenges ahead? Rik Ferguson, VP of Security Intelligence at Fourscout Technologies, shares best practices for tackling issues of trust, authenticity, communication, and problem-solving in the security world.

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE at Cybrary!

A skill shortage is pervading the cybersecurity industry. But what is the root cause of the problem, and how can employers fill more job roles? Dave Kennedy, CEO and founder of TrustedSec, and Chloé Messdaghi, Chief Impact Officer at Cybrary, discuss hiring and training best practices in the security world. Learn how you can break into the cybersecurity field from any educational or technical background!

Follow Dave Kennedy!

~LinkedIn 

Follow us on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career today at Cybrary!

With ransomware, supply-chain attacks, and other organized cybercrime incidents on the rise, what can we do to better protect society? Philipp Amann, Head of Strategy at the European Cybercrime Centre (EC3), invites us to his world of cyber law enforcement and analysis. Learn more about the evolution of cyberattacks and cybercriminal investigations. Hear how you can join government agencies in the fight against new and pervasive threats.

Follow Philipp!

~LinkedIn 

~Twitter 

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE with Cybrary!

When it comes to vulnerability disclosure, there can be a lot of unknowns. What is the first step in safely reporting? How can global bug bounty hunters better understand the specialized legalese in disclosure policies? Casey Ellis, founder and CTO of Bugcrowd and Co-founder of Disclose.io, addresses the importance of standardizing vulnerability disclosure policy language. Join in the de-villainization of ethical hackers with Casey and the Cybrary team at Black Hat!

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

At the onset of the 2022 war in Ukraine, how did the wiper malware attacks deployed by Russia impact civilians? To what extent does cyberwarfare coincide with information warfare in the context of the Russo-Ukrainian War? In part 2 of our conversation with Chris Kubecka, CEO of HypaSec, we discuss the importance of open-source intelligence and community support amidst global conflict.

Connect with Chris Kubecka!

~Twitter

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE with Cybrary!

How did Tracy Z. Maleeff (aka InfoSecSherpa) pivot from a library science job into a cybersecurity research career? What first steps can other liberal arts majors take on their potential path toward the information security field? Find your niche in the security world with Tracy's tips on leveraging diverse skill sets to help solve complex security problems.

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

With the Great Resignation looming, what can security leaders do to empower their teams? How does effective training help shatter glass ceilings? Lance James, CEO of Unit 221B, shares his methodology for boosting team confidence and capability.

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

A distressing escape from a nation at the outbreak of war. A race to the border filled with sharp turns, sleepless nights, and evasion from mercenary groups. This is the true story of cyberwarfare expert Chris Kubecka's exodus from Ukraine in early 2022. Follow Chris down the winding Ukrainian backroads in part 1 of her perilous story.

Connect with Chris Kubecka!

~Twitter 

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE with Cybrary!

Cybrary has been hard at work building a custom lab experience designed to prepare your security teams to succeed. Get the inside scoop on Cybrary's SOC Analyst Assessment from Senior Product Manager Ned Hinman. Learn how you evaluate your team's skill development with a high-fidelity, immersive assessment.

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

With thousands of new vulnerabilities discovered each year, how can security teams prioritize which ones to mitigate? John Hammond, acclaimed content creator and Senior Security Researcher at Huntress, explains key factors determining a vulnerability's potential impact. Join John behind the scenes at the RSA conference as he discusses threat actor mindsets, community engagement, and the ethics of hacking.

Connect with John!

~LinkedIn 

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

Jump-start your cybersecurity career for FREE with Cybrary!

What is your ideal password management experience? Pamela Dingle, Director of Identity Standards at Microsoft, chats with us during the 2022 RSA conference about forward-thinking identity management strategies from the perspectives of consumers, businesses, and government entities. Hear Pamela's take on how authentication, standardization, and decentralization efforts are changing the way that we think about digital identity.

Connect with Pamela!

~Linkedin 

Follow us on Social!!

~Twitter

~Instagram

~Facebook

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

With companies migrating to cloud environments amidst a continued influx of remote and hybrid workspaces, it's essential to keep your data secure. Nick Lumsden, co-founder and CTO of Tenacity Cloud, helps organizations to improve their foundational AWS cloud security. In a world where you can quickly make software changes, how can you maintain asset visibility and ensure compliance? Listen to Nick's insights on cost-effective cloud security management best practices.

Connect with Nick!

~LinkedIn

Check out Tenacity Cloud

~Company Website 

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

When the next zero-day vulnerability hits, how can your security team prepare to detect and respond to the latest threats? In what ways can your organization reduce risk in a dynamic threat landscape? Our Cybrary Threat Intelligence Group (CTIG) is here to jumpstart the conversation on grounding your security training and decision-making on actionable research. Hear our CTIG experts, Ryan English and Matt Mullins, discuss the latest intel on the Follina vulnerability (CVE-2022-30190), the ZuoRAT report from Black Lotus Labs, and evolving tactics from initial access brokers like Prophet Spider.  

Take Matt’s training course on the Follina vulnerability: ~https://www.cybrary.it/course/cve-series-follina-cve-2022-30190/ 

Enroll in our Spinning a Web Shell for Initial Access course to detect behaviors of real-world initial access brokers: ~https://www.cybrary.it/catalog/spinning-a-web-shell-for-initial-access/ 

Check out the report on ZuoRat from the Cybray Threat Intelligence Group (CTIG): ~https://www.cybrary.it/blog/ctig-coverage-of-black-lotus-labs-zuorat-report/

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

As our threat landscape evolves and remote work opportunities continue to grow in popularity, it's important that security leaders enhance their future-proofing strategies. How can organizations cultivate human-centered approaches to prioritizing risks and developing proactive incident response plans? Robert Burns, Chief Security Officer of the Thales Cloud Protection and Licensing division, sits down with the 401 Access Denied team to discuss these strategies and other key takeaways from the June 2022 BSIDES and RSA conferences.

Connect with Bob!

~LinkedIn 

~Twitter 

Follow us on Social!!

~Twitter

~Instagram

~Facebook

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

Security conference season is back in full swing, and Cybrary is here to bring you all the highlights! Our Senior Product Manager, Ned Hinman, shares key takeaways from the Infosecurity Europe Conference in June of 2022. Hear what security leaders organizations like ISC2 are saying about strategies for bridging skills gaps, attracting new talent, and approaching cybersecurity as a psychological challenge.  

Read the Psychology of Intelligence Analysis 

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

Living in the Information Age means that we have a wide world of knowledge and networks at our fingertips, but where do we find that balance between enlightenment and exhaustion? If you're weary from doomscrolling and tired of putting bandaids on burnout, you'll want to hear what Chloé Messdaghi has to say about maintaining sanity in the security industry. Join Chloé as she kicks off her latest gig as the co-host of the 401 Access Denied podcast, where she will share insights on prioritizing mental health support and positive leadership in cybersecurity.

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Delinea LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

As cybersecurity teams become more advanced, adversaries get craftier. That's why Cybrary's blue teamer Owen Dubiel and red teamer Matt Mullins joined forces to develop purple team training campaigns based on real-world threats. Their latest campaign explores how threat actors like FIN10 extort organizations by threatening to expose their stolen data publicly. Hear all about how Owen and Matt created training exercises to help you improve your situational awareness and detection strategies.

Think you have what it takes to enhance your detections to pinpoint each step in FIN10's attack kill chain? Enroll now in our Exfiltration and Extortion campaign, where you'll gain expert insights on real-world threat actor behavior and detect the malicious activity yourself in a virtual lab.

Enroll now in our new Exfiltration and Extortion Campaign!

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

Verizon's 2022 Data Breach Investigations Report (DBIR) is out, and Delinea is here to break down the highlights! Delinea CISO Stan Black and Cybersecurity Evangelist, Tony Goulding, discuss which findings are most surprising, actionable, and trending upward in this year's report. Get the experts' advice on how we all can develop smart, data-driven security solutions based on evolving threat actor behavior and incident analysis.

Read all about it in Verizon's 2022 Data Breach Investigations Report!  

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Delinea LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

Acclaimed cybersecurity power player Chloé Messdaghi is making big moves in her new role as Cybrary's Head of Impact. In this episode of the Cybrary podcast, she discusses commonsense approaches to minimizing bias and cultivating inclusivity in the security industry. How can organizations mitigate not only dynamic cyber risks, but also the revolving door of employee turnover? What can effective leaders do to prioritize the value of security teams and invest in their continued growth? Listen to Chloé's advice on developing a human-centered perspective in security management and workplace culture.

Follow Cybrary on Social!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Jump-start your cybersecurity career with Cybrary!

Jump-start your cybersecurity career for FREE with Cybrary!

Where can organizations find specialized candidates for millions of unfilled security jobs? How can the right approach to training help increase employee retention and close the notorious cybersecurity skills gap? Kevin Hanes, CEO of Cybrary, shares why investing in people is a vital part of reducing risk. Learn how you can effectively prioritize diversity in the hiring process and support the growth of people who value the continuous educational journey that is cybersecurity.

Follow us on Social!

~Twitter

~Instagram

~Facebook

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

How can purple teaming benefit your organization? When red teamers like Matt Mullins collaborate with blue teamers like Owen Dubiel, you know you'll get a thorough and cost-effective assessment of your security environment. Listen to Matt and Owen share their strategies for successful purple teaming design and implementation. Plus, hear about their new Cybrary course campaign where you'll learn real-world adversary techniques before enhancing detections.

Check Owen and Matt's Threat Actor Campaign series, where you'll learn the tactics and techniques used by real-world adversaries!

~Threat Actor Campaigns

Follow Cybrary on Social!!

~Twitter

~Instagram

~YouTube

~LinkedIn

Jump-start your cybersecurity career for FREE with Cybrary!

How does the hacker of all trades, Fredrik Alexandersson (aka STÖK), take the time to learn new things, design sustainable fashion, and connect with a growing social media community? Hear how you can satisfy your curiosity with the ultimate work-life balance. Follow STÖK down the bug bounty career path that influenced his cybersecurity career journey and inspired his creative pursuits.

Follow STÖK on all platforms!

~Website 

~YouTube

~Twitter  

Follow us on Social!

~Twitter

~Instagram

~Facebook

~YouTube

~LinkedIn

Ransomware attacks impacted 66% of organizations in 2021. As threat actor groups like FIN7 take advantage of expanded networks, security weaknesses, and human trust, it's more important than ever to keep up with their level of prowess. Cybrary's "enterprise defender," Owen Dubiel, and "chief thief," Matt Mullins, discuss how their cybersecurity work experiences informed their Ransomware for Financial Gain course series modeled after FIN7's techniques. Follow each part of their attack scenario that lets you emulate adversaries before enhancing your detections to reduce your risk of being the next ransomware victim.  

Why choose between the red and blue teams when you can do both?

Check Owen and Matt's Threat Actor Campaign series, where you'll learn the tactics and techniques used by real-world adversaries!

~Threat Actor Campaigns 

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Just in time for World Password Day, this podcast episode is all about password cracking and the solutions to securing your secrets. Four-time DEF CON Black Badge winner and Chief Architect of IBM X-Force, Dustin Heywood, shares essential tips for easy password management. And if you're into ethical hacking, listen to Dustin's advice on which tools, hardware baselines, technique variations, and intellectual abilities will give you the advantage you need to start cracking.

Follow Dustin on Social! 

~Twitter

~LinkedIn 

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Delinea LinkedIn

Ready to get hands-on with Cybrary's ten bite-sized OWASP Top 10 courses? Legendary instructor and penetration tester, Clint Kehr, shares what you can expect in his scenario-based training courses that prepare you to exploit real-world web application vulnerabilities. Hear what's new in the 2021 OWASP Top Ten List, including category revisions, position ranking adjustments, and a whole lot of freshly-mapped CWEs. Plus, learn how Clint and the CyDefe team worked to bring you custom lab exercises that challenge you to think like a pen tester.  

Enroll in all of Clint's phenomenal OWASP Top 10: 2021 courses!

~A01:2021 - Broken Access Control 

~A02:2021 - Cryptographic Failures 

~A03:2021 - Injection 

~A04:2021 - Insecure Design  

~A05:2021 - Security Misconfiguration 

~A06:2021 - Vulnerable and Outdated Components 

~A07:2021 - Identification and Authentication Failures 

~A08:2021 - Software and Data Integrity Failures 

~A09:2021 - Security Logging and Monitoring Failures 

~A10:2021 - Server-Side Request Forgery (SSRF) 

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

In a world where cybersecurity is no longer just an IT issue, it is more important than ever to assess the human, technical, and physical security aspects of any organization. Bringing responsible awareness to this triad, FC (aka Freaky Clown) and his team at Cygenta are reimagining the role of penetration testing in fostering sustainable cyber resilience. Hear the tricks that FC has learned on the job while (ethically!) robbing banks to identify physical security weaknesses, enhancing the comprehensive value of pen tests, and developing cybersecurity training exercises for people of all ages.

Learn more about FC's company!

 ~Cygenta 

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Delinea LinkedIn

The Okta security breach has gained considerable attention since the company's public disclosure of the attack on March 22nd, 2022. As debates continue on the timeliness and effectiveness of the organization's response, we at Cybrary want to elevate the discourse on how to foster smart, sustainable, and empathetic approaches to cybersecurity risk management. On this episode of the Cybrary Podcast, listen to the thoughtful advice of Cybrary's CEO, Kevin Hanes, and Senior Director of Content, Will Carlson, as they discuss how all organizational stakeholders can align on incident response strategies.

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

In this episode of 401 Access Denied, we're joined by Carlos Polop, security researcher and creator of Privilege Escalation Awesome Script Suite (PEASS). Seen recently with the Linux "Dirty Pipe" vulnerability exploitation, it's become critical to learn how attackers exploit privilege escalation flaws. Carlos shares how pen testers can use LinPEAS and WinPEAS to expose vulnerabilities in CTF environments. Additionally, learn how you can contribute to his research in the penetration testing community.

Check out Carlos' book: https://book.hacktricks.xyz/ 

Follow Carlos on GitHub & submit pull requests: https://github.com/carlospolop 

Join Carlos' Discord community: https://discord.gg/hRep4RUj7f 

Follow Carlos on Twitter: https://twitter.com/carlospolopm 

Connect with Delinea:

Delinea Website

Delinea

LinkedIn

Delinea Twitter

Delinea Facebook

Delinea YouTube

As cybersecurity teams seek to enhance their defenses in the wake of worldwide ransomware attacks and the spread of wiper malware in Ukraine, what predictions can we make about the evolution of global information wars? Acclaimed security leader and Field CISO at Presidio, Dan Lohrmann, discusses emerging trends in cyber insurance, cyber incident reporting, and incident response planning. Learn more about the potential impact of the Shields Up advisory published by the U.S. Cybersecurity and Infrastructure Security Agency (CISA). Amidst growing risk and uncertainty, hear Dan's advice on how you can develop best practices for training and preparing your security team.

Connect with Dan!

~ LinkedIn 

~ Twitter 

Check out Dan's Book: 

~Cyber Mayday and the Day After 

Read Dan's Blog Post on Cyber Insurance: 

~Where Next for Government in the Cyber Insurance Market? 

Read More on Cybersecurity and the Invasion of Ukraine:

~What the Newly Signed US Cyber-Incident Law Means for Security 

~‘For the first time in history anyone can join a war’: Volunteers join Russia-Ukraine cyber fight 

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Delinea LinkedIn

During unprecedented times when cyber and kinetic military actions coalesce, what can we learn about the evolving nature of warfare? Mike McLellan and Rafe Pilling join us from the Counter Threat Unit at Secureworks to discuss the latest cyberattacks in Ukraine. What is distinctive about these emergent types of wiper malware, and how can we better discern the objectives of threat actors? Get advice from the security research experts about how your organization can enhance defenses and incident response planning in the face of new threats.

Read more about this subject in our blog post:

~Cyberwarfare: Evolution and Impact on the Russia-Ukraine Conflict 

Check out Cybrary Now!!!

~Cybrary

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

In just the first half of 2021, the financial industry saw a 1,318% in ransomware attacks. How can knowledge of ransomware gangs' encryption strategies help employees at every level of an organization to develop stronger incident response plans? Paula Januszkiewicz, acclaimed security leader, pen tester, and CQURE CEO, offers practical guidance on inclusive approaches to security awareness training. As the threat landscape evolves alongside new technological innovations, questions emerge about how we need to rethink password protection, privilege access, and at-home security. Enjoy this thought-provoking conversation about the value of curiosity and teamwork in forward-thinking security strategy development.

Connect with Paula!

~ LinkedIn

~ Twitter

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Delinea LinkedIn

Come on over to the dark side with Matt Mullins, the red teamer and penetration tester who is here to help you think like an adversary. Cybrary Course Manager Jenn Barnabee talks with Matt about his Cybrary courses that teach you how to exploit and mitigate the latest critical vulnerabilities, including Log4j, HiveNightmare, and more. Considering a path forward in offensive security? Then you'll love hearing about how Matt's career aspirations evolved from Buddhism studies to the "Help Desk Farm" to penetration testing. From zen to ZAP, he has a lot to share about taking risks and learning new tools!

Enroll now in Matt's Cybrary courses!  

~CVE Series: Log4j (CVE-2021-44228) 

~CVE Series: HiveNightmare (CVE-2021-36934) 

~CVE Series: InstallerFileTakeOver (CVE-2021-41379) 

~CVE Series: MSHTML Vulnerability (CVE-2021-40444) 

~Cybrary's MITRE ATT&CK TTP Course: SSH Authorized Keys 

Check out Cybrary Now!!!

~Cybrary

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

How can we improve the security of life-saving medical, communications, and transportation devices? What hands-on skills do we need in order to design more trustworthy hardware? In this episode of 401 Access Denied, InfoSec veterans Beau Woods and Paulino Calderon discuss key tips from their informative book, "Practical IoT Hacking: The Definitive Guide to Attacking the Internet of Things." If you enjoy working with your hands and breaking things, then you'll want to hear Beau and Paulino's tips for how to kick off a dynamic, fulfilling career in IoT security. Learn more about why accessibility and collaboration are essential to improving the way that humans interact with, trust, and benefit from technological devices. 

Check out Beau and Paulino's book!

~"Practical IoT Hacking" 

Connect with Beau and Paulino on social media

~Beau's Twitter

~Beau's LinkedIn

~Paulino's Twitter

~Paulino's LinkedIn

Join the IoT Village Discord server

~IoT Village

~#practical-iot-hacking Channel

Follow us on Social!!

~Cybrary Twitter

~Delinea Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Delinea LinkedIn 

Ready to defend your organization against the widespread PolicyKit vulnerability that experts are comparing to the Log4j flaw? In this episode of the Cybrary Podcast, Raymond Evans, CEO of CyDefe Labs, discusses his latest Cybrary course on Polkit CVE-2021-4034. By exploiting this flaw, just how easy is it to gain root access on a target system? What can we learn from this vulnerability about the value of penetration testers and open-source software? Find out in this podcast and in Ray's course!

Enroll now in Ray's newest course!

~CVE Series: Polkit (CVE-2021-4034) 

Learn more about Cybrary's partnership with CyDefe:

~https://www.cybrary.it/catalog/vendor/cydefe/ 

Follow CyDefe Labs on Social Media!

~Twitter 

Check out Cybrary Now!!!

~Cybrary

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Whether you’re new to cybersecurity or a longtime security professional, one of your best opportunities to network is at conferences. In this fun-filled episode of 401 Access Denied, seasoned conference-goers, Joe Carson and HillBilly Hit Squad’s vCISO (aka “Chief Geek”), Chris Roberts, share their insights on how to make the most of networking events. What clothes should you pack? How can you best plan your daily schedule so that you maximize productivity and have time to socialize? And, most importantly, where in the world can you find the best whiskey? Cheers to a new year filled with engaging, informative cybersecurity events!

Connect with Chris on social media!

~LinkedIn 

~Twitter 

Follow us on Social!!

~Cybrary Twitter

~Thycotic Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Thycotic LinkedIn

The next revolution in quantum computing and technologies is happening now, but how exactly will these growing innovations affect our lives? Dr. Maksym Sich, CEO of the groundbreaking quantum photonics startup, Aegiq, discusses how quantum will impact our medical, communications, and financial industries. Addressing the myth that quantum computing will break all our encryption keys, Maksym elaborates on quantum communications, post-quantum cryptography, and efforts to develop sustainable solutions with security by design. Be ahead of the curve in knowing how we will want to upgrade our systems to improve efficiency, data privacy, and more!

Learn more about Maksym's startup, Aegiq:

~Company Website

For more information on Quantum Computing:

~Quantum Manifesto 

~Quantum Technologies - Blackett Review 

~Quantum Comms Hub, "What does QKD mean for the Economy?" 

~Report from the QED-C, "Guide to a Quantum Safe Organization"

~Downloadable Report from the QED-C 

Check out Cybrary Now!!!

~Cybrary

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Everyone is talking about malware these days, but what new developments and trends are we seeing in malware attacks? This week’s featured guest is Shyam Sundar Ramaswami—Senior Research Scientist at Cisco by day, and the Batman of Hacking by night. So how does cybersecurity’s Bruce Wayne propose that we strengthen our incident response plans against emerging malware threats? What’s really happening when we click that inconspicuous link in the “Delivery Address Confirmation Needed” email? Find out the answers to these questions from the ethical hacker hero who’s here to help you save the world from cyberattacks!

Read Shyam's Book!

~"It's Your Digital Life" - https://www.routledge.com/Its-Your-Digital-Life/Govindarajulu-Ramaswami-Vasudevan/p/book/9780367700041

Check out Shyam’s TED Talks

~Can a Couch Potato Save the Digital World? | Shyam Sundar Ramaswami | TEDxIIITBangalore - https://youtu.be/VEDF8bQPOeY

~Cyber Security - The Responsibility | Shyam Sundar Ramaswami | TEDxBITSathy - https://youtu.be/D4wJMjDhUBw

Follow Shyam on social media!

~Twitter 

~LinkedIn 

Follow us on Social!!

~Cybrary Twitter

~Thycotic Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Thycotic LinkedIn

How did Cybrary instructor Corey Holzer go from being the IT help desk person for the World Wrestling Federation to becoming a PhD-holding Information Security Manager? In this episode of the Cybrary podcast, please enjoy Corey’s fascinating stories of nearly colliding with the Undertaker, losing his internet connection during the CRISC exam, and developing essential problem-solving skills as a cybersecurity professional. Get a behind-the-scenes look at Corey’s newest course, Linux Hardening—out now on the Cybrary platform!

Connect with Corey:

~LinkedIn 

Check out Cybrary Now!!!

~Cybrary

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

The 2007 cyberattacks on Estonia culminated into a watershed moment in global cybersecurity awareness. Jaak Tarien, Director of the NATO Cooperative Cyber Defence Centre of Excellence (CCDCOE) in Tallinn, Estonia, discusses the geopolitical concerns of cybercrime. Ransomware attacks can have a significant economic impact, but how are cybercrime operations also indicative of a breach of sovereignty? To best approach this question, Jaak emphasizes the importance of the CCDCOE's legal scholarship, such as the Tallinn Manual, among other efforts that foster transparent multinational cybersecurity communications, research, and training.

Check out the following resources for more information on the CCDCOE:

~Official CCDCOE Website: https://ccdcoe.org/

~Tallinn Manual: https://ccdcoe.org/research/tallinn-manual/

~Locked Shields 2021: https://youtu.be/oHmVjwKi1P8

Follow Joe on Twitter!

~@joe_carson

Follow us on Social!!

~Cybrary Twitter

~Thycotic Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Thycotic LinkedIn

2021 has been quite a year for all of us, but what have we accomplished and learned in the cybersecurity field? We have certainly had to adjust to a global remote work culture and step up our security strategies to take on new challenges involving more specialized cybercrime. Art Gilliland, CEO of ThycoticCentrify, joins our host, Joseph Carson, to reflect on key lessons learned and predictions for 2022. Will Zero Trust become a security norm like Defense in Depth? How could governments get more involved in cryptocurrency regulation efforts? Enjoy this engaging discussion before we kick off the new year!

Connect with Art!

~LinkedIn

Follow Joe on Twitter!

~@joe_carson

Follow us on Social!!

~Cybrary Twitter

~Thycotic Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Thycotic LinkedIn

Welcome back to the Cybrary Podcast, and happy holidays! Whether you are celebrating with family and friends, or simply enjoy the spirit of the season, we hope you are able to take some time off from work and school to celebrate what matters most to you.

As 2021 comes to a close and we look back at all we accomplished this year, despite the circumstances, we raise a glass to you and cheers for making it this far.

Thank you for joining us each week to learn something new and continuing to share this journey with us. With your constant support each week, we were able to acheive more than ever before, and the podcast continues to grow in ways we never expected! We can’t help but feel excited for what new opportunities will present themselves in 2022. So, mark you calendars, and stick with us for brand new episodes of the Cybrary Podcast, starting January 19th!

If you or someone you know would like to be a guest on the Cybrary Podcast or 401 Access Denied, email us at [email protected]. On behalf of Cybrary, thanks for another great year - and we will see you in 2022!

Check out Cybrary Now!!!

~Cybrary

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Could online gaming be the key to bridging the cybersecurity skills gap? Is enumeration more than a scanner's sport? Ian Austin, Head of Content Innovation at Hack The Box, tackles these questions as he explains why cybersecurity training should be less about checking the boxes and more about thinking outside the box. Hear Ian's thoughts on the global reach of gamified security education and the significance of "purple-minded" cybersecurity initiatives that bring red and blue teams together.

Connect with Ian Austin!

~LinkedIn

Follow Joe on Twitter!

~@joe_carson

Follow us on Social!!

~Cybrary Twitter

~Thycotic Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Thycotic LinkedIn

Ready to make a career transition from the military to IT? How can veterans effectively communicate transferrable skills that stand out in the competitive cybersecurity industry? Cybrary Insider Pro Community Manager, Tim Ramirez, shares how he started a new career path after serving 12 years in the U.S. Air Force. Learn about how he began a 3-year IT master's program with no IT experience, managed his expectations on the job market, and finally passed the CISSP exam.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Connect with Tim!

~Linkedin 

Check out Cybrary Now!!!

~Cybrary

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

When it comes to incident response, “Your plan is worthless, but your planning is priceless.” These wise words from JC Vega, CISO at Devo, highlight the critical difference between having an incident response plan and being incident response ready. In this episode of the 401 podcast, JC explains how unpredictable, engaging simulations can be a game-changer in building an organization’s resilience against critical cyberattacks like ransomware. Find out how your simulation-based training can effectively help your entire organization to build trust and get actively involved in cybersecurity preparedness.

Connect with JC!

~LinkedIn

Follow Joe on Twitter!

~@joe_carson

Follow us on Social!!

~Cybrary Twitter

~Thycotic Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Thycotic LinkedIn

What does it take to be a cyber threat intelligence analyst? How can cyber threat intelligence or CTI training be applied in real-world strategic defense planning and risk management assessment? Cybrary Course Manager Jennifer Barnabee returns to the Cybrary Podcast with two guests from MITRE to discuss the value of CTI teams and their research. Jackie Lasky, Senior Cybersecurity Engineer, and Amy Robertson, Cyber Operations Lead, break down the ways that cyber threat intelligence is used to produce actionable defensive recommendations to any organization. Learn more about why it’s more important than ever for CTI teams to have diverse contributors with both technical and non-technical skillsets.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

If the security industry is booming, what does this mean for the state of cybersecurity and for humanity at large? Information security leader and content creator, Quentyn Taylor, breaks down the flaws in heavily reactive security and “cybersecurity first” approaches that minimize the human-centered elements of risk management. From IoT-enabled smart locks to RFID credit cards, Quentyn assesses the value and risks behind popular security products. Follow Quentyn's advice to make your organization not only more cyber-aware, but also resilient.

Connect with Quentyn!

~LinkedIn 

~Twitter 

Follow Joe on Twitter!

~@joe_carson

Follow us on Social!!

~Cybrary Twitter

~Thycotic Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Thycotic LinkedIn

How can you build smarter cyber defense strategies that reduce your organization's risk against the threats you care about most? Let the subject-matter experts at MITRE teach you how to disrupt the adversary by employing a threat-informed defense approach. In this episode of the Cybrary Podcast, Cybrary Course Manager, Jennifer Barnabee, hosts a virtual roundtable with special guests from the MITRE Engenuity team, including Frank Duff, Steve Luke, and Richard Struse. With the help of MITRE’s free training courses on the Cybrary platform and the resources provided by the Center for Threat Informed Defense, you can align your security strategies to combat real-world adversary techniques.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Enroll now in our FREE MITRE ATT&CK Defender courses!

~MITRE ATT&CK Defender™ (MAD) ATT&CK® Fundamentals Badge Training  

~MITRE ATT&CK Defender™ (MAD) ATT&CK® Cyber Threat Intelligence Certification Training 

~MITRE ATT&CK Defender™ (MAD) ATT&CK® SOC Assessments Certification Training 

Check out Cybrary Now!!!

~Cybrary

Follow Thor on Twitter!

~@thorin_around

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Cybersecurity is a growing, expansive industry that transcends the fields of technology and even security. How can organizations leverage the critical work of data scientists not only for machine learning automation, but also for diversifying threat detection strategies? In this episode of 401 Access Denied, Joseph Carson, Chief Security Scientist at Thycotic, discusses data science in the security context with Kevin Hanes, CEO of Cybrary, and Jon Ramsey, a fellow cybersecurity executive and returning guest. Join the conversation on the importance of artificial intelligence, machine learning, and deep learning in the advancement of dynamic, adaptive cybersecurity business strategies and training.

Connect with Jon and Kevin on Linkedin!

~Jon Ramsey 

~Kevin Hanes 

Follow Joe on Twitter

~@joe_carson

Follow us on Social!!

~Cybrary Twitter

~Thycotic Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Thycotic LinkedIn

Think you've got what it takes to replicate the real-world cyber attacks of threat actors like FIN7? Learn how ethical hackers are putting their skills to the test in MITRE ATT&CK TTP-based adversary emulations. In this episode of the Cybrary Podcast, Cybrary Course Manager Jennifer Barnabee chats with MITRE Principal Cyber Adversary Emulation Engineer, Michael Long. Whether you're managing a red team or just getting into ethical hacking, you'll want to hear this discussion about the value of emulating adversaries and simulating malware. Stay tuned for Michael's upcoming MITRE adversary threat emulation course--only on Cybrary!

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary

Follow Thor on Twitter!

~@thorin_around

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

Zero Trust security architecture models are becoming more popular as organizations seek to reduce risk. But what are both the business and cultural implications of deperimiterization? Enjoy this engaging conversation with Thycotic's Advisory CISO, and Chief Security Scientist, Joseph Carson, and his doppelgänger, Dave Lewis, the Global Security CISO at Cisco Security. Learn how a Zero Trust mindset involves not only technical solutions such as network zone segmentation, but also human-centered security awareness training and mentorship.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Dave on Social Media!

~LinkedIn 

~Twitter 

Follow Joe on Twitter

~@joe_carson

Follow us on Social!!

~Cybrary Twitter

~Thycotic Twitter

~Instagram

~Facebook

~YouTube

~Cybrary LinkedIn

~Thycotic LinkedIn

You've got the technicals skills, but how do you explain them to someone? Knowing how to communicate about technology to different audiences is a crucial part of cybersecurity career development. Listen to Chief Cybrary Mentor, Mark Nibert, share his advice on how to tackle your public speaking fears, know when that email should be a meeting, and ask the right questions as you expand your network.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary

Connect with Mark!

~ Mark Nibert's Linkedin 

Mark's Reading List

~"The Ghost in the Wires" by Kevin Mitnick and William L. Simon

~"Talk Like TED" by Carmine Gallo

~"Executive Presence" by Sylvia Ann Hewlett

Follow Thor on Twitter!

~@thorin_around

Follow Cybrary on Social!!

~Twitter

~Instagram

~FaceBook

~YouTube

~LinkedIn

X-Force Red Hacker Dustin Heywood aka EvilMog joins us during the first week of Cybersecurity Awareness Month to share how to be cyber smart with your passwords. He shares critical steps for protecting passwords and some insight into his world of password hacking.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Dustin on Social Media!

~LinkedIn 

~Twitter

Follow Joe on Twitter 

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIn 

~Thycotic LinkedIn 

How do you get a cybersecurity job without experience, and how do you gain experience without a job? Our new Cybrary instructor, IT security manager Nick Marentic, delves into this classic chicken-and-egg problem as he shares insightful career advice. Learn how you can break into cybersecurity from any field, as well as hear what it's like to work in an IT management role.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Connect with Nick!

~Nick Marentic's LinkedIn 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn 

How do we accurately measure and minimize cybersecurity risks? How does cyber insurance fit into the risk management process? Joseph Carson, Chief Security Scientist at Thycotic, discusses these questions and more with members of the Resilience cyber insurance company, including Ann Irvine, Chief Data Scientist, and Kevin McGowan, VP of Cyber Underwriting. Learn about how insurance companies like Resilience work with organizations to find the best solutions to offset critical risks.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter 

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIn 

~Thycotic LinkedIn 

When your instructor is the legendary Kelly Handerhan, you know you're going to pass the CISSP exam and actually enjoy studying for it. As humans become more technical, Kelly humanizes the technical world so that you can better relate to the subject matter. 

In this episode of the Cybrary Podcast, Kelly shares what's new in the updated CISSP exam and offers tips for how you can prepare. Hear more of her timeless stories in her new and improved CISSP course on the Cybrary platform! 

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn 

If you've ever closed your garage door or checked your home security camera with a mobile app, then you've relied on a technical communication network of virtual Information Technology and physical Operational Technology devices. This synthesis of IT and OT provides convenient ways for you to secure your home, but your assets are at risk when malicious actors exploit those networks. In this episode of 401 Access Denied, listen to host Joseph Carson, Chief Security Scientist at Thycotic, talk with cybersecurity executives, Jon Ramsey and Juan Espinosa, about the significance of OT risk management and mitigation. Learn how security managers can work with designers, vendors, and compliance officers to prioritize investment in OT security. 

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter 

~@joe_carson  

Follow us on Social!!

~Cybrary Twitter  

~Thycotic Twitter  

~Instagram  

~Facebook  

~YouTube  

~Cybrary LinkedIn  

~Thycotic LinkedIn  

Meet our newest Cybrary instructor, Owen Dubiel! Interested in a cybersecurity career, but don't know what to expect? In this episode of the Cybrary podcast, Owen shares what he wishes every intern knew about life in the defensive security space. Using his expertise as an Information Security Engineer, Owen is eager to design Cybrary courses that give entry-level security workers a competitive edge. Learn how he balances his time as an engineer, analyst, and content creator. Plus, hear what a cybersecurity expert really thinks about the accuracy of Mr. Robot and "IT guy" tropes.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Connect with Owen!

- Owen's LinkedIn

Follow Thor on Twitter!

~@thorin_around 

Follow us on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn 

401 Access Denied Ep. 35 | Safeguarding Critical Infrastructure with Ben Miller

In this episode of 401 Access Denied, we're joined by Dragos VP of Services and R&D, Ben Miller to discuss how securing critical infrastructure has changed over the past 10 years, including the convergence of OT and IT, the increase in ransomware attacks, and the need for critical visibility into industrial control systems (ICS). 

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube! 

Follow Ben and Dragos on Twitter

~@DragosInc 

~@electricfork 

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

Ever wondered what it was really like to be a hacker? Is there more to Dark Web policing than meets the eye? Ethical hacker and Cybrary instructor Clint Kehr tells the story of his law enforcement career transition from the streets to the web. Gain insights from the conversation on "failing up," networking, and mentoring in the cybersecurity industry.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Check out Clint's Course on Cybrary

~Offensive Pen Testing 

Connect with Clint

~Clint's LinkedIn 

Follow Thor on Twitter!

~@thorin_around 

Follow us on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn 

In this episode, Joseph Carson and Jonathan Meyers discuss the 2021 Verizon Data Breach Investigations Report and its findings. We cover how the threat landscape has changed in the past year and why there's been an increase in the number of cyberattacks. Hear what the experts say you can do to balance security and productivity. Plus, the top-cited causes of data breaches.  

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter

~https://twitter.com/joe_carson

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

How did Meg West go from a political science degree to an incident response manager career in 3 years? Listen to her story of perseverance and her advice for any of you who want to jump into the dynamic cybersecurity field. We debunk the biggest myths about security work, uncover what it’s really like to be a “woman in tech,” and discuss her growing virality on YouTube as “Cybersecurity Meg.”

Follow Cybersec Meg on Social!

~@cybersecmeg

~YouTube

Check out Cybrary Now!!!

~Cybrary 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn  

In this episode, Joe Vest joins the 401 Access Denied team to discuss red teaming and pen testing operations and fundamentals. Joe is the author of the original SANS SEC 564 Red Teaming and Threat Emulation course, former technical lead for a DoD red team, and co-author of Red Team Development & Operations. Joe walks us through how to build and run a professional red team, along with the common pitfalls and obstacles most organizations face.

Check out Joe's book here: https://redteam.guide/

Follow Joe Vest on Twitter: @joevest

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

In this episode, Cybrary's Mike Gruen and Jonathan Meyers sit down with Travis Good and Ryan Rich, co-founders of Haekka, a Security Awareness training company that lives directly in Slack. Travis and Ryan discuss their history in security and ways to keep security training up-to-date with the ever-changing digital landscape.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn  

In this episode of 401 Access Denied, Dave Kennedy, CEO of Binary Defense and TrustedSec, and co-author of Metasploit: The Penetration Testers Guide joins the 401 team to talk about penetration testing. We uncover invaluable lessons from a master in the industry.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

In this episode of the Cybrary Podcasts, Cybrary's Jonathan Meyers, along with Michael Weigand and Josh Lospinoso from Shift5, are joined by Dr. TJ O'Connor to discuss their shared experience of army cyber defense exercises. Dr. OConnor also touches on his journey in cybersecurity education and explains his current role as the Cybersecurity Program Chair at Florida Tech, which includes participating in FITSEC defensive and offensive competitions.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn 

Recent events confirm that the US’s critical infrastructure and supply chain are very vulnerable to ransomware attacks. What more can and should be done to keep them safe from ransomware? As NATO and the White House announce steps to crack down on bad actors, will it move the needle at all? Dan Lohrmann, CSO of Security Mentor, and formerly of State of Michigan and the NSA, joins the 401 team to discuss. 

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

As the first season of Go For It comes to an end, Sarah shares her experience with overcoming mental obstacles such as depression and finding hope amidst an uncertain time. Sarah explains the importance of "thinking everything is rigged in your favor" when your faith is being tested by a difficult, and sometimes abusive, working environment.

On this episode of the Cybrary Podcast, Jann Yogman continues the conversation on Mimecast's Security Awareness Training. Jann shares his journey as one of the writers for the training show, including his experience in brainstorm sessions and favorite moments on the set. If the last Cybrary Podcast left you curious about the production process, this podcast episode is for you!

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn  

There are a lot of myths about what pen testing or red-teaming really are. DJ Fuller, CEO of Pathfynder joins us today to share what companies should expect when they engage a third-party to help them with cyber security and how to establish a good incident response program. Get the low down on the common mistakes that organizations make when hiring a third-party service or choosing to move forward internally.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube! 

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

In this episode of Go For it, Jonathan Alboum joins Sarah to discuss his journey in security, ranging from his former CIO of USDA position to his current work in the government as the Federal CTO of Service Now. Sarah and Jonathan talk about the importance of leaping into new opportunities and ways on handling career transitions.

In this episode of the Cybrary Podcast Drew Freed, the face behind Mimecast's iconic Human Error character, discusses being approached at his bartending gig for the role as well as his journey within the security education space. Get to know Drew's acting experience, hobbies, favorite movies, and his most memorable moments on the Mimecast set. Want to know how Human Error got his iconic costume? Ever wondered what it's like to get tackled by the Melbourne Rebels rugby team? We discuss it all on the Cybrary Podcast.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn 

After the four zero-day vulnerabilities were discovered, the FBI also proactively removed backdoors on numerous private Exchange servers. Was that overreach or the right thing to do? On today's episode, we're joined by Josh Lospinoso, CEO and co-founder of Shift5 and former U.S. Army cyber officer, to discuss law enforcement in cyber security.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

In this episode of the Cybrary Podcast, Mike Gruen, the CISO at Cybrary, sits down with Bella Trenkova, the Founder of Ardigent Consulting, which offers Agile and DevSecOps services and coaching. Mike and Bella discuss the importance of and the common misconceptions about DevSecOps. They do a deep dive into the nuances of investing in DevSecOps for any company as well as transitioning into a DevSecOps team.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn  

In this episode of 401 Access Denied, we are joined by Ondrej Krehel, CEO and Founder of LIFARS, to discuss Digital Forensics, Incident Response, Ransomware Mitigation, and Cyber Resiliency. Do you know your risks and how to respond if targeted by hackers? We discuss how to be resilient on both a personal and organizational level.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

On this week's episode, Sarah sits down with Kerry Wekelo, the COO of  Actualize Consulting, to discuss the power of gratitude for career development. Using her personal work experience and leadership development expertise, Kerry shares her techniques on nourishing gratitude on a daily basis in order to grow your professional mindset.

In this week’s episode of The Cybrary Podcast we are speaking with Nick Moy, renowned Cybrary Instructor and VP of Security Engineering for a mortgage firm. Nick discusses how he began his cyber journey and the courses he teaches on Cybrary.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Nick on Twitter and YouTube

~@m0n42ch 

~YouTube 

Check out Cybrary Now!!!

~Cybrary 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn  

It’s the special anniversary edition of the 401 Access Denied podcast! In honor of our 1-year anniversary and more than 16,000 listens, Joe and Mike want to take you behind the scenes and introduce you to everyone who works on the podcast and brings it to you biweekly. Listeners, thank you for hanging out with us for 1 magical year. We want to hear your thoughts here. What topics or guest stars matter to you?

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

What gives you energy? We’re not talking about “what motivates you”, we’re diving into what gives you the energy to work, live, and experience life with intent. If you could have 3x the amount of energy as you do now, what would you do with it? Today’s episode explores the virtuous cycle of energy and how to set yourself up for success every day.

Welcome to episode 59 of the Cybrary Podcast. This week’s guest, Cindy Chan-Leonor, Co-founder of CyberDEI, joins us from California to discuss imposter syndrome, her journey into cybersecurity, and why finding a community to connect with is vital to your success.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn  

Mike and Joe dig into the topic of cyber insurance with the folks from Resilience Insurance – Kevin McGowan, VP of Cyber Underwriting and Michael Phillips, Head of Claims. As cyber laws are changing and cyber criminals are continually getting better and more creative in their approach, cybercrimes are becoming more commonplace. We discuss what you need to know when selecting cyber insurance for your organization to help minimize disruption and ease the aftermath of a cyber incident.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

On this week’s episode, Sarah welcomes Sharon Chi to uncover how to “avoid mental constipation” and react with purpose. Do you find yourself always going, but never pausing to take a breath to hear your own thoughts and reflect on your life, goals, and intentions? How do find the energy and motivation to grow and keep moving forward? Get ready to listen and think about your driving force and how to be intentional in thought and action.

If you have a topic you’d like Sarah to discuss, or are interested in being a guest, email us at [email protected].

On this episode, we welcome Mike Behrmann, Director of Security at Blumira to talk with Cybrary’s Director of Content, Will Carlson, about Workforce Development. Continuous professional development is an expectation at many growing companies today, but is it being made a priority? As Will and Mike discuss the moving target known as Cybersecurity, they delve into resume and job interview expectations, how to set goals that align with your cybersecurity journey, and the importance of cross training while finding your specialization.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn  

Special guest Ted Harrington joins Joe and Mike today to discuss application security – how to be more secure, what AppSec myths to reconsider, and how to change mentalities at your organization. Ted is Executive Partner at Independent Security Evaluators and author of Hackable: How To Do Application Security Right.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn 

Do you ever wonder how some people get ahead so fast? Well, you can’t reach the next level with the same level of thinking as now. When you’re surrounded by sameness, how do you grow? In this episode of Go For It, Sarah dives into being intentional and thoughtful, and ways to create an environment optimized for the growth of you and those around you.

If you have a topic you’d like Sarah to discuss, or are interested in being a guest, email us at [email protected].

It’s Episode 57 of the Cybrary Podcast and we welcome Tina Kuhn, President of Cybercore Technologies, to talk about supply chains. 

With attacks as recent as SolarWinds and future attacks that will inevitably occur, Mike and Tina discuss everything from counterfeit equipment and hardware tampering, to the state of critical infrastructure and how to evaluate products for optimal security.   

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Check out Cybrary Now!!!

~Cybrary 

Follow Thor on Twitter!

~@thorin_around 

Follow Cybrary on Social!!

~Twitter 

~Instagram 

~FaceBook 

~YouTube 

~LinkedIn  

In your cyber security journey, you’ve probably heard of a massive number of cyber security tools, many of them free. It can be tricky to figure out where to start and which tool is worth your time. In this podcast, Joe and Mike discuss the free cyber security tools in their arsenal and the significant value they’ve provided over the years. 

Did we miss your favorite free tool? Write to Joe and Mike here.

Don't forget to rate, review & subscribe to us on Apple Podcasts, Spotify, and YouTube!

Follow Joe on Twitter

~@joe_carson 

Follow us on Social!!

~Cybrary Twitter 

~Thycotic Twitter 

~Instagram 

~Facebook 

~YouTube 

~Cybrary LinkedIN 

~Thycotic LinkedIn