ExpedITioners

Show notes:    Today, we’re joined by Huxley Barbee, a security evangelist at RunZero and organizer of Bsides NYC. In this episode, Zach and Huxley talk about the modern divergence of environments and security methodologies. Topics discussed:   Huxley’s start within the security industry. Making the industry a better place for newcomers. Chasm solutions. Comprehensive security visibility. Methodologies of collecting data (on the network). How “network” terminology has evolved. “Deperimeterization”. Modern divergence of security environments and efforts of discovery. The top 3 important components that help round out a security program. Agent-based collection compared to network-based collection. Organization of Bsides NYC. Where to get in touch:  Linkedin https://www.linkedin.com/in/jhbarbee/  Twitter https://twitter.com/huxley_barbee  Mastadon https://infosec.exchange/@huxley  Bsidesnyc.org https://bsidesnyc.org/  Runzero https://www.runzero.com/    Try Fleet   Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. https://fleetdm.com/try-fleet/register.

Show notes: Joined by Marcus Ransom, Sales Engineer at Jamf, and one of the hosts of the Mac Admins podcast. In this episode, Zach and Marcus talk about the exciting future of Apple for enterprise and the MacAdmin community that supports it. Topics discussed:   Marcus’ introduction to the Mac admin/IT world. Opportunities with the future of Apple products Changes throughout the history of the MacAdmin community. Integrating MacOS devices across every ecosystem. Frequent challenges and opportunities seen across the industry. Enabling developers to build the tools your company needs for its customers. Thoughts on the future of Mac IT. Apple instituting actionable and useful feedback from vendors. The importance of sharing information across the industry and community. Resources mentioned:   Xworld -  Australia  MacAdmins Slack MacAdmins podcast MacAdmins Foundation  

Show notes:  As the Co-Founder and Chief Technology Officer at Abbey Labs, Jeff Chao advocates for the implementation of configuration as code, emphasizing its pivotal role in streamlining processes and enhancing efficiency. Actively contributing to fostering trust and prioritizing outcomes over tasks, Jeff recognizes the importance of achieving tangible results through automation.    Topics discussed:   How did you first get into tech? Enabling people to build things instead of just protecting them. Attending DEFCON as a teenager. Configuration as code for efficiency and automation. The creation of Abbey Labs. Easing into the adoption of configuration as code.   Resources mentioned:   LinkedIn - https://www.linkedin.com/in/thejeffchao/ Abbey Labs - https://www.abbey.io/

Show notes:    On this episode, we have Charles Edge, also known as the "Old School Mac Guy," who not only hosts the MacAdmins Podcast but also serves as the Chief Technology Officer at Boostrappers.mn. He is dedicated to pioneering approaches in the realms of Apple technology, security, and IT management software. Join us as Charles shares insights into the future of MDM and device management Topics discussed:   Charles’ start in the MacAdmin world. Wingdings. Building an MDM. Enjoying the business, financial, and technical sides of IT management. Secret Chest and DND spells Writing a 2,000-page textbook on the history of computing. What the biggest changes for IT and MacAdmins will be. The future of MDM.   Resources mentioned:     https://www.secret-chest.com/ https://podcast.macadmins.org/   Where to get in touch:  https://www.linkedin.com/in/charlesedge/  https://www.linkedin.com/company/fleetdevicemanagement/ Try Fleet   Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. https://fleetdm.com/try-fleet/register.

Show notes:    John Reynolds navigates a unique approach to modern IT as the Head of IT at Pleo. Culture and interactions with humans come first in order to truly enable users to do their work. Join us on this episode as John talks about how their team works to put people first.   Topics discussed:   How John Reynolds got into their professional career Creating an IT team from scratch for growth Emotional healing with IT teams Allowing IT to enable users to get their work done “Invisible when we can be, and unmissable when we should be” Reducing escalation friction Letting people talk to IT like they talk to everyone else Standardizing processes for IT logistics in hybrid workforces The future of IT   Where to get in touch:    LinkedIn   Try Fleet   Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.  

Show notes:    We’re joined by Rich Trouton, an IT Technology Services Expert at SAP with over twenty years of experience. Outside of work, Rich also publishes the Der Flounder MacOS blog and is Treasurer for the Mac Admins Foundation.   Topics discussed:   How Rich got into Mac Administration and IT IT allows for more enticing opportunities than traditional roles Biggest changes that have taken place for MacAdmins over the past twenty years Introduction of MDM and Declarative Device Management (DDM) What people want in MDM How much of a difference will DDM make for other MacAdmins Genesis of the Mac Admins Foundation and involvement The next five years of the Mac Admin world   Resources mentioned:     MacAdmins Foundation Declarative Device Management Rich’s talk on DDM Der flounder blog   Where to get in touch:  MacAdmins Slack LinkedIn   Try Fleet Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.

Show notes:    Niels is the Head of Security at Intigriti, Europe's largest bug bounty platform, which connects 90,000+ security researchers to their customers' assets. He manages cloud security, SoC, threat intelligence, application security, compliance, detection & response, infrastructure, incident response & more. When not with his head in the trenches, he spends time writing experimental security tooling or executing various projects for customers. Topics discussed:   How Niels got their start in Cybersecurity. Developing proof of concepts for malware and workarounds. Making the transition from “amateur hacker” to “professional hacker”. What the bug bounty scene is all about. Convincing customers and larger names to trust a company like Integriti with confidential information. What a procurement process for a bug bounty company looks like. Tips for building out security programs and how to prioritize work. Returning to the fundamentals of a security threat model. Creating win-win situations between community and customers with open-source collaboration. The value of open-source. Where the security industry should be looking over the next five years. Where to get in touch:  GitHub  LinkedIn Intigriti Try Fleet   Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.

Show Notes:   In today’s episode of the ExpedITioners Podcast, we are joined by Bradley Chambers, who covers enterprise technology for 9 to 5 Mac and the Apple @ work podcast. They also have a day job at Cribl running content marketing, helping companies understand how to best manage observability data.  Topics discussed: How Bradley got into the world of MacOS Quality of life improvements for Apple Admins How Apple puts people first, even in enterprise deployments The factors leading industry experts from K-12 to large enterprises Recommendations for those looking to make sense of all the data coming from Macs The importance of proving security through compliance The future of enterprise Apple management Where to get in touch:  Find Bradley on LinkedIn Listen to Apple @ Work Podcast Find 9 to 5 Mac Try Fleet Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.

Show notes:  In his day job Mat X serves the local film, VFX (visual effects), and media production industries. As an established storage, workflow, and backup expert, he builds better workflows from camera to archive and back again. Working with high-speed fiber channel SAN storage led to a healthy respect for well established backup, archive, and disaster recovery systems, balancing on-premise LTO (linear tape open) systems that offer fast and secure backups with cloud (other people’s data centers).   Many years of managing Macs and other devices has created a large community of IT professionals wanting to do the same. Seeing the new trend of Mac open source software collaboratively written and wanting to focus on the niche of developers (Dev) and IT (Ops) working together, Mat X founded a new conference called MacDevOps:YVR (MDO:YVR for short). In 2015, the first MDO annual conference of IT, system administrators, programmers, and DevOps professionals worldwide took place in Vancouver (YVR). Knowing that more storage and services were moving into the “Cloud” and that writing software collaboratively was a necessary learning goal for many, MDO was created as a way forward to building a better community. Several successful in person conferences later, the pandemic shifted everything online to a greater worldwide audience with speakers and attendees around the globe. Now with the MDO podcast, book club series, and many workshops online throughout the pandemic, the learning never stops. Planning continues for more conferences and community events to train the next generation of IT Pros and seasoned conference speakers. Topics discussed:   Mat’s background and how he got into the MacAdmins world What a day in the life of Mat X looks like Illuminating the biggest changes of MacAdmin over the years The creation and journey of MDOYVR Why MacAdmins came to be so community-oriented (open source eg. MicroMDM, Nudge, etc) What the biggest challenges the industry and MacAdmin teams are The future of MacAdmin work   Learn more about MDOYVR. Find Mat on Twitter. Find MacDevOpsYVR on Twitter. Find Mat on LinkedIn. Try Fleet Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.

Whitney is a co-founder and the lead architect at Recon InfoSec. She has extensive experience in large-scale infrastructure automation and orchestration in both the private and public sector. She builds and maintains the security stack that powers Recon’s MDR services and their network defense range, which powers their NDR training and OpenSOC.io. Topics discussed:   Whitney’s background and how she got involved with cybersecurity Understanding the importance of learning new security tooling Whitney’s involvement with OpenSOC and Blue Team CTF at DefCon Recommendations for transferring skills from practice to practical methodologies Where her excitement for open source stems from What some of the biggest challenges Recon InfoSec face and how they overcome them The future of cybersecurity Whitney's Twitter: https://twitter.com/shortxstack Recon InfoSec's Twitter: https://twitter.com/Recon_InfoSec Blog: https://www.reconinfosec.com/ LinkedIn: https://www.linkedin.com/company/recon-infosec/ OpenSoc: https://opensoc.io/ Try Fleet Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.

Jesse Peterson is a Client Platform Engineer for Meta, contributor to MicroMDM, and creator of NanoMDM. In today’s episode, we talk with Jesse about how he’s used his involvement in open source communities to develop better MDM tools and experience career growth. Listen now to learn how your organization can build a better device management strategy. Show Notes: Jesse’s background and how he got involved with Client Platform Engineering Recognizing value adds of open source with MDM software The significance of getting involved with communities, like MacAdmins, and how they lead to career development. What led to the creation of MicroMDM and NanoMDM How to overcome the challenges of a Client Platform Engineer  His top three pieces of advice for organizations working on building out their device management strategy Try Fleet Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.

Nick Anderson is a security engineer at Meta, and a member of the osquery technical steering committee. In today’s episode we talk with him about how he overcame the challenges of endpoint security using osquery. Listen in to learn how your organization can best secure its endpoint computing devices.  Topics discussed: Nick’s background in cybersecurity and how he got involved with osquery  The biggest challenges of osquery on windows  What excites Nick about being a part of the technical steering committee for osquery  Monitoring and securing various endpoints  How mobile devices change endpoint security strategies  His top 3 pieces of advice for managing and securing computing devices Try Fleet Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.

Chris Long is a Staff Security Engineer at Material Security, and you might know him from some of his open-source work at Detection Lab. In the episode today, we talk about his work with Facebook and Uber using osquery, and his thoughts on the present and future state of cybersecurity.  Topics discussed: Chris’s story and how he got into cybersecurity  The day-to-day of a Staff Security Engineer  How Chris used osquery while he worked at Facebook  The benefits and power of osquery  How Chris went from an osquery skeptic to seeing the strengths  Why Chris started DetectionLab and how it helps security professionals  Top tips for device management and security strategy for organizations  Biggest challenges organizations face related to security today  Changes we can expect to see in cybersecurity over the coming years Where to Get in Touch Find Chris on LinkedIn Try Fleet Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.

In today’s episode of the Future of Device Management podcast, we speak with Prima Virani— Detection & Response Engineering Lead at Twilio.  Topics discussed: - Prima’s journey into cybersecurity and what initially made her so excited about the industry.  - What Prima’s day-to-day looks like leading detection and response engineering at an organization with nearly 9,000 employees.  - Lessons from deploying Fleet and why Prima’s team decided to host it entirely on an EKS cluster.  - Why endpoint visibility is an essential building block for the success of any detection and response team.  - How to think about container security.  - Prima’s top advice for teams building an endpoint detection and response strategy.     Resources mentioned:   Blog post Prima wrote - Hosting FleetDM on AWS EKS  Book that Zach mentioned - Container Security: Fundamental Technology Concepts that Protect Containerized Applications 1st Edition Where to get in touch:  Follow Prima on Twitter Follow Prima on Linkedin    Try Fleet Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.

In today’s episode of the Future of Device Management podcast, we speak with Mike Arpaia — co-creator and visionary of osquery and partner at Moonfire Ventures — a London-based VC firm focused on seed-stage investing in Europe.  Topics discussed: Mike’s journey from a software engineer focused on security problems to a venture capitalist investing in leading startups.  How a macOS compromise while working at Etsy led Mike to realize how little visibility organizations have into their Mac fleets.  What motivated Mike and his co-creators to build an open-source project — and how they got management buy-in at Facebook.   The tipping point where osquery began to gain traction with engineers at leading organizations.  How it feels to see osquery continue to grow and evolve.  Mike’s #1 piece of advice for those embarking on a journey of trying to understand what’s going on in the systems they manage. Where to get in touch:  Follow Mike on Twitter  Visit Mike’s personal website   Try Fleet Fleet makes it easy to get accurate, actionable data from all your endpoints. From full disk encryption to healthy antivirus software and any query in between. See for yourself. Sign up for Fleet Sandbox for free today: https://fleetdm.com/try-fleet/register.