Claim OwnershipeXecutive Security
Subscribed: 6Played: 21
Subscribe
© 2024 Gene Fay
Description
Conversations with CISOs and other important thought leaders offering advice for those wanting to enter the field, grow in the field of cybersecurity.
85 Episodes
Reverse
Jim Alkove, CEO and co-founder of Olaria, shares his career journey and insights on cybersecurity training and becoming a board advisor. He emphasizes the importance of starting at the beginning and gaining experience in software engineering during his time at Microsoft. Alkove highlights the need for a more diverse pool of candidates and situational training to meet the workforce demands of the cybersecurity industry. He also discusses the significance of company culture and values in building successful teams. Alkove provides advice on moving laterally to gain broader skills and transitioning to advisory roles in early-stage companies.Key TakeawaysMove laterally to gain broader skillsets while in early-stage of careers.Training needs to be more accessible to a diverse pool of candidates in order to meet the demands of the cybersecurity industry.Company culture and values are crucial in building successful teams.Write down your goals, be humble, and be open to learning and criticism.
In this episode, Gene Fay interviews Ed Adams, President and CEO at Security Innovation, about his journey into cybersecurity and his work in advancing software security practices. Ed shares his story of transitioning from quality assurance in software at Rational Software to founding Security Innovation, a company focused on application security and training. Ed also dives into his book, See Yourself in Cybersecurity Careers Beyond Hacking, which highlights the many career paths available in the cybersecurity industry beyond hands-on keyboard roles. He discusses the cybersecurity talent shortage, particularly how it affects underrepresented groups, and the need for organizations to rethink how they hire and retain talent.Takeaways:There are many ways to start a career in cybersecurity, even from non-technical backgrounds.Security is an integral part of software quality can help developers and organizations create more secure, reliable applications.The book, See Yourself in Cybersecurity Careers Beyond Hacking, focuses on educating the next generation of cybersecurity professionals and promoting diversity in the field.The cybersecurity talent shortage is not about the lack of skilled individuals, but about outdated hiring practices and insufficient investment in talent development.
In this episode, Gene Fay interviews Sammy Migues, Principal at Imbricate Security, about his journey into cybersecurity and his work on the Building Security in Maturity Model (BSIMM). Sammy shares his experience starting in computer science in the late 1970s and how he became a computer security professional. He explains the motivation behind creating the BSIMM and how it helps organizations measure and improve their software security practices. Sammy also discusses the trifecta for career success, which includes setting a strategy, translating business objectives into actionable steps, and contextualizing skills within the organization. Finally, Sammy shares his thoughts on the cybersecurity shortage and the challenges in hiring and retaining skilled professionals.TakeawaysStarting a career in cybersecurity can begin with a degree in computer science and a willingness to adapt and learn as the industry evolves.The Building Security in Maturity Model (BSIM) is a framework that helps organizations measure and improve their software security practices.The trifecta for career success in management includes setting a strategy, translating business objectives into actionable steps, and contextualizing skills within the organization.The cybersecurity shortage is not just a lack of professionals, but also a result of challenging hiring processes and unrealistic job requirements.
Summary:In this episode, Gene Fay interviews Jeff Hudesman, CISO at Pinwheel, about his career in cybersecurity. Jeff shares his journey from starting as an intern at Memorial Sloan Kettering Cancer Center to working at Sony and eventually joining Pinwheel. He discusses the differences between working in large companies like Sony and startups, highlighting the ability to be impactful and the agility of startups. Jeff also shares an anecdote about a security incident at a water treatment facility and emphasizes the importance of planning in cybersecurity.Takeaways:Working in both large companies and startups can provide valuable experiences in cybersecurity.Startups offer the opportunity to be impactful and make a significant difference.Cybersecurity incidents can occur even in critical infrastructure facilities like water treatment plants.Planning is indispensable in cybersecurity, as threats are dynamic and constantly changing.
Omer Cohen CISO of Descope shares his career story, highlights include:Joy in the constant variety of work in incident responseBenefits of a mature approach to cybersecurity as a start-upSeeing his work in cybersecurity result in a real-world impact and the arrest and prosecution of cybercriminalsB-Sides and the fun of small in person meet-ups
Cybersecurity recruiter Kyle McIntyre offers unique guidance based on his work as a retained search specialist working with hiring managers (VPs & C-Levels) in the cybersecurity industry in this episode. He and Gene discuss: How to conduct preliminary research on potential employers and career pathsHow to reverse engineer desirable backgrounds to demystify potential career pathsTips on crafting effective & thoughtful outreach to hiring managersAdvice on optimizing your resume & profile for breaking into cyber with no prior industry experienceHow to manage imposter syndrome, anxiety and self-doubt during a job searchMoreKyle McIntyre on LinkedIn: https://www.linkedin.com/in/thekylemcintyre/
In this episode, Gene Fay interviews Tom Heiser about his journey and shares tenets for managing oneself. The conversation covers topics such as execution, accountability, expressing passion, doing the best job possible, getting outside one's comfort zone, and focusing on what one can control.TakeawaysExecution is key to success. Just do it.Accountability is important in personal and professional growth.Expressing passion and committing to one's work leads to fulfillment and success.Doing the best job possible is a pathway to career advancement.Getting outside one's comfort zone fosters personal and professional growth.Focus on what you can control and be present in the current situation.
Neil Bahadur, Head of Product in Cybersecurity at Wells Fargo, developed a unique and valuable perspective by switching from security to business development and back to security. In this episode, he and Gene discuss that transition and what he learned from it. They also discuss cybersecurity trends those new to the industry should be aware of, and more.Neil Bahadur on LinkedIn: https://www.linkedin.com/in/neilbahadur/
One of the most important parts of being a cybersecurity professional is knowing how to ask the right questions, says CISO Aaron Katz. Aaron started his career as a consultant, and says that's where he honed his question skills. He thinks all aspiring cybersecurity pros should start out with consulting gigs – you learn the business side and what questions to ask, plus get a feel for cybersecurity as a whole, rather than just one tool or product.He and Gene talk about this career path, plus his journey to CISO, why hiring managers are not good at finding cybersecurity candidates, and more.Aaron Katz on LinkedIn: https://www.linkedin.com/in/pendraggon87/
Ed Giles runs cybersecurity seminars for seniors, and wants to spread the word that it's a great way to both get your CPEs and give back to your community. Ed and Gene talk about those seminars, plus Ed's journey from English major to cybersecurity professional, the importance of thinking about security as a business enabler, and more.Ed Giles on LinkedIn: https://www.linkedin.com/in/evgiles/
How is AI going to change entry-level cybersecurity jobs? Gene and AgileBlue president Tony Pietrocola discuss in this episode.They also talk about:Tony's career and what AgileBlue doesHow AI will affect both cybersecurity and cybercrimeWhat he's looking for in interns Tony Pietrocola on LinkedIn: https://www.linkedin.com/in/tonypietrocola/AgileBlue: https://agileblue.com/
Want to start a career as a pen tester? Phillip Wylie literally wrote the book on the topic. Gene and Phillip, co-author of The Pentester Blueprint: Starting a Career as an Ethical Hacker and host of the Phillip Wylie Show, have a wide-ranging and advice-filled conversation on:His career journey and his podcastStarting a pen testing careerCollegiate Cyber Defense CompetitionsHow to leverage B-SidesMorePhillip Wylie on LinkedIn: https://www.linkedin.com/in/phillipwylie/The Pentester Blueprint: https://www.amazon.com/Pentester-BluePrint-Your-Guide-Being/dp/1119684307
Kimberly Anstett has had a C-level cybersecurity position for about a decade. She's seen the CIO role transform, and shares her thoughts on that transformation in this episode. She and Gene discuss her journey to CIO, how to inspire the next generation to embrace STEM careers, what she's looking for when hiring, and more. Kimberly Anstett on LinkedIn: https://www.linkedin.com/in/kimberly-anstett-6b3a259/
Why should you work in cybersecurity? Because two things that aren't going away are tech and crime, says BlackBerry VP of Product Security Operations Christine Gadsby. Christine and Gene talk about her journey from working in IT out of necessity to cybersecurity VP, how to reskill into cybersecurity, the Leadership Bench Program she developed at BlackBerry, her advice to those discouraged by the job hunt, and more.Christine Gadsby on LinkedIn: https://www.linkedin.com/in/christinegadsby/Three Reasons Women Should Reskill to Work in Cybersecurity: https://blogs.blackberry.com/en/2023/03/3-reasons-women-should-reskill-to-work-in-cybersecurity
Jim Moran has had a long and varied cybersecurity career, and offers some fantastic advice for those just starting out. He and Gene talk about cybersecurity careers, what he's looking for in entry-level candidates, how to find the best career path for you, and more.Jim Moran on LinkedIn: https://www.linkedin.com/in/jim-moran-0b112925/
Diana Kelley feels strongly that community plays a critical role in all careers, but especially cybersecurity. She explains why in this episode.She and Gene also talk about increasing the number of females in cybersecurity, what she looks for in entry level candidates, and more. Diana Kelley on LinkedIn: https://www.linkedin.com/in/dianakelleysecuritycurve/Executive Women's Forum: https://www.ewf-usa.com/WICYS: https://www.wicys.org/
We talk a lot on this podcast about how to advance to the executive level within the cybersecurity field. But what if the C-level is not for you? John Hammond is a security practitioner at heart and wants to stay that way. He shares his thoughts on building a practitioner career in this episode. He and Gene also talk about his experience working for the Department of Defense and about John's prolific side job as a content creator. John Hammond on LinkedIn: https://www.linkedin.com/in/johnhammond010/John Hammond on YouTube: https://www.youtube.com/johnhammond010
Want to make the transition from help desk to cybersecurity? Jeff Farinich has helped others make that transition and he shares his advice in this episode.He and Gene also talk about the types of cybersecurity roles, what he looks for in entry level candidates, and more.Jeff Farinich on LinkedIn: https://www.linkedin.com/in/jefffarinich/
MK Palmore has had a long and fascinating career -- from the military to the FBI to cybersecurity executive at Google. Don't miss his story.He's also a Vice President of Cyversity and has great insights and ideas about bringing more diversity to the cybersecurity field. This is an important and valuable conversation for anyone looking to get into cybersecurity, especially those without technical skills, those with military backgrounds, or those from under-represented populations.MK Palmore on LinkedIn: https://www.linkedin.com/in/mkpalmore/Cyversity: https://www.cyversity.org/
Interested in behavioral science? The training and awareness side of cybersecurity might be for you – and you should hear Masha Sedova’s story. She offers a fascinating look at the human attack surface – which presents a whole new set of challenges – and they aren’t all technical. She has built a career on solving these challenges, and she sheds light on this lesser-known side of the cybersecurity world.
Comments
Top Podcasts
The Best New Comedy Podcast Right Now – June 2024The Best News Podcast Right Now – June 2024The Best New Business Podcast Right Now – June 2024The Best New Sports Podcast Right Now – June 2024The Best New True Crime Podcast Right Now – June 2024The Best New Joe Rogan Experience Podcast Right Now – June 20The Best New Dan Bongino Show Podcast Right Now – June 20The Best New Mark Levin Podcast – June 2024
Download from Google Play
Download from App Store
United States