Firewalls Don't Stop Dragons Podcast Life on the Blue Team
Apr 14, 2025
01:05:18
It’s easy to be a Monday morning quarterback, even with cybersecurity. But defending a business, of any size, against cyber threats today is hard. Like, really hard. Defenders have to succeed every single time; attackers only need to succeed once. And then your company makes the headlines. Today we’ll delve into the world of the “blue team” – the defenders who are charged with protecting your data and the services you depend on – with cyber expert Oz Jones. Along the way, we’ll learn valuable lessons for everyone.
Interview Notes
- Oz Jones on LinkedIn: https://www.linkedin.com/in/4f5a/
- Troy Hunt got pwned: https://www.troyhunt.com/a-sneaky-phish-just-grabbed-my-mailchimp-mailing-list/
- CIS Controls: https://www.cisecurity.org/controls
- Marsh’s Top 12 controls: https://www.marsh.com/en-gb/services/cyber-risk/insights/cyber-resilience-twelve-key-controls-to-strengthen-your-security.html
Further Info
- Dragon Coin Promo!! https://fdsd.me/promo425
- Generate passphrases with a d20: https://d20key.com/#/
- My book: https://fdsd.me/book
- My newsletter: https://fdsd.me/newsletter
- Support the mission: https://fdsd.me/support
- Give the gift of privacy and security: https://fdsd.me/coupons
- Recommend news stories: send to news [at] firewallsdontstopdragons.com
- Send me your questions! https://fdsd.me/qna
- Get your Firewalls Don’t Stop Dragons Merch! https://fdsd.me/merch
Table of Contents
- 0:00:00: Intro
- 0:00:29: Patron promo is LIVE!
- 0:01:16: Correction
- 0:01:49: Interview setup
- 0:04:44: Jargon definitions
- 0:06:39: How did you get into cyber incident response?
- 0:09:56: What does it mean to be on the Blue Team?
- 0:13:25: What are the most impactful cyber threats to companies today?
- 0:16:34: Are people or companies most as risk for ransomware attacks?
- 0:19:57: What impact has cyber insurance had on cyber security?
- 0:21:02: What are the most common types of attacks on companies?
- 0:23:59: How should companies educate their employees about cyber threats?
- 0:30:48: How does working from home or using personal devices impact cyber attacks?
- 0:35:22: How can you protect your company against supply chain attacks?
- 0:38:45: What resources are available to help companies prepare?
- 0:41:07: How can we detect attacks and malware infections?
- 0:44:22: After an attack, how do you respond?
- 0:48:05: What are my legal obligations for notifying my customers?
- 0:50:25: Are table top simulations useful?
- 0:52:07: Are there incident response consultants you can hire?
- 0:53:05: Can you recommend some helpful resources?
- 0:56:11: As consumers, how can we make better choices?
- 0:58:22: Interview wrap-up
- 1:01:51: Troy Hunt was pwned
- 1:03:04: Patron bonus preview
- 1:04:32: Looking ahead