Simply Defensive

Josh Mason and Wade Wells bring us an exciting episode of Simply Defensive, featuring special guest Eddie Miro. Eddie shares his journey in cybersecurity, offering insights into his experiences at DEFCON, the creation of Octopus Game, and his mission to make cybersecurity more inclusive.Join us as we delve into the benefits of Capture the Flag (CTF) competitions and how they can help new entrants feel comfortable and connected in the cybersecurity community. Learn about the importance of diversity in cybersecurity, tips for getting started with CTFs, different types of CTFs, and how networking can make a significant impact on your career.Don't miss out on this engaging conversation packed with practical advice and inspiration for both beginners and seasoned cybersecurity professionals.Episode Links: https://www.linkedin.com/in/theedmiroshow/https://nationalcyberleague.org/https://cyberskyline.com/https://linktr.ee/octopusgame00:00 Welcome and Introductions00:32 Reconnecting with Old Friends01:27 Octopus Game at DEFCON02:58 The Importance of Diversity in Cybersecurity06:48 Challenges of Blue Team CTFs10:10 National Cyber League and CTF Benefits15:16 Networking and Job Hunting in Cybersecurity18:05 Reflecting on Career Transitions18:29 Jimmy's Journey and Networking20:03 The Value of CTFs21:29 Getting Started with CTFs25:28 Different Styles of CTFs28:21 The Role of Programming in Cybersecurity30:49 Using AI in Cybersecurity32:55 Final Thoughts and Advice=========================Connect with your hosts:Josh Mason: https://www.linkedin.com/in/joshuacmasonWade Wells: https://www.linkedin.com/in/wadingthrulogs=========================Sponsored by ThreatLocker @ThreatLockerAllow what you need, block everything else... Including ransomware. Zero trust Endpoint Protection Platform from ThreatLocker. Learn more at https://simplycyber.io/threatlocker=========================Simply Cyber empowers people who want a rewarding cybersecurity career 💪=========================All the ways to connect with Simply Cyberhttps://SimplyCyber.io/Socials=========================This podcast is presented by Simply Cyber Media Group

In this episode of Simply Defensive, hosts Josh Mason and Wade Wells welcome Mitch Cohen, privacy and OPSEC expert from flare.io.Mitch shares his journey to becoming a 'digital ghost' and offers valuable insights into operational security (OPSEC) and privacy practices. He discusses the importance of securing personal information, the risks associated with poor OPSEC, and provides actionable steps for improving digital privacy.Josh, Wade, and Mitch explore real-world examples, the ethical implications of privacy, and how to strike a balance between convenience and security.An excellent resource for cybersecurity professionals and anyone interested in protecting their digital footprint.Learn more in the flare.io Discord00:00 Introduction to Simply Defensive00:27 Meet Mitch Cohen: Privacy and OPSEC Expert01:29 The Importance of OPSEC04:13 Defining OPSEC and Its Relevance07:07 Real-World OPSEC Challenges08:23 Balancing Public Presence and Privacy12:44 Threat Models and OPSEC Strategies18:07 Practical OPSEC Tips and Personal Stories20:53 Rolling Back Your Public Profile21:48 Digital Spring Cleaning: Deleting Old Posts23:03 The Art of Misinformation: Poisoning the Well24:51 Changing Your Appearance for OPSEC27:38 Resources for Learning OPSEC31:23 The Importance of Privacy as a Human Right36:41 Convenience vs. Security: The Trade-offs40:01 Final Thoughts and Advice for Blue Teamers =========================Connect with your hosts:Josh Mason: https://www.linkedin.com/in/joshuacmasonWade Wells: https://www.linkedin.com/in/wadingthrulogs=========================Sponsored by ThreatLocker @ThreatLockerAllow what you need, block everything else... Including ransomware. Zero trust Endpoint Protection Platform from ThreatLocker. Learn more at https://simplycyber.io/threatlocker=========================Simply Cyber empowers people who want a rewarding cybersecurity career 💪=========================All the ways to connect with Simply Cyberhttps://SimplyCyber.io/Socials=========================This podcast is presented by Simply Cyber Media Group

Navigating the Cybersecurity Landscape with Edna Johnson: From Developer to Threat HunterJoin hosts Josh Mason and Wade Wells as they welcome Edna Johnson, a vibrant and passionate cybersecurity engineer, to Simply Defensive. Edna shares her journey from initially wanting to be a developer to diving deep into the world of cybersecurity, attending and volunteering at major conferences such as Defcon and BSides.She discusses her role in various cybersecurity groups, her imposter syndrome battles, and the importance of volunteering and community engagement in this field. Listen in for valuable insights on threat hunting, content creation, and the significance of understanding basic processes in blue teaming. Don't miss this fantastic episode filled with real-world advice and behind-the-scenes stories from Edna's inspiring career!Connect with Edna:https://www.linkedin.com/in/ednajonsson/https://www.buzzsprout.com/1749189 https://deathcon.io/00:00 Introduction and Guest Welcome00:36 Edna Johnson's Background and Achievements01:53 Challenges and Successes in CTFs03:41 Journey into Cybersecurity05:12 Teaching Cybersecurity and Overcoming Imposter Syndrome08:52 Involvement with BSides and Networking During the Pandemic10:39 Current Projects and Content Development11:49 Exploring AI-Generated Honeypots14:06 Passion for Threat Hunting and Script Writing14:58 Involvement with Death Con17:01 Exploring the Unique Aspects of Death Con17:35 The Value of Networking and Friendships18:17 Extended Access to Labs and Workshops19:21 Organizing Death Con San Diego20:59 The Benefits of Volunteering in Cybersecurity24:40 Joining and Growing DEF CON Groups30:34 Final Thoughts and Advice for Blue Teamers=========================Connect with your hosts:Josh Mason: https://www.linkedin.com/in/joshuacmasonWade Wells: https://www.linkedin.com/in/wadingthrulogs=========================Sponsored by ThreatLocker @ThreatLockerAllow what you need, block everything else... Including ransomware. Zero trust Endpoint Protection Platform from ThreatLocker. Learn more at https://simplycyber.io/threatlocker=========================Simply Cyber empowers people who want a rewarding cybersecurity career 💪=========================All the ways to connect with Simply Cyberhttps://SimplyCyber.io/Socials=========================This podcast is presented by Simply Cyber Media Group

In this episode of Simply Defensive, hosts Josh Mason and Wade Wells are joined by special guest Fletus Poston III, a seasoned cyber defense expert with nearly 18 years of experience.Learn about the complexities of cyber defense in various industries, discussing the pros and cons of regulatory red tape, the impact of audits on cybersecurity, and the dynamics between internal and external red teams. Fletus shares valuable insights on mentorship, career advice for aspiring SOC analysts, and the importance of understanding different perspectives within the industry.Whether you're new to cybersecurity or a seasoned professional, this episode offers a deep dive into the real-world challenges and strategies in the field.Connect with Fletus on YouTube at ⁨@fletusposton⁩ and on LinkedIn.  00:00 Introduction and Guest Introduction00:55 Discussing Industry Regulations01:34 Challenges with Auditing04:46 Red Team vs Blue Team Dynamics08:34 Career Journey in Cybersecurity11:16 Building and Managing SOCs13:34 Internal vs External SOC Management17:05 Maintaining SOC Analyst Morale18:22 Testing and Tabletops18:36 Disaster Recovery Scenarios19:16 Level One Analysts and Guardrails19:38 Tierless SOCs and Escalation20:13 Choosing the Right SOC Environment21:26 Understanding Documentation and SOPs22:25 Advice for Aspiring SOC Analysts24:21 Work-Life Balance in SOC Roles29:32 Reverse Mentorship and Cross-Training31:01 Finding the Right Company Culture34:57 Conclusion and Final Thoughts=========================Connect with your hosts:Josh Mason: https://www.linkedin.com/in/joshuacmasonWade Wells: https://www.linkedin.com/in/wadingthrulogs=========================Sponsored by ThreatLocker @ThreatLockerAllow what you need, block everything else... Including ransomware. Zero trust Endpoint Protection Platform from ThreatLocker. Learn more at https://simplycyber.io/threatlocker=========================Simply Cyber empowers people who want a rewarding cybersecurity career 💪=========================All the ways to connect with Simply Cyberhttps://SimplyCyber.io/Socials=========================This podcast is presented by Simply Cyber Media Group

In this episode of Simply Defensive, hosts Josh Mason and Wade Wells are joined by Reanna Schultz, a renowned cyber influencer and SOC manager. Reanna shares her journey from aspiring state highway patrolwoman to cybersecurity expert, emphasizing the importance of community engagement and continuous learning.Join us as we cover the challenges and rewards of working in a SOC, the nuances of public speaking, and offers valuable advice for newcomers to the field. This episode is a treasure trove of insights, humor, and practical tips for anyone interested in cybersecurity.Connect with Reanna on LinkedIn: https://www.linkedin.com/in/reanna-schultz/Follow Reanna on YouTube: https://www.youtube.com/channel/UC52GRGtruHriE2yGJzv5nuA=========================Connect with your hosts:Josh Mason: https://www.linkedin.com/in/joshuacmasonWade Wells: https://www.linkedin.com/in/wadingthrulogs=========================Sponsored by ThreatLocker @ThreatLockerAllow what you need, block everything else... Including ransomware. Zero trust Endpoint Protection Platform from ThreatLocker. Learn more at https://simplycyber.io/threatlocker=========================Simply Cyber empowers people who want a rewarding cybersecurity career 💪=========================All the ways to connect with Simply Cyberhttps://SimplyCyber.io/Socials=========================This podcast is presented by Simply Cyber Media Group

Understanding Mac Security: Challenges and Insights with Slava KonstantinovIn this episode of Simply Defensive, hosts Josh Mason and Wade Wells are joined by Slava Konstantinov, the Head of Mac Development at ThreatLocker. Slava dives deep into the world of Mac security, explaining the challenges and intricacies of developing security agents for macOS. Learn about the differences discussed between Mac, Windows, and Linux security, the hurdles in defending Macs due to Apple's privacy measures, and the importance of zero trust security models. Slava also shares stories from his journey in cybersecurity, tips for defenders, and insights into current developments and future plans at ThreatLocker.Don't miss this comprehensive discussion on modern Mac security!Connect with Slava on LinkedIn: https://www.linkedin.com/in/franticmmConnect with @ThreatLocker00:00 Introduction and Guest Introduction00:57 Challenges of Mac Security01:38 Mac vs. Windows Security02:32 Kernel Level Security05:34 Mac Malware and Attack Vectors10:10 Hackintosh and Early Mac Experiences15:00 Zero Trust and ThreatLocker Mac Agent16:31 Inbound Connection Issues17:04 Ring Fencing and Application Control17:38 Unified Audit and ThreatLocker Detect18:24 Cross-Platform Detection Challenges20:16 MacOS Debugging and Firewall Issues24:34 Zero Trust and Elevation26:13 Conference Experiences and Advice28:28 Final Thoughts and Security Tips=========================Connect with your hosts:Josh Mason: https://www.linkedin.com/in/joshuacmasonWade Wells: https://www.linkedin.com/in/wadingthrulogs=========================Sponsored by ThreatLocker @ThreatLockerAllow what you need, block everything else... Including ransomware. Zero trust Endpoint Protection Platform from ThreatLocker. Learn more at https://simplycyber.io/threatlocker=========================Simply Cyber empowers people who want a rewarding cybersecurity career 💪=========================All the ways to connect with Simply Cyberhttps://SimplyCyber.io/Socials=========================This podcast is presented by Simply Cyber Media Group

In this episode of Simply Defensive, hosts Josh Mason and Wade Wells welcome the highly esteemed Leslie Carhart from Dragos.We step into the world of industrial cybersecurity, discussing the critical nature of securing vital infrastructure like power plants, water treatment facilities, and manufacturing setups. Leslie shares insights on the unique challenges faced in this sector, including handling old systems, different procedural mindsets, and low-level industrial devices.The episode also covers Leslie's intriguing career journey, filled with diverse technical roles, and her advice on entering and thriving in cybersecurity. Moreover, Leslie offers valuable guidance on mentorship and maintaining a work-life balance for cybersecurity professionals.https://www.linkedin.com/in/lcarhart/https://pancakescon.com/https://www.sans.org/profiles/lesley-carhart/https://bsky.app/profile/hacks4pancakes.com00:00 Introduction and Guest Welcome01:02 Leslie Carhartt's Role at Dragos02:06 Challenges in Industrial Cybersecurity06:39 Leslie's Career Journey09:01 Advice for Aspiring OT Cybersecurity Professionals13:24 Incident Response in OT Environments16:50 Mapping Processes in OT Security18:06 Reflecting on Early Career Lessons18:31 Navigating Social Media Criticism19:55 Cyber Warfare and Air Force Insights22:04 Challenges in OT Security24:02 Mentoring in Cybersecurity24:43 Advice for Aspiring Cybersecurity Professionals25:51 Realities of Pen Testing and Incident Response29:32 Effective Mentorship Strategies32:50 Final Thoughts and Contact Information=========================Connect with your hosts:Josh Mason: https://www.linkedin.com/in/joshuacmasonWade Wells: https://www.linkedin.com/in/wadingthrulogs=========================Sponsored by ThreatLocker @ThreatLockerAllow what you need, block everything else... Including ransomware. Zero trust Endpoint Protection Platform from ThreatLocker. Learn more at https://simplycyber.io/threatlocker =========================Simply Cyber empowers people who want a rewarding cybersecurity career 💪=========================All the ways to connect with Simply Cyberhttps://SimplyCyber.io/Socials=========================This podcast is presented by Simply Cyber Media Group

From Navy Red Team to Blue Team: David Perez's Cybersecurity JourneyIn this episode of Simply Defensive, hosts Josh Mason and Wade What’s Up interview David Perez, a Navy veteran who transitioned from red teaming to blue teaming in cybersecurity. David shares insights into his career path, his experience with the Navy’s Skillbridge program, and the challenges he faced moving from a structured military environment to the more fluid civilian sector.David also discusses the importance of thinking like an attacker for effective defense, his thoughts on training and detection engineering, and offers valuable advice for those looking to break into the cybersecurity field. Join the conversation to learn about David’s journey, his day-to-day responsibilities, and how he stays sharp in the ever-evolving world of cybersecurity. Don’t forget to like, subscribe, and share!00:00 Introduction and Guest Introduction00:19 David Perez's Cybersecurity Journey00:54 Transition from Military to Civilian Cybersecurity01:48 Skill Bridge Experience03:07 First SOC Job and Responsibilities03:51 Becoming a Detection Engineer04:41 Challenges and Freedom in Cybersecurity Roles08:28 Detection Engineering Insights11:06 Risk-Based Alerting13:14 Detection Rule Management16:38 Detection Building Process18:24 Automated Threat Hunting19:40 Challenges in Detection Engineering20:15 Resources and Learning for Detection Engineering21:46 Teaching and Learning in Cybersecurity22:46 The Importance of Experience in Detection Engineering28:31 Balancing Work and Personal Life31:46 Advice for Aspiring Blue Teamers34:12 Conclusion and Contact Information=========================Connect with your hosts:Josh Mason: https://www.linkedin.com/in/joshuacmasonWade Wells: https://www.linkedin.com/in/wadingthrulogs=========================Sponsored by ThreatLocker @ThreatLockerAllow what you need, block everything else... Including ransomware. Zero trust Endpoint Protection Platform from ThreatLocker. Learn more at https://simplycyber.io/threatlocker=========================Simply Cyber empowers people who want a rewarding cybersecurity career 💪=========================All the ways to connect with Simply Cyberhttps://SimplyCyber.io/Socials=========================This podcast is presented by Simply Cyber Media Group

Hayden Covington, a security professional at Black Hills Information Security, shares his expertise in SOC operations and metrics. He discusses the importance of meaningful performance indicators and transparent communication with clients. Hayden also introduces his new online course on SOC foundations, drawing on practical examples with Elastic and Jira. He navigates the challenges of public speaking and shares personal stories from his journey in cybersecurity. Additionally, he emphasizes the value of personal documentation and productivity tips for tech professionals.

In this episode of Simply Defensive, hosts Josh Mason and Wade Wells talk with Simeon, an Intel Analyst at Microsoft. Listen as they explore his journey from aspiring doctor to cybersecurity expert, discussing his innovative contributions like the creation of KC7 Cyber, a tool that democratizes access to cybersecurity training.Learn about Simeon's early influences, challenges, and the importance of critical thinking, analytical reasoning, and communication in cybersecurity. He also shares his passion for breaking down biases and encouraging diversity in the tech world while offering practical advice for both new and seasoned blue teamers. Discover how KC7 is shaping the future of cyber defense training and get inspired by Simeon's dedication to making cybersecurity accessible to all.Connect with Simeon: https://www.linkedin.com/in/kakpovi/Check out KC7: https://kc7cyber.com/00:00 Introduction and Guest Welcome00:36 Simeon's Background and Career Journey01:26 Getting Started in Cybersecurity02:17 The Cyber Analyst Challenge Experience04:03 Industry vs Academic Cybersecurity07:08 Diversity in Cybersecurity07:54 Emerging Coders Club at Howard08:21 Breaking Technical and Non-Technical Labels13:17 The Birth of KC7 Cyber17:19 Using AI to Scale Cybersecurity Training18:28 Behind the Scenes of a Complex Engine20:01 Teaching Critical Thinking and Analytical Reasoning20:50 The Importance of Transferable Skills21:13 Using KQL for Fast Data Access22:57 Investigative Process and Anticipating Questions24:19 Technical Interviews and Investigative Skills26:39 Training New Analysts in Full Scope Investigations32:57 KC7: A Tool for Accelerated Learning36:37 Final Thoughts and Recommendations=========================Connect with your hosts:Josh Mason: https://www.linkedin.com/in/joshuacmasonWade Wells: https://www.linkedin.com/in/wadingthrulogs=========================Sponsored by ThreatLocker @ThreatLockerAllow what you need, block everything else... Including ransomware. Zero trust Endpoint Protection Platform from ThreatLocker. Learn more at https://simplycyber.io/threatlocker=========================Simply Cyber empowers people who want a rewarding cybersecurity career 💪=========================All the ways to connect with Simply Cyberhttps://SimplyCyber.io/Socials=========================This podcast is presented by Simply Cyber Media Group