The UNSECURITY Podcast – Episode 63 Show Notes – Mission

I’m grateful to be back home. Two weeks in Cancun, Mexico where the sun was shining and the temperature was in the 80s. Now, I’m back in Minnesota where there’s a foot of snow on the ground and the temperature is in the single digits. I’m grateful to be back home because I’m with my family again. My FRSecure and SecurityStudio family!

THANK YOU to Brad and Ryan for doing holding down the fort!

OK, I was in Cancun to begin writing our next book. It’s “our” next book because Brad’s going to write his part and Ryan’s going to add a little flair too. The book is unofficially titled “Securing America” and will start to come together over the next couple of months. The (rough) outline looks like this so far:

  • Introduction
  • Information Security Operating System (ISOS)
    • Components
    • The Cycle
  • Securing America
    • Small Business
    • Local Government
    • Education
    • Home
  • The People Component
  • The Asset Component
  • The Control Component
  • The Process Component
  • The Measurement Component
  • The Journey – All Working Together
  • Starting NOW

If this book is anything like the first one (UNSECURITY), there’s likely to be some changes to the outline, but this is what we’ve got so far.

Alright. On to the show. This is episode 63 of the UNSECURITY Podcast. I’ll be hosting and these are my notes. Joining me in studio will be my co-host Brad Nigh and SecurityStudio’s very own Ryan Cloutier.

Let’s do this!

-Evan


SHOW NOTES – Episode 63

Date: Monday, January 20th, 2020

Show Topics:

Our topics this week:

  • Opening
    • Back Home
    • Book (Securing America) Status
    • What did I miss?
  • U.S. and Iran
    • Finishing the discussion from last week.
    • We’re not out of the woods.
  •  The “Mission” and CISSP Mentor Program
    • What is it?
    • Why do we care?
    • How can you join us?
  • News
Opening

[Evan] Hey UNSECURITY Podcast listeners! This is episode 62 and the date is January 20th, 2020. I’m Evan Francen, and it’s good to be back! I’m hosting today’s show, and joining me in studio is my friendly co-host Brad Nigh and my left-hand man Ryan Cloutier. Hey guys.

[Brad & Ryan] They’ll say “hi” or something.

[Evan] Did you guys catch that? I called Ryan my “left-hand man”. Of course you did, you guys read the show notes! You know why I called Ryan my “left-hand man”?

[Brad & Ryan] Stumped. Maybe.

[Evan] Well, I’ll tell you…

[Evan] Alright, I’m back home. It feels good to be back, and it couldn’t have been any better to come back to a bunch of smiling faces at our holiday party on Saturday! What did you guys think?

[Brad & Ryan] Sharing thoughts and such.

[Evan] We have a ton to cover today! Let’s catch-up quick. You guys cool with that?

Catching Up Discussion
  • Back home
    • Holiday Party
    • Q1/2020, Expectations
  • Book (Securing America) things
  • Did I miss anything?

[Evan] Like always, many good things to look forward too. Love you guys and love being back. Last week I had to run halfway through the show. We were talking about tensions between the United States and Iran and how it affects us all. There’s this talk of a cyberwar between us, and I just want to close the loop a little on the topic.

U.S. and Iran Discussion

[Evan] OK, the world’s not likely to end today, but we need to stay vigilant. Complacency and ignorance come with consequences. Switching gears now…

We talk about this mission at FRSecure and SecurityStudio. Brad, you have your take. Ryan, you have yours. I’ve certainly got mine too, but what is this “mission” and why is it important for our listeners to know about it?

Discussion about The “Mission” and CISSP Mentor Program

An open and honest discussion about our mission.

  • What is it?
  • Why do we care so much about it?
  • Are there ways for people to join us? If so, how?

The CISSP Mentor Program Registration is Open!

[Evan] Yes, it’s all about the mission! The theory is if you focus on the mission you’ll make money, but if you focus on the money, you’re certain to miss the mission. Love it! Alright, good talk. Let’s cover a few news stories, and wrap this thing up.

News

There’s always plenty of news in the information security industry. Here are a few stories that caught my eye recently:

Closing

[Evan] Wow. Lot’s going on and plenty of news to stay up on. I guess this is why they pay us the big buck, right?

This is the end of our show, and we close these things out pretty much the same way every week. Keep sending us your feedback, tips, of whatever else you’d like us to know at unsecurity@protonmail.com. If you have a suggested guest for us to reach out to, let us know that too.

If you’re the social type, socialize with us on Twitter, I’m Evan and you can find me @evanfrancen. Brad’s a cool cat, and you can find him @BradNigh. Ryan’s not to shabby himself, follow him at @CLOUTIERSEC.

That’s it! Talk to you all again next week!

The UNSECURITY Podcast – Episode 62 Show Notes – Iran and Stuff

Still in Cancun for another week (Evan). I know, poor me.

One thing is certain. It doesn’t matter what I’m doing or what you’re doing, the world doesn’t pause and wait for you. Attackers still attack and defenders still defend. Some of us are thriving and others of us are just struggling to survive.

So, the big worldwide news this past week was the U.S. spat with Iran. It was immediately politicized, as we would expect, but what does it mean to you, me, and the world of information security? Let’s talk about this.

A few of you took me up on my offer last week for a free copy of UNSECURITY. Your books are being sent soon.

If you haven’t read my first book, I invite you to. You can either purchase it, or if you’re with us on our mission to fix the brokenness in our industry, contact me (Twitter, LinkedIn, email, etc.) and tell me so. I’ll send you a free signed copy! P.S. I’m not publicizing this everywhere, so let’s see if your paying attention.

I’m supposed to be leading the show this week, but I’m still out of the office. Brad and Ryan should be in studio for this episode, and I’ll call in again.

These are my notes (Evan).


SHOW NOTES – Episode 62

Date: Monday, January 13th, 2020

Show Topics:

Our topics this week:

  • Opening – Catching up
  • U.S. and Iran
    • What does it mean for information security?
    • What does it mean for you and me?
    • Avoiding collateral damage
  •  News
    • Is Microsoft sharing Skype and Cortana audio with the Chinese?
    • Security tips for college students
    • Amazon Ring employees caught snooping
  • Contact Us – featuring people looking for jobs in information security
Opening

[Brad] Hey UNSECURITY Podcast listeners! This is episode 62 and the date is January 13th, 2020. I’m Brad Nigh, your host for today’s show. Joining me in studio is Ryan Cloutier and by phone is Evan Francen. Hi guys.

[Ryan & Evan] We’re welcoming fellas, so we’ll say “hi” or something here.

[Brad] Let’s catch up quick. How was your week and what’s going?

Catching Up Discussion

Who’s doing what?

  • Ryan’s first week at SecurityStudio.
    • What was it like?
    • Anything newsworthy or exciting?
  • Brad’s crazy week.
    • Most weeks are crazy. What was craziest?
    • What are you excited about?
  • Evan in Cancun.
    • Chillin’ or workin’?
    • How’s the book coming along?

[Brad] Cool. Good things last week and coming up this week.

Switching gears a bit. I want to discuss a topic that’s on many people’s minds; the conflict between the United States and Iran, and what effect it has on our daily information security/cybersecurity lives.

U.S., Iran, and Information Security Discussion

Very significant events have taken place over the past few weeks. Events that impact our world as we know it; politically, economically, and from an information security (or cybersecurity) perspective. Let’s stay out of the politics as much as we can and leave the economic discussion to the economics experts.

What I’d like to discuss is how these current events affect us with respect to information security. We should all be concerned about how these things affect our ability to protect ourselves, our families, our schools, our workplaces, and our local governments.

First a little background on the current events:

  • December 27th, 2019 – The K-1 Air Base in Iraq was attacked killing an American civilian contractor, injuring four U.S. service members and injuring two Iraqi security forces personnel. The U.S. blamed Iranian-backed militia for the attack.
  • December 29th, 2019 – The United States attacked five Hezbollah positions in Iraq and Syria resulting is an at least 25 killed militia members and another 55 wounded.
  • December 31st, 2019 – January 1st, 2020 – Hezbollah militiamen, their supporters and sympathizers attacked the U.S. embassy in the Green Zone of Baghdad. The United States blamed Iran and its non-state allies for orchestrating the attack. No deaths or serious injuries occurred during the attack and protesters never breached the main compound.
  • January 3rd, 2020 – A targeted U.S. drone strike killed the commander of the Islamic Revolutionary Guard Corps (IRGC) Quds Force, Qasem Soleimani. Soleimani was considered to be the second most powerful person in Iran.
  • January 8th, 2020 – The Iranian military launched numerous ballistic missiles at two airbases in Iraq. there were neither American nor Iraqi casualties. Hours after the initial Iranian missile attacks, a Boeing 737-800 (Ukrainian International Airlines Flight 752) crashed shortly after takeoff from Tehran Imam Khomeini International Airport, killing all 176 passengers on board. Iran initially claimed the cause of the crash was mechanical failure.
  • January 11th, 2020 – A video showing the moment Flight 752  was hit by an Iranian missile was published by The New York Times. The Iranian government was forced to admit that it “inadvertently” shot the plane out of the sky. A wave of anti-government protests have now emerged across Iran.

Phew! These are only the latest events in decades of conflict between the two nations.

So, back to the point of our discussion. I’d like us to share our opinions, and hear the opinions of our listeners this week. You know what they say about opinions, right?

  • What does it mean for information security?
  • What does it mean for you and me?
  • How can we avoid collateral damage?

Some sources of information to guide our discussion:

[Brad] Great discussion and plenty of healthy opinion. I think the same things hold true for us that have always held true:

  1. Focus on what you can do to protect your area of influence (your habits, at home, at work, etc.)
  2. Master the fundamentals. We can’t control what Iran or the United States does, but we can make it a little less likely that we’ll be a victim in all this.
News

Now for some (other) news. Here are three newsy things that caught our attention last week.

Closing

[Brad] OK, that’ll just about do it. Be careful out there.

One last thing before we close this show out. Are you or someone you know looking for a job in information security? If so, we’d love to hear from you and help out where we can. Email us at unsecurity@protonmail.com and we’ll chat.

If you’re the social type, socialize with us on Twitter, I’m @BradNigh, Ryan can be found at @CLOUTIERSEC, and Evan’s in his usual spot, @evanfrancen.

That’s it! Talk to you all again next week!

The UNSECURITY Podcast – Episode 61 Show Notes – 2020 Look Ahead

Hello 2020! What do you have in store for us?

In last week’s episode, Brad and I discussed some of the crappy things from 2019. It’s no doubt, we’ve got a lot of work to do in this industry. Now, in this episode, we’re going to discuss some of the great things we did this year as an industry, and we’re going to look at what 2020 should have in store for us!

Exciting Announcements

We’re starting 2020 off right, and we have some cool announcements:

  1. Our good friend Ryan Cloutier has joined SecurityStudio!
  2. We’re writing a new book!
  3. I’m in Cancun (I guess this is sorta cool for me)!
Ryan Cloutier

If you’ve been listening to our podcast for a while, you might remember Ryan. He joined us on the show in episode 27, and again in episode 44. Ryan brings a wealth of knowledge, a refreshing perspective, and an unbridled passion for information security , and we’re jacked he’s on board! Ryan will be helping me and the rest of the SecurityStudio team reach K-12, local governments, and whoever else wants to get on board with establishing rock solid information security fundamentals.

New Book

I took off for my annual trip to Cancun yesterday (1/4) to begin writing our next book. This one will be co-written with Brad and probably Ryan too. The book is unofficially titled “Securing America” and it will provide an easy-to-use manual for building fundamental information security programs and habits in the most under-served areas; SMBs, local governments, education (K-12 and post-secondary), and home.

If you haven’t read my first book, I invite you to! You can either purchase it, or if you’re with us on our mission to fix the brokenness in our industry, contact me and tell me so. I’ll send you a free signed copy! P.S. I’m not publicizing this everywhere, so let’s see if your paying attention.

Cancun

Yeah, this is year three for this trip. Year one was spent writing UNSECURITY. Year two was spent starting a book that I shelved (for now) about information security for normal people. This year, I’m starting this book (referenced above) and we’ll publish it sometime in Q3/Q4 of 2020.

We’ll cover these things (above) and some of the good things from 2019 in this episode of the UNSECURITY Podcast.

Brad’s leading the show this week, joined in studio by Ryan Cloutier. I’m calling in from Mexico, and these are my notes.


SHOW NOTES – Episode 61

Date: Monday, January 6th, 2020

Show Topics:

Our topics this week:

  • Opening
    • Exciting News.
    • 2019 in review, some of the good things.
    • What we expect 2020 to bring us.
  • Closing
Opening

[Brad] Welcome to the first UNSECURITY Podcast episode of 2020! We’ve got a jam-packed show for you today. It’s Monday, January 6th, 2020, and I’m Brad Nigh. Joining me in studio is the newest member of our team, Ryan Cloutier. Welcome Ryan!

[Ryan] Ryan does Ryan. Would you expect anything different?

[Brad] Joining us by phone from Cancun, Mexico is my usual co-host, Evan Francen. Hi Evan.

[Evan] I do me.

[Brad] Probably says something about Cancun and how he should be here too, or instead or me. Maybe he’ll ask about the weather, maybe not.

[Brad] Well, let’s get started. We have a ton of stuff to talk about today. Let’s start off by talking about you Ryan. Today is day #1 at SecurityStudio, right?

[Ryan] Says stuff.

Exciting News – Welcoming Ryan

Quick discussion and welcome.

  • Questions that may come up:
    • What will you be doing at SecurityStudio?
    • What made you want to come to SecurityStudio?
    • What are some of the challenges that lie ahead?
  • We’re pumped that Ryan’s onboard, and we’re looking forward to great things!

[Brad] Alright, Evan’s down in Cancun starting another book. He’s getting it started, and rumor has it that I and you (Ryan) will be co-writing this sucker!

Exciting News – Another Book

Quick discussion about this upcoming book.

  • Questions that may come up:
    • What’s the point for this book?
    • Who’s the audience?
    • What’s it like to write a book?
    • When can I get a copy?
  • We’re jazzed about this book because it’s a way to get the word out and make an impact on people’s lives. The fact that it’s going to be a collaboration between the three of us makes it extra exciting!

[Brad] Alright, some cool things to look forward to in 2020 and beyond! Let’s take a quick look back at 2019 and find some positive news. As infosec people, we sometimes get caught up in the bad news, but there are many good things happening.

2019 in Review – Good Things

[Brad] I think I speak for both Ryan and Evan when I say that we love this industry. There’s plenty of brokenness, but the people in this industry are amazing! Evan has a say that he uses a lot; “information security isn’t about information or security as much as it’s about people.” Using this as a segue, what good things happened in 2019 that we can be proud of?

Some things to discuss (in a positive light):

  • Is the information security industry more diverse now than it was at the beginning of 2019?
  • How are the job prospects for information security practitioners?
  • Are people more aware of information security?
  • Are CISOs emerging as real business leaders in greater numbers?
  • Is there improved collaboration among information security professionals?
  • More people are beginning to focus on fundamentals.

[Brad] Let’s focus on progress in 2020 and we should each be asking ourselves:

  1. Am I making a positive difference?
  2. Are my motives focused on greater good or selfish greed?
Closing

[Brad] OK, no news for today’s show. We’ve discussed plenty and we’re looking forward to another great year! We’re also wishing the best for all our listeners. Let’s kick some ass together in 2020!

That’s a wrap for today’s show. Thank you and welcome to the family Ryan. Evan, stay out of trouble.

Next week, we’ll start to devote 10 minutes out of every show to help someone who’s looking for a job or career change. If you’re one of these people, get in touch with us and we’ll feature you as a guest on future episode.

Get in contact with us through email at unsecurity@protonmail.com. If you’re the social type, socialize with us on Twitter, I’m @BradNigh, Ryan can be found at @CLOUTIERSEC, and Evan’s in his usual spot, @evanfrancen.

That’s it! Talk to you all again next week!

The UNSECURITY Podcast – Episode 60 Show Notes – 2019 Year End Review

Goodbye 2019. It’s been real.

Where did the time go?

A common question, we ask ourselves. This year I decided to take a stab at answering it.

Here’s where my time went, for what it’s worth (roughly):

  • 38.58% (or 3,380 hours) working
  • 27.09% (or 2,373 hours) sleeping
  • 23.90% (or 2,094 hours) personal (family, friends, etc.) quality time
  • 10.42% (or 913 hours) other

I spent ~15% more time working than I did making memories with my family in 2019. Some priority adjustments are overdue for me in 2020.

Thank God for the gift of reflection.

The end of the year is a good time to reflect. Reflection is healthy. As I reflect on 2019, I can think of many good things about us like improved industry diversity, great personal growth, business accomplishments, and amazing people working round the clock for our collective benefit.

Unfortunately, there are also bad things. Since we’ve got plenty to cover, both good and bad, we’ll use this episode (#60) to discuss the bad. We won’t want to leave a sour taste in your mouth for too long, so we’ll cover the good things, and the things to look forward to in 2020, in next week’s episode (#61).

Now, the bad.

I already mentioned one of the bad things I discovered from 2019, that my priorities are out of whack, but I also learned things about the sad state of our industry. I learned that we’re (still) losing the war, and we’re losing it on multiple fronts.

Are you wondering what war?

The war where the bad people take advantage of the good people. The war where the immoral ones take advantage of the decent ones. Where the informed and corrupt beat the ignorant and noble every single time.

Let me preface the rest of this by saying I’m not a doomsayer. I’m a realist. I’m a realist with a deep desire to share the truth. If you’ve been paying attention, and can be objective, you’ll find it easier to predict our future. Predicting where a path leads is easier when there’s no (or little) change of course.

Our discussion points for episode 60’s year-end review:

  • Front #1 – Breaches are more common than ever, but we seem to care less than ever.
  • Front #2 – Our local governments and schools are losing their battles.
  • Front #3 – Our homes are part of the battleground and we’re not prepared.

All is not lost, and there’s hope. There’s good news too. We’ll cover good news next week. 2020 is the year for you, me, and our industry to get real. It’s time for us to tackle our most significant issues head-on, together!

I am (Evan) leading the show this week, and these are my notes.


SHOW NOTES – Episode 60

Date: Monday, December 30th, 2019

Show Topics:

Our topics this week:

  • Opening
  • The year (2019) in review.
    • Priorities and life adjustments
    • Front #1 – Breaches are more common than ever, but we seem to care less than ever.
    • Front #2 – Our local governments and schools are losing their battles.
    • Front #3 – Our homes are part of the battleground and we’re not prepared.
  • Closing
Opening

[Evan] Welcome to the last UNSECURITY Podcast episode of 2019! We’ve got a great show planned for you. The date is December 30th, and this is episode number 60. Joining me as (almost) always is my guy Brad Nigh. Hi Brad.

[Brad] Early morning version of Brad…

[Evan] No guest today. It’s just me and you. How you doing?

[Brad] More early morning version Brad things…

[Evan] When I put together today’s show notes, I felt like I was a little harsh, maybe even depressing. It’s not like I was depressed when I wrote the notes, but when I take an objective look at what took place this year, it’s sort of depressing to me. 2019 brought with it a record number of breaches, a record number of records disclosed/stolen, ransomware everywhere, etc. Crap man. Do I seem depressed to you?

[Brad] He’s got something to say.

[Evan] Maybe I take this too personal, but I HATE seeing people get taken advantage of. There were too many times this year that we read about people being taken advantage of, and it sucks. Ugh. Maybe I am depressed.

[Brad] More things…

[Evan] Alright, let’s get to it. The 2019 year-end review…

The year (2019) in review discussion
  • Priorities and life adjustments
  • Front #1 – Breaches are more common than ever, and we seem to care less than ever.
    • Another record year for breaches, do we care?
    • Sources; https://www.cnet.com/news/2019-data-breach-hall-of-shame-these-were-the-biggest-data-breaches-of-the-year/ and https://lifehacker.com/the-worst-data-breaches-of-2019-1840616463
    • “total number of breaches was up 33% over last year”
    • “medical services, retailers and public entities most affected”
    • “5,183 data breaches for a total of 7.9 billion exposed records”
    • Risk Based Security stated that 2019 is/was the “worst year on record” for breaches
      • January – Marriott breach (383 million)
      • February – 617 million accounts, from 16 websites and for sale on the dark web
      • March – 100s of millions of Facebook and Instagram accounts
      • April – 540 million Facebook records
      • May – 885 million First American Financial records
      • June – 20 million patients, bill collector American Medical Collection Association
      • July – Capital One and 100 million credit card applications
      • August – MoviePass and 160 million unencrypted/unauthenticated records
      • September – 218 million Words with Friends accounts
      • October – 4 billion social media profile records (???)
      • November – Facebook again…
      • December – we’re still waiting…
    • Breach fatigue.
    • Are we getting better at finding/reporting breaches? Are breaches happening more often? Are we getting worse?
  • Front #2 – Our local governments and schools are losing their battles.
    • Ransomware nails our local governments and schools.
    • A great article by Michael Mayes at CPO Magazine; the Top 10 Ransomware Stories of 2019.
      • “As the year ends, it’s time to declare 2019 the Year of Ransomware Escalation.”
      • Baltimore was “just one of 82 cities and municipalities to publicly report being struck by ransomware” in 2019.
      • “By December 1, a total of 72 US school districts have fallen victim to ransomware, impacting 867 individual schools and over 10,000 students.”
      • Nine “school districts representing 98 individual schools have been attacked by ransomware just in November. They include:
        • Wood County Schools, Parkersburg, West VA
        • Port-Neches Grove Independent School District, Port Neches, TX
        • Penn-Harris-Madison School Corporation, Mishawaka, IN
        • Livingston New Jersey School District, Livingston, NJ
        • Chicopee Public Schools, Chicopee, MA
        • Claremont Unified School District, Claremont, CA
        • Sycamore School District 427, DeKalb, IL
        • Sunapee Middle High School, Sunapee, NH
        • Main School Administrative District #6, Buxton, ME”
      • Louisiana declared a state of emergency twice in 2019
    • Do we just accept it?
    • We started a civic duty push in 2019, calling for citizens to inquire about ransomware protections from their local government officials. We’ll need to pick this up again this year, and include schools too.
  • Front #3 – Our homes are part of the battleground and we seem ignorant about it.
    • Security, privacy, and safety at home.
    • We still don’t emphasize information security, privacy, and safety enough at home.
    • Did this problem get worse in 2019?
    • Will this get worse before it gets better?

[Evan] That wasn’t too depressing, was it?

[Brad] Gives his honest opinion.

[Evan] We’ve got a lot of work to do, and there are no easy answers. No easy buttons. I think the answer is found in learning and applying information security fundamentals. We spent 2019 working hard at SecurityStudio and FRSecure to reach people with simple, but practical information security solutions like our vCISO, S2Org (information security risk assessment for all organizations), S2Vendor, S2Me (information security risk assessment for all people) and others. We even made some of our tools free! We’ll continue our quest to reach people and help wherever we can!

Got anything to add Mr. Nigh?

[Brad] Adds if he wants to add.

Closing

[Evan] That’s a wrap for another show. Heck, not just another show, but another year!

Thank you and Happy New Year to our listeners! Be sure to tune in next week, when we’ll cover some positive developments from 2019 and maybe a prediction or two. We love recording these shows for you, and we hope you enjoy them. Send us your questions and feedback at unsecurity@protonmail.com. If you’re the social type, socialize with us on Twitter, I’m @evanfrancen, and this other guy is @BradNigh.

That’s it! Talk to you all again next week!

The UNSECURITY Podcast – Episode 59 Show Notes

If you’re an information security consultant, you know how crazy the end of the year is. It’s crazy!

We’re trying to wrap up all the projects that needed to be completed before the end of the year, and it’s always a challenge. Thank God for Project Managers and a top-notch operations group!

If you missed last week’s episode, we talked about information security in schools with Mike Dronen, the Executive Director of Technology for Minnetonka Public Schools (District 276). Mike shared some great insight and advice for addressing the unique information security challenges facing K-12 schools. If you missed the episode, give it a listen here!

It was no coincidence that last week I also gave the keynote at the East Central Minnesota Education Cable Cooperative (ECMECC) School Security Summit. The Summit was held at the Braham Event Center on December 19th, and was attended by a few hundred K12 school administrators, technology coordinators, facilities staff, and law enforcement. Met a ton of cool people and my keynote was well-received.

If you’d like a copy of the ECMECC presentation, you can go grab it here.

This is Christmas week! For those of us working this week, please take some time off to spend with your loved ones. Merry Christmas to all of you!

Brad is leading the show this week, and these are his notes.


SHOW NOTES – Episode 59

Date: Monday, December 23rd, 2019

Show Topics:

Our topics this week:

  • The SecurityStudio Roadshow Recap (not all the questions, but I have some surprises)
    • Let’s talk about who we met on the Roadshow; different roles, titles, experience levels, etc.
    • Anyone stand out in particular?
    • Was there a specific event that really stood out to you, and why?
    • What was something you learned that surprised you?
  • News
Opening

[Brad] Welcome back! This is episode 59 of the UNSECURITY Podcast, and I’m your host this week, Brad Nigh. Today is December 23rd, and joining me is my co-host, Evan Francen. Good morning Evan.

[Evan] Lots of words of wisdom I’m sure.

[Brad] We have an in-studio guest today. FRSecure and Security Studio President, John Harmon. Good morning John.

[John] John says something I hope.

[Brad] Before we dive in, we like to check-in. John, how you doing? How was your week and what do you expect this week?

[John] John wonders why he agreed to do a podcast again this early in the morning but is a good sport and says something.

[Brad] And Evan. How are you and what’s up?

[Evan] Probably isn’t sure what to do with himself since he isn’t traveling all the time.

[Brad] Sounds like everyone is ready for the holidays to recharge and prepare for the next year.  We thought it would be fun to answer some questions and hear from Evan and John their thoughts on the recently completed roadshow, so without further ado let’s dive in.

SecurityStudio Roadshow Recap
  • Some surprise questions will be asked…
  • Let’s talk about who you met on the roadshow, roles, titles, experience levels, etc.
  • Anyone particular stand out?
  • Was there a specific event that really stood out to you, why?
  • What was something you learned doing this that surprised you?

[Brad] Great discussion.  Always fun talking with Evan and John.

Let’s do some news…

News

[Brad] Always plenty of things to talk about in the news, and here’s a few stories that caught my eye this week:

Closing

[Brad] That’s it. Episode 59 is a wrap. Thank you to John for joining us again, although this is the first time I’ve been here for it.

Thank you to our listeners! Keep the questions and feedback coming. Send things to us by email at unsecurity@protonmail.com. If you’re the social type, socialize with us on Twitter, I’m @BradNigh, and Evan is @evanfrancen. John, is there a way you prefer for people to interact with you?

Lastly, be sure to follow SecurityStudio (@studiosecurity) and FRSecure (@FRSecure) for more goodies.

That’s it! Talk to you all again next week!

The UNSECURITY Podcast – Episode 58 Show Notes

We welcome Mike Dronen to be our guest in episode 58 of the UNSECURITY Podcast! Mike is the Executive Director of Technology for Minnetonka Public Schools (District 276), and he’s joining us to talk about information security challenges facing K-12.

In case you missed the past couple of weeks, we talked a ton about legal and privacy stuff with our favorite data privacy and “cybersecurity” attorney, Justin Webb. Justin works for Godfrey & Kahn, S.C. in Milwaukee, and here’s what we covered:

Lots of good content and advice in these past couple of episodes. This week with Mike Dronnen is sure to be great too!

I’m leading the show this week, and here are my notes.


SHOW NOTES – Episode 58

Date: Monday, December 16th, 2019

Show Topics:

Our topics this week:

  • Information Security Challenges in K-12
    • Article: The Cybersecurity Threats That Keep K–12 CIOs Up at Night
    • How does information security work in K-12?
    • What makes K-12 different than everywhere else?
    • What are there differences between large school districts and smaller ones?
    • What tips do we have for administrators?
    • What tips do we have for educators?
    • What tips do we have for parents?
  • News
Opening

[Evan] Welcome back! This is episode 58 of the UNSECURITY Podcast, and I’m your host this week, Evan Francen. Today is December 16th, and joining me is my co-host, Brad Nigh. Good morning Brad.

[Brad] We’ll see how awake he is this fine Monday morning.

[Evan] We’ve had a couple of great shows the past couple of weeks. We learned a lot from our guest, Justin Webb. We talked a ton about privacy things and legal things. This week we’re going to shift gears a bit, and talk about information security in K-12. To help us navigate these waters, I’ve invited the Executive Director of Technology from Minnetonka Public Schools to our show. Minnetonka is my alma mater, and Mike Dronnen is a good friend. Welcome Mike!

[Mike] Mike’s a good guy. He’ll surely say “hi” or something.

[Evan] Mike, we’re excited to have you on the show for a number of reasons. You’re a good guy, I’m a Skipper, and Brad’s got some kids in your district too. Thank you for joining, especially on short notice.

Before we dive in, I like to check-in. Mike, how you doing? How was your week and what do you expect this week?

[Mike] Mike shares what he’d like to share.

[Evan] And Brad. How are you and what’s up?

[Brad] Sharing is caring.

[Evan] We’re all busy. Hopefully, health busy. My quick recap…

Alright, let’s talk about information security in K-12, shall we?

Discussion about information security challenges in K-12
  • Article: The Cybersecurity Threats That Keep K–12 CIOs Up at Night
  • How does information security work in K-12?
  • What makes K-12 different than everywhere else?
  • What are there differences between large school districts and smaller ones?
  • What tips do we have for administrators?
  • What tips do we have for educators?
  • What tips do we have for parents?

[Evan] Another great discussion. There are some real challenges for K-12, and I think we’ve all got some skin in this game to do the best we can. Thanks Mike!

Let’s do some news…

News

[Evan] Always plenty of things to talk about in the news, and here’s a few stories that caught my eye this week:

Closing

[Evan] That’s it. Episode 58 is a wrap. Thank you to Mike for joining us and for sharing your perspectives on K-12 information security!

Thank you to our listeners! Keep the questions and feedback coming. Send things to us by email at unsecurity@protonmail.com. If you’re the social type, socialize with us on Twitter, I’m @evanfrancen, and Brad’s @BradNigh. Mike, is there a way you prefer for people to interact with you?

Lastly, be sure to follow SecurityStudio (@studiosecurity) and FRSecure (@FRSecure) for more goodies.

That’s it! Talk to you all again next week!

#S2Roadshow Recap – Week Nine

This week on the SecurityStudio Roadshow, we made the trip down to Scottsdale, Arizona to visit the people attending the ISSA Phoenix Q4 2019 Chapter Meeting. Of course, we got our fill of good BBQ too!

SecurityStudio Roadshow Summary

If you’re new, or you’re confused about this #S2Roadshow thing, start here (maybe).

Previous Week’s Recaps:

The purpose of the SecurityStudio Roadshow (#S2Roadhow) is to meet people and make partners. We want to meet people, understand their businesses, and help them grow using simple, fundamental, and compliant solutions (S2Score, S2Org, S2Vendor, and S2Team/S2Me).

Our mission is to fix the broken information security industry. Success requires collaboration, partnership, and transparency.

BBQ Reviews

In the spirit of transparency, we have a secondary mission on the #S2Roadshow. We eat as much BBQ as we can. After stuffing ourselves, I summarize our BBQ reviews at the end of each recap article (see below).

Scottsdale, Arizona

We arrived in Phoenix/Scottsdale on Wednesday (12/4), the day before the ISSA chapter meeting. After getting our sweet rental, a 2019 Dodge Charger Hemi, we drove straight to our first BBQ joint, NakedQ BBQ in Scottsdale.

This slideshow requires JavaScript.

When you’re from Minnesota, a December trip to Scottsdale doesn’t suck. The weather was great. After BBQ, we were off to the hotel for some meetings and to catch up with work.

 

This slideshow requires JavaScript.

Next was a dinner meeting with a good friend and partner from the area, and afterwards day one was complete. Four or five great meetings, some good work completed, and two BBQ visits. Not bad.

Day two started with, you guessed it, more BBQ, before we headed off to the ISSA chapter meeting. Three BBQ visits in less than 24 hours. Think maybe we’re overdoing this? I think not!

ISSA Phoenix Q4 2019 Chapter Meeting

We’ve been to more than a couple ISSA chapter meetings, and this was one of the best! Lorna Kertész, the chapter President does a great job running things. She was running all over the place making sure things went off without a hitch. Huge shout out to Lorna!

Overall, this was a fantastic meeting! The venue was top notch, the speakers were great, and the happy hour was very well attended. On a scale of 1 – 10 for chapter meetings, this one was a 10!

When John and I arrived, it was cool to know that there were some people who were expecting me. A couple people came up to tell me that they’d read my book, and a few mentioned that they’d attended the FRSecure CISSP Mentor Program. Feels like we’re making a difference.

The first speaker of the day was Rachel Harpley from Recruit Bit Security. She gave a very good talk titled “Yule be Sorry without Security Researchers”. Rachel is cool. She’s got some great things to share and her perspectives about information security are spot on (in my opinion). If you haven’t met her, or attended one of her talks before, you should! It was fun to visit with her for after her talk.

The next speaker was Dr. Paulo Shakarian CEO and co-founder of CYR3CON. This dude is smart! He gave a legit talk titled “Artificial Intelligence Research for Forecasting Exploit Usage”. We caught up after his talk and scheduled a meeting (week after) to discuss how his research can make the SecurityStudio platform better. The prospects of tying legit AI into SecurityStudio’s S2Org technical vulnerability scoring are very exciting!

My talk followed the talks of these two esteemed speakers.

This slideshow requires JavaScript.

I gave a similar talk that I’ve given across the country now. Want the deck? Four topics in the agenda, housekeeping, meat, the dream, and call to action. The talk was well received, and the interaction with the attendees was super! Gave away three books, and had some wonderful discussions with people afterwards.Like I said earlier, this meeting was a 10 on a scale of 1 – 10. The only thing that would have made it better is if the guy next to me wouldn’t have gotten up and left his laptop unlocked.

I talked to him about it afterwards. We’re cool.

BBQ Reviews

You know how we roll, right?! BBQ man! As much as we can get, and yes, we (well I am) are gaining a few pounds along the way.

Three BBQ reviews this week; all three in Scottsdale. We expected good BBQ in Kansas City, but Scottsdale, Arizona?! Believe it or not, Scottsdale has some awesome BBQ joints! Here’s our take on the three we visited.

NakedQ BBQ – https://www.thenakedbbq.com/ – Overall: 8.25

  • Atmosphere – 7, the atmosphere for this place was OK. It was another one of those strip mall feeling sort of places.
  • Service – 9, Everyone was very pleasant and went out of their way to make sure you were satisfied. It’s great when people come out from behind the counter to see how you’re doing.
  • Portion/Value – 8, the price was better than I expected and the portions were generous.
  • Taste – 9, the food tasted great and you could tell it was made by people who know what they’re doing. The best brisket we’ve had in a while.

This slideshow requires JavaScript.

This was really, really good BBQ. I had a 1/4 pound of brisket, jalapeno sausage, turkey, and pulled pork, and they were all great. It’s a tie between the brisket and sausage for my favorite.

The Thumb – https://www.thethumb.com/ – Overall: 8.5

  • Atmosphere – 10, the atmosphere for this place was one of the best yet. The restaurant is part of a gas station and a gift shop. Totally comfortable and cozy. My kind of BBQ joint to just chill and visit with friends.
  • Service – 10, Seriously, these people know how to serve and make you feel like you’re a king (or queen, as the case may be)! One of the few places where they offer you a sample before you order. Once we ordered, they brought the food out to us, grabbed an assortment of sauces, gave us some free goodies, and constantly made sure we were happy.
  • Portion/Value – 7, the portions were hefty, but the price reflected it. Better than average, I’d say.
  • Taste – Maybe my expectations were set too high after experiencing the super cool atmosphere and getting service reserved for royalty, but the food tasted OK. Not great, but good maybe.

This slideshow requires JavaScript.

We met a good friend and business partner for dinner here. Overall, we had a great time and I’d visit this place again. Oh yeah, one more thing. This place was featured by Guy Fieri too. Some people think that’s pretty cool.

Little Miss BBQ – https://www.littlemissbbq.com/ – Overall: 8.75

  • Atmosphere – 9, this was a cool joint. It sort of felt like I was down south in the 70s. This is a order your food, grab your food, and sit sort of BBQ joint.
  • Service – 9, certainly above average. We arrived before the place was open and there was already a line around the corner. While we waited, a waitress walked the line offering samples of their home made sausage. While we ordered, the cook gave us a small cut sample of the pastrami brisket. After we ordered, we were assured that we had everything we needed to be happy.
  • Portion/Value – 8, very reasonable and worth every penny.
  • Taste – 9, We would have said “10”, but we use that number very sparingly. The brisket might have been the best we’ve had so far on the SecurityStudio Roadshow. It might be a toss-up between this place and Pecan Lodge (Dallas, TX in week #3). The taste of the meats here was incredible.

This slideshow requires JavaScript.

This was the best BBQ we’ve had for a long time, if ever, on the SecurityStudio Roadshow. If you like BBQ and you are in the Scottsdale area, you have to visit this place. It’s amazing!

BBQ Summary

Three new BBQ joints to add to our list, and this makes 28 we’ve visit so far. This was a VERY good BBQ week for us, with all three BBQ joints easily making the top 10. The winner this week was Little Miss BBQ, but it was close. Pecan Lodge is still on top as the overall #S2Roadshow leader with a score of 9 (but we need to go back an validate this now), and Little Miss joins Bowlegged BBQ in the #2 spot. The current overall standings are listed below.

Overall Standings (at the end of #S2Roadshow Week Eight):

  • Pecan Lodge – 9
  • Little Miss BBQ – 8.75
  • Bowlegged BBQ – 8.75
  • The Thumb – 8.5
  • Divine Swine – 8.5
  • Naked Q BBQ – 8.25
  • Dinosaur BBQ – 8.25
  • Big Ed’s BBQ – 8.25
  • Mission BBQ – 8
  • Slaps BBQ – 8
  • Q39 BBQ – 7.75
  • Cousin’s BBQ – 7.75
  • Blackwood BBQ – 7.5
  • Broad Street BBQ – 7.5
  • Hard Eight – 7.25
  • Spring Creek Barbeque – 7.25
  • Redd’s BBQ – 7.25
  • RIBBRO BBQ – 7.25
  • Iron Horse – 7
  • Lucille’s Smokehouse BBQ – 7
  • Texas Bar-B-Q Joint – 7
  • Fire Breather BBQ – 7
  • Smoque – 6.75
  • Sweet Lucy’s Smokehouse – 6.75
  • Red Coal BBQ – 6.75
  • Bad to the Bone BBQ – 6.75
  • Unkl Moe’s – 6.5
  • Hambone’s Smokehouse – 6.25
  • Shakedown BBQ – N/A (wasn’t open when it was supposed to be, wasted trip)

Next Week’s #S2Roadshow

A couple of talks this week, one in St. Paul, MN and another visit to Dallas, TX. We’re visiting the Minnesota Government IT Symposium on Wednesday and we’re visiting the Dallas/Fort Worth ISC2 chapter on Friday. Looking forward to meeting a bunch of great people this week, and we’re looking forward to revisiting Pecan Lodge.

Stay tuned for next week’s #S2Roadshow updates. You can follow us on Twitter (@evanfrancen, @HarmonJohn, @StudioSecurity, and the #S2Roadshow hashtag) and on LinkedIn.

See you next week! If you want to collaborate with us, get in touch!

The UNSECURITY Podcast – Episode 57 Show Notes

This week we continue the conversation with our special guest, Justin Webb. Justin is a Data Privacy & Cybersecurity Attorney, and the Chief Information Security Officer at Godfrey & Kahn, S.C. in Milwaukee.

If you missed last week’s show (episode 56), we talked about Target’s lawsuit against Chubb and China’s Cryptography Law. China’s Cryptography Law goes into effect on January 1st, and there are multiple perspectives about what it will mean for commerce, including this recent take from International Financial Law Review (IFLR).

Justin’s insights were so good, we invited him back! This week, we’re going to talk about the California Consumer Privacy Act (CCPA).

Brad’s leading the show this week, and here are my notes.


SHOW NOTES – Episode 57

Date: Monday, December 9th, 2019

Show Topics:

Our topics this week:

  • The California Consumer Privacy Act (CCPA)
    • What is CCPA?
    • How is CCPA similar to GDPR, and how is it different?
    • Who does CCPA apply to?
    • What are the consequences of non-compliance?
    • What advice do we have for organizations?
    • What do we think is in the future with CCPA?
    • What do we expect other states to do?
  • New Show Format (reminder)
  • News
Opening

[Brad] Welcome back! This is episode 57 of the UNSECURITY Podcast, and I’m your host this week, Brad Nigh. Today is December 9th, and joining me is my co-host, Evan Francen. Good morning Evan.

[EvanIs it? We’ll find out.

[Brad] We have a great show planned today. This is the 2nd part of our first two-part show, and we welcome back our favorite data privacy attorney, Justin Webb. Hi Justin.

[Justin] Justin will likely say “hi” and some other things.

[Brad] In last week’s show, episode 56, we discussed a lot. We talked at length about the Target lawsuit against Chubb and we talked about China’s Cryptography Law. We intended to talk about the California Consumer Privacy Act (or “CCPA”), but we decided to move it to today’s show in order to give it more of the attention it deserves.

Before we dive in to CCPA, let’s check in quick. Guys, how was your week last week? We’ll start with you Justin.

[Justin] Justin shares what he’d like to share.

[Brad] My week was…  How about you, Evan?

[Evan] Sharing is caring.

[Brad] Alright, let’s get into this whole CCPA thing.

California Consumer Privacy Act (CCPA) discussion

Most of this show is dedicated to this discussion.

A few California Consumer Privacy Act (CCPA), references:

[Brad] Awesome discussion! I think our listeners will get some real value out of this. One quick housekeeping thing before we get into the news.

New Show Format (reminder)

[Brad] Just a quick reminder about the upcoming new addition to the show, starting after the first of the year. We’re devoting ten minutes of each show to anyone who’s looking for a job in the information security industry. Email us at unsecurity@protonmail.com if you want your slot! We’ll respond to you on a first come, first serve basis.

We’ve already received some emails, which is super cool!

If you’re chosen, and the time works out, we’ll invite you on to our show to learn about you. Think of this as a quick 10 minute interview. We’ll work out the kinks between now and the time we kick this off, but we’ll have a standard format defined by then.

If you’re looking for a job, use us to help you get the word out! Stay tuned, we’ll mention this a few more times before we make this change official.

OK, now some news…

News

[Brad] OK, lots of things this week, but we’ll focus on a few news stories.

Closing

[Brad] That’s it. Episode 57 is a wrap. Thank you to Justin for joining us and for sharing your perspective again! We’ve got another great show planned for next week, but we’re not letting the cat out of the bag just yet.

Thank you to our listeners! Keep the questions and feedback coming. Send things to us by email at unsecurity@protonmail.com. If you’re the social type, socialize with us on Twitter, I’m @BradNigh and Evan’s @evanfrancen. If you’d like to get in touch with Justin, you can find him on LinkedIn.

Lastly, be sure to follow SecurityStudio (@studiosecurity) and FRSecure (@FRSecure) for more goodies.

That’s it! Talk to you all again next week!

Happy (belated) Thanksgiving – #S2Roashow BBQ Top 10

Happy (belated) Thanksgiving!

We have many, many things to be thankful for this year! So far, the SecurityStudio Roadshow (#S2Roadshow) has been a great success. The thing we’re most thankful for are the super cool people we’ve met on the road. Cool people with incredible stories and valuable perspectives.

Another thing we’re thankful for is all the great BBQ we’ve eaten. Who doesn’t like BBQ? Well, I suppose the vegans aren’t too much into it. For all the non-vegans, here’s our top 10 BBQ joints that we’ve visited thus far.

We didn’t travel last week, so this is what you get.

Top 10 BBQ Joints

Through week #8 of the SecurityStudio Roadshow (#S2Roadshow)

A man’s got to eat, and this man’s got to eat BBQ! We eat a lot of BBQ. – Evan

#1 – Pecan Lodge – Dallas, Texas – Week #3

Overall Rating: 9

  • Atmosphere: 9
  • Service: 8
  • Portion/Value: 9
  • Taste: 10

We heard from multiple people that we had to go to Pecan Lodge located in Deep Elum, so we did. Are we ever glad we did! This was the best BBQ we’ve had yet on our three week-old #S2Roadshow, and I even made a friend.

This slideshow requires JavaScript.

I had the sliced brisket, pulled pork, and sausage. John had sliced brisket, pulled pork, and ribs. You should have seen the look on John’s face when he tasted the brisket for the first time! The atmosphere was awesome, with plenty of indoor and outdoor seating. The service was great. I even got the cook to show me his smokers (see pic). The portions were very generous too, but it was the taste that was amazing! I’ve never had better brisket and I may have never had better pulled pork in my life. I’ve had BBQ at 100+  of the best places all over the country, and I’ve never had brisket with the perfect mix of smoke flavor, fat cap, and rub.

Pecan Lodge is an absolute must visit for any BBQ lover. It’s almost worth a special visit to Dallas just to go to this place. The best I’ve had in a very long time, if ever.

P.S. My new friend’s name is Winston, and he’s from Michigan. He and his son travel the country riding roller coasters and trying new BBQ. BTW, he agreed that Pecan Lodge was awesome.

#2 – Bowlegged BBQ – San Diego, California – Week #4

Overall: 8.75

  • Atmosphere: 9
  • Service: 9
  • Portion/Value: 9
  • Taste: 8

OK, this was some good BBQ! I feel bad for all the people who live here, but never experienced the joy. The place is family-owned and the atmosphere was perfect for a BBQ joint. A little cluttered, a little dirty, a little nostalgic, and a whole bunch of character. Ordered my meat from Jordan behind the counter, and I told him all I wanted was meat, no sides. Ordered rib tips, ribs, and brisket. The price? 20 bucks.

This slideshow requires JavaScript.

10 minutes later, I get this Styrofoam container filled with deliciousness. Like really filled and like really delicious! As you can see in the picture, the meat is drowning in sauce, and that’s generally a big no-no for me. For some reason it worked. The sauce was some sort of rural Georgia-tasting stuff with a hint of cinnamon. Weird, but delicious! I texted John and told him it was like a love fest between my mouth, my brain, and my belly. Definitely recommended!

#3 – Divine Swine BBQ – Manheim, Pennsylvania – Week #1

Overall: 8.5

  • Atmosphere: 7
  • Service: 8
  • Portion/Value: 10
  • Taste: 9

After the Shakedown BBQ disappointment, we swung over to Manheim, where we found Divine Swine. This place takes the crown as the #S2Roadshow Week 1 BBQ Champ. The best tasting BBQ we had on the trip and huge portions. If you’re in the area, you have to visit this place!

This slideshow requires JavaScript.

Maybe we’re BBQ snobs, maybe not. One thing is certain, we enjoyed all of the BBQ we ate, and we’re pumped for next week’s adventures.

#4T – Dinosaur BBQ – Rochester, New York – Week #7

Overall: 8.25

  • Atmosphere – 8, it’s a cool place with a great vibe. The lighting is perfect for a BBQ joint, there’s a lot of wood, and the view of the river is super cool.
  • Service – 9, great service all-around. These people make you feel at home.
  • Portion/Value – 7, a little pricey for how much food you get, but what place isn’t?
  • Taste – 9, incredible, especially the ribs and wings.

In full transparency, I’ve eaten at Dinosaur BBQ in Rochester many times. It’s a great BBQ joint and I’ve enjoyed every visit I’ve made. This was Ryan Abraham’s first visit to Rochester, so we made sure to stop in. Actually, we ended up eating here twice during this trip. Poor us!

I’ve visited Rochester more than a dozen times and eaten BBQ at just about every place this city offers. Dinosaur is the best BBQ in Rochester. On this trip, I ate their ribs, brisket, wings, and pulled pork. The brisket and pulled pork were good, but the ribs and wings were friggin’ amazing! The ribs were arguably the best I’ve had on the SecurityStudio Roadshow so far. If you’re in Rochester, and you like BBQ (even if you don’t like BBQ), a visit to Dinosaur is a must!

#4T – Big Ed’s BBQ – Waukegan, Illinois – Week #3

Overall: 8.25

  • Atmosphere – 8
  • Service – 9
  • Portion/Value – 8
  • Taste – 9

We made the drive up to Waukegan to give Big Ed’s BBQ a try, and we’re definitely glad we did! This is a BBQ joint that is run by Ed (a few of his business partners) and his lovely family. You can read about the Big Ed story on their website. The atmosphere is great, with Ed’s son preparing the meat while Ed’s wife rings you up at the register. By the time we got there, they had already sold out of the brisket and burnt ends, so we settled for ribs and rib tips. We thought we were settling, but we were wrong! The ribs and tips were awesome!

The service was top notch, the portions were huge, and the meat was great! You have to visit this place. Highly recommended!

#6T – Mission BBQ – Harrisburg, Pennsylvania – Week #1

Overall: 8

  • Atmosphere – 7
  • Service – 10
  • Portion/Value – 7
  • Taste – 8

We ate at Mission BBQ in Harrisburg in the evening of the first day. I wasn’t that excited for it because I knew it was part of a chain, but it was the closest BBQ joint to where we were staying. The staff was AMAZING. I can’t remember ever getting better service that we did at this place.

The cashier asked us if this was our first time at Mission BBQ. We said it was, then she proceeded to tell us all about the menu and how they make their BBQ.

This slideshow requires JavaScript.

Once our order was ready, the lady behind the counter asked us if it was our first time at Mission BBQ. We said it was, then she proceeded to tell us all about the sauces and how to help ourselves.

After we sat down to eat, another lady came by our table three or four times to make sure we had everything we needed. She cleared our table for us too (even though this was a self-service joint).

The service was exceptional, so I rate it a 10. The food was good too, the best being the jalapeno cheddar sausage.

#6T – Slaps BBQ – Kansas City, Missouri – Week #8

Overall: 8

  • Atmosphere – 8, this was a pretty cool place, located in an industrial part of town. The all brick building featured an indoor eating area, plus there were two more eating areas outside. The eating area on top of the building featured a great view of the Kansas City skyline.
  • Service – 9, I love when the BBQ is made to order right in front of you. They cut the meat and dish it out as you order it, right in front of you. The staff was very courteous and very helpful.
  • Portion/Value – 8, definitely above average. We got filled up at a very reasonable price.
  • Taste – 7, the brisket was good and the pulled pork was good. The best part was the jalapeno cheddar sausage. All the BBQ was good, but not amazing.

This slideshow requires JavaScript.

We went to Slaps on a recommendation from a close friend. She’s a local and told us this was her favorite BBQ in all of Kansas City. It was good, but I’ve had better in this town.

#8T – Q39 BBQ – Kansas City, Missouri – Week #7

Overall: 7.75

  • Atmosphere – 7, this is a little too upscale feeling for me. A very nice restaurant, but not down-homey enough for my taste.
  • Service – 8, great service. I was in the middle of a conference call at the beginning, so I might have missed something here. Guess, I’ll have to visit again!
  • Portion/Value – 7, a little spendy.
  • Taste – 9, super! The burnt ends and brisket were the bomb!

This was the first stop for me and John after landing in Kansas City. We received a tip to visit this place from our rental car terminal bus driver, and obviously this guy knew what he was talking about! Kansas City is known for their BBQ and we had dozens of places to choose from, but we made a good call here.

This slideshow requires JavaScript.

This was a great welcome to Kansas City and we highly recommend visiting Q39!

#8T – Cousin’s BBQ – Dallas, Texas – Week #5

Overall: 7.75

  • Atmosphere – 8
  • Service – 8
  • Portion/Value – 7
  • Taste – 8

I arrived at the DFW airport for the trip home and realized that I’d only done one BBQ joint so far on this trip! I sort of panicked a bit before finding this little gem in the DFW airport. Thank God! A man can’t take a trip with only one portion of BBQ.

My expectations for this place were low to begin with. After all, what kind of BBQ can you expect to get in an airport? Needless to say, I was very pleasantly surprised! I ordered pulled pork and brisket, with broccoli salad and cole slaw on the side. The meat was surprisingly moist a very flavorful. The smoke ring was good too. In a pinch, this place will definitely do!

#10T – Blackwood BBQ – Chicago, Illinois – Week #3

Overall: 7.75

  • Atmosphere – 7
  • Service – 7
  • Portion/Value – 8
  • Taste – 8

There are five locations for Blackwood BBQ, and we visited the Schaumburg location for lunch. John and I both ordered combos. He got sliced brisket, pulled pork, and burnt ends. I got sliced brisket, burnt ends and ribs. It was a really nice BBQ joint with a rustic, busy, but open atmosphere. The BBQ is self-service, meaning you order at the counter and grab your food when it’s ready. The portions were generous and the taste was pretty darn good. I’d say overall, it was definitely above average is all aspects.

If you’re in the Chicago area, it’s definitely worth the trip.

#10T – Broad Street BBQ – Kingsport, Tennessee – Week #4

Overall: 7.75

  • Atmosphere – 7
  • Service – 9
  • Portion/Value – 8
  • Taste – 6

John’s words, “BBQ Review: Broad Street BBQ, Kingsport, TN. Brisket was decent, the rest was just ok. Will do in a pinch, but probably one and done on this one. Super nice people though!

That’s what he said.

Rounding out the rest…

Here are the rest of the BBQ joints that we visited along with their overall scores.

  • Hard Eight – 7.25
  • Spring Creek Barbeque – 7.25
  • Redd’s BBQ – 7.25
  • RIBBRO BBQ – 7.25
  • Iron Horse – 7
  • Lucille’s Smokehouse BBQ – 7
  • Texas Bar-B-Q Joint – 7
  • Fire Breather BBQ – 7
  • Smoque – 6.75
  • Sweet Lucy’s Smokehouse – 6.75
  • Red Coal BBQ – 6.75
  • Bad to the Bone BBQ – 6.75
  • Unkl Moe’s – 6.5
  • Hambone’s Smokehouse – 6.25
  • Shakedown BBQ – N/A (wasn’t open when it was supposed to be, wasted trip)

SecurityStudio Roadshow Summary

If you’re new, or you’re confused about this #S2Roadshow thing, start here (maybe).

Previous Week’s Recaps:

The purpose of the SecurityStudio Roadshow (#S2Roadhow) is to meet people and make partners. We want to meet people, understand their businesses, and help them grow using simple, fundamental, and compliant solutions (S2Score, S2Org, S2Vendor, and S2Team/S2Me).

Our mission is to fix the broken information security industry. Success requires collaboration, partnership, and transparency.

Next Week’s #S2Roadshow

John Harmon and I are off to Scottsdale, Arizona for a great Phoenix ISSA event this week. The weather doesn’t suck in the Phoenix in December!

If you’ve got any BBQ tips for the Phoenix area, let us know.

Stay tuned for next week’s #S2Roadshow updates. You can follow us on Twitter (@evanfrancen, @HarmonJohn, @StudioSecurity, and the #S2Roadshow hashtag) and on LinkedIn.

See you next week!