Welcome back for another quick recap of the week and another dose of UNSECURITY Podcast show notes. Hope you all had a great week!
For last week’s show, Brad was in studio while I was calling in from Sofia, Bulgaria. Brad was joined by Ryan Cloutier, an awesome return guest. As far as I could tell, it was another great show. I had some connectivity issues, but who doesn’t have connectivity issues in Bulgaria? Brad did a great job holding things together while we chatted about issues such as liability and speaking information security with “humans”.
I was in Bulgaria to visit members of our SecurityStudio development team, check out the new office, and spend some time planning future releases of the software. Bulgaria is eight hours ahead, so timing with U.S. resources was interesting.
The trip was very successful and we made significant progress on a number of fronts. While I was halfway around the world, Brad held down the fort. He’s a really good leader and I’m sure he has a bunch of things going on. I didn’t get to check in with him last week, so we’ll ask how he’s doing on the podcast.
Lots of other really cool stuff to share, but I’ll do that in another post or on the show.
Let’s do some show notes now.
SHOW NOTES – Episode 45
Date: Monday, September 16th, 2019
Show Topics:
Our topics this week:
- Catching Up
- More Mentor Program success
- Civic duty example
- vCISO Revisited
- Book Announcement
[Evan] – Hi folks, welcome to the UNSECURITY Podcast. This is episode 45 and I’m your host, Evan Francen. Brad’s joining me as usual. Hi Brad!
[Brad] Brad politely says hello to me and by proxy all of our listeners. Good Brad.
[Evan] Man, this is two shows in a row where I’m out of studio. Today I’m stuck in Washington, D.C. for a meeting. Only one day, so that’s good. What’s up with you?
[Brad] Stuff and things.
[Evan] We haven’t recorded together in person the last couple of weeks, and I haven’t even been able to catch up with you. You cool if we catchup quick?
[Brad] Brad will probably say “yes”.
[Evan] Alright, let’s start with your week. Tell us what you’ve been up to.
Catching up
- What Brad’s up to.
- What I’m up to.
- We have more Mentor Program success to talk about
- One of our listeners is setting a great example for all of us in holding his local government accountable for security.
[Evan] Alright, lots of good things. We’re all in this together and there’s a job and place for everyone.
[Brad] Brad’s words of wisdom.
[Evan] We’re always grateful for feedback that we get from listeners. If you’d got some, email us at unsecurity@protonmail.com. One of the more popular topics in the past few months has been that of the virtual Chief Information Security Officer (or vCISO). We’ve received some great questions about how to become a vCISO. A couple of episode ago, we talked about what a good vCISO is, but we didn’t really talk about how to become one. Let’s do that.
How to become a vCISO discussion
- If you’re new (less experience).
- If you’re experienced (even existing CISOs)
- What are the benefits to being a vCISO versus being a FTE CISO?
[Evan] Alright. Good perspective and good discussion. Thank you Brad.
[Brad] Brad’s gotta say something or we’ll have an uncomfortable silence here.
[Evan] OK, last topic before we get into some news. I want to announce something that I’m VERY excited about. You and I are going to write a book, right?
[Brad] Brad confirms. See if you can notice any change in the tone of his voice when he responds.
New book announcement and discussion
There’s a tie in here with vCISO too.
[Evan] I’m pumped about writing with you Brad. What better time than 4th quarter to get started?
[Brad] He’s lived through multiple 4th quarters, so he’ll laugh/cry.
[Evan] Let’s close this thing out with some news, eh?
News
Here’s our news for this week:
- Check the scope: Pen-testers nabbed, jailed in Iowa courthouse break-in attempt – https://arstechnica.com/information-technology/2019/09/check-the-scope-pen-testers-nabbed-jailed-in-iowa-courthouse-break-in-attempt/
- The US Treasury place sanctions on North Korea linked APT Groups – https://securityaffairs.co/wordpress/91208/apt/us-treasury-north-korea-sanctions.html
- NetCAT – New Attack Allow Hackers to Spy & Steal the Data From Intel CPU Remotely – https://gbhackers.com/netcat-attack/amp/
Closing
[Evan] There you have it. Thank you for another great show Brad!
A special thank you to our loyal listeners. We love your feedback and sincerely appreciate the fact that you join us each week. Send your feedback to us at unsecurity@protonmail.com. If you’re the social type, socialize with us on Twitter, I’m @evanfrancen, and Brad’s @BradNigh.
Talk to you all again next week!
