DEF CON 31 Recap

SO MUCH happened (and didn't happen!) this year at #DEFCON31. Here's a snippet of what you may have missed.

Oppenheimer, CISO's, And The Politics of Cybersecurity

CISO's are under fire and are scared. Oppenheimer was a brilliant scientist, but not a politician. Lessons learned from his security hearing.

DEF CON: A Beginner's Guide Part II (Updated 2023)

DEF CON is an experience, not a conference. With 30+k attendees, it's HUGE and can be overwhelming. Here's a guide to help you navigate.

Who Is This?

Every once and awhile we get a message from a number that we don't recognize. How do we authenticate them? How do we authenticate our users?

Bug Out Planning: Preparing for Disaster in Cybersecurity and the Real World

How to Stay Calm and Handle Cybersecurity Threats Like a Pro

From Overbearing Moms to Poorly Run Security Teams: The Danger of Not Seeking Input

How to Shift from Mom Mode to Friend Mode in Cybersecurity

Getting Started With Appsec for SMBs

A quick and dirty guide to getting started in appsec from scratch

The 2023 RSA Conference: A Glimpse into the Future of Cybersecurity

A Beginner’s Guide To BSidesSF

Someone asked me recently what kind of conference was BSidesSF... so this is what my answer would be in 10 minutes...

A SOC 2 Fairytale... (w/voiceover)

Once upon a time ago... there was a startup, and they wanted to get SOC 2.

Friends Don’t Let Friends VPN

Please stop creating more VPNs... This is NOT the way.

50 Shades Of Gray In Cybersecurity (Part 1)

A friend told me this weekend… “You don’t know someone until they’re angry”. This is so true. The same can apply when working with a team in an incident response scenario.