Never Miss An Episode | Subscribe Now
Shows
ShopAboutWork With Us
Never Miss An Episode | Subscribe Now

May 18, 2021

Hacker Valley Blue S2 Episode 6 - John Strand

by Hacker Valley Studio

May 18, 2021

Hacker Valley Blue S2 Episode 6 - John Strand

by Hacker Valley Studio

Show Notes

If want to get into computer security, you're going to learn to love it, you're going to have to be successful, because a lot of computer security isn't just about bits and bytes, it's really about effectively communicating what needs to be done to the right people.

In this episode wet have the incredible John Strand. Organizations need to become more proactive, and see where those weak spots are to protect themselves from something like ransomware. You need to run a pen test because you can have somebody literally launch those attacks, and identify those weaknesses in those vulnerabilities before the bad people do.

What's the gap that we can all learn from? It's passwords. By and large for most users, passphrases are the way to go. And, multi-factor authentication is actually a very sound strategy.

If you look at one key tenant of computer security, complexity is the enemy of computer security. And security is constantly trying to catch up and protect against yesterday's attacks. So, the future is more connected, it's more complicated. And the problem is, we still have people that use weak passwords, we still have people that click on links from strangers. And ultimately, when we're looking at that future, you're going to see the exact same problems that we've always had complicated on a much, much, much, much, much larger scale. As things get more and more pushed to the cloud. There'll be no shelter here, the front line is everywhere. World of computer security. 

 

Key Takeaways:

0:00 Previously on the show 2:02 John introduction 2:44 Episode begins 2:47 What John is doing today 3:45 John’s core tenets 5:51 How pen testing is “Blue” 6:17 Why understanding fundamentals matters 8:55 Ransomware 10:41 Organizations need to be prepared 11:58 Password gap 13:37 Password philosophy 17:07 Multi-factor authentication 21:40 What to do today 24:24 New problems 26:44 Learn your own network 28:26 Where to find John

 

John Strand on Twitter

John Strand on LinkedIn

Black Hills Information Security

Learn more about Hacker Valley Studio

Support Hacker Valley Studio on Patreon

Follow Hacker Valley Studio on Twitter

Follow Ron Eddings on Twitter

Follow Chris Cochran on Twitter

Sponsored by Axonius

Read more

Listen Now

test
Hacker Valley Blue S2 Episode 6 - John Strand

May 18, 2021 Hacker Valley Studio

00:00:00

Recent Episodes

View All

May 30, 2023

Technical Dojos: Cultivating Skills and Navigating Change in Cybersecurity

by Hacker Valley Studio

In this cybersecurity podcast episode, Chris Cochran and Ron Eddings discuss the concept of 'dojos' as environments for growth and learning, drawing on experiences from their own career paths in cybersecurity. The 'dojo' metaphor is applied to variou...

Listen Now
May 23, 2023

Attack Surface Management: The Grit Needed for True Cyber Resilience with Nabil Hannan

by Hacker Valley Studio

Join hosts Ron and Chris as they dive into the world of Attack Surface Management (ASM) in this episode recorded live at RSAC 2023. Special guest Nabil Hannan, a seasoned industry expert and Field CISO at NetSPI, shares his wealth of knowledge and ex...

Listen Now
May 16, 2023

A Tale of Two Risks: Third-Party and SaaS Security

by Hacker Valley Studio

In this episode, hosts Ron and Chris are joined by Paul Valente, CEO and co-founder of VISO Trust, and Bryan Wong, Sr. Security Analyst at Headspace, as they dive into the world of third-party risk in cybersecurity. With conversations ranging from th...

Listen Now
May 9, 2023

Paying the Piper in Cybersecurity: Balancing Success and Personal Life

by Hacker Valley Studio

In this episode, Ron Eddings and Chris Cochran discuss the concept of "paying the piper" and its impact on their careers and personal lives. Paying the piper means facing the consequences of one's actions, whether they are good or bad. Chris shares h...

Listen Now
May 2, 2023

CISO Burnout and Gaps in Cybersecurity Detections with Jack Roehrig

by Hacker Valley Studio

In this podcast episode, Jack Roehrig, Technology Evangelist at Uptycs, discusses his experience with burnout and health issues due to his job as a Chief Information Security Officer (CISO). Jack has always known health is wealth and retired to Mexic...

Listen Now
April 25, 2023

The Critical Role of Empathy in Cybersecurity with Tracy Maleeff

by Hacker Valley Studio

In this episode, we explore the often-overlooked importance of empathy in the cybersecurity field. Our guest, Tracy Maleeff, shares her personal journey from community involvement to the industry and discusses how embracing empathy can lead to more e...

Listen Now
April 18, 2023

RSA With Purpose: Sealing Deals, Getting Hired, and Networking with Industry Leaders

by Hacker Valley Studio

Head into RSA 2023 with a purpose. This episode is all about how to reach a win-win when sealing deals, getting hired, and networking.If you want to catch up with the Hacker Valley Team during RSA be sure to jump into our discord. You can join by goi...

Listen Now
April 11, 2023

Mastering Focus with Simone Biles and Amy Bream at RSA

by Hacker Valley Studio

RSA is right around the corner and we’re so excited because it’s one of our big opportunities to meet with you, our dedicated listener. If you want to catch up with the Hacker Valley Team be sure to jump into our discord. You can join by going to hac...

Listen Now
April 4, 2023

What Is Cyber Threat Intelligence and How To Stand Out As Threat Intelligence Analyst

by Hacker Valley Studio

Join our creative mastermind and stand out as a cybersecurity professional: https://www.patreon.com/hackervalleystudio Become a sponsor of the show to amplify your brand: https://hackervalley.com/work-with-us/ Love Hacker Valley Studio? Pick up some...

Listen Now
March 28, 2023

Emerging Cybersecurity Technologies with Jake Reynolds

by Hacker Valley Studio

Special Thanks to our sponsor NetSPI NetSPI has a team of skilled pen-testers that can help you find those critical vulnerabilities and become your partner in creating the right remediation game plan for you. Check them out at http://netspi.com/HVM ...

Listen Now