Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Today on Cyber Work, Sam Chehab, the head of security and IT at Postman, dives into API security and the intriguing concept of rogue AI agents. Chehab discusses the internal challenges posed by well-meaning developers, the potential threat of hackers using AI to create more sophisticated malware, and the evolving roles of development and security teams. The episode also navigates through Chehab's career, including his time at Nvidia and leading a zero-trust strategy deployment for Palo Alto Networks. Listeners will gain insights on integrating AI tools for API defense, the future of cybersecurity roles, and practical advice for breaking into the industry. Plus, learn about Postman's strategies and tools to ensure secure API development and management.

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

00:00 API security and rogue AI agents
00:45 Sam Chehab's background and career journey
03:54 Transition to data security
12:47 Implementing a zero-trust strategy at Palo Alto
20:06 Responsibilities at Postman
23:02 Understanding rogue AI agents
26:42 Ensuring API security and collaboration
27:34 Challenges in securing APIs
28:31 Postman's approach to API hygiene
29:39 The future of API security
34:42 Career advice for aspiring security professionals
39:18 The role of AI in API security
45:20 Postman and upcoming events
47:59 Outro

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

In this episode of Cyber Work, Ken Zalevsky, founder and CEO of Vigilant Ops, joins us to discuss the importance of a Software Bill of Materials (SBOM) in the medical device industry. Zalevsky shares how SBOMs provide transparency and critical security insights, akin to the ingredients list on food packaging, to help identify and defend against vulnerabilities. We also delve into Zalevsky's extensive career in healthcare cybersecurity, starting from his early tech interests influenced by his father to his pivotal role at Bayer Healthcare. The discussion covers the impact of legacy systems, current security trends, the integration of AI in medical device security, and valuable insights for those looking to build a career in this crucial sector. Tune in to learn more about medical device security and the latest in cybersecurity trends, and get some expert advice straight from a seasoned professional.

00:00 Understanding SBOMs in medical devices
04:20 The evolution of medical device security
07:22 Ken Zalevsky's journey in cybersecurity
09:28 Challenges in medical device security
13:06 The role of SBOMs in cybersecurity
15:56 Implementing SBOMs in organizations
18:28 Ken Zalevsky's role at Vigilant Ops
22:01 Technical aspects of SBOMs
27:14 Legacy devices and security measures
28:24 Manufacturer's role in device security
30:07 Healthcare industry's response to security threats
30:42 Impact of major breaches on policy
34:13 Generative AI and machine learning in healthcare security
40:22 Skills and certifications for healthcare security careers
46:46 Career advice and educational paths
49:04 About Vigilant Ops and their services
52:15 Outro

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Ross Young, CISO in residence at Team8, joins this week's Cyber Work episode to share insights from his fascinating career journey from the CIA to cybersecurity leadership. With over a decade of experience across intelligence agencies and major companies, Young discusses the rapidly evolving AI security landscape, predicts how AI will transform security roles and offers valuable career advice for cybersecurity professionals at all levels. Learn how security professionals can stay relevant in an AI-driven future and why continuous learning is non-negotiable in this field.

00:00 Intro
00:27 Ross Young's journey in cybersecurity
01:18 Cybersecurity job market insights
02:12 Ross Young's educational path
07:38 Experience at the CIA
10:38 Transition to the private sector
13:15 Current role at Team8
18:30 Daily life of a CISO in residence
22:12 Impact of AI on cybersecurity
25:23 Identifying phishing emails
25:49 New risks with AI models
27:08 Exploiting AI for malicious purposes
30:55 Defending against AI exploits
32:24 AI in security automation
33:30 Common mistakes in AI implementation
36:59 Future of cybersecurity with AI
43:18 Advice for security professionals
46:17 Career advice

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Today on Cyber Work, we welcome Weldon Dodd, Senior Vice President of Global Partnerships at Kandji. Dodd discusses a recent report highlighting why Apple devices are perceived as more secure than Windows systems in the event of a global software outage. He dives into the technical and social reasons behind these security differences, explores the challenges in securing different platforms and offers career advice for aspiring cybersecurity professionals. Learn why a commitment to continuous learning and focus is essential, and get insights into the growing role of Apple in the enterprise environment. This episode is packed with valuable tips for breaking into and advancing up the ladder in the cybersecurity industry.

00:00 Cybersecurity job market insights
02:03 Weldon Dodd's cybersecurity career journey
14:39 Joining Kandji and building teams
25:22 Kandji's report on Apple vs. Windows security
30:37 Mac as a target for malicious software
32:03 Windows vs. Mac: A bigger target
33:12 Apple's growing presence in enterprises
34:00 Sector-specific Apple adoption
36:49 Impact of the report on operating systems
39:21 Career paths in cybersecurity
44:46 Skills and certifications for entry-level cybersecurity roles
50:11 Advice for aspiring IT professionals
54:20 Best cybersecurity career advice received
58:17 About Kandji and its services
1:02:30 Outro

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

In this episode of Cyber Work Hacks, host Chris Sienko welcomes Infosec Skills Instructor Robert Morrell to discuss his learning path, "ChatGPT for Offensive Security." Morrell outlines the seven-course path, including five courses of learning and two interactive labs, focused on using ChatGPT in various offensive security tasks. The discussion includes crafting cross-site scripting attacks, generating phishing campaigns and engineering prompts for optimal results. Morrell also provides insight on effectively using ChatGPT to write detailed bug reports and demonstrate AI security skills to potential employers. Additionally, he shares information about his company, Pointless AI, a platform for bug bounty and vulnerability disclosure services. This episode offers a comprehensive guide for cybersecurity professionals looking to integrate AI tools into their offensive security toolkit.

00:00 Introduction to Cyber Work Hacks and guest Robert Morrell
00:08 Overview of ChatGPT for offensive security learning path
02:53 Understanding ChatGPT and its applications
04:57 Comparing ChatGPT with other AI models
07:24 Deep dive into the offensive security learning path
12:52 Using ChatGPT for offensive security in real-world scenarios
14:43 Final thoughts and advice on using ChatGPT
18:37 Conclusion and additional resources

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

In this episode of Cyber Work Hacks, Infosec Boot Camp Instructor Tommy Gober walks us through what his Network+ training course is like. He talks about the supportive learning environment and explains how the boot camp is designed for those new to the field. He covers the structure of the five-day program, touching on topics like the OSI model, binary number systems, networking hardware and more. He also shares his insights on the benefits of boot camp learning versus self-study or traditional schooling — and offers tips for taking the Network+ exam.

0:00 Introduction
1:19 Free cybersecurity salary guide
2:54 Boot camp training vs. other learning methods
4:23 In-person and online boot camp experience
9:13 Network+ boot camp daily breakdown
11:56 Network+ exam preparation and testing strategies
14:55 Final thoughts and wrap up

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Infosec Boot Camp instructor Tommy Gober returns to Cyber Work to share insights on maintaining your CompTIA Network+ certification through continuing education credits (CEUs). Learn the best practices for accruing CEUs, including documenting projects, attending conferences and engaging in hands-on learning experiences. Tommy also discusses the importance of staying current in the field and tips for avoiding the last-minute scramble to earn CEUs. Discover how advancing your certification level can simplify the renewal process and keep you updated with the latest industry trends.

0:00 Introduction
1:28 Free cybersecurity salary guide
3:10 What are CEUs/CPEs and why are they required
5:50 What are the ways to earn Network+ CEUs
8:40 Ways to stay ahead on your CEU credits
11:35 CompTIA's CEU credit breakdown
16:40 Final thoughts and wrap-up

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Infosec Boot Camp Instructor Tommy Gober joins Cyber Work Hacks to discuss the mechanics of the CompTIA Network+ exam. This episode features an overview of different question types, including multiple-choice, multiple-answer and performance-based questions. Tommy guides you through sample exam questions, providing insights into CIDR notation, subnetting and troubleshooting IP addresses. Additionally, learn about the benefits of practice exams and receive essential tips for exam day success. This episode is perfect for anyone preparing for the Network+ certification or looking to strengthen their networking knowledge.

0:00 Introduction
0:38 Cybersecurity salary guide
2:37 Understanding Network+ exam question types
6:07 Practice question: CIDR notation
9:10 Practice question: IP addresses
11:15 Practice questions: Troubleshooting & IP addresses
15:18 Practice exam and preparation tips
17:33 Final advice
19:20 Conclusion

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Infosec Instructor Tommy Gober joins Cyber Work Hacks to discuss the CompTIA Network+ certification. Despite often being bypassed in favor of Security+, Gober explains why Network+ is fundamental for a robust cybersecurity knowledge base. Learn about critical networking concepts like the OSI model, IP addresses and protocols, which are vital for understanding how cyberattacks work. Discover how strengthening your networking proficiency can enhance your cybersecurity career, even if you don't aim to become a network admin. Gober also shares top tips for excelling in the Network+ exam, including mastering port numbers and subnetting. Don't miss this enriching episode designed to boost your cybersecurity skills!

0:00 Introduction
0:50 Cybersecurity salary ebook
1:44 Overview of Network+ certification
2:55 Deep dive into networking concepts
5:15 Integrating Network+ with Security+
7:03 Essential networking skills for cybersecurity
9:03 Top tips for Network+ exam preparation
10:02 Final thoughts

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE 2024 Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Watch the video here: https://www.youtube.com/watch?v=OSZ1Qi-tzSE

Today on Cyber Work, we welcome Gamuchirai Muchafa from Africa's CyberGirls program to discuss her journey in cybersecurity. Muchafa shares the rigorous application process for this mentorship program, her transition from a healthcare assistant to an IT professional and the importance of documentation in cybersecurity. We delve into her experiences with incident response challenges and her hands-on project involving an automated incident detection and response system. Muchafa also reflects on her aspirations and offers advice for aspiring cybersecurity professionals.

00:00 - Introduction 
02:29 - Muchafa's journey into cybersecurity
05:43 - CyberGirls program
07:03 - Programming without a laptop
08:06 - CyberGirls fellowship projects
13:07 - Incident response problem walkthrough
20:53 - Advice for cybersecurity students
24:57 - Future plans 
30:27 - Support for CyberGirls fellowship
31:37 - Outro

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.