While PenTesting (i.e. hacking) may be the most visible part of Information Security, it is sometimes can lead to a false sense of security. In this episode I had a chance to talk with Nabil Hannan about rethinking your penetration testing strategy and moving towards Attack Surface Management. Nabil is the Field Chief Information Security Officer for NetSPI  and has a ton of useful information to share about starting this journey.

Talking points include:

• What are the biggest misconceptions with PenTesting?
• The problem with buying security 'things'
• Understanding your Attack Surface using Breach and Attack Simulations
• Targeting your ransomware readiness

Episode Sponsor:

NetSPI is a penetration testing company based out of Minneapolis, Minnesota.

Episode Charity:

This episode's charity is Latinas in Cyber. LAIC is focused on continuing to break barriers and open paths for those who chose to pursue careers in cybersecurity. Our mission is to empower through mentorship, networking, support, and representation.