Summary

In this episode of the Phillip Wylie Show, host Phillip Wylie interviews Evan Dornbush, a seasoned cybersecurity professional with a rich history in the field. They discuss Evan's journey from a summer internship focused on cybercrime to his work with the NSA and his entrepreneurial ventures in cybersecurity. The conversation delves into the challenges of hiring in tech, the importance of proving technical skills, and the evolving landscape of security research. They also explore the impact of AI on cybersecurity, the economics of cybercrime, and Evan's new podcast aimed at educating listeners about vulnerabilities and exploits.

Takeaways

• Evan's journey into cybersecurity began with a summer internship focused on cybercrime.

• The importance of hands-on experience in proving technical skills in cybersecurity.

• Entrepreneurship in cybersecurity can lead to innovative solutions for hiring and skill assessment.

• AI is changing the landscape of cybersecurity, creating both challenges and opportunities.

• The economics of cybercrime are driven by profitability, making it a persistent issue.

• Bug bounties provide a platform for researchers to monetize their skills and contribute to security.

• The rise of CVEs reflects the increasing complexity and volume of software vulnerabilities.

• Community involvement and education are crucial for the future of cybersecurity.

• Evan's podcast aims to demystify vulnerabilities and educate the research community.

• The need for better options for researchers to disclose and monetize their findings.

Sound Bites

"I was totally fanboying."

"Research is protected free speech."

"It's a shame there's nothing US based."

Chapters

00:00 Introduction and Background

01:16 Evan's Hacker Origin Story

04:15 Transitioning from NSA to Entrepreneurship

06:53 The Mission of Point Three Security

09:32 Innovative Hiring Practices in Cybersecurity

12:32 Proving Technical Skills in Cybersecurity

14:42 Breaking into Security Research

17:51 The Evolving Landscape of Vulnerability Research

20:55 The Value of CVEs vs Certifications

23:59 The Economics of Cybercrime

26:20 The Future of Exploit Markets

30:07 Evan's New Podcast: Explain it Like I'm Five

37:36 Closing Remarks and Nonprofit Involvement

Resources

https://www.linkedin.com/in/evandornbush/

https://www.desiredeffect.io/

https://www.securityweek.com/ethical-zero-day-marketplace-desired-effect-emerges-from-stealth/

https://podcasters.spotify.com/pod/show/hackersontherocks4

https://goldstargamers.org/