Summary

In this episode of the Phillip Wylie Show, Joe Vest shares his extensive journey in the cybersecurity field, from his early days in IT to becoming a prominent figure in red teaming. He discusses the evolution of red teaming, the differences between red teaming and penetration testing, and the importance of understanding technology fundamentals for aspiring security professionals. Joe also reflects on his transition from offensive to defensive security, the challenges of writing a book on red teaming, and offers valuable career advice for those looking to break into the field.

Takeaways

• Joe Vest emphasizes the importance of community in cybersecurity.

• His hacker origin story began in IT, not knowing hacking was a thing.

• Red teaming was not common outside of government when he started.

• He prefers to define security tests based on goals rather than labels.

• The core principles of red teaming have remained unchanged over the years.

• Joe has shifted focus to defensive security and detection engineering.

• Understanding technology fundamentals is crucial for aspiring security professionals.

• He encourages building home labs and practical experience in security.

• Writing a book on red teaming was a significant achievement for Joe.

• He advises that not everyone will take action on security findings, and that's okay.

Chapters

00:00 Introduction to Joe Vest and Cybersecurity Community

01:59 Joe Vest's Hacker Origin Story

09:24 Understanding Red Teaming vs. Pen Testing

18:50 Evolution of Red Teaming and Current Trends

21:51 Transitioning from Offensive to Defensive Security

28:15 Career Changes and Personal Growth in Cybersecurity

33:59 The Importance of Foundational Knowledge in Security

39:15 Lessons Learned and Advice for Aspiring Security Professionals

Resources

https://www.linkedin.com/in/joe-vest/

https://x.com/joevest

https://redteam.guide/