Jump-starting SOC Analyst Careers, Addressing Cybersecurity Industry Challenges, and Historic Rumors in Enterprise Security – ESW #368
Full Audio
View Show IndexSegments
1. Book Discussion: Jump-start Your SOC Analyst Career – Jarrett Rodrick, Tyler Wall – ESW #368
Three years after we last discussed this book on episode #221, Jarrett Rodrick returns, joined by co-author Tyler Wall to discuss an update of the book. We talk opportunities and layoffs. Career paths and experience. Degrees, certifications, and home labs. We talk about who cybersecurity is the right field for, and the pros and cons of the industry as a whole.
We also talk myths and reality about a cybersecurity career. Can you really make $100k just a few years in? Is it really an entry level field? Are you better off entering cyber from IT or the military?
Segment Resources:
Announcements
You're invited to InfoSec World 2024 at Disney’s Coronado Springs Resort in Lake Buena Vista, FL, from September 23-25. Join top cybersecurity experts for this premier event! Save 25% on your pass by using code ISW24-SW25 when you register at securityweekly.com/infosecworld2024. Don’t miss out on this exclusive opportunity!
Guests
Jarrett W. Rodrick is the Senior Manager of Security Operations at Omnissa and was formerly the Senior Manager of the Security Operation Center at VMware. He is a retired Cyber Network Defender and Cyber Warfare Specialist from the US Army and has over eleven years of Defensive Cyber Operations experience between US Army Cyber Command and leading world-class security programs at Fortune 100 companies. Jarrett’s education includes a Bachelor of Science in Applied Cybersecurity from SANS Technology Institute and 17 GIAC cyber security certifications. Jarrett lives in Melissa, Texas, and enjoys golfing with his son and board games with his family.
With over a decade of experience specializing in Security Operations Centers (SOC), Tyler Wall enjoys teaching and mentoring new cybersecurity talent. He has obtained a Master of Science in Cybersecurity from Purdue University and certifications including the Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH), Cloud Certificate of Security Knowledge (CCSK), Certified Forensic Security Responder (CSFR), Security+, Network+, and many others. He is the author of the popular book Jump-start Your SOC Analyst Career and Udemy course Cybersecurity: Security Operations Center (SOC) Analyst NOW!
He owns his own library and collects rare books. Most collectables are autographed biographies of people he identifies with that have had similar struggles in life. He also has a couple of very old first editions and autographed books from his friends who are also authors.
There are also some books on his bookshelf that get used frequently, often having two copies, one to collect and one to read. His favorite book of all time, is Treasures of World History: The Story of Civilization Told Through Its 50 Most Important Documents. Its not a popular book, and it seems to be a mystery how he even ended up with it. His wife bought it for his birthday, and doesn’t remember where or how she got it. It was an insignificant last minute present she picked up to add to the rest of his gifts. Tyler is most interested in what store liked this book so much that they kept it in stock, because he likes them. He’s had it for a couple of years and still learning interesting things that makes him question the integrity of history, science, technology, religion and many other subjects. Written by a famous journalist couple who are familiar with tall tales. He could write for a long time about this book. In fact, Tyler could write a long time on just about anything.
Cyber NOW Education
Hosts
2. What’s wrong with the cybersecurity industry and what we can do about it – Richard Hollis – ESW #368
On this segment, we're going to zoom all the way out to discuss one of my favorite topics: what's fundamentally wrong with this industry? I believe we're at an inflection point: security teams have budget, staff, and more sway at the board level than ever. The cybersecurity market is doing great - growing at an astonishing rate with cyber startups that almost never fail and funding that survives every market downturn.
So why are failures also breaking records? What are we getting wrong? Why are we failing?
These are the questions Richard, Katie, and I will try to answer in this segment.
Segment Resources:
Announcements
Maximize your investment at BlackHat 2024 with a 1:1 on-site interview. Drive thought leadership and boost brand awareness with CyberRisk Alliance's expert editorial team from Security Weekly and SC Media. Act now, limited interview slots available - secure yours today at https://securityweekly.com/blackhat2024
Guest
Richard has over 30 years of hands-on skills and experience in the cyber security industry. He is the Founder & Director of Risk Crew – a European information security governance, risk & compliance consultancy based in London.
Hosts
3. Rumored Wiz Deal Would be HISTORIC (if it happens), redefining shared responsibility – ESW #368
In this week's enterprise security news,
- Google is rumored to be considering acquiring Wiz for $23 BILLION
- ThreatConnect acquires Polarity
- XBOW and Sola Security are interesting new companies we’ll discuss
- What does “shared responsibility” actually mean?
- Palo Alto probably isn’t going to buy your startup
- Snowflake-related breaches continue getting worse
- MUCH less AI talk than usual
- Defragmenting your browser
All that and more, on this episode of Enterprise Security Weekly.
Announcements
We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!
Hosts
- 1. ACQUISITIONS: ThreatConnect Acquires Polarity to Bring Intelligence to the Point of Decision for Security Teams
- 2. ACQUISITION RUMORS: Google reportedly in advanced talks to acquire cyber startup Wiz for $23 billion, its largest-ever deal
Is it though? Or is this a strategic play to prepare for an IPO? Only time will tell.
- 3. NEW COMPANIES: XBOW
Autonomously finding webapp vulns!
- 4. NEW COMPANIES: Sola Security (coming soon)
This is a "must click" to read the silly quotes. We talked about this last week, but wow - really? This guy really got $28M and doesn't know what he's gonna build yet?
Must be nice.
- 5. ESSAYS: Unobtrusively Upgrading Ubuntu Underfoot
- 6. ESSAYS: Palo Alto isn’t going to buy everyone: the anatomy of cybersecurity startup exits
- 7. ESSAYS: A new SaaS security shared responsibility model
Shared responsibility is a mess right now. We're going to have to address a lot of issues.
- 8. BREACHES: AT&T’s massive data breach deepens crisis for Snowflake seven weeks after hack was disclosed
- 9. AI INDEGESTION: Delving into ChatGPT usage in academic writing through excess vocabulary
- 10. AI TALK: RAID (Real World AI Definitions)
- 11. SQUIRREL: Windows 98 Disk Defrag Simulator
