Hacking into Security - Career Talks

Follow Hacking into Security - Career Talks
Share on
Copy link to clipboard

Your career-related cybersecurity show. Regularly we will be speaking with a variety of guests from industry leaders to new entrants into the space. Each sharing their journey to where they are today, views on the industry, and how others can find success navigating their career.

Ricki Burke


    • Nov 14, 2020 LATEST EPISODE
    • infrequent NEW EPISODES
    • 36m AVG DURATION
    • 32 EPISODES


    Search for episodes from Hacking into Security - Career Talks with a specific topic:

    Latest episodes from Hacking into Security - Career Talks

    Hacking into Security #32 - becoming a Champion for women in security, with Jacqui Loustau

    Play Episode Listen Later Nov 14, 2020 32:18


    In this episode, we catch up with Jacqui Loustau, the Founder of the AWSN (Australian Women in Security Network) and Principal Security Consultant for Cynch Security. Jacqui gained excellent experience working overseas in security was planning to come back to Australia and had more difficulty than she expected in landing a job. We walk through Jacqui's story of getting into security, her challenges in landing a job, what got her to start what would become such an influential security community, the future for AWSN and how organisations can do more to attract a more diverse culture. Knowing Jacqui over the years has given me some insight into the incredible demand in starting a security community. Impressively, Jacqui decided "to take 6 months and get it (AWSN) up and running properly!" and is now getting paid for her AWSN work.

    Hacking into Security #31 - United States Marine to Application Security Engineer, with John Jackson

    Play Episode Listen Later Oct 31, 2020 41:24


    In this episode, we catch up with John Jackson (@johnjhacking) an Application Security Engineer at Shutterstock. John never thought he would have a career sitting at a computer, let alone in cybersecurity. We walk through John's journey from being a Petroleum Engineer in the United States Marine Corps to eventually working in application security, penetration testing, security research and bug bounties. We also discuss the reality of applying for hundreds of jobs to land something, taking different roles to help him progress and a story that highlights some of the dangers that can happen to curious security researchers.

    Hacking into Security #30 - Building and selling a business (SensePost) and what businesses can do increase gender diversity

    Play Episode Listen Later Oct 24, 2020 43:59


    In this episode, we catch up with Charl van der Walt (@charlvdwalt), Head Of Security Research at Orange Cyberdefense and one of the original founders of SensePost. We talk through the origins of how SensePost got started, what it was like to build a business over 20 plus years and eventually sell and become part of a much larger company. Charl also spoke about a personal topic he is driving around gettings organisations to think differently in their approach to gender diversity.

    Hacking into Security #29 - "we need Security to become part of the Software Engineering team", with Keith Hoodlet (@securingdev)

    Play Episode Listen Later Oct 16, 2020 51:13


    In this episode, we catch up with Keith Hoodlet (@securingdev) Senior Manager, Application Experience at Thermo Fisher Scientific. Keith has a strong background in application security and is the former host for 55 episodes on the Application Security Weekly podcast. I saw a tweet by Keith and wanted to dig deeper in that. The tweet was responding to Dino Dai Zovi who said "Security" as a single dimension of expertise increasingly makes no sense. Saying that you are a "security expert" is like saying you are a "computer expert." Computing is a part of everything we do and we don't isolate expertise on all of it within the "computers team.", Keith said "Agreed; in the same way that Ops became part of the Software Engineering team, we need Security to become part of the Software Engineering team. This is why I say that Security is a Feature, because features are: - Funded - Have time allocated to them - Are tested and maintained" We also walk through Keith's journey into the industry and also share advice to companies looking to mature their Application Security and DevSecOps. You can watch Keith's keynote talk at OWASP AppSec Day Melbourne 2018 https://www.youtube.com/watch?v=QT_omddhJzo&list=PLPvxR0i93gjQjrIJK0PdMdFkUbnHhRBRN&index=2&t=0s

    Hacking into Security #28 - Snowboarder to Security Advisor

    Play Episode Listen Later Oct 11, 2020 47:11


    In this episode, we catch up with Toni James (@_tonijames), Security Advisor and CHCon co-organiser. Toni was a snowboarder, managing a large team but wanted more. She decided to go back to university as a mature student and mum. Not easy to juggle! She went on to finish her Computer Science degree, an Google Anita Borg Scholar, then Software Engineer and started getting into the security community. Toni talks very openly about her journey, the challenges she faced and shared excellent advice to others out there.

    Hacking into Security #27 - US Marine to Red Teaming and Purple Teaming, with @mubix (Rob Fuller)

    Play Episode Listen Later Oct 3, 2020 50:27


    In this episode, we catch up with @mubix (Rob Fuller), a is red teamer turned purple teamer. He started his career in the United States Marine Corps working with explosives and has gone on to have a highly successful career in the security industry working at companies like Rapid7, GE, Uber, Cruise Automation and now Balck Hills Information Security, as well as contributing back in many ways to the security community and speaking at many conferences around the world.Mubix shares his journey, stories along the way, as well as going deeper into both red and purple teaming.

    Hacking into Security #26 - Poker player, Developer, Penetration Tester, top 20 bug hunter and Global Head of Security Operations and Researcher Enablement at Bugcrowd, with Michael Skelton (@Codingo)

    Play Episode Listen Later Sep 26, 2020 39:54


    In this episode, we catch up with Michael Skelton (@Codingo) Global Head of Security Operations and Researcher Enablement at Bugcrowd.Codingo has a non-traditional career path and he shares his journey on how he got to where he is, including the challenges of breaking into the infosec industry. As someone who got to be a Top 20 bug hunter on Bugcrowd and now the Global Head of Security Operations and Researcher Enablement at Bugcrowd, Codingo shares not only career advice but also tips on bug bounties.

    Hacking Into Security #25 - From marketing to InfoSec Advocate & Activist, with Chloé Messdaghi

    Play Episode Listen Later Sep 19, 2020 39:19


    In this episode, we catch up with Chloé Messdaghi, VP of Strategy at Point3 Security. Chloé is a humanitarian Advocate in the Cybersecurity space. She started her career in marketing but got the opportunity to move into infosec in 2017. Chloé shares some of the experiences that led her to nearly quit the industry but instead has gone on to become a voice in the community. As well as speaking many conferences, Chloé is the founder of WeAreHackerz (formerly known as WomenHackerz) & the President and cofounder of Women of Security (WoSEC), podcaster for ITSP Magazine's The Uncommon Journey, and runs the Hacker Book Club.

    Hacking Into Security #24 - Finding vulnerabilities, with Elliot Alderson (@fs0c131y) - Baptiste Robert

    Play Episode Listen Later Sep 11, 2020 35:59


    In this episode, we catch up with Baptiste Robert, who goes by the handle @fs0c131y.Baptiste is a Security Researcher based in France with a big focus on android. We walk through his journey from graduating with a network and telecommunication to finding vulnerabilities and creating a large following. We also cover how has a security researcher, Baptise finds his projects and his plans for the future around battling disinformation.

    Hacking Into Security #23 - Finding vulnerabilities as a teenager, first job at 17, bug bounties and more, with Shubs - @infosec_au, @notnaffy

    Play Episode Listen Later Sep 4, 2020 40:05


    In this episode, we catch up with Shubs (Shubham Shah, @infosec_au, @notnaffy), CTO of Assetnote.A passion for hacking grew early in Shubs' life. He was demonstrating good skills in hacking but faced with a tough decision at an early age. Follow his parents wishes and attend university or his own path and get a job. We talk through Shubs's incredible journey which saw him land his first job in the industry at 17 years old, his success in bug bounties and going on to co-found the company Assetnote. Shubs also shares some practical tips for aspiring hackers and bug bounty hunters. Recommended blog by Shubs on bug bounties - High frequency security bug hunting: 120 days, 120 bugshttps://shubs.io/high-frequency-security-bug-hunting-120-days-120-bugs/

    Hacking Into Security #22 - QA to Senior Security Advisor and beyond, with Brendan Seerup @SparkleOps

    Play Episode Listen Later Aug 30, 2020 32:58


    In this episode, we catch up with Brendan Seerup, or sometimes better known as SparkleOps.Brendan is currently a Senior Security Advisor at REA Group, but less than 5 years ago he was working as a Quality Assurance Manager. Brendan talks about how he always saw security as part of QA, hardware hacking and how he went from not presenting to speaking at six security cons in a year.He gives practical advice for people with a similar background and talks about what the future looks like and how he can make an even bigger impact combining his skills and experience.

    Hacking Into Security #21 - Drone Security, with Mike Monnik - CTO of DroneSec

    Play Episode Listen Later Aug 22, 2020 43:35


    In this episode, we catch up with Mike Monnik, CTO of DroneSec, offensive security professional and Co-organiser of SecTalks Melbourne. Mike was advised early in his career to pick up a specialist area. That area turned out to be drones, and a passion was formed. Starting as a side hustle and whilst working as a penetration tester, Mike started building a (not-for-profit) drone security company. This eventually turned into a business and Mike walks us through this story and what the drone security industry looks like. He discusses what the future could look like for the industry and how others who share a similar passion could pivot into a full-time role in drone security.Here are some resources Mike recommends:DroneSec UAV Threat Intel Platform: https://dronesec.com/pages/notifyCREST ASSURE Program: https://www.crest-approved.org/assure/index.htmlChristchurch Mosque shooter used drones to surveil target site: https://www.stuff.co.nz/national/christchurch-shooting/122232602/christchurch-mosque-terrorist-used-drone-over-mosque-before-march-15-attackISIS fighter killed by own drone: https://www.thesun.co.uk/news/9797095/isis-fighter-killed-by-drone-bomb/Gangs using drones to infect pig pens: https://www.businessinsider.com/chinese-gangs-are-spreading-african-swine-fever-to-profit-2019-12?r=AU&IR=T (editors note: swine flu not bird flu as mentioned in the podcast)Pig pen farms disrupt aviation with drone jammers: https://www.reuters.com/article/us-china-swinefever/commercial-pig-farm-in-china-jams-drone-signal-to-combat-swine-fever-crooks-idUSKBN1YO0JECartels using drones as temporary airstrips: https://www.washingtonpost.com/world/2020/07/05/guatemala-cocaine-trafficking-laguna-del-tigre/A journalist uses a drone to exfiltrate hard drives: https://www.bbc.com/news/technology-49689833Researchers use drone projectors to disrupt smart vehicles: https://thenextweb.com/cars/2020/02/05/teslas-autopilot-dangerously-fooled-by-drone-mounted-projectors/DJI Bug Bounty Program: https://security.dji.com/policy

    Hacking Into Security #20 - The origins of Hackers, with Iain Dickson, ComfyCon AU Founder, Cyber Technical Lead

    Play Episode Listen Later Aug 15, 2020 47:31


    In this episode, we catch up with Iain Dickson, ComfyCon AU Founder, Cyber Technical Lead for Leidos Australia.Iain walks us through a presentation on the origins of Hackers and defines the different types of threat actors,

    Hacking Into Security #19 - Advising CIOs on their first security hire, with Claire Pales

    Play Episode Listen Later Aug 7, 2020 27:06


    In this episode, we catch up with Claire Pales. Claire is the Director and Founder of 27 Lanterns, author of The Secure CIO book, host of The Secure CIO podcast and mum of four. We cover Claire's unique insight as she comes from a security leadership background and now advises organisations in hiring their first CISO. We also discuss the challenges of coming back to Australia with overseas experience.

    Hacking Into Security #18 - VCs in cybersecurity and Unit 8200, with Ofer Schreiber

    Play Episode Listen Later Jul 31, 2020 38:51


    In this episode, we catch up with Ofer Schreiber, Partner & Head of Israel Office at the American-Israeli venture capital firm, YL Ventures. We talk about the cybersecurity from the lens of a venture capital firm. Ofer shares his unique background and experience having come through Unit 8200 and now looks at and manages investments on the behalf of YL Ventures.Ofer talks about what his firm looks for when investing in entrepreneurs and provides advice for people who aspire to build the next cybersecurity startup.

    Hacking Into Security #17 - Becoming the World's first CISO, with Steve Katz

    Play Episode Listen Later Jul 24, 2020 42:33


    In this episode, we catch up with Steve Katz, the World's first CISO. Steve became the CISO of Citigroup in 1995. We discuss Steve's journey leading up to the role, how it came about and with no blueprint to follow, what he did in the job. We also discuss Steve's approach to how he dealt with boards and there is plenty of advice for current and future CISOs.

    Hacking Into Security #16 - The job of a CISO and more, with Craig Templeton

    Play Episode Listen Later Jul 17, 2020 40:05


    In this episode, we catch up with Craig Templeton, CISO & GM Technology Platforms at REA Group.Craig is very open about the role of a CISO and what his job looks like. He shares advice to people wanting to progress in their career and the experiences that helped him get to where he is today.

    Hacking Into Security #15 - The story of BSides with Jack Daniel

    Play Episode Listen Later Jul 11, 2020 37:58


    In this episode, we catch up with one of the original co-founders and organisers of BSides.Jack talks about the origins and growth of BSides, what makes a BSides conference so unique and what it takes to run a conference.We also hear Jack's thoughts on the current state of conferences during a global pandemic and what the future looks like for BSides.

    Hacking Into Security #14 - Aesthetician to Senior Security Engineer at Netflix, with Wendy Zenone

    Play Episode Listen Later Jul 4, 2020 37:22


    Wendy Zenone quit her job as an aesthetician at 38, learnt to code and has progressed to working at her dream company, Netflix.We have a fun chat discussing Wendy's journey from a very non IT role, learning to code, being a mom, landing her first job in security to where she is today.Wendy shares her experience, tips for others wanting to move into the industry as well as advice on interviewing and the value of perseverance.

    Hacking Into Security #13 - Talking about building tools and graudit with Eldar Marcussen

    Play Episode Listen Later Jun 27, 2020 32:43


    In this episode, we catch up with Security Researcher, pentester, trainer and Principal Security Engineer Eldar Marcussen.Eldar built the source code auditing tool graudit (grep rough audit). We discuss what it's like to build a tool and some of the unknowing benefits it's led to in his career.Eldar also shares advice for any aspiring pentesters.

    Hacking Into Security #12 - Customer Support Agent to Security Manager at Mailchimp withBobby Stoskopf

    Play Episode Listen Later Jun 20, 2020 26:01


    Bobby Stoskopf is a Security Manager at Mailchimp, a company where he started as a Customer Support Agent. We discuss Bobby's journey and how he became the company's first security employee and help build a security team. Bobby also shares tips from a hiring manager's perspective.

    Hacking Into Security #11 - Cook to Threat Detection Engineer

    Play Episode Listen Later Jun 14, 2020 28:13


    In this episode, we catch up with Zachary Mikus a Threat Detection Engineer.Zach left school at a young age, worked in his family business as a landscape gardener, become a cook and is now working hunting bots. Zach shares his personal story about how he got his break into the industry, working in a SOC for one of Australia's largest banks and what he does in his current role.We discussed the skills Zach used working in a SOC and what he uses to hunt bots. Zach is passionate about supporting others and advises on what others can do to help in their career.

    Hacking Into Security #10 - OWASP and Application Security with Prashant Venkatesh

    Play Episode Listen Later Jun 7, 2020 25:21


    We catch up with Prashant Venkatesh, a specialist in Application Security and an OWASP Bay Area Chapter Lead.With over 10 years of experience in building teams and uplifting environments in Application Security, we discuss what Application Security means to Venkatesh, how he got started in the area, how others can get started and advice for organizations that want to increase their security.

    Hacking Into Security #9 - Pentester to CISO with Marc Bown

    Play Episode Listen Later May 30, 2020 29:43


    In this episode, we speak with Afterpay CISO Marc Bown.Marc's career started on the technical side as a Penetration Tester and has progressed to become CISO for one of the fastest-growing e-commerce payment companies in the market.We discuss the differences between working in the Bay Area and Australia, how he moved in his career and share advice for aspiring CISOs.

    Hacking Into Security #8 - Social Engineering with Maxie Reynolds

    Play Episode Listen Later May 24, 2020 42:12


    In this episode, we catch up with Maxie Reynolds, a specialist in Social Engineering. Maxie left Scotland at a relatively young age and has gone on to work around the world. She worked offshore on oil rigs, become a penetration tester at a big four consulting company, started her own business and is now working as a Social Engineering Consultant. We get to hear what about the type of engagements Maxie has worked on, the skills involved and advice for others wanting to learn about social engineering.

    Hacking Into Security #7 - System and Network Engineer to CISO - Abbas Kudrati, Chief Cybersecurity Officer at Microsoft

    Play Episode Listen Later May 19, 2020 25:59


    In this episode, we catch up with Abbas Kudrati. Abbas has an impressive career which has seen him work around the world and is now operating as a Chief Cybersecurity Officer at Microsoft. Abbas started off his career in a technical role and then progressed to working as a CISO for various organisations. He is incredibly generous with his time and gives back to the community in many ways, including as a part-time Lecturer for "Masters in Cyber Security" program at La Trobe University. In our conversation, Abbas gives practical advice for others working in technical roles that aspire to work in a CISO position.

    Hacking Into Security #6 - Entrepreneurship in cybersecurity - Casey Ellis from Bugcrowd

    Play Episode Listen Later May 8, 2020 48:29


    We catch up with Casey Ellis, founder of the number one crowdsourced security platform, Bugcrowd. Through our conversation, we go through the journey of starting a business, moving countries, multimillion-dollar raises and more. Casey also shares his advice to future founders.

    Hacking Into Security #4 - Recruitment Consultant to General Manager of a Penetration testing company - Ian White, ZX Security

    Play Episode Listen Later May 4, 2020 36:42


    Ian shares the insight of someone that has transitioned from working a Recruitment Consultant to General Manager of XZ Security, one of New Zealand’s leading penetration testing companies.He talks about his journey into security, discusses the skills required for a non-technical person working in a security company and what his company look for when hiring.

    Hacking Into Security #5 - The view from Talent Acquisition - Francisco “Disco” Morales from Canva

    Play Episode Listen Later May 3, 2020 25:37


    This episode is with Francisco “Disco” Morales who works in Talent Acquisition at Canva. Disco has helped Canva hire over 100 people and prior to this had a background in agency recruitment. He shares the views of someone working in a team that receive over 50,000 jobs applications a year.Disco recommends some tips that can help someone standout ad improve their chances when applying for a role.

    Hacking Into Security #2 - With Cairo Malet

    Play Episode Listen Later Apr 23, 2020 17:46


    This episode is with Cairo Malet.Cairo is a Cyber Risk Advisor working in Cyber Security Risk and Advisory for a major mining company. That isn't where her career started and we get to hear Cairo's journey from barista to working in an organisation that could have her performing security assessments on mining sites and ships.

    Hacking Into Security #3 - Starting a business - With Louis Nyffenegger (CVE connoisseur @PentesterLab)

    Play Episode Listen Later Apr 20, 2020 30:51


    This episode is with Louis Nyffenegger, founder of PentesterLab, one the best training grounds for newbies and experienced professionals to enhance their web application security skills.Louis shares his story of how he got into security and then what it took for him to convert a passion into a business whilst working as a Security Engineer at Fitbit.

    Hacking Into Security #1 - With Chris Rock

    Play Episode Listen Later Apr 16, 2020 32:07


    This episode is with Chris Rock.Chris has been active in the security industry for over the last 25+ years. Chris presented I will Kill you at Defcon 23 and How to Overthrow a Government at Defcon 24. Chris ran a security penetration testing company for 10 years.Chris Rock is now CISO and co-founder of SIEMonster. SIEMonster was started in 2015 by a team of hackers.After years working in penetration testing, they realized that there was a gap in the SIEM market for an affordable scalable open-source alternative to existing solutions.Chris talks about his journey from an 11-year-old hacker to working in banks, pentesting around the world and starting his own company which is now global.

    Claim Hacking into Security - Career Talks

    In order to claim this podcast we'll send an email to with a verification link. Simply click the link and you will be able to edit tags, request a refresh, and other features to take control of your podcast page!

    Claim Cancel