Podcast appearances and mentions of sean gerber

Send us a textCheck us out at:  https://www.cisspcybertraining.com/Get access to 360 FREE CISSP Questions:  https://www.cisspcybertraining.com/offers/dzHKVcDB/checkoutGet access to my FREE CISSP Self-Study Essentials Videos:  https://www.cisspcybertraining.com/offers/KzBKKouvDive into the multifaceted world of data security controls with Sean Gerber as he unpacks CISSP Domain 2.6. The episode opens with a fascinating glimpse into the creative ingenuity of technology users—a student who managed to hack a TI-84 calculator to access ChatGPT during exams. This real-world example perfectly illustrates why robust data security controls are more crucial than ever in our interconnected world.Sean meticulously breaks down the three fundamental data states—data at rest, data in transit, and data in use—providing clear explanations of the unique protection mechanisms each requires. You'll discover why data is rarely truly "at rest" unless completely powered off and disconnected, and why this understanding is vital for comprehensive protection strategies. The discussion extends to emerging technologies like homomorphic encryption, which promises to keep data encrypted throughout all states, though it's still evolving.The heart of effective data protection lies in classification and labeling, and Sean offers practical advice on implementing these systems. Starting small with clearly defined data sets, standardizing nomenclature, and utilizing visual cues like color-coding are just a few of the actionable strategies shared. You'll gain insights into Digital Rights Management (DRM), Data Loss Prevention (DLP), and Cloud Access Security Brokers (CASBs)—three critical components of a comprehensive data security framework.Perhaps most valuable is Sean's emphasis on understanding organizational risk tolerance. As he eloquently puts it, "If you don't know the risk for your company, find out somebody who does." This perspective shift from pure protection to risk-aligned security can transform how security professionals approach their role and communicate with leadership.Whether you're studying for the CISSP exam or looking to enhance your organization's data protection strategy, this episode delivers practical wisdom drawn from real-world experience. Visit CISSP Cyber Training for additional resources, and remember—understanding data security isn't just about passing an exam; it's about becoming a more effective guardian of your organization's most valuable assets.Support the showGain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Sean Gerber reacts to Chris Hemsworth's comments about the prospects of another Thor film after Avengers: Doomsday (and Secret Wars). Sean also examines the newly announced dates for the D23 Expo and how Marvel Studios may approach that event and SDCC next summer. Then, it's time to open up the MCU Mailbag to answer listener questions about the audience's current relationship with the MCU, how the Thunderbolts* post-credits scene impacted the reception of The Fantastic Four: First Steps, hopes for future Marvel holiday specials, and Inhumans.

Send us a textCheck us out at:  https://www.cisspcybertraining.com/Get access to 360 FREE CISSP Questions:  https://www.cisspcybertraining.com/offers/dzHKVcDB/checkoutGet access to my FREE CISSP Self-Study Essentials Videos:  https://www.cisspcybertraining.com/offers/KzBKKouvNetwork security is the cornerstone of modern cybersecurity, and understanding its intricacies is essential for anyone preparing for the CISSP exam. In this comprehensive episode, Sean Gerber delivers a rapid review of Domain 4: Communications and Network Security, which constitutes 13% of the CISSP exam questions.The episode opens with a cautionary tale about a disgruntled Chinese developer who received a four-year prison sentence for deploying a logic bomb that devastated his former employer's network. This real-world example underscores the critical importance of proper employee termination procedures and privilege management—especially for technical staff with elevated access. As Sean emphasizes, "The eyes of Sauron" should be on any high-privilege employee showing signs of discontent.Diving into Domain 4, Sean expertly navigates through foundational concepts like the OSI and TCP/IP models, explaining how they standardize network communications and why security professionals must understand them to implement effective defense strategies. The discussion progresses through IP networking (both IPv4 and IPv6), secure protocols, multi-layer protections, and deep packet inspection—all crucial components of a robust security architecture.Particularly valuable is Sean's breakdown of modern network technologies like micro-segmentation, which divides networks into highly granular security zones. While acknowledging its power to limit lateral movement during breaches, he cautions that implementation requires sophisticated knowledge of software-defined networking (SDN) and careful planning: "It's better to start small than to go out and think of and get too big when you're dealing with deploying these SDN type of capabilities."Wireless security, content delivery networks, and endpoint protection receive thorough examination, with Sean emphasizing that endpoints are "your first line of detection" and advocating for comprehensive endpoint detection and response (EDR) solutions that go beyond traditional antivirus. The episode concludes with insights on voice communication security, contrasting traditional telephone networks with modern VoIP systems and their unique vulnerabilities.Whether you're preparing for the CISSP exam or looking to strengthen your organization's network security posture, this episode provides actionable insights backed by real-world experience. Ready to deepen your understanding of cybersecurity fundamentals? Subscribe to the CISSP Cyber Training Podcast and check out the free resources available at cisspybertraining.com to accelerate your certification journey.Support the showGain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Send us a textCheck us out at:  https://www.cisspcybertraining.com/Get access to 360 FREE CISSP Questions:  https://www.cisspcybertraining.com/offers/dzHKVcDB/checkoutGet access to my FREE CISSP Self-Study Essentials Videos:  https://www.cisspcybertraining.com/offers/KzBKKouvThe core principles of cybersecurity aren't just theoretical concepts—they're the practical foundation every security professional needs to master. In this deep-dive episode, Sean Gerber breaks down the critical components of Domain 1.2 of the CISSP exam, unpacking confidentiality, integrity, availability, authenticity, and non-repudiation in clear, actionable terms.Starting with breaking news about Microsoft ending Windows 10 support on October 14th, Sean highlights the urgent security implications for organizations still running this widely-embedded operating system. He emphasizes the importance of comprehensive inventory management—especially for IoT devices that may contain embedded Windows components—and the available extension options for critical systems.The heart of the episode delivers a comprehensive exploration of the CIA triad. Sean walks through each element with real-world examples: confidentiality through encryption and access controls; integrity via change management and validation processes; and availability through redundant systems and business continuity planning. But he doesn't stop there. The discussion expands to cover the DAD triad (Disclosure, Alteration, Destruction) which helps identify security failures, and the AAA framework (Authentication, Authorization, Accounting) that provides essential security controls.What makes this episode particularly valuable is Sean's practical advice drawn from 25 years of cybersecurity experience. He emphasizes the importance of defense-in-depth strategies, network segmentation, and prioritizing critical systems rather than attempting to fix everything at once—"eating the elephant one toenail at a time." His methodical approach helps listeners understand not just the concepts themselves, but how to implement them effectively in real-world environments.Whether you're preparing for the CISSP exam or looking to strengthen your organization's security posture, this episode provides the foundational knowledge and practical strategies you need. Visit CISSP Cyber Training for free study materials, practice questions, and mentoring options to accelerate your cybersecurity career.Support the showGain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Send us a textCheck us out at:  https://www.cisspcybertraining.com/Get access to 360 FREE CISSP Questions:  https://www.cisspcybertraining.com/offers/dzHKVcDB/checkoutGet access to my FREE CISSP Self-Study Essentials Videos:  https://www.cisspcybertraining.com/offers/KzBKKouvDive deep into the critical world of configuration management with Sean Gerber as he unpacks Domain 7.3 of the CISSP exam. This episode balances theoretical knowledge with hard-earned practical wisdom, helping you not only pass your certification exam but implement effective security controls in real-world environments.Sean begins by exploring recent IT employment trends, highlighting the growing importance of specialized skills in networking, cloud, and software development. He notes how employers are increasingly valuing practical skills and certifications over traditional four-year degrees, creating new opportunities for security professionals.The heart of the episode examines the foundational elements of configuration management – from asset discovery to change control processes. Through relatable examples, Sean illustrates how unauthorized devices create security blind spots and why automated tools like SCCM are essential for maintaining secure environments. He breaks down the four key activities of security configuration management: identification, control, status accounting, and verification/audit.Perhaps most valuable is Sean's candid discussion of implementation challenges. Rather than presenting idealized scenarios, he acknowledges the messy reality of managing configurations in complex organizations with legacy systems. His practical advice includes focusing on operating systems and devices first before tackling the more challenging application landscape, and implementing changes through a multi-year approach rather than attempting overnight transformation.Ready to master configuration management and move closer to CISSP certification? Visit CISSPcybertraining.com where you can access training resources on a pay-what-you-wish basis. What makes this program truly special is that all proceeds support adoptive families through Sean's nonprofit foundation. Learn essential cybersecurity skills while contributing to a meaningful cause!Support the showGain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Send us a textThe cybersecurity landscape grows more complex each day, especially when it comes to protecting critical infrastructure. In this essential episode of the CISSP Cyber Training Podcast, Sean Gerber breaks down Domain 2 of the CISSP certification - a vital area representing approximately 10% of the exam questions that every security professional must master.Sean begins with a timely discussion of the recently discovered Honeywell Experion PKS vulnerability that could allow remote manipulation of industrial processes. This real-world example perfectly illustrates why understanding industrial control security is crucial across all sectors - from energy and water treatment to manufacturing and healthcare. The vulnerability serves as a sobering reminder that patching isn't always straightforward in environments that operate 24/7/365.Diving into Domain 2.1, Sean meticulously explains data classification fundamentals - how sensitivity levels are assigned based on business value, regulatory requirements, and potential compromise impact. He walks through the relationship between classification levels (public through highly confidential) and corresponding handling procedures. The podcast builds logically through ownership concepts, introducing essential roles like data owners, custodians, stewards, and asset owners.Perhaps most valuable is Sean's practical exploration of asset inventory management. Drawing from his extensive experience, he shares surprising stories of servers found in bathroom closets and emphasizes why knowing your asset locations isn't just good practice - it's essential for incident response and vulnerability management.The episode thoroughly covers the complete data lifecycle from collection through destruction. Sean explains data minimization principles, location considerations for sovereignty compliance, maintenance requirements, and proper destruction techniques. His discussion of data remnants highlights why simply deleting files is never sufficient for sensitive information.Sean wraps up with crucial insights on end-of-life system management and data protection technologies including encryption, DRM, DLP, and Cloud Access Security Brokers. His rapid review approach efficiently condenses critical knowledge while maintaining depth where it matters most.Whether you're preparing for the CISSP exam or seeking to strengthen your security program, this episode delivers actionable knowledge you can immediately apply. Visit CISSP Cyber Training for free study resources and take the next step in your cybersecurity journey today!Support the showGain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Send us a textCheck us out at:  https://www.cisspcybertraining.com/Get access to 360 FREE CISSP Questions:  https://www.cisspcybertraining.com/offers/dzHKVcDB/checkoutGet access to my FREE CISSP Self-Study Essentials Videos:  https://www.cisspcybertraining.com/offers/KzBKKouvSecuring SaaS environments and mastering security assessment techniques are critical skills for today's cybersecurity professionals. This episode delivers a powerful examination of Domain 6.3 of the CISSP certification, focusing on security testing methodologies that can make or break your organization's defensive posture.Sean Gerber begins with a startling statistic: 96.7% of organizations now use at least one SaaS application, yet many fail to properly secure these cloud-based services. When you migrate from on-premises solutions to SaaS offerings, your sensitive data moves from environments protected by your security infrastructure to those secured by third parties. This fundamental shift demands rigorous risk assessment processes. Sean provides practical guidance on evaluating SaaS providers, emphasizing critical areas like data encryption practices, multi-factor authentication implementation, account access controls, and comprehensive backup strategies.The heart of this episode explores essential testing methodologies every security professional should master. Black box testing techniques like penetration testing simulate real-world attacks without prior knowledge of system internals. Vulnerability assessments evaluate risk exposure by systematically identifying weaknesses. Dynamic analysis tests systems during operation, while code reviews catch vulnerabilities before deployment. Each approach serves a unique purpose in a comprehensive security program. Sean clarifies the crucial distinction between false positives (incorrectly identified vulnerabilities) and false negatives (missed vulnerabilities), explaining why the latter pose a significantly greater risk to organizations.Whether you're preparing for the CISSP exam or strengthening your organization's security posture, this episode provides the knowledge you need to implement effective security assessment strategies. Join our growing community of security professionals at CISSP Cyber Training, where you'll find additional resources to accelerate your cybersecurity journey while supporting a worthy cause – all proceeds go to a nonprofit supporting adoptive families. Take your security knowledge to the next level and make a difference!Support the showGain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Marvel Studios President Kevin Feige has had a lot to say during the press tour for The Fantastic Four: First Steps. Sean breaks down the Marvel chief's comments on FF, Spider-Man: Brand New Day, X-Men recasting, Blade still being alive, and more!   Hosted by ⁠⁠Sean Gerber⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Join us as we break down and review the last three episodes of Marvel Television's Ironheart! ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Join us as we break down and review the first three episodes of Marvel Studios' Ironheart!   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Send us a textCheck us out at: https://www.cisspcybertraining.com/Ethical dilemmas lurk around every corner in cybersecurity, ready to challenge even the most technically competent professionals. Sean Gerber tackles these moral minefields head-on in this thought-provoking episode focused on CISSP Domain 1.1, presenting fifteen real-world ethical scenarios that will test your professional judgment.The episode opens with crucial context about the New York Department of Financial Services (NYDFS) and its significant influence on cybersecurity standards in the financial sector. Sean explains how their recent bulletin addressing Iranian threats emphasizes essential security controls including multi-factor authentication and third-party risk management - requirements that extend well beyond the financial industry.Diving into the ethical scenarios, listeners will confront challenging questions: What would you do upon discovering a concealed data breach orchestrated by previous leadership? How should you handle a zero-day vulnerability when the vendor is notorious for slow responses? Is it ever appropriate to modify security logging standards when employees resist what they perceive as surveillance?Through each scenario, Sean walks through multiple possible responses, highlighting the correct ethical choice while acknowledging the complex organizational dynamics at play. The discussions reveal that ethical practice isn't just about knowing the right answer—it's about effectively implementing ethical decisions through proper channels, documentation, and constructive solutions.The episode offers invaluable guidance for anyone preparing for the CISSP exam or working in cybersecurity, demonstrating that while technical competence opens doors in this field, ethical judgment keeps those doors from slamming shut. As cyber threats evolve in complexity, the moral compass of security professionals becomes an increasingly critical asset in protecting organizations and their stakeholders.Ready to test your ethical judgment against CISSP standards? Visit CISSPcybertraining.com for 360 free practice questions and additional resources to strengthen both your technical knowledge and ethical reasoning.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Marvel Studios won't be putting on their main event presentation in the hallowed Hall H at San Diego Comic-Con this year. As big of a bummer as this may be, Sean discusses why it makes sense for Marvel and what we may still see from the company at SDCC next month. Sean also looks at some positive signs in the early presales for The Fantastic Four: First Steps as the stakes surrounding the film continue to grow.   Hosted by ⁠⁠Sean Gerber⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Get ready for Earth's Mightiest Holidays in 2026 and 2027! Let's break down the delays to Avengers: Doomsday and Avengers: Secret Wars, as there is much to unpack. Waiting seven more months for each of the next two Avengers movies may not sound like fun, but if a little more time allows the films to be the best versions of themselves, it will truly be a Merry Multiverse Saga for us all.   Hosted by ⁠⁠Sean Gerber⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Send us a textA shocking incident in Spain recently left 60% of the country's power grid dark in less than five seconds. Was it a cyber attack? The jury's still out, but this real-world event perfectly illustrates why understanding access controls and security mechanisms is critical for today's cybersecurity professionals.Sean Gerber, despite battling a cold that affects his voice, delivers a compelling analysis of the Spanish power grid incident before diving into essential CISSP domain four content. He highlights how smaller electrical providers might have fewer security resources, making them attractive targets, and emphasizes the growing importance of professionals who understand both operational technology and information technology security.The episode then transitions into practical CISSP exam preparation, exploring various types of access controls through real-world scenarios. Sean expertly distinguishes between preventative, detective, corrective, and deterrent controls, while also clarifying the differences between physical and logical security mechanisms. Particularly valuable is his breakdown of biometric authentication methods, pointing out how voice recognition (ironically demonstrated by his own cold-affected voice) proves less reliable than alternatives like iris scanning or fingerprinting.Understanding the nuances between Mandatory Access Controls (MAC) and Discretionary Access Controls (DAC), implementing proper identity proofing processes, and recognizing when compensating controls are needed are all critical CISSP concepts covered in this content-rich episode. Whether you're preparing for certification or working to strengthen your organization's security posture, these lessons apply directly to building effective defense-in-depth strategies. Ready to master these concepts and pass your CISSP exam? Visit CISSP Cyber Training for a proven blueprint guaranteed to help you succeed.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Send us a textSecurity regulations are changing dramatically in response to major breaches, and the implications for cybersecurity professionals are profound. Sean Gerber kicks off this episode with a career announcement, sharing his transition to independent consulting after 13 years with his previous employer—a move that highlights the evolving opportunities in the cybersecurity field.The heart of this episode examines the recent UnitedHealthcare breach, where attackers targeted Change Healthcare, a critical system processing 15 billion healthcare transactions annually. The February ransomware attack led to a $22 million ransom payment and disrupted approximately half of all pharmacy operations across the United States. This incident serves as a perfect case study in critical infrastructure vulnerability and has triggered a significant regulatory response from the Biden administration, which is now promising "tough, mandatory cybersecurity standards" for the healthcare industry.What does this mean for security professionals? Potentially stricter oversight, increased financial penalties, and perhaps most concerning—explicit executive liability for security failures. As Sean notes, these developments create an increasingly complex landscape where CISOs must navigate not just technical challenges but also regulatory expectations that might lack technical nuance.The episode transitions into a comprehensive examination of CISSP exam questions covering Domain 3.6, focusing on message integrity, digital signatures, and cryptographic hashing functions. Through fifteen detailed questions and answers, Sean breaks down essential concepts like the difference between checksums and hashing functions, the evolution from SHA-1 to more secure algorithms, and the role of certificate authorities in public key infrastructure. These technical foundations aren't just academic—they're the building blocks of systems that, when implemented correctly, prevent exactly the kind of breach that hit UnitedHealthcare.Ready to deepen your understanding of message integrity and prepare for the CISSP exam? Visit CISSP Cyber Training for videos, transcripts, and additional practice questions to help you master these critical concepts and advance your cybersecurity career.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Join us as we discuss Thunderbolts*, a very special and emotionally impactful film that breaks new ground for the MCU.   Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Send us a textThe rapid evolution of artificial intelligence and machine learning has created a pivotal moment for financial institutions. As these organizations race to implement AI solutions, they face both transformative opportunities and significant cybersecurity challenges that demand immediate attention.Sean Gerber draws from over 20 years of cybersecurity experience to demystify the complex intersection of AI, machine learning, and financial security. With his straightforward approach, Sean breaks down the fundamental differences between AI (the broader field) and ML (the subset that enables systems to learn from data without explicit programming), making these concepts accessible even to those without technical backgrounds.The central message resonates clearly throughout: AI must be developed and employed with a secure design approach from day one. Financial institutions that implement security as an afterthought rather than a foundation will inevitably face costly remediation down the road. Sean outlines practical security considerations including data anonymization, network segmentation, intellectual property protection, and AI-specific policies that organizations should implement immediately.Through real-world examples from JP Morgan, Bank of America, and Capital One, we see how leading financial institutions are already leveraging AI for legal contract reviews, fraud detection, customer engagement, and risk assessment—all while implementing varying degrees of security controls to protect their systems and data.Looking toward the future, Sean previews emerging trends including generative AI for threat analysis, federated learning approaches, and quantum-aware AI security that will reshape financial cybersecurity within the next five years. His practical action items emphasize building multidisciplinary teams spanning AI, cybersecurity, legal and business domains to ensure comprehensive implementation.Whether you're a CISO at a major bank or a security professional preparing for emerging challenges, this episode provides the strategic framework needed to navigate AI implementation securely. The message is clear: investing time and resources in proper security foundations now will determine whether AI becomes your competitive advantage or your greatest vulnerability.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Send us a textCybersecurity isn't just for enterprises—small and medium businesses face increasingly sophisticated threats with fewer resources to combat them. In this information-packed episode, Sean Gerber explores why cybersecurity matters critically for SMBs while delivering practical CISSP exam questions focused on Domain 8.3.Sean begins by examining how even non-tech businesses rely heavily on digital systems, making them vulnerable to attacks that could devastate operations. A ransomware incident targeting inventory management or employee scheduling could cripple a small business just as effectively as one targeting a financial institution. Business continuity planning—often overlooked until disaster strikes—becomes a critical safeguard that many small businesses simply don't consider until it's too late.The economic reality of cybersecurity for small businesses creates a challenging landscape. While virtual CISO services and managed security operations centers offer potential solutions, many remain financially out of reach for smaller organizations. This creates a significant vulnerability gap in our business ecosystem that security professionals must work to address.The episode then transitions into fifteen carefully crafted CISSP practice questions focusing on Domain 8.3, covering essential concepts like API security, content security policies, message queue poisoning, and the principle of least privilege in containerized environments. Each question explores real-world vulnerabilities while providing clear explanations about proper security approaches.Whether you're studying for the CISSP exam or working to improve your organization's security posture, this episode delivers actionable insights on identifying and mitigating common application security vulnerabilities. Subscribe to the CISSP Cyber Training podcast for weekly deep dives into cybersecurity concepts that will help you pass your certification exam and become a more effective security professional.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Join us as we break down the emergence of Mayor Kingpin in S1:E8 of Daredevil: Born Again!   Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Send us a textWondering how to tackle incident response questions on the CISSP exam? This episode delivers exactly what you need, walking through fifteen essential incident management scenarios that test your understanding of this critical domain.Sean Gerber breaks down the fundamentals of incident management, exploring how security professionals should approach detection, response, mitigation, and recovery. From distinguishing between legitimate security incidents and routine activities to prioritizing response efforts based on severity, each question targets a specific aspect of incident management that CISSP candidates must master.The questions systematically cover the incident response lifecycle, highlighting the importance of proper processes rather than blame-focused reactions. You'll learn why activating the incident response team should be your immediate priority upon detection, how to effectively categorize and prioritize incidents, and what constitutes valid mitigation strategies versus ineffective approaches. The episode also emphasizes the documentation requirements for incident reports and the value of capturing lessons learned for continuous improvement.What makes this episode particularly valuable is how it reinforces the CISSP mindset—understanding not just the technical aspects but the thought processes behind effective security management. Whether you're preparing for certification or looking to strengthen your practical knowledge of incident response, these question scenarios provide the framework you need to approach real-world security events with confidence. Check out the special offer at CISSPCyberTraining.com to continue your certification journey with expert guidance.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Send us a textCybersecurity incidents aren't a matter of if, but when. Are you prepared to respond effectively? Sean Gerber takes us through the complete incident response lifecycle, breaking down the seven essential phases every security professional must master. From developing comprehensive response plans to conducting effective post-incident analysis, this episode provides actionable guidance for both CISSP candidates and working cybersecurity practitioners.The stakes couldn't be higher for small and medium-sized businesses, with a staggering 43% of cyber attacks specifically targeting SMBs. Most lack adequate protection due to limited budgets and resources. Sean explores practical solutions including leveraging AI tools to develop baseline response plans, implementing critical security controls like multi-factor authentication, and establishing clear communication protocols for when incidents occur.What sets this episode apart is Sean's emphasis on the human element of security. "Every employee is a sensor," he reminds us, highlighting how proper training and awareness can transform your workforce into your first line of defense. He balances technical recommendations with strategic insights, including how to approach different types of incidents from ransomware to insider threats.Whether you're preparing for the CISSP exam or strengthening your organization's security posture, this episode delivers the perfect blend of theoretical knowledge and real-world application. The incident response process outlined here will not only help you pass certification exams but could mean the difference between a minor security event and a catastrophic breach.Ready to transform how you prepare for and respond to cybersecurity incidents? Listen now and discover why having a tested, comprehensive incident response plan is your best defense against the inevitable attack.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Join us as we break down Daredevil and Mayor Fisk's race to stop Muse in S1:E7 of Daredevil: Born Again!   Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Join us as we break down the return of Daredevil (and Kingpin) and so much more in this spoiler review of S1:E6 of Daredevil: Born Again!   Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Send us a textDigital signatures are coming to AI models as cybersecurity evolves to meet emerging threats. Google's collaboration with NVIDIA and HiddenLayer demonstrates how traditional security controls must adapt to protect machine learning systems vulnerable to new forms of tampering and exploitation. This essential evolution mirrors the broader need for robust security validation across all systems.Security control testing forms the foundation of effective cybersecurity governance. Without proper validation, organizations operate on blind faith that their protections actually work. In this deep dive into Domain 6.2 of the CISSP, Sean Gerber breaks down the critical differences between assessments, testing, and audits while exploring practical approaches to vulnerability scanning, penetration testing, and log analysis.Vulnerability assessments serve as your first line of defense by systematically identifying weaknesses across networks, hosts, applications, and wireless infrastructure. The Common Vulnerability Scoring System helps prioritize remediation efforts, but understanding your architecture remains crucial - a low-scoring vulnerability in a critical system might pose more risk than a high-scoring one in an isolated environment. Meanwhile, penetration testing takes validation further by simulating real-world attacks through carefully structured phases from reconnaissance to exploitation.As organizations increasingly embrace APIs, ML models, and complex software architectures, security testing must evolve beyond traditional boundaries. Code reviews, interface testing, and compliance checks ensure that security is built into systems from the ground up rather than bolted on afterward. The shift toward "security left" integration aims to catch vulnerabilities earlier in the development lifecycle, reducing both costs and risks.Ready to master security control testing and prepare for your CISSP certification? Visit CISSPCyberTraining.com to access comprehensive study materials and a step-by-step blueprint designed to help you understand not just the exam content, but the practical application of cybersecurity principles in real-world scenarios.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Join us as we celebrate the team-up we didn't know we needed, Matt Murdock and Yusuf Khan, in this spoiler review of S1:E5 of Daredevil: Born Again!   Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Send us a textCybersecurity professionals, alert! A dangerous Chrome zero-day vulnerability demands your immediate attention. In this action-packed episode, Sean Gerber breaks down CVE-25-2783, a critical security threat that allows attackers to execute remote code simply by having users click malicious links. Though initially targeting Russian organizations, this exploit threatens Chromium-based browsers worldwide—including Chrome, Edge, Brave, Opera, and Vivaldi. Don't wait—patch immediately!The heart of this episode delivers 15 expertly-crafted CISSP practice questions focusing on Domain 4.2 network security concepts. Sean methodically explores essential topics including router load balancing capabilities, electromagnetic interference vulnerabilities, NAC implementation benefits, and optimal firewall configurations. Each question peels back another layer of network security knowledge, from identifying mesh topologies as offering superior fault tolerance to understanding how protocol analyzers diagnose VLAN performance issues.Advanced concepts receive equal attention with clear explanations of UDP timeout values in stateful firewalls, proper NIPS deployment strategies, VPN protocol security comparisons, broadcast storm mitigation techniques, and wireless security standards. Sean's straightforward breakdown of why WPA3 Enterprise provides superior protection and how ARP poisoning facilitates man-in-the-middle attacks transforms complex technical material into accessible knowledge that sticks.Whether you're actively studying for the CISSP exam or simply looking to strengthen your network security fundamentals, this episode delivers precision-targeted information in an engaging format. Visit CISSP Cyber Training for complete access to all practice questions covered and accelerate your certification journey today!Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Join us as we break down the reunion of Matt Murdock and Frank Castle, and so much more in this spoiler review of S1:E4 of Daredevil: Born Again!   Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Join us as we break down the trial of Hector Ayala in this spoiler review of S1:E3 of Daredevil: Born Again!   Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Send us a textToday's cybersecurity landscape demands vigilance on multiple fronts, something Sean Gerber demonstrates masterfully in this information-packed episode focused on CISSP Domain 3 security principles.The episode opens with a critical security alert regarding Cox modems—a vulnerability potentially affecting millions of American households and businesses. While quickly patched by the company, this real-world example perfectly illustrates one of Gerber's key points: exposed APIs represent a massive blind spot in organizational security posture. "Many organizations truly do not understand how many API connections they have leaving their organization," Gerber warns, identifying this as a primary vector for data exfiltration.Moving into the heart of the episode, Gerber walks listeners through fifteen challenging CISSP exam questions covering encryption standards, security principles, and practical implementation scenarios. Each question reveals essential security concepts—from why AES-256 should be prioritized over proprietary encryption algorithms to how abstraction and access controls function together in database security. The explanations break down complex topics into digestible, exam-ready knowledge while providing practical context for real-world application.Perhaps most valuable is Gerber's focus on security principles working in concert rather than isolation. Defense-in-depth, secure defaults, data hiding, and integrity verification through hashing are explained through scenarios security professionals encounter daily. Whether you're preparing for the CISSP exam or looking to strengthen your organization's security posture, this episode delivers actionable insights and critical thinking frameworks to elevate your cybersecurity approach. Visit cissp cyber training.com to access these questions and additional resources that will help you pass the CISSP exam on your first attempt.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Join us as we break down the first two episodes of Daredevil: Born Again!   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Captain America: Brave New World may not have lived up to everyone's expectations (we liked it), but there are reasons to believe that Marvel Studios will still be able to call 2025 a major success. We explain why Thunderbolts* and The Fantastic Four: First Steps will likely be better (and received better) than the MCU's first theatrical installment of the year.   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Andy is joined by Sean Gerber to look back at and review season 1 of Creature Commandos. They also discuss the director, budget, and rumors of the upcoming Clayface film. Find more Holy BatCast on the internet: Web | Twitter | Facebook | Instagram | YouTube | Patreon   Rate, review, & subscribe to Holy BatCast on: Apple Podcasts | Spotify | Google Play | iHeartRadio | Stitcher | TuneIn   Your feedback is appreciated. Send emails to holybatcast@rf4rm.com Save up to 48% on Magic Mind at MagicMind.com/Holy20.

Send us a textUncover the secrets to mastering firewalls and advancing your cybersecurity career with insights from the CISSP Cyber Training Podcast. Ever wondered how a simple firewall can be your strongest ally against a $12 billion threat that financial firms have faced over the past two decades? Join me, Sean Gerber, as we navigate the indispensable role of firewalls within cybersecurity, especially for those gearing up for the CISSP exam. This episode promises an enriched understanding of firewalls, from regulatory compliance to integrating next-generation firewalls in cloud environments like Azure and AWS.The discussion extends beyond technicalities, emphasizing the importance of understanding the entire security chain for effective implementation and maintenance of firewalls. By exploring real-world scenarios, such as the implementation of government-mandated firewalls in Sri Lanka, we highlight how robust logging systems and regulatory compliance are vital in shaping a secure network architecture. The complexities of handling advanced intrusion attempts with next-generation firewalls are unraveled, showcasing their application-layer protection and their importance in achieving a resilient security posture.Engage with practical advice on marketing your cybersecurity expertise within your organization and strategies for transitioning into security roles. We also touch on key managerial concepts essential for conquering the CISSP exam. From tackling practice questions to understanding the nuances of firewall architecture, this episode serves as a comprehensive guide to excel in your cybersecurity journey. With a focus on balancing innovative technology with organizational needs, listeners are encouraged to think beyond binary solutions and embrace a managerial mindset in their path to becoming cybersecurity leaders.Gain exclusive access to 360 FREE CISSP Practice Questions delivered directly to your inbox! Sign up at FreeCISSPQuestions.com and receive 30 expertly crafted practice questions every 15 days for the next 6 months—completely free! Don't miss this valuable opportunity to strengthen your CISSP exam preparation and boost your chances of certification success. Join now and start your journey toward CISSP mastery today!

Join us as we share our thoughts and feelings about the official teaser for Marvel Studios' The Fantastic Four: First Steps!   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

It's time for our annual State of the MCU address! On its way back up from “a bit of a low point” after Deadpool & Wolverine, 2025 looms large as an important year for the MCU to reconnect with its audience and build toward the culmination of The Multiverse Saga. Join us as we discuss what's at stake and preview the entire Marvel Studios, Television, and Animation slate for 2025! Your Friendly Neighborhood Spider-Man (out now) Captain America: Brave New World (Feb 14) Daredevil: Born Again (March 4) Thunderbolts* (May 2) Ironheart (June 24) The Fantastic Four: First Steps (July 25) Eyes of Wakanda (August 6) Marvel Zombies (October) Wonder Man (December)   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Andy is joined by Sean Gerber to discuss the first two episodes of James Gunn's Creature Commandos as well as discuss Gunn's latest comments about the upcoming Lanterns. Find more Holy BatCast on the internet: Web | Twitter | Facebook | Instagram | YouTube | Patreon   Rate, review, & subscribe to Holy BatCast on: Apple Podcasts | Spotify | Google Play | iHeartRadio | Stitcher | TuneIn   Your feedback is appreciated. Send emails to holybatcast@rf4rm.com

Join us for our spoiler breakdown of the finale that proves that it really has been Agatha All Along!   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Join us as we reach the end of The Witches' Road (but not this series) in our latest Agatha All Along spoiler review!   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

The legendary Patti Lupone powers the stellar seventh episode of Agatha All Along. Join us for this spoiler breakdown!   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

We discuss how William Kaplan became Billy Maximoff and how this impacts the journey down The Witches' Road in our spoiler breakdown of the sixth episode of Agatha All Along! ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Nothing like a little rock and roll to destroy a multigenerational curse! We present our spoiler breakdown of the fourth episode of Agatha All Along! ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Break out the Ouija board and listen along to our spoiler review of of the fifth episode of Agatha All Along! ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Time to travel The Witches' Road and experience our first trial! We explain why Sharon is the real MVP as we present our spoiler breakdown of the third episode of Agatha All Along!    ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

We've got our first look at Thunderbolts* and we have thoughts! We examine Yelena's search for fulfillment, Bucky keeping an eye on (don't call her) Val, which side Sentry is on, Taskmaster's survival odds, and more. Join us as we break down one of our favorite Marvel Studios trailers in recent memory!   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Yes, we're still talking about Deadpool & Wolverine because of course we are! In this episode, we turn our attention to the future! Join us as we discuss what's next for Deadpool, Wolverine, Cavillrine, X-23, Blade, The Gambit, Elektra, Anchor Beings, and more! ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Sean examines several questions surrounding the return of Robert Downey Jr. to the MCU, this time as Doctor Doom (?) in Avengers: Doomsday and Avengers: Secret Wars (and perhaps beyond). This includes the potential motivations behind this decision and the intense responses from fans, both positive and negative. There's a lot to process here.   ​​Hosted by ⁠⁠Sean Gerber⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Deadpool & Wolverine has arrived as a brilliant, awesome, thrilling, hilarious, and emotional love letter to superhero-based cinema and one universe (in addition to the MCU) that will always matter and never be forgotten. Hear our thoughts in this comprehensive spoiler review (hint: we loved it… a lot)! ​​Hosted by ⁠⁠Sean Gerber⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

Sean shares his thoughts on the teaser trailer for Captain America: Brave New World, including Marvel Studios' decision to show the Red Hulk (and what they held back). ​​Hosted by ⁠⁠Sean Gerber⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

We're strolling down memory lane as we approach Deadpool & Wolverine, revisiting several Marvel mutant movies from the past 24 years. We've now arrived at what was billed as the end of Hugh Jackman's time as Wolverine… Logan! We discuss the journey to this film, much of which was about preparing to say goodbye. We then share our thoughts after a recent rewatch and how this movie maintains its special place in history even though Hugh Jackman has returned. Homework is never required in the MCU, but a little X-tra Credit may add extra enjoyment to D&W!   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!

We're strolling down memory lane as we approach Deadpool & Wolverine, revisiting several Marvel mutant movies from the past 24 years. We've now reached the end of the block. Deadpool 2 is our final X-tra Credit assignment (for now). Join us as we discuss the journey to a sequel that had to compete for attention in a way its predecessor had not. We also share our thoughts after a recent rewatch, which has one of our hosts feeling quite differently than he did in 2018. Homework is never required in the MCU, but a little X-tra Credit may add extra enjoyment to D&W!   ​​Hosted by ⁠⁠Sean Gerber⁠⁠ and ⁠⁠Paul Hermann⁠⁠. Follow MCU Fan Show on ⁠⁠Instagram⁠⁠ and ⁠⁠X (formerly Twitter)⁠⁠!