FIRST Impressions Podcast

In this episode, the FIRST Podcasters interview Peter Lowe, co-chair of the DNS Abuse Special Interest Group (DNS SIG). SIG member turned chair, Peter was also appointed as FIRST’s DNS Abuse “Ambassador” and has been tasked with representing the Forum within the DNS space. Peter chats about how DNS has become a hot topic in the public consciousness. He also explains why the SIG is trying to better define DNS Abuse from the point of view of incident responders and security teams. The SIG is creating a model for DNS stakeholders which will classify the different kinds of DNS Abuse and lists who can help with mitigation, prevention, and detection. Peter also touches on the future goals of the SIG and how to become a member.

In this episode, the FIRST Podcasters interview James Chappell and Krassimir Tzvetanov, co-chairs of FIRST’s Cyber Threat Intelligence Special Interest Group (CTI SIG). Along with a third co-chair, Adrian Hendrik, this group focuses on creating best practices and CTI training materials. With the goal of education, the SIG focuses on creating a common body of Cyber Threat knowledge and terms. Filling the gaps with thoughtful curriculum and organizing presentations, the SIG hopes to be a guiding light in the often difficult to navigate Cyber Threat Intelligence landscape. Interested parties are encouraged to join these efforts by applying for SIG membership at: https://www.first.org/global/sigs/cti/. The SIG also manages a CTI news mailing list, to join simply send an email to cti-sig-news-subscribe [at] first.org.

In this episode, the FIRST Podcasters interview Désirée Sacher-Boldewin who joined the FIRST Board of Directors in June 2022. Désirée has also taken on the role of co-coordinator for FIRST’s Special Interest Groups (SIGs). The SIGs cover a variety of topics with efforts to create new standards, map existing protocols, and make best security practices accessible to all. In 2023, the FIRST Impressions Podcast will highlight several SIGs to spotlight their achievements and aspirations. In this episode, Désirée touches on FIRST’s infrastructure improvements and shares her excitement to have her new position to spearhead future endeavors.

The FIRST Podcasters interview various team members of SentinelOne, a Diamond Sponsor of FIRSTCON22, which is a fully autonomous EDR solution for businesses and enables basic end point detection and response. The team shares insight into current investigations around the world as well as observable attacker patterns to stress the importance of taking a layered approach to security.

The FIRST Podcasters interview Maddie Stone of Google Project Zero on the current 2022 threat landscape and past Zero Day patterns. Maddie shares insight into how security professionals should work to make exploitations more difficult for attackers. With an evolving approach to Zero Days, we can create continuous solutions that treat patches as an opportunity to dive deeper.

In this episode, the FIRST Podcasters interview Rebecca Taylor of Secureworks on the importance and structuring of knowledge management. Rebecca provides valuable insight into the processes, frameworks, and templates that must be incorporated to create a roadmap of understanding and interconnected relationships. She stresses the value of feedback loops, work streams, and ongoing evolution.

In this episode, the FIRST Podcasters interview Crowdstike’s Senior Consultant, Emma Jones, on the importance of diversity. The umbrella term describes all sorts of efforts, from belonging to inclusion to equality and representation. Emma discusses how every day actions build in processes of trust and how thinking differently isn’t wrong; it’s imperative. How do we create a stage where everyone is qualified to speak? How do we make and share information in a way that is consumable to everyone? Tune in to find out.

In this episode, FIRST Podcasters interview FIRSTCON22 Speakers Raphaël Vinot and Quinn Norton on their tool Lookyloo. This open-source project was made to capture and record all the happenings on a website in real time. After a news website fell victim of malvertising, Raphaël and Quinn were called in to investigate. After a failed search for a tool to monitor the page, they created their own. Users of Lookyloo will have access to all the contents of a webpage mapped onto file tree as well as a created database of content and relationships to better help monitor and protect their sites.

In this heavy-hitting episode, FIRST Podcasters interview team Ukraine. The CERT-UA group share insights and revelations as they compare 2021 cyber incidents to 2022 and discuss attacker tactics. A large time frame of exploits came in early January, just as Ukrainians were receiving warnings of potential war. Sowing disorder, the disinformation campaign had a cyber component, as assailants attempted to convince the public that their government could not protect them or their data.

In this episode, FIRST Podcasters interview FIRSTCON22 Speaker, Vishal Thakur, who is the Director of DFIR at Ankura Consulting. Together the group discusses how to live in the on-going “ransomware pandemic” and the importance of practicing good security hygiene. Tune in for tips on how to successfully communicate and streamline communication when attacked and how tabletop exercises can better prepare your team for the next one.

In this episode, FIRST Podcasters interview FIRSTCON22 Diamond Speaker and Sponsor, Ganesh Pai who is the Founder and CEO of Uptycs, a cloud-native security analytics platform. Ganesh reflects on the magic of past FIRSTCONs as he looks forward to Dublin. With the focus on people over tools, Ganesh marvels at the opportunity to watch new industry professionals grow and shares a deeper dive into Uptyc’s osquery.

The FIRST Podcasters interview FIRSTCON22 Speakers, Thomas Schmidt and Jens Wiesner, on the subject of their conference session: "Securing the Supply Chain Together - Through Automation of Advisories and Vulnerability Management". Working in separate departments of the German Federal Office for Information Security (BSI), Schmidt and Wiesner are experts at standardizing advisories. Get a taste of their conference presentation as Martin and Chris grill them on remediation measures, mitigations, and what Common Security Advisory Framework (CSAF) does as a solution.

The FIRST Podcasters interview FIRSTCON22 Speaker, Helen Patton, on the context of her conference session: "How to Talk to a Board so the Board will Talk Back". Helen explains how perspectives may differ between security practitioners in the weeds of vulnerabilities and an upper management’s big picture point of view. Get a taste of Helen's conference presentation as she discusses how to establish and maintain board relationships and explain the value of risk to non-experts.

In this episode, Naama Ben-Dov, a strategy merger and acquisition manager at Microsoft, discusses a developer’s journey and the importance of planning for the future. Together with the podcasters, she points out how what a customer may want is often in opposition to what they need and in turn, encourages difficult conversations. Tune in to hear how the human psyche drives innovation. Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Iren Reznikov is a Cyber Investor based in Israel specializing in deep tech security startups. Together with the FIRST Impressions podcasters, she opens a dialogue into the lifecycle of acquisitions and how current political tensions may affect the cyber landscape.

Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Join the interview in progress! Chris, Martin, and Andy chat building teams, navigating within organizations, career change, and interpretive dance.

Andy Ellis is the Advisory CISO at Orca Security, where he helps companies embrace secure practices while leaping into the cloud era. He is a 2021 Inductee into the CSO Hall of Fame, an Operating Partner at YL Ventures, the CEO of leadership training company Duha, and was formerly a U.S. Air Force officer and the CSO at Akamai Technologies. You can find him on Twitter at @csoandy. Ellis has received The Spirit of Disneyland Award, The Wine Spectator's Award of Excellence, the Air Force Commendation Medal, and the CSO Compass Award.

Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Neil is Lead Architect in BBC Digital Distribution, focusing on website traffic management and supporting technologies. Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Chances are, you know Ed. Ed Skoudis is founder of the SANS Institute’s Penetration Testing Curriculum and creator of SANS NetWars, CyberCity, and the Holiday Hack Challenge. Learn more about the upcoming SANS Holiday Hack Challenge at https://www.sans.org/mlp/holiday-hack-challenge/. Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Chris catches up with Jen Ellis, VP of Community and Public Affairs at Rapid7 and talk ransomware. Recorded October 2021. Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Amanda Berlin is the CEO of Mental Health Hackers - a not for profit organization dedicated to educate information security professionals about the unique mental health risks faced by those in the field. Recorded August 2021. Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Kyle is a VP and Head of Security & IT at Copado. Kyle, Martin, and Chris talk security careers and share their own personal experiences. Recorded July 2021. Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Chris Gibson chats all things FIRST and how the organization is and has approached change during the pandemic. Recorded February 2021. Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Traci Wei, owner of CAPS, LLC and the meetings and conference director for FIRST, shares her experiences of transitioning events to virtual during the pandemic. Recorded November 2020. Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Desiree Sacher is a Security Architect for a Security Operation Center in the financial industry. Eireann Leverett is a Senior Scientist at Airbus Operations, co-author of Solving Cyber Risk, and Founder of Concinnity Risks. He is co-chair of the Cyber Insurance SIG, and the EPSS SIG. Recorded in December 2020. Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.

Serge is the chair of the board of directors of FIRST (Forum for Incident Response and Security Teams), the premier organisation of recognised global leaders in incident response. In this role he actively participates in discussion relating to cyber security at various policy bodies, in particular related to norm building. Episode recorded in December 2020. Disclaimer: The views expressed by the hosts and guests are their own and their participation on the podcast does not imply an endorsement of them or any entity they represent.