“Dear Lesley, I’ve been in a MSSP Security Operations Center (SOC) for a few months as my first cybersecurity job. The work is monotonous, I have access to only a few SIEM tools, and most of what I do is handle repetitive tickets for a ton of customers all by myself on awkward shifts. I… Read More Ask Lesley: How Much Should SOC Work Suck?
With the surplus of ransomware attacks consistently increasing, I have unfortunately witnessed another increase – in shoddy and predatory cybersecurity incident response firms with good SEO taking advantage of victims. In some cases this may be opportunistic, and in others simply a side effect of the shortage of senior and principal level incident responders in… Read More Reasonable IR Team Expectations
Lesley, I am having the hardest time getting my foot in the door in an investigative role. I have spent almost 4 years at the same job, in the same role, and cannot find a way to transition out of the operations side of the house. I went into operations with the intent of doing… Read More Ask Lesley: From Ops to DFIR, a Tough Transition
I’m thrilled to announce that PancakesCon 2 will be Sunday, March 21, 2021. It will once again be 100% free and virtual. Call for volunteers (logistics, CFP review) are LIVE. Follow pancakescon.com or @pancakescon on Twitter for updates.
Just a few brief thoughts on the initial reports of a SolarWinds Orion supply chain attack allegedly impacting a multitude of high profile government and corporate targets. We’re still waiting on quite a few important details; some great initial IOCs have been graciously provided by cybersecurity firm and attack victim FireEye. It unfortunately seems that… Read More Uh oh, Orion.
Dear Lesley, Do you have any tips on how an org can encourage a more diverse candidate pool for a senior and specialized infosec position? We are located in a mid-sized city and we want to do a better job at reaching a good cross-section of candidates. Thanks,Hiring Today Dear Hiring Today, It’s quite commendable… Read More Ask Lesley: “I want to hire more diverse senior people”
I spoke to the veteran’s group VetSec about Industrial Control System (ICS) cybersecurity careers.
I covered the current state of industrial cybersecurity for SC Media.
For the past decade, I have listened to a number of stories from a minority of cybersecurity professionals I talk to about unbelievably hostile and abusive workplaces. More insidious to me, are the workplaces that “pass” as okay on paper, but are continually undermining, failing, and gaslighting their junior employees. Unfortunately, it’s often harder for junior people to judge that they are not being treated fairly than in cases of extreme abuse.… Read More About Cybersecurity Management and Expectations
Folks often approach me with a question along the lines of, “How do I learn ICS security?” I’ve already talked about the question with regards to general cybersecurity, so let me take a crack at it. There are a lot of parallels between that question and, “How do I get into infosec?”. I can help… Read More So You Want to Learn ICS Security…