“Dear Lesley, I’ve been in a MSSP Security Operations Center (SOC) for a few months as my first cybersecurity job. The work is monotonous, I have access to only a few SIEM tools, and most of what I do is handle repetitive tickets for a ton of customers all by myself on awkward shifts. I… Read More Ask Lesley: How Much Should SOC Work Suck?
With the surplus of ransomware attacks consistently increasing, I have unfortunately witnessed another increase – in shoddy and predatory cybersecurity incident response firms with good SEO taking advantage of victims. In some cases this may be opportunistic, and in others simply a side effect of the shortage of senior and principal level incident responders in… Read More Reasonable IR Team Expectations
Lesley, I am having the hardest time getting my foot in the door in an investigative role. I have spent almost 4 years at the same job, in the same role, and cannot find a way to transition out of the operations side of the house. I went into operations with the intent of doing… Read More Ask Lesley: From Ops to DFIR, a Tough Transition
I’m thrilled to announce that PancakesCon 2 will be Sunday, March 21, 2021. It will once again be 100% free and virtual. Call for volunteers (logistics, CFP review) are LIVE. Follow pancakescon.com or @pancakescon on Twitter for updates.
For the past decade, I have listened to a number of stories from a minority of cybersecurity professionals I talk to about unbelievably hostile and abusive workplaces. More insidious to me, are the workplaces that “pass” as okay on paper, but are continually undermining, failing, and gaslighting their junior employees. Unfortunately, it’s often harder for junior people to judge that they are not being treated fairly than in cases of extreme abuse.… Read More About Cybersecurity Management and Expectations
Folks often approach me with a question along the lines of, “How do I learn ICS security?” I’ve already talked about the question with regards to general cybersecurity, so let me take a crack at it. There are a lot of parallels between that question and, “How do I get into infosec?”. I can help… Read More So You Want to Learn ICS Security…
This page is archived from PancakesCon 2020. If you are resolving to this page, please clear your DNS cache and visit https://pancakescon.wordpress.com/ PancakesCon 2020 Thank you for your attendance and support; see you next time! Media coverage: https://www.csoonline.com/article/3533422/virtual-security-conferences-fill-void-left-by-canceled-face-to-face-events.html Info and CFP #PancakesCon is an impromptu, virtual hacker con which occurred on Sunday 3/22/2020, from 9AM-6PM… Read More PancakesCon 2020: Quarantine Edition
Jan 23, 2020 SCADA vulnerabilities, nation/state actors, and a host of other IT security issues factor heavily in the role of Principal Incident Responder Lesley Carhart. Episode 6 of “AVANT Technology Insights with Ken Presti” shows you where the IT Security “puck” is going.
I discuss the trials and tribulations of trying to bring IT cybersecurity and Operational Technology (ICS) teams together to tackle new threats.