Episodes
With the continuous evolution of ransomware and its pervasive risks to organizations’ very existence, new threats can be difficult to predict. That’s why, in this newest episode of Wait Just an Infosec, SANS Certified Instructors and leading ransomware authorities, Ryan Chapman and Mari DeGrazia are joined by guest Ann Pham, to break down what they see as the most important ransomware threats of 2024 and provide predictions about the evolving threat landscape.
Wait Just an Infosec is...
Published 01/24/24
Join SANS Senior Instructor, Blueprint podcast host, and blue team guru, John Hubbard, as he walks us through his cyber defense trends and predictions for 2024. John is joined by Ismael Valenzuela, Gene McGowan, and Mark Baggett - who will detail important insights and considerations of which you should be aware and which you can use to improve your organization’s cyber defense skills in the new year.
Wait Just an Infosec is produced by the SANS Institute. You can watch the full, weekly Wait...
Published 01/10/24
In an era characterized by the profound interconnection of technology, business strategy, and people within the realm of cybersecurity, the need for leaders with transformative capabilities has never been more critical. Join us as we explore the SANS Transformational Triad, an integral framework encompassing SANS' three most advanced security courses meticulously crafted for both existing and aspiring security leaders as well as Chief Information Security Officers (CISOs). This conversation...
Published 12/06/23
Join renowned cybersecurity experts Rob Lee and Jake Williams in a riveting livestream discussion as they delve into the complex world of offensive cyber operations amid ongoing nation-state conflicts. In this episode of Wait Just an Infosec, we’ll explore the critical role of cyber warfare in the Ukraine-Russia and other global conflicts, providing insights into how these digital battlegrounds shape modern warfare. Jake and Rob will unravel nations’ strategic use of offensive hacking...
Published 11/29/23
Join us for an exhilarating episode as we dive into the extraordinary journeys of two unconventional cybersecurity success stories. Discover how they harnessed unique skills to prosper and make a difference in their communities. Get inspired by their innovative paths and their commitment to giving back.
Wait Just an Infosec is produced by the SANS Institute. You can watch the full, weekly Wait Just an Infosec live stream on the SANS Institute YouTube, LinkedIn, Twitter, and Facebook channels...
Published 11/15/23
In this episode of Wait Just an Infosec, host Ryan Chapman is joined by Sherrod Degrippo to get a little weird and discuss some of the things they are seeing most recently in the cybersecurity space.
Wait Just an Infosec is produced by the SANS Institute. You can watch the full, weekly Wait Just an Infosec live stream on the SANS Institute YouTube, LinkedIn, Twitter, and Facebook channels on Tuesdays at 10:00am ET (2:00pm UTC). Feature segments from each episode are published in a podcast...
Published 11/09/23
Applying psychological principles to educating end users about cybersecurity is nothing new; security awareness teams have long relied on behavioral science to influence best practices. But “cyberpsychology” as a unique discipline is having a moment, and its implications go far beyond Cybersecurity Awareness Month.
Join us for this episode of Wait Just an Infosec. SANS’s Rich Greene moderate's a discussion with Juliet Okafor, JD, and Stacy Thayer, PhD, MBA, and answer questions like:
· ...
Published 11/01/23
Ed Skoudis, SANS.edu President and creator of many a cyber range, will take the reins as host to welcome a bevy of cyber range aficionados, for an episode packed with tips, tricks, and behind-the-scenes looks at all thing’s SANS cyber ranges.
Hear from range designers about what makes for a good challenge and how SANS ranges are fundamentally different from others. Then, get a look from our event operations team at how cyber ranges come together, and find out about special events like the...
Published 10/25/23
In a perfect world, what would the ultimate Security Culture team look like? What would be the different roles and skill sets on your team? Who would partner with whom, and what would their responsibilities and goals look like?
Join SANS Security Awareness Director Lance Spitzner and his guest, Molly McLain, expert in Security Culture, for this episode of Wait Just an Infosec. They’ll discuss security culture and human risk, a fitting topic for Cybersecurity Career Week.
Wait Just an...
Published 10/19/23
SANS Certified Instructor and ransomware expert Ryan Chapman hosts this episode of Wait Just an Infosec, exploring tactics for defending your organization against ransomware and cyber extortion.
Ryan welcomes his guest Brett Callow, threat analyst at cybersecurity solution provider Emsisoft – renowned in the ransomware community for building decryptors for many ransomware families over the years.
Wait Just an Infosec is produced by the SANS Institute. You can watch the full, weekly Wait...
Published 10/11/23
The ground floor for corporate cybersecurity awareness begins with the users. Or does it begin with corporate safeguards?
In this episode of Wait Just an Infosec, join SANS Certified Instructor Lodrina Cherne for a debate on one of the top Cybersecurity Awareness Month topics.
Later in the show, SANS Author and Certified Instructor Dean Parsons joins the broadcast to talk Security Awareness. Dean will discuss the SANS Security Awareness Maturity Model, the top risks to organizations today...
Published 10/04/23
"The more we learn about the tools that threat actors use — from discovery/enumeration tools all the way through ransomware payloads — the better we can understand how to detect, hunt, and prevent these actors from accomplishing their goals.
In this episode of Wait Just an Infosec, join hosts Ryan Chapman and Mari DeGrazia as they welcome reverse engineer and threat hunter Silas Cutler for a heated discussion. Have your physical notepad and/or notepad.exe ready to go, as this chat will...
Published 09/22/23
Detection engineering requires a unique combination of technical skills, threat research, and scientific method. Done properly, it allows us to better sift through the noise and identify information we can use to save time and manual effort.
In this episode of Wait Just an Infosec, SANS Certified Instructor Mark Orlando welcomes Zack Allen and Scott Foley for a discussion on common challenges in detection engineering, what it takes to get started, and why detection engineering done well can...
Published 09/13/23
Ed Skoudis, President of SANS.edu, joins us as host for another episode of Wait Just an Infosec, this time focusing on the infamous SANS Holiday Hack Challenge – SANS’s annual gift to the cybersecurity community.
Ed is joined by special guests to share about the history of this free festive cyber challenge, showcase how this year’s challenge is coming together, and offer insight from past winners that could put you ahead of the competition to succeed in the 2023 Holiday Hack Challenge.
Wait...
Published 08/30/23
Join Ryan Chapman, Mari DeGrazia, and their special guest, Will "BushidoToken" Thomas in an informal, freeform, and most of all, fun conversation on tracking ransomware actors over time. In this in-depth conversation, learn how tracking darknet forum posts, alias pivoting, correlating TTPs, identifying affiliations, and performing blockchain analytics lead to insights used by the InfoSec community to track ransomware actors and operators alike.
Then listen to SANS MGT433 Instructor John...
Published 08/23/23
"Cloud security continues to evolve at a rapid pace, and you need to stay abreast of the latest trends and services to ensure that you have the most up to date skills.
SANS Fellow Frank Kim hosts this episode of Wait Just an Infosec, talking about the different cloud journeys that you can take.
Wait Just an Infosec is produced by the SANS Institute. You can watch the full, weekly Wait Just an Infosec live stream on the SANS Institute YouTube, LinkedIn, Twitter, and Facebook channels on...
Published 08/17/23
Operational Technology (OT) security has never been more important. When beginning the work of securing your Industrial Control System (ICS) environment, there are five key controls you should consider.
In this episode of Wait Just an Infosec, ICS security pioneer and expert Robert M. Lee takes the chair as host, exploring which key controls to focus on in your OT environment but through the lens of Digital Forensics and Incident Response (DFIR).
Wait Just an Infosec is produced by the SANS...
Published 08/02/23
Ransomware actors continue to perpetrate their heinous crimes because, in aggregate, the attacks are lucrative. But what if ransomware became non-lucrative? What if that change came by way of sweeping regulations and mandates from governments around the world?
This episode of Wait Just an Infosec is hosted by ransomware subject-matter experts Ryan Chapman, who invites on Mr. Allan "Ransomware Sommelier" Liska, author of "Ransomware: Understand. Prevent. Recover." to discuss what it would...
Published 07/26/23
This week on Wait Just an Infosec, join host John Hubbard, who welcomes his guests from the ongoing special season of the Blueprint Podcast for an in-depth discussion of key points coming from MITRE’s book: 11 Strategies of a World-Class Cybersecurity Operations Center.
The book's authors Kathryn Knerler, Ingrid Parker, and Carson Zimmerman have been exploring top strategies for taking your security operations center to the world-class level all season long. As the team prepares to wrap up...
Published 07/19/23
In this episode of Wait Just an Infosec hosted by SANS editor Thomas Wolfe, SANS contributors Stacy Dunn and Rich Greene discuss their personal journeys into cybersecurity and the importance of skill versus background.
Join Stacy and Rich as they explore questions like; should employers dare to invest in potential over pedigree? Why did you choose cybersecurity? What was your profession before diving into cybersecurity? And would you hire a candidate based on their skill, regardless of...
Published 07/12/23
This week on Wait Just an Infosec, Lance Spitzner, Director of SANS Security Awareness, joins us as host to talk about an area of cybersecurity that often doesn’t get enough attention: security culture.
It’s become glaringly obvious that cybersecurity is no longer just a technical challenge, but a human challenge as well. If you’re not quite sure where to start when it comes to assessing your organization’s security culture, this podcast is an excellent place to start.
Joining Lance is...
Published 06/28/23
Ransomware continues to pose a serious threat to organizations, and the threat is only growing as ransomware attacks increase in sophistication and number.
This episode of Wait Just an Infosec is hosted by ransomware subject-matter expert Ryan Chapman, who invites on cloud DFIR SME Megan Roddie for a lively discussion aimed at helping arm our community with actionable tactics to combat ransomware attacks in cloud environments.
From the June 20th episode of Wait Just An Infosec
Wait Just an...
Published 06/21/23
The term “Dark Knight” has been used to describe people with a willingness to operate in gray areas and a commitment to combating injustice through unconventional means. In this episode of Wait Just an Infosec, meet the Dark Knight of open-source intelligence (OSINT), Matt Edmondson.
Matt Edmondson is a SANS Principal Instructor and author of SEC497: Practical Open-Source Intelligence (OSINT). In this interview style format with SANS Curriculum Director Rob Lee, Matt shares how he became...
Published 06/14/23
What is the future of AI use in cyber? How can red teams and blue teams use it in their own operations? Let’s find out together!
This week on Wait Just an Infosec, Editorial Contributor Thomas Wolfe steps in to host and welcomes Kirk Trychel, Senior Red Team Engineer III, Box, for a discussion on AI’s influence on offensive cybersecurity and malware development.
We’ll be playing a clip from Kirk’s recent talk at the SANS AI Cybersecurity Summit, titled “AI for Red Team & Malware...
Published 06/07/23