Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast

Andre McGregor of ForceMetrics shares his incredible journey from reluctant FBI recruit to cybersecurity entrepreneur. Despite initially declining the FBI's recruitment call, Andre went on to become a special agent, tackling high-profile cybercrime cases involving nation-state actors like China, Russia and Iran. Growing up in marginalized communities shaped his commitment to creating safer police-community interactions, leading him to develop ForceMetrics — a platform that gives law enforcement officers real-time contextual data to make better decisions and de-escalate situations. This episode dives deep into cybercrime investigation techniques, the challenges of building secure law enforcement technology, and how data can transform public safety.

0:00 - Intro to today's episode
1:36 - Cybersecurity Salary Guide
2:31 - Meet Andre McGregor
4:03 - Early tech experiences and nonprofit work
10:50 - FBI recruitment story and cybercrime work
15:30 - Nation-state hacking investigations
25:28 - Creating ForceMetrics platform
29:45 - How ForceMetrics works in practice
38:48 - Technical security challenges
42:00 - Future of AI in law enforcement
43:00 - Career advice for security professionals
47:20 - Best career advice received
49:20 - More about ForceMetrics and contact info

View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec's mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ's security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Ed Williams, Vice President of EMEA Consulting and Professional Services (CPS) at TrustWave, shares his two decades of pentesting and red teaming experience with Cyber Work listeners.

From building his first programs on a BBC Micro (an early PC underwritten by the BBC network in England to promote computer literacy) to co-authoring award-winning red team security tools, Ed discusses his favorite red team social engineering trick (hint: it involves fire extinguishers!), and the ways that pentesting and red team methodologies have (and have not) changed in 20 years. As a bonus, Ed explains how he created a red team tool that gained accolades from the community in 2013, and how building your own tools can help you create your personal calling card in the Cybersecurity industry!

Whether you're breaking into cybersecurity or looking to level up your pentesting skills, Ed's practical advice and red team “war stories,” as well as his philosophy of continuous learning that he calls “Stacking Days,” bring practical and powerful techniques to your study of Cybersecurity.

0:00 - Intro to today's episode
2:17 - Meet Ed Williams and his BBC Micro origins
5:16 - Evolution of pentesting since 2008
12:50 - Creating the RedSnarf tool in 2013
17:18 - Advice for aspiring pentesters in 2025
19:59 - Building community and finding collaborators
22:28 - Red teaming vs pentesting strategies
24:19 - Red teaming, social engineering, and fire extinguishers
27:07 - Early career obsession and focus
29:41 - Essential skills: Python and command-line mastery
31:30 - Best career advice: "Stacking Days"
32:12 - About TrustWave and connecting with Ed

About Infosec
Infosec's mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ's security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Infosec instructor Wilfredo Lanz joins Cyber Work Hacks to break down the critical differences between the Azure AZ-104 certification for cloud administrators and the AZ-500 certification for cloud security professionals. Wilfredo explains why these complementary certifications can supercharge your cybersecurity career and emphasizes that cloud skills aren't optional in today's tech landscape. Whether you're in government, healthcare, finance or any other sector, cloud proficiency is quickly becoming mandatory for all cybersecurity professionals.

0:00 - Intro to cloud certifications
1:00 - Cybersecurity Salary Guide promo
1:35 - Meet Wilfredo Lanz and intro to Azure certs
2:06 - Azure vs. AWS and other cloud platforms
4:45 - Industries favoring Azure (government, healthcare, finance)
7:00 - AZ-104 Administrator vs. AZ-500 Security Engineer certifications
9:31 - Why all cybersecurity professionals need cloud skills
10:30 - "Cloud is the present and future" — career implications
11:45 - Wrap up and final thoughts

View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec: Infosec's mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ's security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Today on Cyber Work Hacks, Infosec Boot Camp instructor Wilfredo Lanz discusses the importance of Microsoft Azure certifications for IT and security professionals. With over 90% of businesses moving to the cloud, understanding how to administer cloud resources is crucial. Wilfredo highlights the differences between the Azure Administrator Associate and Azure Security Engineer Associate certifications and how they can enhance career opportunities in IT, cybersecurity, project management and networking. Tune in to learn how cloud certifications can future-proof your career. And don't miss out on the free cybersecurity salary guide ebook linked in the description.

00:00 - The booming IT and cybersecurity job market
00:52 - Free cybersecurity salary guide
01:29 - Meet Wilfredo Lanz: Azure certification expert
02:20 - Azure administrator associate vs. Azure security engineer associate
04:53 - Importance of cloud certifications for IT and cybersecurity professionals
07:53 - Pursuing Microsoft Azure certs

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Today on Cyber Work, Sam Chehab, the head of security and IT at Postman, dives into API security and the intriguing concept of rogue AI agents. Chehab discusses the internal challenges posed by well-meaning developers, the potential threat of hackers using AI to create more sophisticated malware, and the evolving roles of development and security teams. The episode also navigates through Chehab's career, including his time at Nvidia and leading a zero-trust strategy deployment for Palo Alto Networks. Listeners will gain insights on integrating AI tools for API defense, the future of cybersecurity roles, and practical advice for breaking into the industry. Plus, learn about Postman's strategies and tools to ensure secure API development and management.

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

00:00 API security and rogue AI agents
00:45 Sam Chehab's background and career journey
03:54 Transition to data security
12:47 Implementing a zero-trust strategy at Palo Alto
20:06 Responsibilities at Postman
23:02 Understanding rogue AI agents
26:42 Ensuring API security and collaboration
27:34 Challenges in securing APIs
28:31 Postman's approach to API hygiene
29:39 The future of API security
34:42 Career advice for aspiring security professionals
39:18 The role of AI in API security
45:20 Postman and upcoming events
47:59 Outro

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

In this episode of Cyber Work, Ken Zalevsky, founder and CEO of Vigilant Ops, joins us to discuss the importance of a Software Bill of Materials (SBOM) in the medical device industry. Zalevsky shares how SBOMs provide transparency and critical security insights, akin to the ingredients list on food packaging, to help identify and defend against vulnerabilities. We also delve into Zalevsky's extensive career in healthcare cybersecurity, starting from his early tech interests influenced by his father to his pivotal role at Bayer Healthcare. The discussion covers the impact of legacy systems, current security trends, the integration of AI in medical device security, and valuable insights for those looking to build a career in this crucial sector. Tune in to learn more about medical device security and the latest in cybersecurity trends, and get some expert advice straight from a seasoned professional.

00:00 Understanding SBOMs in medical devices
04:20 The evolution of medical device security
07:22 Ken Zalevsky's journey in cybersecurity
09:28 Challenges in medical device security
13:06 The role of SBOMs in cybersecurity
15:56 Implementing SBOMs in organizations
18:28 Ken Zalevsky's role at Vigilant Ops
22:01 Technical aspects of SBOMs
27:14 Legacy devices and security measures
28:24 Manufacturer's role in device security
30:07 Healthcare industry's response to security threats
30:42 Impact of major breaches on policy
34:13 Generative AI and machine learning in healthcare security
40:22 Skills and certifications for healthcare security careers
46:46 Career advice and educational paths
49:04 About Vigilant Ops and their services
52:15 Outro

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Ross Young, CISO in residence at Team8, joins this week's Cyber Work episode to share insights from his fascinating career journey from the CIA to cybersecurity leadership. With over a decade of experience across intelligence agencies and major companies, Young discusses the rapidly evolving AI security landscape, predicts how AI will transform security roles and offers valuable career advice for cybersecurity professionals at all levels. Learn how security professionals can stay relevant in an AI-driven future and why continuous learning is non-negotiable in this field.

00:00 Intro
00:27 Ross Young's journey in cybersecurity
01:18 Cybersecurity job market insights
02:12 Ross Young's educational path
07:38 Experience at the CIA
10:38 Transition to the private sector
13:15 Current role at Team8
18:30 Daily life of a CISO in residence
22:12 Impact of AI on cybersecurity
25:23 Identifying phishing emails
25:49 New risks with AI models
27:08 Exploiting AI for malicious purposes
30:55 Defending against AI exploits
32:24 AI in security automation
33:30 Common mistakes in AI implementation
36:59 Future of cybersecurity with AI
43:18 Advice for security professionals
46:17 Career advice

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.

Get your FREE Cybersecurity Salary Guide: https://www.infosecinstitute.com/form/cybersecurity-salary-guide-podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

Today on Cyber Work, we welcome Weldon Dodd, Senior Vice President of Global Partnerships at Kandji. Dodd discusses a recent report highlighting why Apple devices are perceived as more secure than Windows systems in the event of a global software outage. He dives into the technical and social reasons behind these security differences, explores the challenges in securing different platforms and offers career advice for aspiring cybersecurity professionals. Learn why a commitment to continuous learning and focus is essential, and get insights into the growing role of Apple in the enterprise environment. This episode is packed with valuable tips for breaking into and advancing up the ladder in the cybersecurity industry.

00:00 Cybersecurity job market insights
02:03 Weldon Dodd's cybersecurity career journey
14:39 Joining Kandji and building teams
25:22 Kandji's report on Apple vs. Windows security
30:37 Mac as a target for malicious software
32:03 Windows vs. Mac: A bigger target
33:12 Apple's growing presence in enterprises
34:00 Sector-specific Apple adoption
36:49 Impact of the report on operating systems
39:21 Career paths in cybersecurity
44:46 Skills and certifications for entry-level cybersecurity roles
50:11 Advice for aspiring IT professionals
54:20 Best cybersecurity career advice received
58:17 About Kandji and its services
1:02:30 Outro

– View Cyber Work Podcast transcripts and additional episodes: https://www.infosecinstitute.com/podcast/?utm_source=youtube&utm_medium=podcast&utm_campaign=podcast

About Infosec
Infosec’s mission is to put people at the center of cybersecurity. We help IT and security professionals advance their careers with skills development and certifications while empowering all employees with security awareness and phishing training to stay cyber-safe at work and home. More than 70% of the Fortune 500 have relied on Infosec Skills to develop their security talent, and more than 5 million learners worldwide are more cyber-resilient from Infosec IQ’s security awareness training. Learn more at infosecinstitute.com.