CYBER LIFE

Paweł Łakomski is an experienced IT professional with focus on IT security, cloud services and virtualization. Currently he is working for Microsoft where his responsibilities include Azure security and compliance. Paweł lives in Warsaw, Poland. In this episode, he shares his thoughts on using generative AI in cybersecurity and specifically in cloud security and SOCs.

Here are the resources he shares in this episode:

Microsoft Security Copilot: https://www.microsoft.com/en-us/security/business/ai-machine-learning/microsoft-security-copilot

Responsible AI principles: https://www.microsoft.com/en-gb/ai/responsible-ai

Microsoft AI-powered solutions: https://www.microsoft.com/en-gb/ai

Ask me a Question Here: https://topmate.io/ken_underhill

Get better at job interviews and build your confidence with this short course.

https://cyberken23.gumroad.com/l/jbilol/youtube20

If you need cybersecurity training, here are some good resources. Please note that I earn a small affiliate commission if you sign up through these links for the training.

Learn Ethical Hacking skills https://get.haikuinc.io/crk0rg6li6qd

Get Ethical Hacking skills, SOC Analyst skills, and more through StationX.

https://www.stationx.net/cyberlife

In this episode, Chris Foulon shares his insight into how organizations can build cyber security 🔐 talent pipelines to fill their skill gaps.

Connect with Chris:

https://cpf-coaching.com/

https://www.linkedin.com/in/christophefoulon

Chris holds multiple industry certifications, like CISSP. He's a dedicated security practitioner who's passionate about helping businesses tackle their cybersecurity risks while minimizing friction, resulting in increased resiliency. Chris also focuses on securing people and processes, all with a solid understanding of the technology involved.

Chris is also the brains behind CPF-coaching.com, where he helps cybersecurity professionals enhance their leadership skills. He's an International best-selling author of "Hack the Cybersecurity Interview", a podcast host of Breaking into Cybersecurity, and a dedicated volunteer with organizations such as InfraGard, Security Tinkerers, the Whole Cyber Human Initiative, and Boots2Books.

Chris answers questions like these:

- How can organizations build a strong cybersecurity talent pipeline?

- What creative ways can organizations explore to bridge the cybersecurity talent gap?

- How can collaboration 🤝 between academia, industry, and professional organizations contribute to a more skilled and versatile cybersecurity workforce?

- How do organizations nurture existing cybersecurity professionals to help them grow 🚀 their careers?

Don't forget to hit that like button, subscribe to the channel for more insightful cyber security content, and ring the notification bell so you never miss an episode.

Ask a Question Here: https://topmate.io/ken_underhill

Learn how to be successful in job interviews in less than one hour, so you can get higher job offers.

https://cyberken23.gumroad.com/l/jbilol/youtube20

If you need cybersecurity training, here are some good resources. Please note that I earn a small affiliate commission if you sign up through these links for the training.

Learn Ethical Hacking skills https://get.haikuinc.io/crk0rg6li6qd

Get Ethical Hacking skills, SOC Analyst skills, and more through StationX.

https://www.stationx.net/cyberlife

#cybersecurity #SecurityLeadership #infosec #collaboration #careergrowth #CultureBuilding

In this episode, Katoria Henry, a multi-award winning cloud security and technical resilience expert, discusses the importance of building a resilient cloud architecture.

Katoria covers the key concepts of cloud resilience, the challenges of building resilient cloud architectures, and best practices for overcoming these challenges.

Katoria also shares her personal experiences working with organizations to help them build resilient cloud architectures. She provides practical advice on how to design, deploy, and manage microservices-based applications in a way that minimizes the risk of outages and data breaches.

Whether you're a cloud architect, developer, or security professional, this video is essential viewing for anyone who wants to build resilient cloud applications.

Listen to this episode to learn:

What is cloud resilience?

The challenges of building resilient cloud architectures and how to overcome them.

Practical advice on how to design, deploy, and manage microservices-based applications in a way that minimizes the risk of outages and data breaches.

Get a discount on StationX cybersecurity courses here: https://www.stationx.net/cyberlife

cloud resilience, microservices, cloud architecture, cloud security, data breaches, outages

Cloud Phishing Attacks are on the rise globally. In this episode, you will learn from cybersecurity and cloud security expert, Ruchira Pokhriyal.

Ask me a question here: https://topmate.io/ken_underhill

Ruchira is a member of Amazon AWS's incident response (IR) team, where she plays a crucial role in maintaining security. Her impressive background includes expertise in web app penetration testing, cloud security, incident response, and digital forensics.

Ruchira is a well-rounded professional in the cybersecurity 🔒 world and is frequently seen at various conferences advocating for diversity, equity, inclusion, and supporting the LGBTQ+ and Neurodivergent communities.

The information shared in this episode is for educational purposes only. The views expressed here are Ruchira's personal opinions and do not reflect her employer's or any affiliated communities' official stances.

Cloud phishing encompasses a range of attacks that target cloud services like Google Drive, Dropbox, and OneDrive, aiming to deceive users into revealing their credentials. These attacks often come in the form of phishing emails, complete with fake login pages and a sense of urgency.

One common attack Ruchira discusses in this episode is credential phishing. Attackers impersonate trusted cloud service providers, sending emails claiming that the user's account has been compromised and demanding immediate attention. These emails contain links to fake login pages that closely mimic the legitimate ones, leading unsuspecting users to share their sensitive data.

She also talks about the CloudFormation Stack Phishing attack, which specifically targets AWS CloudFormation users. In this attack, the bad guys send emails impersonating AWS, tricking users into clicking malicious links that compromise their AWS CloudFormation resources.

Ruchira delves into Cloud Billing Phishing emails as well. These emails pose as billing departments of cloud service providers, creating a sense of urgency by claiming issues with your payment details. Users are directed to fake billing portals, where they unwittingly enter their payment information, providing attackers with sensitive data.

To protect against these attacks, Ruchira recommends several best practices. These include educating users about phishing attacks, verifying sender email addresses, avoiding clicking on suspicious links, enabling multi-factor authentication, and implementing email filtering and anti-phishing tools.

In this episode, you'll learn some prevention strategies and security best practices to fortify your cloud defenses. Whether you're an individual or an organization, this episode will empower you to take action and protect your digital assets.

📢 Hit that "Subscribe" button and ring the notification bell to stay updated on the latest Cyber Life podcast episodes, where I interview some of the top cybersecurity experts in the world.

And be sure to share this episode with your colleagues, friends, and family because together, we can build a safer digital world.

Ask me a question here: https://topmate.io/ken_underhill

In less than one hour, build confidence for your next job interview. Limited time 20% discount because you support the YouTube channel.

https://cyberken23.gumroad.com/l/jbilol/youtube20

Schedule a mock job interview call with me at this link. https://topmate.io/ken_underhill/411153

If you need cybersecurity training, here are some good resources. Please note that I earn a small affiliate commission if you sign up through these links for the training.

Learn Ethical Hacking skills https://get.haikuinc.io/crk0rg6li6qd

Get Ethical Hacking skills, SOC Analyst skills, and more through StationX.

https://www.stationx.net/cyberlife

Cloud phishing attacks, Phishing in cloud computing, Cloud email phishing, Cloud phishing prevention, Cloud security breaches, Cloud account phishing, Protecting against cloud phishing, Cloud credential phishing, Cloud data security, Cloud cybersecurity threats, Cloud-based email scams, Multi-factor authentication for cloud, Cloud billing phishing, CloudFormation Stack phishing, Detecting cloud phishing attempts, Cloud phishing awareness, Secure cloud data from phishing, Cloud service provider phishing, Cloud phishing best practices, Cloud phishing statistics

👕 Get your official Cyber Life swag here: https://bit.ly/CyberLifeSwag

Subscribe to the Cyber Life TV YouTube Channel

https://www.youtube.com/channel/UCWpsCeUK8Wz58mFOm1vvGug

Follow us on LinkedIn: https://www.linkedin.com/company/cyber-life

Follow us across other social media in the coming months as well.

👉 Facebook https://www.facebook.com/therealcyberlife

👉 InstaGram https://www.instagram.com/officialcyberlife/

👉 Twitter https://twitter.com/RealCyberLife

www.cyberlife.tv

In this episode, I will talk about the jobs that were tagged in a recent LinkedIn post. Also, the next several episodes of the podcast will focus on helping people find jobs in the industry.

Recruiters:

Renee Small

https://www.linkedin.com/in/reneebrownsmall/

Ric Christopher

https://www.linkedin.com/in/ric-christopher-a9570670/

Helen Hovey

https://www.linkedin.com/in/helen-hovey-hovey-7664a36/

Raj Mayank

https://www.linkedin.com/in/mayank-raj-84aa20117/

Pete Strouse (owns talent company)

https://www.linkedin.com/in/pete-strouse-b2193b42/

Neeraj Bhardwaj - [email protected]

Travis Ralph

https://www.linkedin.com/in/travis-ralph/

Eric W.

https://www.linkedin.com/in/-eric-w/

Kory Kiviharju

https://www.linkedin.com/in/kory-kiviharju-3ab457192/

Karl Sharman (not recruiter)

[email protected]

https://www.linkedin.com/in/karl-sharmancybersecurity/

Drew Klauser (not recruiter – offering resume review and practice interviews)

https://www.linkedin.com/in/drewklauser/

Craig Philip (friend has an ISSO role open)

https://www.linkedin.com/in/craig-philip/

John Haden (Trend Micro – not a recruiter but had knowledge of some openings)

https://www.linkedin.com/in/johndhaden/

Zolile Mvabaza (had some roles in South Africa)

https://www.linkedin.com/in/zolile-mvabaza-00599431/

Gargee Chatterjee (had a role in Ohio)

https://www.linkedin.com/in/gargee-chatterjee-869596174/

Caleb Mattingly (has roles open at Aleta Technologies)

https://www.linkedin.com/in/caleb-mattingly-a15b1343/

Nadica Hlechner (had some roles open in Austria)

https://www.linkedin.com/in/nhlechner/

Judy (JD) Cole

https://www.linkedin.com/in/judy-danielle-jd-cole-3ab787154/

Charlei P.

https://www.linkedin.com/in/charlei-p-8353a6a6/

COMPANIES

Mercury Systems

https://recruiting.adp.com/srccar/public/RTI.home?c=1162151&r=5000590579406&d=jobs.mrcy.com#/

Toronto-Dominion Bank

https://jobs.td.com/

Secure Strux (c...