Geek will only get you so far ...
Have you noticed that some people in infosec simply have more success than others, however they may define success? Get the newly released book and learn valuable skills, ones most people never develop nor even understand.
About Ted Demopoulos
Ted Demopoulos’ professional background includes well over 3 decades of experience in Information Security and Business, including over 30 years as an independent consultant. Ted helped start a successful information security company, was the CTO at a “textbook failure” of a software startup, and has advised several other startups. he is a frequent speaker at conferences and other event, author of the forthcoming Infosec Consulting 101, author of Infosec Rock Star: How to Accelerate Your Career Because Geek Will Only Get You So Far and two other books. Ted conducts leadership and information security Bootcamps for The SANS Institute, and is the principal of Demopoulos Associates, a consulting organization specializing in information security
Testimonials
"Ted, I have known you for nearly 30 years – yes, that long – and I am not sure I have ever shared with you how much of a mentor you have been to me. I would probably not be where I am right not if I had not known you, and I want everyone to know what formidable knowledge, wisdom and FUN you bring around you. "
“Ted, to those about to rock, I salute you … and always enjoy listening and learning from you. I always pickup new tips and tricks.”
Getting Started in Infosec Consulting proves that with proper tools and planning, transitioning into consultancy is possible. I have found the tips and ideas inspiring and motivated me to plan my journey and step into independent work. Ted shares his wealth of experience not only in terms of knowledge in the domain but from the shoes of someone who has ventured himself as an independent consultant and made it! Worth the read, and the application.
Latest Articles
International Travel paid by Work: How to Make it Happen!
I love to travel, especially internationally, and greatly prefer to have work pay for it. I've been able to make this happen both as an employee and as a consultant.
If having your job or a client fly you to say Paris or Sydney or similar, and then taking a few days off while you're there sounds like a great thing, here are a few techniques that have worked for me and others!Business travel can and should be combined with please whenever possible!
Last year among other places I got to Copenhagen, London, Krakow, The Azores, The Canary Islands, Amsterdam, Barcelona, Bahrain, Qatar, Munich, and more. Don't get me wrong, I worked my butt off, and also enjoyed myself, very often with a few days off!
Don't get me wrong, I worked my butt off, and also enjoyed myself, very often with a few days off!
#BusinessTravel #WorkTravel #Travel
Detection Oriented Security Architecture, with Kevin Fiscus
Detection Oriented Security Architecture
Risk can be defined as the likelihood that a threat exploits and vulnerability causing harm. To reduce risk, at least one factor in that definition must be reduced. There is little that can be done, in most cases, to reduce the threat leaving us with vulnerabilities and harm.
Security programs and security professionals have spend decades attempting to substantially reduce risk associated with vulnerabilities without significant success. As a result, we are left with attempting to reduce harm.
According the recent Ponemon Institute Cost of a Data Breach studies, one of the biggest factors in determining breach cost is dwell time: the amount of time an attacker is present in the network before detection, therefore reducing dwell time can significantly reduce breach cost and thus reduce overall risk.
The obvious goals therefore becomes to detect and respond to attacks as quickly as possible. This goal has resulted in myriad technologies that focus on "detection and response" such as EDR, ITDR, NDR, XDR, and SOAR. Unfortunately, if we achieved the goal of rapid detection and immediate response, we would actually be making our security worse and giving the attacker a significant advantage.
In this webinar we will discuss why automated detection and response is a concept that will always fail and we will discuss what a truly detection oriented security architecture would look like.
#detectionEngineering #infosec #blueteam
Consulting: Can You Get Clients from LinkedIn ?
Do people ever just find consultant's profiles on LinkedIn and hire them?
Not "can you connect with people and as soon as they accept your connection hassle them!"
I know people attempt this constantly (and it is very annoying).
It's possible but not common. Remember the most likely clients for consultants are people they've worked with before. Referrals are also very common.
But it is possible that clients will find you online and approach you directly - although for most it's uncommon, unless ... You have some incredibly specialized skills.
The 3 Most Influential Books (I’ve read in a long time)
Here are the three most influential books I’ve read in a long time, possibly ever. It might sound like hyperbole to say they’ve changed my life, but they absolutely have significantly influenced my life in a positive way.
Links to all three are below:
https://teddemop.com/linchpin Linchpin by #SethGodin
https://teddemop.com/launchbook Launch by #JeffWalker
https://teddemop.com/BestYearEverBook Your Best Year Ever by #MichaelHyatt
Linchpin got me excited to do important work, important to me and to many others.
Launch gave me a formula (or blueprint if you prefer) to use to do and help release this work to the world, based on time tested and scientifically valid research and principles.
That’s all good and well, but without some organization and planning nothing happens.
I’ve never put much effort, very little in fact, in planning for myself yet I’ve done pretty well.
Interestingly I’ve long done strategic planning for clients, extremely well based on feedback and results, but haven’t focused on it for myself, for my career and life.
Your Best Year Ever by Michael Hyatt changed all that!
It has a simple and very flexible framework that simply works! A framework that among other things to set and move towards goals important to you while letting you have flexibility and freedom going forwards.