Talk With an Expert

Blueprint Podcast

Arm yourself with the most valuable and actionable content for advancing cyber defense skills. Hear from some truly interesting people changing the game in the blue teaming field, and ultimately learn actionable ways to take your cyber defense skills to the next level.

James Rowley: Creating and Running an Insider Threat Program | 26

TBD

PodcastBlueprint
Blueprint
  • 2025-03-27
  • 1 hrs 20 mins
  • Stephen Sims & Jon Gorenflo
Listen now

How Phishing Resistant Credentials Work with Mark Morowczynski and Tarek Dawoud | 55

Mark Morowczynski returns for his 4th(!) time with his Microsoft coworker and identity and authentication expert Tarek Dawoud in this incredibly insightful conversation on the what, why, and how of phishing resistant credentials that YOU can implement right now.

PodcastBlueprint
Blueprint
  • 2024-12-05
  • John Hubbard
Listen now

How GenAI is Changing Your SOC for the Better with Seth Misenar | 54

In this mega-discussion with Seth Misenar on GenAI and LLM usage for security operations we cover some very interesting topics, such as the unique capabilities GenAI affords to those working in security operations, the importance of natural language processing, and much more.

PodcastBlueprint
Blueprint
  • 2024-10-09
  • John Hubbard
Listen now

From Clues to Containment - Unraveling A Gift Card Fraud Scheme with Mark Jeanmougin | 53

In this episode, we take you behind the scenes of a complex gift card fraud investigation. Join host John Hubbard and guest Mark Jeanmougin as they explore the intricate details of uncovering and combating a clever case of cyber fraud. In this episode Mark discusses how the incident was identified, investigated, contained, and what lessons were learned along the way.

PodcastBlueprint
Blueprint
  • 2024-10-08
  • John Hubbard
Listen now

Bonus Episode: What does it take to author a cybersecurity book?

Have you ever wondered what it takes to write and publish an information security book? In this special bonus episode following season 4, John discusses with Kathryn, Ingrid, and Carson the challenges and rewards of self-publishing, and the kind of effort that goes into producing a book like "11 Strategies of a World-Class Cybersecurity Operations Center".

PodcastBlueprint
Blueprint
  • 2023-08-03
  • John Hubbard
Listen now

Strategy 11: Turn up the Volume by Expanding SOC Functionality | 50

This final chapter of the book is no simple closer! "Turn Up the Volume by Expanding SOC Functionality" covers testing that your SOC is functioning as intended through activities such as Threat Hunting, Red and Purple Teaming, Adversary Emulation, Breach and Attack Simulation, tabletop exercises and more. There's even a discussion of cyber deception types and tactics, and how it can be used to further frustrate attackers. Join John, Kathryn, Ingrid, and Carson in this final chapter episode for some not to be missed tips!

PodcastBlueprint
Blueprint
  • 2023-07-18
  • John Hubbard
Listen now

Strategy 10: Measure Performance to Improve Performance | 49

Metrics, is there any more confusing and contentious topic in cybersecurity? In this episode the authors cover their advice and approach to measuring your team so that issues can be quickly identified and performance can continuously improve!

PodcastBlueprint
Blueprint
  • 2023-07-10
  • John Hubbard
Listen now

Strategy 9: Communicate Clearly, Collaborate Often, Share Generously | 48

Research has shown that communication is one of the most important factors for success in security incident response teams. In this chapter, the authors discuss the critical types of information that must be shared within the SOC, with the constituency, and with the greater cybersecurity community.

PodcastBlueprint
Blueprint
  • 2023-07-05
  • John Hubbard
Listen now

Strategy 8: Leverage Tools and Support Analyst Workflow | 47

Tool choice can be a make-or-break decision for security analysts, driving whether getting work done is a struggle, or an efficient, stress-free experience. How can we select the right tools for the job? Which tools are most important? Answers to these questions and more are in this week's episode of Blueprint!

PodcastBlueprint
Blueprint
  • 2023-06-26
  • John Hubbard
Listen now

Blueprint Live at the SANS Blue Team Summit 2023 | 46

In this special live recording from the SANS Blue Team Summit 2023, Kathryn Knerler, Ingrid Parker, and Carson Zimmerman joined John Hubbard and share their insights and expertise with attendees by answering their pressing questions. From discussing the most effective strategies for building a successful SOC to sharing tips on how to stay ahead of emerging cyber threats, our guests provide invaluable advice for those who work in a security operations center (SOC). If you're looking to take your SOC to the next level or are simply interested in the latest developments in cybersecurity, this episode is a must-listen. Tune in to hear from some of the most respected experts in the field and gain valuable insights that could make all the difference in how you approach cybersecurity.

PodcastBlueprint
Blueprint
  • 2023-06-22
  • John Hubbard
Listen now

Strategy 7: Select and Collect the Right Data | 45

There's no denying that the average security team is completely overwhelmed with options for data to collect. With a deluge of endpoint, network, and cloud data sources to collect, how to do we identify and collect the most useful data sources? That's the topic of this episode. Join Kathryn, Ingrid, Carson, and John in this episode for a discussion on tactical data collection that will ensure your team doesn't miss the signs of an impending incident!

PodcastBlueprint
Blueprint
  • 2023-06-20
  • John Hubbard
Listen now

Strategy 6: Illuminate Adversaries with Cyber Threat Intelligence | 44

Every security team has limited budget and time, how do you know where to focus? Cyber Threat Intelligence provides those answers! In this episode, Ingrid, Carson and Kathryn describe how we can use CTI to focus our defensive efforts to understand our most likely attacks and attackers and move towards prioritizing what truly matters. This special season of the Blueprint Podcast is taking a deep dive into MITRE’s 11 Strategies of a World-Class Cyber Security Operations Center. Each episode John will break down a chapter of the book with the book’s authors Kathryn Knerler, Ingrid Parker, and Carson Zimmerman.

PodcastBlueprint
Blueprint
  • 2023-06-13
  • John Hubbard
Listen now