Fighting Back with John Hubbard | 15

Guest Bio:

John Hubbard is a SOC consultant, speaker, Senior SANS instructor, and author of SANS SEC450: Blue Team Fundamentals and LDR551: Building and Leading Security Operations Centers. With a background as a SOC Manager for a large pharmaceutical company, John brings real-world experience in threat hunting, incident response, and security operations team management. He focuses on helping organizations improve their SOC teams, training the next generation of defenders, and making teams more effective and resilient against modern threats.

Highlights:

Breaking into Cybersecurity

• From the early SANS courses that propelled John into becoming a SANS instructor, to the advanced programs he now leads as a curriculum lead, alongside his insightful YouTube channel and blog
  • FOR610: Reverse Engineering Malware Training | Malware Tools & Techniques | SANS Institute
  • SEC560: Enterprise Penetration Testing Course | SANS Institute
  • SEC511: Cybersecurity Engineering: Advanced Threat Detection and Monitoring | SANS Institute
  • Cyber Defense Training & Resources | SANS Institute
  • SEC450: Blue Team Fundamentals: Security Operations and Analysis | SANS Institute
  • John Hubbard - YouTube | The Blueprint Blog

Understanding SOCs

• A look into the role of Security Operations Centres and how they support cyber resilience
  • Building a Security Operations Centre (SOC) - NCSC.GOV.UK
  • What is a Security Operations Center (SOC)? | Definition from TechTarget.
  • Cybersecurity First Principles: A Reboot of Strategy and Tactics | Wiley
  • EDR, XDR, MDR: Making Sense Of Threat Detection And Response Acronyms

Lessons from the SolarWinds Breach

• Reflecting on one of the most significant supply chain attacks in recent history, and why transparency and collaboration are crucial in cybersecurity.
  • SolarWinds: Why the Sunburst hack is so serious - BBC News
  • What You Need To Know About the SolarWinds Supply-Chain Attack | SANS Institute
  • Transparency, Information-Sharing, and Collaboration Make the Software
  • Industry More Secure. We Must Not Risk Our Progress. - SolarWinds Blog
  • Dealing with the SolarWinds Orion compromise - NCSC.GOV.UK

Industry Insights from Mandiant

• A snapshot of emerging trends, challenges and victories in the cybersecurity industry, as outlined in Mandiant's latest M-Trends report.
  • M-Trends 2025 Report
  • M-Trends 2025: Data, Insights, and Recommendations From the Frontlines | Google Cloud Blog

Additional Resources

• Security Now | A Podcast Covering Hot Topics in Tech Security

Subscribe & Follow:

• Subscribe to the podcast on Apple Podcasts, Spotify, or your favorite podcast platform.
• Follow us on Twitter, Facebook, and LinkedIn for updates.

Contact:

• Have questions or comments? Email us at cyberleaderspodcast@sans.org