Podcast – Your Cyber Path

EP 62: The NIST Cybersecurity Framework

In this episode, we cover the importance of the NIST Cybersecurity Framework (NIST CSF) and its use in managing risk as a business process within your organizations. The NIST Cybersecurity Framework was developed by the National Institute of Standards and Technology in collaboration with cybersecurity experts across the world. The framework is divided into three parts: the Framework Core, the Framework Implementation Tiers, and the Framework Profile. The Framework Core contains the five concurrent and continuous functions performed by a cybersecurity organization: identify, protect, detect, respond, and recover. The Framework Implementation Tiers provides 4 levels of achievement for cybersecurity risk management. The Framework Profiles contains 23 activities and 108 outcomes that can be used to create a profile for your organization to manage its cybersecurity risk.

Listen Now »

EP 61: Skills-based Certification and Training with John Strand

In this episode, we talked with John Strand (Founder of Black Hills Information Security and Antisyphon InfoSec Training) about the importance of skills-based certification and training. John’s goal is the provide world-class skills-based training to everyone at an affordable price using a unique pay-what-you-can model.

Listen Now »

EP 60: Top five jobs to two step your way into the cybersecurity industry

In this episode, we discuss the top five positions that allow you to two-step your way into a new role in the cybersecurity industry. Often, people have a difficult time breaking into the cybersecurity industry due to the lack of entry-level positions or they can’t afford to take start at the beginning of a traditional career path by making $15/hour working in the help desk.
By utilizing a two-step approach to landing a cybersecurity position, you can leverage your existing skills to move laterally into a similar position in a cybersecurity adjacent role and then gain experience to land a full role in cybersecurity.

Listen Now »

EP 59: Five things to know before you get into cybersecurity

In this episode, we learn about the five things you should know before getting a job in the cybersecurity industry.

First, we discussed what the reality is in terms of entry-level cybersecurity jobs. Even entry-level cybersecurity roles require previous experience in a related position.

Second, we discussed the relative importance of a cybersecurity degree in landing your first cybersecurity position.

Third, we discussed the importance of experience in landing your first position.

Fourth, we discussed some realistic salary expectations for you to have when looking for your first cybersecurity position.

Finally, we discussed some different jobs that exist in the cybersecurity industry world that go beyond penetration testing.

Listen Now »

EP 58: How to Get Hired With No Experience

In this episode, we’re going to learn how one person was able to overcome the catch-22 of getting a cybersecurity job when you don’t have experience, but you cannot get experience because no one will hire you.

Our guest, Ed Skipka, a professional vulnerability management analyst, shares his personal experience of how he overcame this catch-22 and provides some great recommendations for others who find themselves in this same position.

Listen Now »

EP 57: Best time of the year to get hired

In this episode, we are discussing the different hiring seasons in the cybersecurity industry. After all, understanding the different hiring seasons is essential to reaching your goal of getting hired into your dream cybersecurity role. Many people don’t realize that there are high periods and low periods of hiring throughout the calendar year, so in this episode we are going to discuss the three key hiring periods that occur each year and the reasons behind them.

Looking for a job can be challenging, so it is often difficult to land your dream job immediately. By understanding the hiring cycles and where they exist on the calendar, you are going to be able to increase your odds of landing a position faster. Depending on the specific portion of the cybersecurity industry you want to work in, there are better and worse times to submit your application. For example, if you want to get a position working for the government, one of the biggest hiring seasons tends to be in October and November because the Government’s new fiscal year begins on October 1st each year.

Listen Now »

EP 56: Cybersecurity careers in the Defense sector

In this episode, we provided an introduction to cybersecurity careers in the defense sector within the United States. This discussion can provide you with a great starting point for understanding how to get a cybersecurity position within this sector of the industry.

The defense sector consists of three main categories of positions: military members, government civilians, and government contractors. The defense sector is a huge area of growth in the cybersecurity industry, with over 50% of all federal government cybersecurity spending being dedicated to the Department of Defense’s budget for digital security in the United States. This equates to a lot of cybersecurity work and positions being made available within the industry for qualified and cleared individuals.

Listen Now »

EP 55: Which cybersecurity certifications should you get?

In this episode, we are focused on the ever-divisive question of the importance of certifications in the cybersecurity industry. The answer to this question has changed over time from certifications being unimportant, to them being extremely important, to well, it depends. Certifications can be extremely important for several reasons, including their ability to help your resume get through the Applicant Tracking System (ATS) filters used by the human resources and recruiting team, but they are not a silver bullet that will instantly land you a job.

Listen Now »

EP 54: New Cohost Jason Dion

In this episode, you will be introduced to our new co-host, Jason Dion who is replacing Wes Shriner as the co-host of the Your Cyber Path podcast. Jason Dion is a cybersecurity professional with over 20 years of professional experience in and around the military, defense contractor, and government sectors. While Kip Boyle, our host, has tremendous experience in the commercial and financial sectors, he has been out of the defense sector for about 20 years, so this matchup between Kip and Jason really does help to bring a more comprehensive and balanced approach to the podcast.

Listen Now »

EP 53: Webinar Replay: The Ethics of Cybersecurity: How to Buy Cyber Insurance for Your Law Practice

EPISODE 53 Webinar Replay: The Ethics of Cybersecurity: How to Buy Cyber Insurance for Your Law Practice EPISODE 53 Webinar Replay: The Ethics of Cybersecurity:

Listen Now »

PODCAST EPISODES