@BSidesPer 2018 Podcast series #BSidesPerth

0

BSides Perth 2018 attracted over 300 delegates, including kids and families, to UWA Business School and along with t-shirts, beanies and tool kits, delegates also received a cool and unique handmade conference badge, using a NodeMCU ESP8266 WiFi SoC. Security BSides (commonly referred to as BSides) is a hacker convention, held amongst a growing eco-system of events in Australia and New Zealand that provide a community driven framework for information security conferences.

Episode 115 – ASD Essential 8 cybersecurity strategies applied to business requirements, insights with Tony Campbell CISSP, CISM, CIPM @BSidesPer @AustCyberSecMag

Chris Cubbage & Tony Campbell

Tony Campbell is a Security Architect with Kinetic IT and Editor of the Australian Cyber Security Magazine (ACSM) – in the lead up to Issue 6 of the ACSM we discuss the business and board applications of the Australian Signals Directorate (ASD) Essential 8 cybersecurity strategies and how these can be applied and inform the business and board of directors.

 

 

 

 

Episode 114 – Capture the Flag competition @BSidesPer

CTF Scoreboard

Interview with Alex Dolan (@dolesification) and #Osprey (Michael) in their roles as facilitators of the #BSidesPerth Capture the Flag #CTF competition held at BSides Perth in September 2018.

Osprey (Michael), Alex Dolan and Chris Cubbage

With a focus on web applications and starting with GRC challenges, the CTF had a unique WA flavour and lean with IoT device security. Well done to ‘Tony’ who took a commanding lead.

Episode 113 – Security practice is broken. How can we fix it? Interview with Dr Jodie Siganto @BSidesPer

Dr Jodie Siganto with Chris Cubbage

Interview with Dr Jodie Siganto, a lawyer who accidentally strayed into security about 18 years ago and never been able to get out. Fascinated by what happens at the interface between humans and technology, particularly in the security and data privacy realm. Intrigued by what shapes security practice and our failure to change.

Jodie’s proposal is that as information security practitioners we think of ourselves as professionals with a special expertise. But is this perspective real? Or are we more like security brokers negotiating an acceptable outcome with the business? “If we are a profession, then who is shaping that profession? If we are experts, is education producing the right person? By looking at some of these questions, I hope to start a conversation about how we might re-shape security practice to delivery better results for practitioners, their employers and the community more generally.”

Jodie’s recent articles with the Australian Cyber Security Magazine:

Episode 111 – How to land a job in InfoSec with @CyberSecRicki & DevSecOps versus SecDevOps with @_sarahyo

Sarah Young, Ricki Burke & Chris Cubbage

Interview with Ricki Burke and Sarah Young, co-organisers AllSec Meetups in Melbourne and we dive into Ricki’s BSides Workshop and Sarah’s SecDevSecOpsSec session.

Ricki is the Director and Founder of CyberSec People and partners with organisations around ANZ to hire infosec (Cyber Security) professionals. He is embedded in the security community, is active at cons and Meetups and built many friendships along the way. With a passion for supporting people to break into security, he has helped many land their first job in the industry.

Ricki’s recent articles with the Australian Cyber Security Magazine

Sarah is a security architect based in Melbourne, having previously worked in New Zealand, London and various parts of Europe across a range of industry sectors. In her current role, Sarah helps enterprises move their stuff into the cloud securely. She spends most of her spare time eating hipster brunches and high teas.- Sarah’s session: “SecDevSecOpsSec: let’s stop throwing around the buzzwords.” With phrases like “DevSecOps” out there, how many of us actually know what this means? We have DevSecOps, SecDevOps, secure pipelines, security toolchains, etc. too often used interchangeably and with no clear “official” definition. In her talk, Sarah sought to distill the exact meanings of each of these and use examples from her own experiences of creating automated security processes to explain how each can be effectively used, and the tools that she has used to do this.

Episode 106 – #BSidesPerth 2018 – Organiser insights from doles, nidogski and sneaky

L-R – Alex Dolan, Nigel Hardy & Peter Yorke

BSides Perth is organised by three mates with a collective ‘lot’ of years in the InfoSec industry… doles (Alex Dolan), nidogski(Nigel Hardy) and sneaky (Peter Yorke) – here’s their perspective on BSides and the massive effort required to put a community driven conference together. 

Episode 108 – “What Your RF Signature Says About You” – insights @BSidesPer with @acyberexpert aka “Stephen”

Chris Cubbage & Stephen

Invisible, inaudible, and ignored, your devices are currently screaming out large amounts of information about you, your habits, your pattern of life to anyone who cares to listen. ‘Stephen’, who hails from the South Pacific and exported to the financial services sector in Singapore, presented at #BSidesPerth to demonstrate how to listen in, what is commonly being broadcast, what can be done with this information, and how you can minimise the risks.

Share.