🎥 Missed one of my past conference talks? Let’s fix that.

I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.

“DevSecOps Worst Practices”
📽️ https://twp.ai/4in9of

#CyberSecurity #SecurityAwareness #appsec #RSAC

RSAC Fireside Chat: Operationalizing diverse security to assure customers, partners–and insurers - Catastrophic outages don’t just crash systems — they expose assumptions.
Related: ... https://www.lastwatchdog.com/rsac-fireside-chat-operationalizing-diverse-security-to-assure-customers-partners-and-insurers/ #topstories #rsac

I had the opportunity to sit down with former DTer, Joe Slowik at #RSAC to talk about suspicious domains.

Here are some of the key takeaways from our conversation:

🔹 Joe shared how attackers are playing the long game—like in the SolarWinds attack, where a fake AWS domain sat dormant for nearly a decade.
🔹 From aged domains to hijacked home routers, adversaries are evolving. And groups like Volt Typhoon are targeting U.S. critical infrastructure with chilling precision.
🔹 It’s time to rethink defense—beyond tools, toward resilient architecture and even manual fallbacks.

Listen to the podcast here: https://podcasts.apple.com/us/podcast/breaking-badness/id1456143419?i=1000711183082

Cyber threats are personal: watch Vivian Schiller, Kiersten Todt, and Michael Schmidt, and me take main stage at #RSAC to discuss how storytelling helps us fight back
#Take9 #CyberCivilDefense
https://www.youtube.com/watch?v=J0Qk3BlMb6c

I just published my Trip Report from an amazing week at B-Sides SF and #RSAC2025! Highlights, photos, and everything in between — check it out here:
https://twp.ai/4in5Xh

#AppSec #BSidesSF #RSAC #Infosec

In this #RSAC conference interview, I sit down with Dustin Lehr to dive into the power of Security Champions Programs—why they matter, how to build them, and what makes them succeed.
https://twp.ai/4in5XR
1/2

I just published my Trip Report from an amazing week at B-Sides SF and #RSAC2025! Highlights, photos, and everything in between — check it out here:
https://twp.ai/4inQiQ

#AppSec #BSidesSF #RSAC #Infosec

RSAC Fireside Chat: Human and machine identity risks are converging — and they’re finally visible - Non-human service accounts have quietly become one of the biggest liabilities in e... https://www.lastwatchdog.com/rsac-fireside-chat-human-and-machine-identity-risks-are-converging-and-theyre-finally-visible/ #firesidechat #topstories #rsac

RSAC Fireside Chat: Cyber risk mitigation turns personal–defending the CEO as an attack vector - Executives are under digital siege—and most don’t even know it.
Related: Sharehold... https://www.lastwatchdog.com/rsac-fireside-chat-cyber-risk-mitigation-turns-personal-defending-the-ceo-as-an-attack-vector/ #firesidechat #topstories #rsac

In this #RSAC conference interview, I sit down with Dustin Lehr to dive into the power of Security Champions Programs—why they matter, how to build them, and what makes them succeed.
https://twp.ai/4inV0P
1/2

RSAC Fireside Chat: ‘Purple’ teams dismantle the reactive trap — and can help restore cyber readiness - Reactive security isn’t just outdated — it’s become a liability. Attackers have fi... https://www.lastwatchdog.com/rsac-fireside-chat-purple-teams-dismantle-the-reactive-trap-and-can-help-restore-cyber-readiness/ #firesidechat #topstories #rsac

Watch my interview with Chris Hughes of Resilient Cyber, at #RSAC. We talk about supply chain security, application security, and (of course) Resilient Cyber!

https://twp.ai/4inGRU

Always a pleasure spending time with Rob Allen and the whole ThreatLocker team - virtually or in person (better!!!) 😬

🎙️✨ Why Simplicity Might Be the Missing Ingredient in Your #ZeroTrust Strategy | An ITSPmagazine Brand Story with Rob Allen from ThreatLocker | #RSAC2025

At #RSAC Conference 2025, the ThreatLocker booth didn’t need flashing lights or gimmicks. Just a live PowerShell attack, a rubber ducky, and a crowd watching real protection in action. That’s how you cut through the noise.

In this Brand Story episode, Sean Martin, CISSP and Marco Ciappelli talk with Rob Allen, Chief Product Officer at ThreatLocker, about why Zero Trust doesn’t need to be complicated to be effective. Instead of piling on tools, Rob explains why proactive control, vendor consolidation, and human connection are the real differentiators.

🙌 Huge thanks to #ThreatLocker for sponsoring our RSA Conference 2025 coverage and supporting meaningful conversations like this one.

🎥 Watch the episode: https://youtu.be/pPZ2VEeTdBo

🎧 Listen to the podcast: https://brand-stories-podcast.simplecast.com/episodes/why-simplicity-might-be-the-missing-ingredient-in-your-zero-trust-strategy-a-brand-story-with-rob-allen-from-threatlocker-an-rsac-conference-2025-post-event-brand-story

📝 Read the full article: https://www.itspmagazine.com/their-stories/from-reactive-to-proactive-building-guardrails-that-actually-protect-a-brand-story-with-rob-allen-from-threatlocker-an-on-location-rsac-conference-2025-brand-story-8m334

We’re still reflecting on RSAC 2025 — and this conversation reminded us that sometimes, the simplest solutions are the most powerful.

🔜 Next stop: Infosecurity Europe 2025 in London!
Follow our coverage as it unfolds — and if you’re a cybersecurity company attending the show, reach out to connect with us on site. Let’s keep the conversations going.

#cybersecurity, #zerotrust, #RSAC2025, #ThreatLocker, #infosec, #endpointsecurity, #brandstory, #threatprevention, #vendorconsolidation, #itspmagazine, #infosecurityeurope2025, #infosecurityeurope

🎙️✨ Why #Community Could Be the Strongest Defense in #Cybersecurity
An ITSPmagazine Brand Story with Rob Clyde from ISACA | #RSAC2025

In the rush to cover #AI, #cryptography, and quantum threats, it’s easy to forget that the cybersecurity profession is—above all else—human. That’s exactly why this conversation with Rob Clyde, Board Director at ISACA, stood out during Sean Martin, CISSP and Marco Ciappelli's post-event reflections from #RSAC Conference 2025.

This Brand Story goes beyond the headlines, diving into the real issues affecting our industry: burnout, mental health, the shrinking sense of community, and the looming threat of quantum risk. Rob shares why ISACA continues to prioritize connection, education, and support at every stage of a professional’s journey.

🙌 A big thank you to ISACA for sponsoring our RSAC 2025 coverage. Your support helped make conversations like this possible.

🎥 Watch the episode: https://youtu.be/iw6MAwP8VA4
🎧 Listen to the podcast: https://brand-stories-podcast.simplecast.com/episodes/why-community-could-be-the-strongest-defense-in-cybersecurity-a-brand-story-with-rob-clyde-from-isaca-an-rsac-conference-2025-post-event-brand-story
📝 Read the full article: https://www.itspmagazine.com/their-stories/from-certification-to-confidence-the-future-of-cybersecurity-starts-with-the-first-job-a-brand-story-with-jamie-norton-from-isaca-an-on-location-rsac-conference-2025-brand-story-aarlh

We’re still looking back at #RSAC2025 — and we’re also getting ready for Infosecurity Europe. Stay tuned.

#infosecurity #infosec #ISACA #quantum #mentalhealth #community #technology #brandstory #itspmagazine #infosecurityeurope2025 #tech #education

RSAC Fireside Chat: Enterprise browsers arise to align security with the modern flow of work - A quiet but consequential shift is underway in enterprise workspace security. The ... https://www.lastwatchdog.com/rsac-fireside-chat-enterprise-browsers-arise-to-align-security-with-the-modern-flow-of-work/ #topstories #podcasts #rsac

As we look ahead to Infosecurity Europe, we’re also taking a moment to look back — just a bit more — on what made #RSAC2025 such a powerful event.

🎙️ In this Brand Story conversation recorded on the show floor, I met once more with Steve Schlarman, to hear the Archer Integrated Risk Management perspective on the current state and future direction of #risk, #compliance, and #AI in #cybersecurity.

💡 From regulatory complexity and AI-driven policy generation to the challenge of translating risk data into business decisions — this episode is packed with grounded insights and real-world applications.

▶️ Watch the video: https://youtu.be/7c6kKbwlfgE

🎧 Listen to the podcast: https://brand-stories-podcast.simplecast.com/episodes/why-ai-needs-context-not-just-hype-a-conversation-with-steve-schlarman-senior-director-product-management-at-archer-an-rsac-conference-2025-post-event-brand-story

📝 Read the article: https://www.itspmagazine.com/their-stories/from-overhead-to-advantage-turning-compliance-into-a-strategic-asset-a-brand-story-with-steve-schlarman-from-archer-an-on-location-rsac-conference-2025-brand-story

🙏 And once again — a huge thank you to Archer for sponsoring our #RSAC 2025 coverage and helping us bring conversations like this to life.

🎧 Missed any of our RSAC 2025 episodes? Catch them all here: https://www.itspmagazine.com/rsac25

🎯 Want to meet us at Infosecurity Europe and tell your story with ITSPmagazine? 👉 https://www.itspmagazine.com/infosec25 or just DM me (Marco Ciappelli) or Sean Martin, CISSP

#RSAC2025 #Cybersecurity #BrandStory #ITSPmagazine #InfosecurityEurope #GRC #RiskManagement #AI #Compliance #CyberRisk #EventCoverage #Archer #SteveSchlarman #MarcoCiappelli

Bought a book at #RSAC bumped into the legend himself. Bruce Schneier however come you are not on Fediverse yet?

I say this not to elicit pity, not to contrast against groups being literally rounded up and isolated, I say this because our plight is a lot more insidious and subtle. Frankly, if a decision is made, at any level, to not allow a group of people to access a service, venue or building in spite of standards, guidance and rules to follow have existed for decades, you are wilfully discriminating against the people you're excluding. I don't care if we business it up by saying it's a resource issue, or a skill issue, or a bottom line issue ... no it's not. It's a "not my problem" issue, and not interacting with the excluded makes it ok. So want a #gaad pledge? OK. I made this one during my #RSAC talk, and I'll make it here. Want to deliberately make something inaccessible? Come send me a message on here or LinkedIn justifying your decision. I'm making it personal.

What do our team & 18th century mathematician Leonhard Euler have in common? Chief Technology Officer Jared Atkinson sat down with Cyber Defense Magazine's Pete Green at #RSAC to talk BloodHound Enterprise & our approach to navigating the bridges of #identitysecurity.

Read more: https://ghst.ly/3S1JZdt

This Newsletter Is About #RSAC... But Our Heads Are Already in London

From San Francisco to London, via Barcelona: Stories Told, Stories Coming...

We just wrapped another incredible RSA Conference — and yes, this newsletter is all about that. But if you know us (and many of you do), our minds are already across the pond.

Because you know what’s coming next.

That’s right. Infosecurity Europe 2025. London. ExCeL.

And us — Sean Martin, CISSP and Marco Ciappelli — with our mics, cameras, and a ton of curiosity.

We’ve been media partners for #InfosecurityEurope since 2017, and every year we do our thing: record in and around the venue, wander the city, capture the vibe. Whether it’s the Thames, Big Ben, Abbey Road, St. Paul’s, the National Gallery, or Carnaby Street — we’ll be there, filming on location and sharing it with you.

And of course, we’ll also be deep in the #cybersecurity conversations shaping Europe — with podcast interviews, video briefings, and candid chats that explore where tech and society meet.

We’ll keep you in the loop every step of the way.

But let's talk some more about #RSAC2025 ... click below, read, share - you know what to do! 😊

https://www.linkedin.com/pulse/newsletter-rsac-our-heads-already-london-itspmagazine-savpc/

#infosec #tech #infosecurity #technology #society #appsec #owasp