Avsnitt
-
The traditional cybersecurity entry-level pipeline is fundamentally changing. In Episode 47 of the DTF Cyber Podcast, Damian, Troy, and Fern break down the rapid evolution of security operations centers and tackle a stark reality: the traditional Tier-1 SOC analyst job is officially dead.
With modern baseline metrics proving that AI platforms are automating over 50% of basic alert triage and log parsing, our hosts debate what this means for university programs, upcoming graduates, and mid-career professionals looking to break into the industry.
Fern introduces Jevons Paradox to explain the counterintuitive explosion of corporate data ingestion. Meanwhile, Damian and Troy face off on the corporate risk management landscape of "Building vs. Buying" automated security operations tools, the hidden dangers of undocumented enterprise AI sprawl, and why cybersecurity hiring is morphing from a wide-bottom pyramid into a highly specialized diamond.
Whether you are a tier-1 analyst trying to stay relevant, a student planning your career map, or an enterprise security leader trying to scale a global team, this episode delivers raw, unscripted strategy on how to reinvent your technical skillset before you get left behind.
--- ⏱️ CHAPTER TIMESTAMPS ---
00:00:00 - The University Pipeline Panic: Training for Dead Jobs?
00:01:07 - Welcome to Episode 47: The Level-1 SOC Analyst Job is Dead
00:01:59 - The AI SOC Market Explosion: Tracking 60+ New Automation Vendors
00:03:50 - Troy’s Evolution Analogy: From the Abacus to the Digital Calculator
00:04:17 - The Triage Threshold: Do Students Still Need to Learn Manual Log Parsing?
00:06:08 - Function vs. Job: Redefining Security Operations Metrics
00:09:29 - Road Trip Retrospective: Looking Back at AWS re:Invent
00:10:48 - The Gartner Baseline Metric: 50% of Tier-1 Tasks Automated
00:11:16 - The Anthropic Velocity: Unpacking the 8x Capability Multiplier
00:13:53 - Fern's Analogy Corner: Jevons Paradox & Exponential Data Lakes
00:17:01 - Autonomous Detection Engineering: Will AI Manage Its Own Ingestion?
00:22:12 - CISO Executive Assessment: The Build vs. Buy Infrastructure Dilemma
00:23:27 - Enterprise AI Sprawl: The Risk of Shadow API Keys & Tokens
00:29:07 - The Career Shift: Moving Up to AI Auditing & Agent Orchestration
00:32:18 - The Talent Diamond: Why Cyber Hiring is Changing Shape
00:35:10 - Alternative Entry Points: Vulnerability Management & GRC Realities
00:37:46 - Token Productivity Markers: Tracking Misuse & Side-Hustle Risks
00:41:30 - Damian's Hiring Blueprint: Why Growth Trajectory Beats a Degree
00:52:39 - The Non-Linear Path: Transitioning via Help Desks & IT Admins
00:58:35 - The Art of Interviewing: Damian's 300+ Career SOC Direct Hires
01:01:30 - Producer's Final Verdict: Reinventing Yourself for Judgment Day
01:04:50 - Episode Song - Where the Agents Hunt
-
The US government just laid down the hammer, officially recalling frontier AI models Fable 5 and Mythos 5. In Episode 46 of the DTF Cyber Podcast, Damian, Troy, and Fern dive into the chaos. Did a sophisticated prompt jailbreak a vulnerability-chaining machine into a zero-day weapon? What does this sudden regulation mean for corporate security teams, supply chain resiliency, and the blue team vs. red team arms race? We also pull back the curtain on Anthropic's quiet 30-day data retention policy changes and discuss why the entry-level SOC analyst job might be gone in a year.
Episode Timestamps:
00:00 - Fern can’t log into Anthropic
01:16 - Clearing up miscommunications: Who is blocked?
03:50 - Is this a third-party risk or supply chain resilience issue?
04:30 - The geopolitics of AI: Handcuffing US developers
06:40 - Protecting critical infrastructure from weaponized zero-days
08:45 - The risk of wrappers and pinning a business to a single model
11:22 - CEO Dario Amodei’s ironic stance on government AI agencies
14:55 - Diversifying your enterprise portfolio of AI tools
17:05 - The fine print: 30-day prompt retention and privacy traps
19:15 - RSI: Understanding Recursive Self-Improvement suppression
21:00 - Shadow IT vs. Shadow AI in corporate environments
22:00 - Corporate MSAs: Why SaaS giants don’t negotiate terms
24:56 - AI Discovery & AI Governance: Tokenizing PII traffic
26:50 - Thick clients, APIs, and enforcing MCP gateway controls
29:34 - The CISO WhatsApp groups blow up over the weekend
32:45 - Secure by Design: Is AI a lazy shortcut for secure coding?
36:50 - Skip the fundamentals? Why laziness equals a data breach
39:40 - Behavior Drift: When AI forgets what a high vulnerability is
41:50 - Is AI coming for your job? The death of Tier 1 SOC analysts
46:30 - Going to school to learn a tool vs. learning how to learn
50:17 - Episode Final Predictions: The shift to private, local models
-
Saknas det avsnitt?
-
The patching paradigm has officially broken. CISA is considering a massive shift to a mandatory 3-day patch window for active exploits, but is a 72-hour turnaround an operational shield or a localized denial-of-service attack on your own engineering teams?
In Episode 45, Damian, Troy, and Fern dive headfirst into the brutal reality of emergency vulnerability management. They tear down the growing chasm between risk-aware CISOs and resource-strapped IT operations, discuss how advanced AI models like Alibaba's newest frontier tech are accelerating multi-stage exploit chaining, and debate why checking a compliance box doesn't mean your network is actually secure.
From fish tank thermometer pivots to modern pit crew optimization, learn how to audit your external attack surface and build a resilient defense-in-depth architecture before the next zero-day drops.
00:01:07 — The 3-Day Patch Deadline Panic
00:02:06 — Breaking Down the CISA KEV Patch Window
00:02:30 — Fern's Story: The System Admin's Weekend Nightmare
00:03:15 — Breaking Down the CISA KEV Prioritization Catalog
00:04:39 — The Shrinking External Attack Surface Reality Window
00:06:49 — IoT Perimeters: The Famous Fish Tank Thermometer Pivot
00:09:37 — Restricting Lateral Threat Movement with Microsegmentation
00:10:25 — Monitoring Hidden Network Risks & Shadow AI Sprawl
00:14:01 — Exploit Chaining: Autonomous AI Defenses & Alibaba's Frontier Model
00:15:40 — CIRCIA Reporting Directives vs. Mitigation Rules
00:22:15 — Troy's CISO Perspective: Change Advisory Boards vs. Absolute Chaos
00:25:46 — The Innovation Gap: Why Automated Testing Trumps Manual Code
00:28:01 — Debate: Does Compliance-First Security Make Us Vulnerable?
00:33:55 — The Great Debate: Staged Deployment Ring-Fencing vs. Total Lockout
00:37:56 — Progressive Update Flows & Automated Patch Verification Staging
00:43:40 — Shifting the Burden: Formal Risk Transfer to the CIO's Office
00:48:32 — Damian's Technical Takeaway for Security Infrastructure Engineers
00:49:45 — Troy's Strategic Insight for Corporate Executive Directors
01:01:14 — Fern's Pit Crew Analogy
-
Are you caught between a bedrock and a hard place with your organization's cloud budget? In Episode 44 of the DTF Cyber Podcast, Damian, Troy, and Fern break down the massive, unexpected financial and operational risks of enterprise AI deployments.
From unmonitored AI agents creating a 100,000 "recursive loop" bill overnight to non-technical employees "vibe coding" insecure software with hardcoded secrets, the team looks past the AI hype to expose the real logistics of Day 2 operations. They also dive into the invisible data lake "IO tax," the legal pitfalls of building side projects on corporate tenants, and recent procurement data from Tropic revealing an automatic 20% to 30% "AI tax" on SaaS contract renewals.
Don't let runaway token costs erode your profit margins. Hit that subscribe button, leave a thumbs up, and learn how to implement the hard engineering and financial guardrails your business needs today!
TIMESTAMPS
00:00:10 - Recursive Loops & The $100,000 Bill Surprise
00:01:14 - Job Security vs. Downsizing Human Capital
00:03:03 - Vibe Coding & Bursting Credit Card Limits
00:07:42 - Model Right-Sizing: Avoiding Over-Compute
00:09:50 - The Invisible Data Lake Tax
00:10:48 - Evaluating Hidden AI Compute Fees in SaaS
00:13:29 - Token Bloat and the Field of Haystacks
00:17:28 - The Cascading Effects of Pay-Per-Use Metering
00:19:19 - The Rise of "Shadow Developers"
00:23:18 - Side Projects & Corporate Intellectual Property Traps
00:25:04 - Implementing Shadow AI Discovery & Security Tools
00:32:18 - The Startup Compliance Dilemma (The Lack of SOC 2)
00:33:21 - Secure Coding Vulnerabilities & AI Hardcoded Secrets
00:41:21 - Tropic's Procurement Insights: Navigating the SaaS AI Tax
00:51:01 - Engaging Finance in AI Strategy & Enforcing Guardrails
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net
Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
The hackers are already moving at light speed. If you’re still waiting for a human to click "Approve," you’ve already lost the company. But if your autonomous AI nukes a production server during a board meeting, who stands in front of the regulators?
In Episode 43, the DTF crew dives into the massive 2026 shift from automated playbooks to Agentic AI. Damian argues that traditional SOAR is dead, Troy warns of the audit trail of a ghost, and Fern wonders if we’re all just vibe coding our way into an existential crisis.In this episode, we cover:
- Why Human-in-the-loop is becoming a security vulnerability.
- The difference between automation (scripts) and agency (reasoning).
- How to govern a fleet of "Digital Interns" without losing control.
- Why this technology might finally let you fire your underperforming MSP.
Timestamps:
0:00 – Machine speed vs. Human approval
0:37 – The 2026 SOC Reality
2:37 – Fern’s Tesla Nightmare: The terror of Full Self-Driving
5:58 – Defining the 2026 SOC: Automation vs. Agency
10:01 – Why SOAR is officially "Legacy Tech"
15:04 – Reasoning Chains: How AI invents its own playbooks
20:23 – The Digital Intern Analogy: Scaling Tier 1
27:15 – Troy’s Reality Check: Can you audit a ghost?
33:00 – The Model Armor: Wrapping AI in Governance
40:45 – Boardroom Conflict: Who is liable for an AI mistake?
45:20 – The Kill Switch Necessity: Who holds the keys?
50:15 – Killing the MSP: Bringing the SOC back in-house
56:30 – Existential Crisis: Vibe Coding and the future of cyber jobs
1:04:50 – The Bottom Line: Transitioning to an AI Orchestrator
1:09:20 – Final Verdict: Don't be scared, be efficient
#CyberSecurity #CISO #AI #AgenticAI #SOC #InfoSec #TechPodcast #DTFcyber
http://cyberpodcast.net
Spotify:
http://spotify.cyberpodcast.net
Apple:
http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF:
https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net
Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
In this episode of the DTF Cyber Podcast, Damian, Troy, and Fern tackle the terrifying reality of 2026: Identity is the new weapon of mass destruction. From the architectural suicide pact that allowed a 200,000-device wipe at Stryker to the personal blackmail engines fueled by the Match Group data breach, the team explores why your own IT tools are being turned against you.
Timestamps
00:00 – The "Architectural Suicide Pact" (Stryker & Match overview).
00:44 – Vegas Recording: Fern introduces the location (Findlay Automotive Group conference room).
03:00 – The 2026 Trend: Troy explains why exfiltration is the new ransomware end-game.
04:44 – The Match Incident: Troy breaks down the "Blackmail Engine" and voice-cloning risks.
07:09 – Governance Failures: Damian explains Multi-Admin Approval (MAA) and why it failed at Stryker.
10:00 – The Platform Myth: Troy discusses the "Holy Grail" of full-stack identity.
12:54 – Just-In-Time (JIT) Access: Damian breaks down automating validation for critical tasks.
18:30 – Observability Strategy: Troy discusses mapping security tools to the MITRE ATT&CK framework.
20:50 – The Cost of Downtime: Analyzing the $10M/day loss of the MGM hack.
25:40 – The SaaS Trap: Troy identifies over-privileged accounts in Salesforce and stale SaaS apps.
30:40 – Executive Friction: The Reporting Structure debate: Where the CIO and CISO clash.
33:00 – The Reporting Debate: Troy argues why the CISO should report to Legal or Risk.
38:50 – Innovate or Die: Damian's take on why blocking AI is a losing strategy.
40:40 – Closing Thoughts: Troy’s final plea to fix the Basics before moving to AI.
44:59 – Final Wrap-up: Thanking Findlay Automotive Group and the Henderson, NV hosts.
-
Is your resume landing in the trash before a human even sees it?
This week on the DTF Cyber Podcast, Troy, Damian, and Fern get brutally honest about the cybersecurity job market. We aren't just talking about certifications; we're talking about why the standard advice is failing the next generation of cyber professionals.
Troy reveals why he trashed 48 resumes in one morning, Damian explains why a GitHub repo is worth more than a degree, and Fern asks the questions every job-seeker is thinking but is too afraid to ask. If you're stuck in the entry-level trap, this episode is your roadmap out.
Don't forget to Like, Subscribe, and hit the Bell to stay ahead of the curve!
TIMESTAMPS:
00:00 — Cold Open: Why Degrees Don't Stop Breaches
01:21 — Tale of Two Cities: The Cyber Bootcamp Reality
03:14 — The AI Crunch: Reskilling Mid-Flight
06:15 — Recipe vs. Cooking: Why Certifications Aren't Enough
08:28 — Project-Based Hiring: What Damian Looks for First
11:29 — The Debate: Is AI Replacing Human Thought?
15:12 — Adaptability: Finding Your Spot in the AI Workforce
20:02 — Proof of Record
22:18 — Soft Skills: The Differentiator in a Level Playing Field
23:48 — Bypassing Automated Resume Systems
27:31 — State of Fear: Lessons from Multi-Million Dollar Firms
30:15 — Stolen Valor: Spotting Fakes in Cybersecurity
32:09 — The Failure Interview: What Did You Learn?
35:13 — Leadership Relations: Building Bridges Before the Fire
40:36 — Pen Testing: Strategic or Not?
44:23 — Setting Yourself Apart
47:08 — The Open Source Debate
53:42 — Practical Projects: Using YouTube & Portfolios to Stand Out
1:03:17 — Fern’s Final Thought: Stop Hiding Your Value
1:04:05 - Episode 41 Anthem
-
Anthropic just changed the rules of the game with "Mythos"—a frontier-tier model that doesn't just find vulnerabilities; it reasons through a 23,000-word "Living Constitution" to decide if it even wants to help you.
In this milestone Episode 40, Damian, Troy, and Fern dive into Project Glasswing, the secret group of 12 companies given early access to this "digital nuke," and debate whether we are heading toward a future of AI-on-AI warfare. From 72% exploit success rates to AI toilets, we cover the technical, the tactical, and the hysterical.
Timestamps:
• 00:00 – Intro
• 02:15 – Project Glasswing: Why is Anthropic gatekeeping Mythos?
• 05:39 – The Stats: 72% success in generating working exploits
• 13:30 – Damian’s Deep Dive: Why BSD and zero-days are back in the spotlight
• 19:40 – The 23,000-Word Constitution: Can AI have ethics?
• 28:50 – Troy’s Reality Check: Liability and the "Self-Evolving" rule set
• 42:00 – The Great Debate: Should we bury this tech or embrace it?
• 50:00 – Fern’s Final Thought: AI toilets and the future of fiber
-
In this episode, Damian, Troy, and Fern dive into the 'Wild West' of 2026: Shadow AI.
From autonomous agents paying unapproved invoices to the rinse and repeat of the 2010 cloud revolution, the team debates whether AI agents are productivity miracles or a liability nightmare for the modern CISO.
Timestamps:
00:00 - The $50k Shadow Agent Invoice
01:02 - Fern’s Nightmare Scenario: The AI Agent in Production
02:15 - 2010 vs. 2026: Why Shadow AI is the new Shadow IT
04:14 - Damian’s Technical Deep Dive: The Permission Explosion & Admin Entitlements
11:08 - The State of the Union: CISO Mandates and the "Chief AI Officer"
26:10 - Troy’s CISO Perspective: Managing Identity Governance & Global Risk
40:13 - The Great Debate: Micro-segmentation for AI Agents
46:49 - Final Verdict: Can You Govern What You Can't See?
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries:
dtf at cyberpodcast dot net
Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
In Episode 38 of the DTF Cyber Podcast, Fern and Troy welcome Healthcare CISO, Bob Schlotfelt. We dive into why an incident at a hospital is fundamentally different from a retail breach. While Damian is out, Bob brings decades of insight into protecting patient safety over just protecting data. We discuss the nightmare of unpatchable medical devices, why compliance doesn't equal security, and the hilarious (but effective) ways to get a nurse's attention for security training.
Chapter Markers:
• 00:00 - Intro: Netflix vs. Banks vs. Hospitals
• 01:46 - Introducing Bob, Healthcare CISO
• 08:38 - The Threat to Connected Medical Devices
• 18:50 - Fixing "Operational Friction" on the Hospital Floor
• 34:06 - Security Awareness in the Bathroom Stalls?
• 43:09 - Why Compliance (HIPAA) is NOT Security.
• 1:01:00 - Telling Truth to Power: Boardroom Advice.
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
Is the "Cyber Skills Gap" a myth? In this episode, Damian, Troy, and Fern strip away the HR fluff and talk about the cold, hard reality of the 2026 job market. From entry-level SOC roles being "squeezed" by AI to $3.5M CISO roles that come with massive personal liability, we’re breaking down what you’re actually worth and why your resume is likely being ghosted by a bot.
If you aren't negotiating your insurance and building your own AI tools, you're falling behind.
THE DEEP DIVE:
• 00:00 – Intro
• 01:11 – Fern’s 2026 Job Hunt: Why 50 applications led to zero interviews.
• 04:20 – The "Skills Gap" Debate: Do companies actually want to hire?
• 09:02 – SALARY: The Entry-Level SOC Analyst floor in 2026.
• 14:15 – The Grocery Store Phone Call: How networking beats the portal every time.
• 19:40 – Damian’s Warning: Why "Prompting" AI makes you obsolete.
• 25:10 – The "AI Squeeze": Can a $200 license replace a Tier 1 Analyst?
• 31:30 – The Reporting Trap: Why CISOs reporting to CIOs is a massive risk.
• 35:41 – SALARY: Engineering, Pen-Testing, and Cloud Security ranges.
• 40:11 – The "AI Premium": How to add 20% to your base salary right now.
• 41:51 – The "Clearance Bump": Is the polygraph worth the extra $30k?
• 43:24 – SALARY: The $3.5 Million CISO—who is actually making this?
• 48:50 – D&O Insurance: If you aren't a "Named Director," you aren't protected.
• 55:30 – Risk Management vs. "Check-the-box" Compliance.
• 01:04:56 – Final Advice: Don't be a holdout for a dead salary.
EPISODE HIGHLIGHTS:
• The AI Squeeze: Troy explains why entry-level salaries are stagnating as automation handles the "low-hanging fruit."
• Building vs. Prompting: Damian breaks down why the "Prompt Engineer" is a temporary role—you need to build the infrastructure to survive.
• Executive Liability: Why you should never take a CISO role without checking the company's Directors and Officers (D&O) insurance policy.
Are you seeing these salary shifts in your neck of the woods? Drop a comment below with your role and your 2026 outlook.
#Cybersecurity #CISO #TechSalaries #AI #CareerAdvice #DTFPodcast #CyberJobs
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net
Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
Chances are you’ve got the best tech money can buy, the latest AI, and the biggest firewalls—but you’re still losing. In this episode of the DTF Cyber Podcast, Damian and Fern sit down with Vancouver-based leadership coach and "positivity troll" Dom Vogel to discuss why the weakest link in cybersecurity isn’t a line of code, it’s the person behind the keyboard.
We’re ignoring the hardware today to focus on the Human Side of Security. Dom shares his 20+ years of experience transitioning from corporate burnout to coaching cyber leaders on empathy, branding, and "connected leadership" in the AI era.
In this episode, we dive into:
* The CIO Branding Problem: A real-world story of how a helpdesk’s "likability index" changed a CEO’s perception of IT.
* The 1,000 Applicant Crisis: Why junior roles are getting overwhelmed and how to "short-circuit" the online application black hole.
* Certs vs. Communication: Why technical certifications are now "table stakes" and how soft skills are the real differentiator in 2026.
* Authentic Leadership: Why vulnerability is a leader’s most powerful tool for building trust and mental resiliency within teams.
* Personal Brand vs. Reputation: Understanding the "visceral emotional reaction" people have to your name.
Connect with Dom Vogel:
LinkedIn: https://www.linkedin.com/in/domvogel/
Website: https://www.vogelleadershipcoaching.com
Subscribe to DTF Cyber: Don't miss our upcoming deep dive into 2026 Cyber Salaries and the "AI Premium" in Episode 37!
Video Timestamps
00:00 – The Weakest Link: Tech vs. Humans
02:18 – Meet Dom Vogel: The Ball Cap & Beard Guy
03:33 – The CIO Branding Problem: A Helpdesk Story
06:12 – Translating Risk into "Boardroom Conversation"
08:12 – The 1,000 Applicant Problem: Standing Out in Noise
10:07 – Why Applying Online is a "Black Hole"
12:23 – Technical Skills are Now "Table Stakes"
14:51 – Photography & Networking: Fern’s Origin Story
19:05 – Stop Investing Only in Certs
21:07 – Vulnerability: A Leader’s Most Powerful Tool
24:42 – Story: The Helpdesk Manager Who Loved Marketing
28:01 – Will AI Replace the Human Craving for Interaction?
33:32 – Creating Psychological Safety in Your Team
37:56 – The Janitor Test: How to Hire for Culture Fit
42:07 – Operational Leverage: Reinvesting in Your People
47:28 – The "Soft Skills" Payday: Why CISOs Need Sales Training
51:06 – Remote Work vs. Office: The Choice Matters
55:30 – What is a "Positivity Troll"?
59:54 – Personal Brand vs. Reputation: What They Say When You Leave
01:05:02 – How Content Creation Leads to Job Offers
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net
Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
In this episode, Damian, Troy, and Fern dive into the heated controversy surrounding new federal reporting mandates. We explore the "Feds vs. Firewalls" dynamic: does mandatory reporting actually help stop the bad guys, or is it just a massive resource drain on teams already fighting for their lives?
We break down the 72-hour reporting window for significant incidents and the even tighter 24-hour requirement if you decide to pay a ransom. From the ambiguity of what defines a "significant incident" to the personal liability risks for CISOs, we’re looking at the real-world implications of these 2026 directives.
Key topics include:
* The struggle between immediate threat response and mandatory paperwork.
* How the SBA size threshold might pull 30,000 "non-critical" companies into these rules.
* The "minimum viable content" framework for initial reports.
* Why the "don’t pay" mantra is harder to follow when human lives are on the line.
Timestamps
00:00 – Intro
02:46 – The Car Crash Analogy: Should you call 911 or save the body?
03:55 – Defining Critical Infrastructure: Telecom, Energy, and Gas.
04:41 – The Ticking Clock: Does the 72 hours start at detection or declaration?
05:15 – The 24-Hour Ransom Rule: What happens if you pay?
06:48 – Private Sector Concerns: Will this extend beyond the 16 critical sectors?
09:34 – The Executive War Room: Who is responsible for the communications?
10:47 – Partnering with the FBI: Intel sharing vs. criminal investigation
12:23 – Global Context: The EU’s 24-hour "Early Warning" requirement
15:03 – The Resource Drain: Why incident responders are in revolt
16:59 – CISA vs. FBI: Simplifying the reporting paperwork
20:49 – The ROI of Reporting: What’s in it for the private company?
21:49 – The 30,000 Entity Controversy: Mid-sized companies as "covered entities"
25:56 – Cyber Awareness: Learning from past incidents to prevent future attacks
28:56 – "Minimum Viable Content": Reporting when facts are still changing
34:00 – Legal Risks: Consent to search and "anything you say can be used against you"
36:59 – The "Office Space" Effect: Bureaucracy vs. Collaboration.
40:41 – Voluntary vs. Mandated: The role of ISACs and InfraGard.
48:22 – The Moral Dilemma: Why outlawing ransom payments is complicated
51:13 – 2026 Deadlines: Upcoming CISA Town Halls and feedback loops.
54:33 – Career Implications: Will GRC finally get the respect it deserves?
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net
Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
In this episode of the DTF Cyber Podcast, Damian, Troy , and Fern dive into the rapid and often confusing shift from tools like Clawdbot to Moltbot and finally OpenClaw. They discuss why these autonomous agents are more than just a productivity trend—they represent a significant new attack surface for the modern enterprise.
From the "Toddler with a Chainsaw" analogy to the risk of "Shadow AI" in the workplace, we break down the security implications of giving AI bots unfettered access to your network and credentials.
00:00 – Intro
01:19 – The rebranding maze: From Clawdbot to OpenClaw
02:35 – What is an AI bot? First impressions of autonomous control
05:02 – The "Poor Installation" risk and isolated environments
07:21 – The "Age of Ultron" scenario: Efficiency vs. Security
08:45 – Privacy concerns: Bots with access to banking and travel rewards
10:15 – The Starbucks test: Automation vs. user friction
12:15 – When AI goes rogue: Extortion and covering tracks in closed environments
16:04 – Third-party AI risk and the lifespan of autonomous agents
18:24 – Shadow AI: Bots as the new high-tech "mouse jiggler"
20:19 – Inherited Identity: When bots gain your admin privileges
21:40 – Advice for Organizations: How to check your environment for OpenClaw
26:36 – A nightmare for the SoC: Signals, logs, and new attack surfaces
28:53 – 6,000 actions a minute: Why human analysts can't keep up
37:38 – The "Toddler with a Chainsaw" warning
42:07 – Action Items: Three steps to secure AI in your organization
55:35 – Lessons from outages: Why you shouldn't "open the world" on day one!
-
Is the constant wave of alerts keeping you up at 3 a.m.?
In this episode of the DTF Cyber Podcast, industry veterans Damian, Troy, and Fern dive deep into the reality of mental health and burnout in the cybersecurity industry. Special guest CISO, Vito Rocco jumps deep into this conversation.
With 78% of professionals feeling stressed out and 62% citing alert overload as a primary cause, it's clear the industry needs a culture shift. We discuss the pressures of catastrophic risk , the fear of missing critical alerts, and actionable strategies for leaders and analysts to combat fatigue—from tuning systems to building empathy.
Plus, we explore the importance of diverse leadership and setting personal boundaries in a 24/7 world. If you are feeling stressed out and think you need help, please don't go through it alone—seek support from friends, leadership, or a mental health professional.
Timestamps:
00:00 - Intro: The reality of cybersecurity exhaustion.
04:19 - 78% of the industry is stressed: The anticipation and reality of major incidents. 07:33 - The hidden stress of the SOC: Alert overload, perfectionism, and the fear of missing the "big one."
12:50 - Building the pipeline: Training talent from within vs. hunting for unicorns. 15:06 - Beating alert fatigue: How to automate, tune the noise, and grow from entry-level to senior analyst.
18:24 - Burnout isn't just about workload: Why empathy and recognition from leadership matter.
23:05 - Building a support system: The importance of therapy and talking it out.
25:05 - Leadership strategies: Connecting with your team beyond transactional work. 35:37 - Why you must use your PTO (and the trap of "Unlimited PTO").
42:25 - Setting personal boundaries and managing communication in a 24/7 global team.
53:07 - Using turnover rates as a measurement for team health.
1:07:48 - The power of diverse leadership and the rise of female CISOs.
1:18:01 - Conclusion and final thoughts on seeking help.
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net
Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
2026 is here, and the cybersecurity job market is evolving. Whether you are trying to break into the industry or land your next senior role, the playbook has changed.
In this episode of the DTF Cyber Podcast, Fern and Troy are joined by Gary Perkins (CISO at CISO Global) to break down 8 actionable steps you can take right now to jumpstart your career. From building public red team projects to mastering new attack toolchains like the Flipper Zero, we cover the technical and soft skills that hiring managers actually look for.
We also dive into why networking is your #1 asset, how to contribute to open source projects, and why "learning to script" is non-negotiable for modern security pros.
🚀 In this episode, we cover:
Why you need a public GitHub portfolio (even if you aren't a dev).
How to legally perform "hunts" in your current job to gain experience.
The difference between "scripting" and "developing" and why Python/Bash helps.
Why reading non-cyber books can actually make you a better CISO.
👇 Jump to the 8 Career Hacks:
00:00:00 - Intro: Welcome back to 2026!
00:01:02 - Meet Gary Perkins, CISO at CISO Global
00:07:43 - #1: Build One Public Red Team Project Quarterly
00:14:00 - #2: Master a New Attack Toolchain (Flipper Zero, Bloodhound, etc.)
00:21:16 - #3: Contribute to Open Source Security Projects
00:29:16 - #4: Perform a Weekly Hunt in a Real Environment
00:43:35 - #5: Learn to Script Your Own Tools (Python & Bash)
00:51:18 - #6: Network Like Your Career Depends On It
01:02:17 - #7: Read a Non-Cyber Book (The Phoenix Project, Leaders Eat Last)
01:07:42 - #8: Teach Something Publicly
01:16:20 - Bonus Resource: The Threat Intelligence Support Unit (TISU) Cohort
📚 Resources & Mentions:
Book: The Phoenix Project
Book: Leaders Eat Last by Simon Sinek
Organization: Threat Intelligence Support Unit (TISU) - Free Cybersecurity Cohort
https://www.eventcreate.com/e/tisu8
Connect with the Guest: Gary Perkins (CISO Global)
https://www.linkedin.com/in/perkinsgary/
Subscribe for more no-nonsense cyber insights! #Cybersecurity #InfoSec #CareerAdvice #RedTeam #BlueTeam #CISO #TechCareers #2026
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net
Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
Is 2026 the year AI takes over everything—including the crimes? 🤖💸
In the final episode of 2025, Damian and Troy break down their Top 8 Cyber Predictions for 2026. From AI agents executing 90% of breaches to ransomware payouts potentially hitting half a billion dollars, the future of cybersecurity is moving fast. We also discuss the "Harvest Now, Decrypt Later" threat, why your LinkedIn profile picture might already be a lie, and the new $150k entry-level salary standard.
Plus, we’re ending the year with a GIVEAWAY! 🎁 Drop your 2026 prediction in the comments—for every 10 predictions we receive, we’re picking a winner for some exclusive (and secret) DTF Cyber swag.
In this episode, we cover:
Why AI agents (not humans) will be behind 9 out of 10 breaches.
The terrifying potential for a $500M ransomware payout.
How deepfakes will finally cause a major real-world crisis.
"AI Laundering": The new frontier for cleaning dirty crypto.
Why entry-level cyber jobs are hitting $150k salaries (and the catch).
🔔 Subscribe for more unfiltered cybersecurity insights!
⏱️ TIMESTAMPS:
00:00 – Intro: Did AI change the world in 2025?
01:58 – Prediction #1: 90% of breaches will be executed by AI Agents.
07:40 – Prediction #2: Ransomware payouts will break records ($500M?!).
15:15 – Prediction #3: Identity becomes the central pillar (Passkeys backfire?).
20:00 – Prediction #4: A deepfake event will hit major global news.
24:45 – Prediction #5: "Harvest Now, Decrypt Later" goes mainstream.
28:40 – Prediction #6: Mandatory AI Agent audits for federal contractors.
32:30 – Prediction #7: "AI Laundering" becomes the new money laundering.
38:15 – Prediction #8: Entry-level AI Cyber jobs will start at $150k.
45:00 – Bonus Prediction: The consolidation of massive data analytics.
47:00 – GIVEAWAY DETAILS: How to win exclusive swag!
#CyberSecurity #AIPredictions #Ransomware #Deepfakes #TechTrends2026 #InfoSec #Podcast #DTFCyber #AI
-
The 2025 Cyber Christmas List That Actually Gets You Hired
Happy holidays, nerds!
Your mom just spent $79 on a “hacker hoodie” that says “Trust Me” in Comic Sans…
…while real juniors are out here making six figures with a $29 Yubikey and a Raspberry Pi.
In Episode 30, Damian, Troy & Fern save your Christmas with the only cyber gifts worth buying in 2025:
• Under $50 stocking stuffers that turn into paychecks
• $50–$150 tools that get you interviews
• $150–$300 big wins that scream “I’m serious”
• Free gifts that slap harder than anything paid
• And the absolute coal you should burn before anyone unwraps it
Timestamps
00:00 Intro: The "Hacker Hoodie"
01:37 Why "Hacker" Clothing is Bad OpSec
06:01 The Worst Gifts: "Hacking for Dummies"
08:59 Beware of Knockoff Tools & Malware
12:15 Danger: Pre-loaded Hacking USBs
13:49 Best Gifts Under $100
14:00 Book Rec: The Hardware Hacker
14:20 YubiKeys for MFA
16:21 Lockpicking Sets & Physical Pen Testing
21:42 USB Rubber Ducky
23:25 USB Data Blockers (Juice Jacking Protection)
25:05 RFID Blocking Wallets
28:06 Raspberry Pi Projects (Honeypots & VPNs)
28:45 Best Gifts $100 - $200
30:30 Packet Squirrel: Man-in-the-Middle Attacks
34:20 Flipper Zero: Radio Frequencies & Rolling Codes
39:34 Certifications: Security+ & Network+
44:24 Cloud Credits & AI Subscriptions
46:26 Unlimited Budget Gifts
47:25 Black Hat & DefCon Tickets
48:14 Mac vs. Windows vs. Linux for Hacking
51:53 Giveaway: The "Hacker" Hoodie
57:58 Holiday Security Warning
Giveaway: Comment your dream (or worst) cyber gift — we’ll randomly pick one subscriber for a genuine “hacker” hoodie (minimum 10 comments).
Everything here is our personal hot takes — not our employers, not legal advice.
Just three idiots with mics trying to keep you from bad gifts.
— Damian, Troy & Fern
DTF Cyber Podcast
#CyberGifts #Christmas2025 #CyberSecurity #Infosec #Career
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net
Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
2.5 billion daily account-takeover attempts.
That’s one every 34 microseconds.
Damian, Troy & Fern go full send-it mode on the 2025 ATO playbook: SIM swaps, session-token theft, MFA fatigue bombing, rogue QR codes, deep-fake family scams, and the OAuth tokens you granted in 2017 that are still wide open.
Timestamps
00:00 – Intro
05:20 – SIM swaps & losing your phone number in minutes
09:40 – Why password resets are useless (session tokens survive)
14:20 – MFA fatigue / push-notification bombing
19:10 – OAuth & old third-party app tokens nobody revokes
24:30 – Rogue QR codes at restaurants & hotels
30:15 – Enterprise reality – weekly O365 token theft
37:40 – Non-human identities & service-account sprawl
44:50 – Passkeys in 2026 – will increase ATO risk if misconfigured
51:00 – Public Wi-Fi, juice jacking & QR code myths
58:00 – Closing thoughts
Discord (coming soon)
#AccountTakeover #SIMSwap #MFAFatigue #CyberSecurity #Infosec #ZeroTrust
https://www.fcc.gov/consumers/scam-alert/grandparent-scams-get-more-sophisticated
https://newsroom.servicenow.com/press-releases/details/2025/ServiceNow-to-Expand-Security-Portfolio-With-Acquisition-of-Vezas-Leading-AI-native-Identity-Security-Platform/default.aspx
https://thehackernews.com/2025/04/customer-account-takeovers-multi.html
https://www.gartner.com/reviews/market/identity-threat-detection-and-response-itdr
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net
Everything here is our personal hot takes — not our employers, not the vendors we roast, not legal advice. Just three idiots with mics trying to keep you from getting pwned.
-
Anthropic’s new report is a wake-up call: hackers turned Claude into a near-autonomous espionage agent that handled 90% of the attack chain by itself. The future is officially here… and it’s terrifying.
We go deep on how they did it, why current defenses are cooked, and what defenders need to do yesterday.
Timestamps
00:00 – The scariest line Anthropic has ever published
01:17 – “Set it and forget it” – the new AI attack paradigm
04:04 – Breaking attacks into tiny, undetectable chunks
13:48 – Attackers flipped the script: 90% AI, 10% human
17:26 – Why defense has to 10x its speed right now
27:11 – SOC automation, log nightmares & the data problem nobody’s solved
33:18 – Thousands of API calls/sec + AI writing its own evasion logic
40:31 – Regulation debate: should frontier models be locked down?
51:38 – Back to basics… but the basics just changed forever
55:21 – Raw reactions: “Is this even real?”
58:09 – The silver lining (yes, there is one)
01:03:13 – When’s the next one coming?
Like if this freaked you out, comment your biggest fear for 2026, and smash subscribe — the AI cyber war just started.
#AICyberAttack #ClaudeAI #Cybersecurity #AgenticAI # infosec
http://cyberpodcast.net
Spotify: http://spotify.cyberpodcast.net
Apple: http://apple.cyberpodcast.net
X: https://x.com/dtfcyberpodcast
IG: https://www.instagram.com/dtfcyberpodcast/
Linkedin:
DTF: https://www.linkedin.com/company/dtf-cyber-podcast/
Damian: https://www.linkedin.com/in/damianchung/
Troy: https://www.linkedin.com/in/kosovotroy/
Fern: https://www.linkedin.com/in/fernrojasaz/
Business Inquiries: dtf at cyberpodcast dot net
- Visa fler
