EP 115 - SDP 10: Separation of Privileges

EP 115 - SDP 10: Separation of Privileges

Author: Kip Boyle February 6, 2024 Duration: 15:46
Your Cyber Path: How to Get Your Dream Cybersecurity Job
BusinessCareersEducationHow ToSelf ImprovementTechnology

SDP 10: Separation of Privileges

About this Episode

In this episode of the Your CyberPath podcast, Kip Boyle and Jason Dion delve into the concept of the separation of privilege as a vital component of their series on security architecture and design principles.

Jason and Kip talk about how the separation of privilege illustrates its significance through real-world examples. They also help showcase its application in technologies, military operations, and financial transactions.

Jason also draws from his military experience to underscore the critical role of separation of privilege in SOVOT (System Operations Verification and Testing) environments.

Finally, they underscore its importance in password management systems. They emphasize its pivotal role in upholding cybersecurity standards. Understanding these principles is essential for building robust security frameworks.

Relevant websites for this episode

The NIST Separation of Duty (SOD) - https://csrc.nist.gov/glossary/term/separation_of_duty

Other relevant Episodes

EP 94: Ten Security Design Principles (SDP)

EP 96: SDP 1: Least Privilege

EP 98: Security Design Principles 2: Psychological Acceptability

EP 101: SDP 3: Economy of Mechanism

EP 103: SDP 4 Compromise Recording

EP 105: SDP 5: Work Factor

EP 107: SDP 6: Failsafe Defaults

EP 109: SDP 7: Complete Mediation

EP 111: SDP 8 open Design

EP 113: SDP 9 — Least Common Mechanism


Navigating a career in cybersecurity can feel like a maze without a clear map. Your Cyber Path: How to Get Your Dream Cybersecurity Job, hosted by Kip Boyle, cuts through the noise by focusing on the perspective of the people who actually make hiring decisions. This isn't just generic advice; it's a direct line to understanding what employers are truly looking for in candidates, from entry-level roles to advanced positions. Each episode delves into the practical, often unspoken, steps needed to build your skills, craft your resume, and ace interviews in this competitive field. You'll hear concrete strategies for bridging the gap between where you are now and that ideal job, all framed within the broader contexts of business, technology, and personal growth. Tune into this podcast for honest conversations that translate complex career pathways into actionable plans, helping you move forward with confidence. Whether you're considering a pivot or aiming to advance, the guidance here is rooted in real-world hiring dynamics, making it a valuable resource for anyone serious about building a future in cybersecurity.
Author: Language: English Episodes: 100

Official website RSS
Your Cyber Path: How to Get Your Dream Cybersecurity Job
Podcast Episodes
EP 45: Live Resume Review [not-audio_url] [/not-audio_url]

Duration: 42:24
Today Kip Boyle is joined with Glen Sorensen to look at three anonymous, but real, resumes of people trying to get their dream cybersecurity job. What makes a good resume? How can your resume start making you appear irre…
EP 43: Threat Intelligence [not-audio_url] [/not-audio_url]

Duration: 1:26:50
Kip Boyle and Wes Shriner talk more about the Service Catalog specifically number 15, Threat Intelligence with the help of our two guests, Mike Sheward, an enthusiastic Information Security Leader, and Gary Brown, an Int…
EP 42: Strategy through Architecture [not-audio_url] [/not-audio_url]

Duration: 1:04:09
Kip Boyle and Wes Shriner talk more about the Service Catalog specifically number 10, Security Strategy in Architecture with the help of our guest, Peter H. Gregory. He is has written about 50 different articles and book…
EP 41: Inside Secrets from a Network Pentester [not-audio_url] [/not-audio_url]

Duration: 59:42
Kip and Wes are on the vacation this week, so instead, you get a very special episode where we are sharing with you an interview we have done in one of our recent Your Cyber Path Office Hours in our Masterclass, How to g…
EP 40: Security Awareness & Training [not-audio_url] [/not-audio_url]

Duration: 1:04:22
Looking for a nontechnical job in Cybersecurity?! This might be a good option for you! In today's episode, we have a very special guest, Gabriel Friedlander, the founder of Wizer Security and Co-founder & CTO of ObserveI…
EP 39: It all begins with policy [not-audio_url] [/not-audio_url]

Duration: 1:15:10
All security begins with a Policy! In today's episode, we will be exploring a Policy Administrator position and what you should know about it with the help of our friend Torin Larsen. Download the slides here: https://tr…
EP 38: Wes' Job Hunt [not-audio_url] [/not-audio_url]

Duration: 41:09
Wes recently went looking for his dream cybersecurity job. We’re going to tell you his story. There are quite a few lessons he learned and will share with you. You can see us on YouTube: https://www.youtube.com/YourCyber…
EP 37: Security Operations Overview [not-audio_url] [/not-audio_url]

Duration: 1:16:22
Some of the best "entry level" cybersecurity jobs are found in the Security Operations department. In this episode, Kip and Wes will give you a tour with the help of our guest, Steve Winterfeld. NEW: You can see us (and…
EP 36: Product Security Overview [not-audio_url] [/not-audio_url]

Duration: 42:30
Today, we’re going to explain what the Product Security organizational unit does. And we’ll do that with the help of our friend and expert Matt Clapham. NEW: You can see us (and the slides) on YouTube: https://www.youtub…

«1...45678910»