EP 94: Ten Security Design Principles (SDP)

EP 94: Ten Security Design Principles (SDP)

Author: Kip Boyle April 14, 2023 Duration: 33:10
Your Cyber Path: How to Get Your Dream Cybersecurity Job
BusinessCareersEducationHow ToSelf ImprovementTechnology

https://www.yourcyberpath.com/94/

To start off this episode, our hosts go on a short chat about ChatGPT and how it can be useful for cybersecurity professionals and job hunters. They also highlight the difference between transitional and transformational tech.

Then, they get into the episode topic which is an introduction for a 10-part series that is going to come out in the following months which is Security Design Principles.

Kip mentions in the beginning how these design principles are not laws, but they are very important guardrails for the safety of any system, while Jason highlights that they are best practices that every organization should aim to implement to avoid future implications.

Defense in depth is like layering your protections, and it has become extremely important to do since the deperimeterization of our networks where we have devices all over the place, and not just in separate perimeters.

Security Design Principles are independent of technology. They are about strategies that can be applied to guide your work in many aspects.

Then, our hosts go over some simple examples of the Security Design Principles like Fail-safe Defaults and Least Privilege.

In the end, you must realize that when you plan for implementations ahead of time, it is always a huge time, money, and effort-saver for you and your organization.

What You’ll Learn

●    Is AI going to take over jobs?

●   What certifications mention Security Design Principles?

●   What is defense in depth?

●   What is the principle of fail-safe defaults?

Relevant Websites For This Episode

●   Saltzer and Schroeder's Design Principles

●   www.YourCyberPath.com


Navigating a career in cybersecurity can feel like a maze without a clear map. Your Cyber Path: How to Get Your Dream Cybersecurity Job, hosted by Kip Boyle, cuts through the noise by focusing on the perspective of the people who actually make hiring decisions. This isn't just generic advice; it's a direct line to understanding what employers are truly looking for in candidates, from entry-level roles to advanced positions. Each episode delves into the practical, often unspoken, steps needed to build your skills, craft your resume, and ace interviews in this competitive field. You'll hear concrete strategies for bridging the gap between where you are now and that ideal job, all framed within the broader contexts of business, technology, and personal growth. Tune into this podcast for honest conversations that translate complex career pathways into actionable plans, helping you move forward with confidence. Whether you're considering a pivot or aiming to advance, the guidance here is rooted in real-world hiring dynamics, making it a valuable resource for anyone serious about building a future in cybersecurity.
Author: Language: English Episodes: 100

Official website RSS
Your Cyber Path: How to Get Your Dream Cybersecurity Job
Podcast Episodes
EP 55: Which cybersecurity certifications should you get? [not-audio_url] [/not-audio_url]

Duration: 37:59
https://www.yourcyberpath.com/55 In this episode, we are focused on the ever-divisive question of the importance of certifications in the cybersecurity industry. The answer to this question has changed over time from cer…
EP 54: New Cohost Jason Dion [not-audio_url] [/not-audio_url]

Duration: 11:26
For the past year, my good friend Wes Shriner has been my cohost. We’ve created some great episodes together, which I hope have helped you. These days Wes is super busy in his new role as Chief Information Security Offic…
EP 52: Replay of "Security Awareness Training" [not-audio_url] [/not-audio_url]

Duration: 1:04:10
This week we are highlighting one of our popular episodes! First covered back in Episode 40, we covered the topic of Security Awareness Training, and wanted to revisit it again in this epsiode. Looking for a nontechnical…
EP 51: What does it take to lead a Cybersecurity Program? Part 2 [not-audio_url] [/not-audio_url]

Duration: 47:13
In episode 50, we showed you the first half of Kip's presentation with Ritsumeikan Asia Pacific University, where Kip talked with the students about Cybersecurity Management. This is the second half of this 2 part series…
EP 50: What does it take to lead a Cybersecurity Program? [not-audio_url] [/not-audio_url]

Duration: 50:31
"Recently, I was asked to be a guest speaker for Professor Kevin Cooney at Ritsumeikan Asia Pacific University, to talk with his students about Cybersecurity Management. I have split this up into two sections, the first…
EP 49: Why Entry Level Jobs Aren't Really Entry Level [not-audio_url] [/not-audio_url]

Duration: 20:40
In today’s episode I want to answer a common question that I get: “Why do all the cybersecurity job postings ask for 5 years of experience but they're labeled as entry level positions?” Can playing capture the flag also…
EP 48: Anatomy of a Ransomware Attack [not-audio_url] [/not-audio_url]

Duration: 1:00:42
Due to recent Cyber Attacks, we are going to share a replay of a continuing legal education course that Kip Boyle and Jake Bernstein have recently done. In this session, they will walk you through two different ransomwar…
EP 47: How to Use Your Transferrable Skills [not-audio_url] [/not-audio_url]

Duration: 35:48
Our guest Marc Menninger joins Kip Boyle in this episode. Marc is the Director of Information Security with A Place For Mom. He is also a cybersecurity hiring manager. Listen to the tips he gives on how to use your trans…
EP 46: ATS Secrets--Boost your Resume with these Clever Tips [not-audio_url] [/not-audio_url]

Duration: 23:20
Our guest Arthureen Brown joins Kip Boyle in this episode. Arthureen is a Business Information Security Officer (BISO) with Altria. She is also a cybersecurity hiring manager. Listen to the tips she gives on how to get y…

«1...345678910»