A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Subscribestar or Patreon

Search Irongeek.com:

Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:


What Color Is Your Cyber Parachute? - Cliff Neve, Candace King, Kazi Islam, Trey Maxam, Amélie Koran BSides NOVA 2018 (Hacking Illustrated Series InfoSec Tutorial Videos)

What Color Is Your Cyber Parachute?
Cliff Neve, Candace King, Kazi Islam, Trey Maxam, Amélie Koran
BSidesNOVA 2018

This moderated panel will address the process of finding your niche in a broad cyber field and will flow through three phases: 1) Career Paths. The panel will first briefly introduce/discuss the NICE Framework and how it pertains to careers in cybersecurity. 2) Know Thyself. Next, the panel will discuss how to know if you’re going to be happier and/or a better fit for being a either a: cyber leader, cyber project manager, auditor, technical tester, SOC analyst, etc. 3) Start With the End In Mind. The panel will then discuss what traits, education, and certifications are valued for each type of career path. Panel Composition: • Moderator: Cliff Neve, Managing Partner at MAD Security • Amélie Koran, Deputy CIO, Health and Human Services Dept of the Inspector General • Candace King, Security Engineer/Sales Engineer, MAD Security • Trey Maxam, Event Detection Branch Chief, US Coast Guard Cyber Security Operations Center • Kazi Islam, Senior Security (Firewall) Engineer, House of Representatives (Contractor)

Cliff Neve, Candace King, Kazi Islam, Trey Maxam, Amélie Koran

Cliff Neve has 24 years of experience in IT and IT security. His 20 years of Coast Guard experience included serving as Chief of Staff at Coast Guard Cyber Command and Deputy CIO of the White House Communications Agency. Since joining MAD Security in 2013, Mr. Neve has led hundreds of cyber security engagements including penetration tests, red team engagements, and social engineering/phishing assessments. He holds an MS in Electrical Engineering from the University of Washington, an MS in Information Leadership from National Defense University, and a BS in Electrical Engineering from the US Coast Guard Academy. He is a Certified Chief Information Security Officer (C|CISO), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), and Project Management Professional (PMP). He is also a graduate of US Cyber Command’s Joint Advanced Cyber Warfare Course.

Candace King is a Security Engineer and Sales Engineer for MAD Security. Over the past three years she has served as a Security Incident and Event Management (SIEM) specialist, conducting assessments ranging from one week to over 8 months with clients ranging from Fortune 200 companies, US Coast Guard, Division 1 Universities, hospitals, and many other verticals. Candace has also conducted firewall security assessments and received her Check Point Certified Systems Administrator and Expert (CCSA/CCSE). Prior to joining MAD, Candace worked for Solutionary, where she managed the ActiveGuard SIEM and security appliances including Check Point, Juniper, PAN, and Fortigate. She also worked for Starz Entertainment where she reviewed firewall and system logs using QRadar and deployed a multi-imaging station to streamline their re-imaging process. She holds an Associate of Applied Science degree in Information Security & Digital Forensics from the College of Western Idaho. She also is a Certified Ethical Hacker (CEH) and a Computer Hacking Forensic Investigator (CHFI).

ENS Trey Maxam is currently stationed at Coast Guard Cyber Command, Washington, DC, as the Cyber Security Operations Center Event Detection Branch Chief. Additional duties include CGCYBER Battle Watch Captain and Coast Guard Academy Liaison. Previously, he attended the Coast Guard Academy in New London, CT, graduating with a double major in Electrical Engineering and Operations Research and serving as the captain of the Coast Guard Academy Cyber Team. ENS Maxam completed a capstone project on the vulnerabilities of the Maritime Vessel Automatic Identification System (AIS). His capstone resulted in several demonstrated attacks that could be used against the Coast Guard or commercial vessels as well as the documentation of the weaknesses in Coast Guard's implementation of encrypted AIS. ENS Maxam is also a graduate of US Cyber Command's Joint Advanced Cyber Warfare Course.

Kazi Islam is currently a Senior Security Engineer responsible for maintaining and optimizing the Enterprise Security Infrastructure for the House of Representatives, and has spent over 20 years in various positions in the IT Industry gaining the knowledge and experience to become a change agent within any environment. Prior to working at House of Reps, he was a Lead Firewall Engineer working for the Bureau of Labor Statistics, and also worked for Verisign Inc and CitiBank. Kazi has also ran a boutique consulting firm in New York. Kazi has received certifications in Security+ & ITILv3 Foundation.

Amélie E. Koran serves as the Deputy Chief Information Officer for the U.S. Department of Health and Human Services, Office of the Inspector General. Amélie’s path to DHHS OIG took her the long way around, through multiple industry sectors, academia, and the public sector. Her professional experience includes time spent at The Walt Disney Company, Carnegie Mellon University CERT/CC, Mandiant, The World Bank, and The American Chemical Society. She began her time in the public sector as Lead Enterprise Security Architect for the U.S. Department of the Interior, eventually moving on to lead Continuous Diagnostics and Mitigation implementation for the U.S. Treasury Department. Amélie later spent time on a leadership development rotation as part of the President’s Management Council Fellowship serving the Federal CIO in supporting cybersecurity policy analysis and legislative review, where she took an active role in the government-wide Open Data Initiative and helped in giving “birth” to the United States Digital Service (USDS). She’s an ardent advocate for innovative approaches to hiring talent and rationally applying security strategies and technologies for the Federal Government space.

Back to BSides NOVA 2018 video list

Printable version of this article

15 most recent posts on Irongeek.com:

If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2020, IronGeek
Louisville / Kentuckiana Information Security Enthusiast