leadership
On insight, responsibility, and ownership
Recognizing a problem qualifies you to be a part of the solution. Refusing to be a part of the solution disqualifies you from complaining about the problem.
Casey Ellis
Hacker, founder, advisor, and pioneer of crowdsourced security. Founder of Bugcrowd, co-founder of disclose.io, principal of Tall Poppy Group. Board member at SRLDF.
leadership
Living intentionally
Happy New Year! Pretty much everyone I’ve spoken agrees on the same thing: 2017 was a turbulent, change-filled year packed with as many high-highs as it had low-lows… but it’s over now, we’ve turned the clock back to zero, and the 2018 has nothing but potential, impact,
vulnerability-disclosure
Thoughts on the vault7 CIA/Wikileaks disclosures
Wikileaks’ release of thousands of confidential CIA documents today is yet another demonstration of our just how vulnerable the cybersecurity domain is. Unless we do a better job identifying our vulnerabilities, attackers – be they criminals, hacktivists, hobbyist, or nation state agencies – can and will take advantage of them. What’s
Cybersecurity
My cybersecurity predictions for 2017
If 2016 did anything for cybersecurity, it was to prove that truth can end up wayyyyyyy stranger than fiction (where fiction, of course, are end of year prediction pieces). I have plenty of opinions of where I think it’ll get weird next year, but instead I think Mike Mimoso’
business-strategy
How to disrupt a sleepy incumbent
When building a product or company that’s designed to disrupt a sleepy incumbent there are four phases of typical interaction you’ll have with your future competition.
Cybersecurity
Solve 99% of Your Infosec Problems with this One Weird Trick!
99% of good infosec is equivalent to remembering to wash your hands after you use the bathroom. As an industry, we should be working to make that easier.
leadership
The three levels of input
A great tip one of our board members gave me a while back was that, as leadership and influence grow, it becomes increasingly important to make sure your team knows the type of input you’re giving them.
mindset
People are awesome...
…and I’m not just talking about those kick-ass Youtube videos that pop up each year. I have a core belief that people are intrinsically valuable. Sometimes the manifestation of that value — their extrinsic value — speaks to the intrinsic, sometimes it doesn’t. That’s irrelevant… the intrinsic value is
entrepreneurship
What a day! (Bugcrowd Series B)
So, Bugcrowd announced some pretty big news today… We closed our Series B financing of $15M, announced some amazing new partners in Salesforce and Industry Ventures. Here’s what it looked like on the inside… For those who haven’t done this before, it’s the CEO’s job to
Cybersecurity
Pain of staying the same > Pain of change = Change
Cybersecurity has long been a challenge lead from the top down, but as heat increases in the consumer market and hacking becomes dinner-table conversation at non-geek dinner-tables, I wonder...
vulnerability-disclosure
On the U.S. Government and bug bounties
My favorite thing about going to conferences is establishing the underlying trends behind the questions I’m asked. We’re only half-way through RSAC/BSides week, and already the dominant question is clear: When is the government going to start a bug bounty program? Here’s my answer: The government
entrepreneurship
Repeat after me — I am not ashamed of sales and marketing!
I find that people are often ashamed, almost embarrassed to talk about sales and marketing. “Yeah, we’re going OK, we’re actually… kind of, you know thinking about how to get better at marketing.” OR “I’m thinking about personal branding… Nothing douchey or anything…” It’s mostly because