This is a follow up from https://cje.io/2021/03/28/my-office-setup which is worth reading first if you haven't yet... Everything in Part 1 is still in play - Part 2 talks through some optimizations and a couple of additions.

I've watched Heath's journey as a education and community powerhouse, and more recently as an entrepreneur with tcm-sec with much interest and respect and was super excited for this conversation.

As WFH was going from novel to normal, the thought occurred to me that "virtual semiotics" was quickly going to become a thing... The equivalent of the how to dress, where to sit, how to speak type advice executives get taught, but for a world which is virtual by default.

I know you do security stuff with computers and my Twitter/Facebook/Instagram/etc has been hacked! It's posting all kinds of strange stuff that isn't from me. What do I do to stop this???

Outrage is cheap and of fleeting value. Introspection and change are expensive, precious, and resilient... and very easy to miss if everything is the other guy’s fault.

My family and I are straight-up blessed with how we've fared this year, and I'm incredibly thankful for the myriad of people and things - but whichever way you cut it, 2020 was a dense and challenging year and not one I’d rush to repeat.

"I'm exactly the same as I was nine months ago, but I'm also completely different."

Seasoned experts get as much out of the “feet on the street” insights and energy of younger mentee as the mentee gets from their wisdom of the mentor.

7. Expect and plan for mistakes. Expect mistakes, and plan to capture and mitigate them quickly. After all, to err is human. Establishing a vulnerability disclosure and/or bug bounty

2000s – Possibility. 2010s – Impact. 2020s – Legacy.

“You can achieve less than you think in a year and more than you think in a decade.”

When building a product or company that’s designed to disrupt a sleepy incumbent there are four phases of typical interaction you’ll have with your future competition.

99% of good infosec is equivalent to remembering to wash your hands after you use the bathroom. As an industry, we should be working to make that easier.

Life is about learning and building. The Tall Poppy Group is a platform and a brand to learn and build.

I’ve had moments over the past months, just like most other people I know, where I’ve “looked down” (i.e. think of the scene in Shrek where they are crossing the bridge and Shrek instructs donkey not to look down… that kind of “looked down”).