🚨 Only have one day to train? Make it count.

Join us on at OWASP Global AppSec USA 2025 in Washington, D.C. for a full day of expert-led, hands-on security training.

🎯 Whether you're a builder, breaker, defender, or manager, there's a course to help you go deeper.

🔗 Register: https://owasp.glueup.com/event/131624/register/

#OWASP #AppSec #CyberSecurity #InfosecTraining #AIsecurity #ThreatModeling #DevSecOps #OWASP2025 #WashingtonDC #SecurityTraining #PrivacySecurity

In unserem Training erfährst Du, wie Sicherheitsvorfälle erkannt, bearbeitet und für forensische Untersuchungen vorbereitet werden. Wir zeigen Dir, wie der ISO-27035-Standard als Leitfaden dient und welche technischen und organisatorischen Maßnahmen dabei eine Rolle spielen.

Themen im Detail:
• ISO-27035-Standard für Incident Response
• Voraussetzungen und organisatorischer Rahmen
• Umgang mit Hackerangriffen, Datenmissbrauch, Datendiebstahl & mehr
• KRITIS-relevante Anforderungen und Meldepflichten
• Forensische Untersuchungen und Threat Hunting

Nach dem Seminar weißt Du, wie Du einen Incident-Response-Prozess etablierst und digitale Spuren richtig auswertest! 🚀

Jetzt anmelden: https://cirosec.de/trainings/incident-handling-response/

#CyberSecurity #IncidentResponse #ISO27035 #DigitalForensics #ThreatHunting #KRITIS #ITSecurity #Hackerangriff #Datenschutz #SecurityAwareness #SecurityTraining #Informationssicherheit

🎟️ EARLY BIRD TICKETS ON SALE NOW!

Get ready for the ultimate cybersecurity experience at the OWASP Global AppSec US Conference, happening November 3–7, 2025 in Washington, D.C.

Training Dates: Nov 3–5, 2025
Conference Dates: Nov 6–7, 2025

https://owasp.glueup.com/event/131624/register/

#OWASP #AppSecUSA #CyberSecurityConference #OWASP2025 #Infosec #AppSec #SecurityTraining #EarlyBird #WashingtonDC

Employee cybersecurity training is no longer optional, it's a critical line of defense against ever-present digital threats

Read more 👉 https://lttr.ai/AfDd7

#SecurityTraining #ITSecurity #Cyberattack

This week I've been:

✅ Finalising a strategic partnership with a vulnerability assessment company
✅ Creating video-based security training that people actually want to watch
✅ Conducting Cyber Essentials assessments (yes, they still catch critical gaps!)
✅ Providing technical leadership to growing companies
✅ Deep-diving into AWS security best practices

Cybersecurity isn't just about the latest tools or threats – it's about building security into the fabric of how organisations operate.

The manufacturing client who was eager to learn despite having basic gaps impressed me more than the financial services firm with all the right tools but inconsistent processes.

Security culture > Security technology. Every time.

Three things that stood out this week:

🎯 Cyber Essentials still matters – Even "basic" frameworks catch significant vulnerabilities when properly implemented
🎥 Training works when it's human – Scenario-based learning beats policy recitation every single time
☁️ "Security as code" is the future – Treating security configurations with the same rigor as application code

The variety in this field never stops amazing me. In five days I touched business development, content creation, regulatory compliance, technical consulting, and professional development. Each area informed the others in ways that wouldn't be possible in a more specialised role.

Question for my network: What's been the most surprising security challenge you've encountered recently? I'm always curious about the problems others are solving.

Full weekly roundup here: https://paulreynolds.uk/weekly-roundup-partnership-training-and-cloud-security/

#CyberSecurity #InfoSec #SecurityLeadership #CyberEssentials #CloudSecurity #SecurityTraining

🎣 Social Engineering Cheatsheet: Understand the Human Attack Surface

Social engineering targets human behavior — not just systems. This cheat sheet outlines common tactics used in awareness training and authorized red team simulations.

🧠 Top Social Engineering Techniques (for educational use):

1. Phishing – Deceptive emails that trick users into clicking links or revealing credentials

2. Spear Phishing – Targeted emails with personalized content

3. Vishing – Voice-based phishing (e.g., fake IT support calls)

4. Smishing – Malicious SMS/text messages

5. Pretexting – Creating a fabricated scenario to gain trust

6. Baiting – Leaving infected USBs or tempting downloads

7. Tailgating – Gaining physical access by following authorized personnel

8. Quid Pro Quo – Offering something (e.g., IT help) in exchange for access

🔐 Defense Tips:
• Train employees with real-world scenarios
• Enforce multi-factor authentication (MFA)
• Validate requests before sharing info
• Encourage reporting of suspicious activity

Disclaimer: This content is for educational and awareness purposes only. It is not intended to promote or support unauthorized manipulation or access.

#SocialEngineering #CyberSecurity #InfoSec #SecurityAwareness #Phishing #RedTeamReady #EducationOnly #HumanFirewall #SecurityTraining

🎓 Want to share your security knowledge at @bsideschicago 2025?

Whether you've led workshops before or have always wanted to try teaching - we want to hear from you! Security is built on knowledge sharing, and YOUR expertise could help others level up their skills.

Never given a workshop? Don't let that stop you. Some of our best sessions have come from first-time presenters sharing their unique perspectives and hands-on experience.

Mark your calendar: The Workshop day for BSidesChicago is happening October 31, 2025. (Conference is Nov 1) Start brainstorming your workshop ideas now!

#BSidesChicago #InfoSec #CyberSecurity #SecurityTraining

It's that time of year again to spend a few hours on the same training videos you did last year, and the year before, and the year before that, etc...

#scrum #scrumteam #dev #developer #qa #scrummaster #productowner #hrtraining #humanresources #securitytraining #corporatesecurity #corporatetraining #Meme #memes #Humor

🦩 Living the HIGH life in DOHA!

Fun fact: Qatar's Doha airport has a 23-foot tall teddy bear lamp that weighs 35 tons! Even a flamingo feels small next to that one 😅

Speaking of larger-than-life experiences - your girl just lived it up in a Qatar Airways First Class suite! Who knew a dancing flamingo could travel so fancy? Catching some Z's at 40,000 feet before bringing my security training (and dance moves) to Hyderabad!

Next stop: India 🇮🇳
Because even fancy flamingos have work to do!

#SashaTheFlamingo #QatarAirways #FirstClass #GlobalFlamingo #SecurityTraining
✈️👑💃