Voices of the Vigilant

Forensics, Felonies, and Digital Receipts

54 min · Ayer
Portada del episodio Forensics, Felonies, and Digital Receipts

Descripción

When data “walks out the door,” the hardest part isn’t always the malware, it’s the human story behind the keyboard. We sit down with Ankara Managing Director Alyssa Lisiewski [https://www.linkedin.com/in/alyssa-l-74a8b230/], a cyber forensics and intelligence practitioner who has worked across the intelligence community, the Department of Defense, and enterprise security, and who has testified as an expert witness in federal and military courts. Together, we unpack what it really takes to follow a digital trail when the threat actor is unknown, evidence is messy, and the stakes are high. Alyssa shares how early curiosity with computers, a criminology foundation, and years of hands-on digital forensics shaped her investigative approach. We talk about the pivot from classic crime scene fascination into computer forensics, the value of mentors who take a chance on you, and the grind of working full time while earning a graduate degree. From there we get into “preventive forensics” and thinking like an adversary, how threat intelligence connects to forensic analysis, and why insider threat and insider risk are rarely just technical problems. We also go where security conversations often avoid: the psychological weight of major crimes work, what it means to see people at their worst, and why boundaries matter when compartmentalization starts to fail, especially after becoming a parent or working from home. Alyssa explains how she now blends threat actor attribution, deep forensic investigations, and post-breach litigation support, and why building flexible, sustainable roles is the future of cyber investigations. Subscribe for more practical security conversations, share this with someone building a career in digital forensics or insider threat, and leave a review so more listeners can find Voices of the Vigilant. Send us Fan Mail [https://www.buzzsprout.com/2434484/fan_mail/new] Support the show [https://www.buzzsprout.com/2434484/support] https://www.vigilantviolet.com/ www.linkedin.com/in/jessvachon1

Comentarios

0

Sé la primera persona en comentar

¡Regístrate ahora y únete a la comunidad de Voices of the Vigilant!

Empezar

2 meses por 1 €

Después 4,99 € / mes · Cancela cuando quieras.

  • Podcasts exclusivos
  • 20 horas de audiolibros / mes
  • Podcast gratuitos

Todos los episodios

22 episodios

Portada del episodio Forensics, Felonies, and Digital Receipts

Forensics, Felonies, and Digital Receipts

When data “walks out the door,” the hardest part isn’t always the malware, it’s the human story behind the keyboard. We sit down with Ankara Managing Director Alyssa Lisiewski [https://www.linkedin.com/in/alyssa-l-74a8b230/], a cyber forensics and intelligence practitioner who has worked across the intelligence community, the Department of Defense, and enterprise security, and who has testified as an expert witness in federal and military courts. Together, we unpack what it really takes to follow a digital trail when the threat actor is unknown, evidence is messy, and the stakes are high. Alyssa shares how early curiosity with computers, a criminology foundation, and years of hands-on digital forensics shaped her investigative approach. We talk about the pivot from classic crime scene fascination into computer forensics, the value of mentors who take a chance on you, and the grind of working full time while earning a graduate degree. From there we get into “preventive forensics” and thinking like an adversary, how threat intelligence connects to forensic analysis, and why insider threat and insider risk are rarely just technical problems. We also go where security conversations often avoid: the psychological weight of major crimes work, what it means to see people at their worst, and why boundaries matter when compartmentalization starts to fail, especially after becoming a parent or working from home. Alyssa explains how she now blends threat actor attribution, deep forensic investigations, and post-breach litigation support, and why building flexible, sustainable roles is the future of cyber investigations. Subscribe for more practical security conversations, share this with someone building a career in digital forensics or insider threat, and leave a review so more listeners can find Voices of the Vigilant. Send us Fan Mail [https://www.buzzsprout.com/2434484/fan_mail/new] Support the show [https://www.buzzsprout.com/2434484/support] https://www.vigilantviolet.com/ www.linkedin.com/in/jessvachon1

Ayer54 min
Portada del episodio Three Pivots In

Three Pivots In

A lot of people think cybersecurity has one “right” entry point: computer science degree, IT help desk, then a straight climb into security. Courtney Hans is living proof that the best security leaders often come from the roads nobody expects. She’s led adventure travelers through remote terrain, earned an MBA, built security programs as a first security hire inside a fast moving SaaS startup, and now serves as VP of Cyber Services at ANV Cyber helping policyholders use cyber insurance as a relationship that reduces risk, not just a payout after a bad day. We get into how confidence is built, not gifted. Courtney shares the real experiences that taught her “I can do hard things,” and why that matters when you’re laid off, starting over, or walking into a board level conversation. From there, we unpack the day to day reality of security leadership: influence without ownership, trust as your main lever, and why curiosity beats fear based messaging when you’re trying to build a security first culture. You’ll also hear a grounded take on modern cyber risk management, including how insurance questionnaires miss nuance, how to avoid wasting budget on the wrong security tools, and why hardening what you already own in Google Workspace or Microsoft 365 can deliver fast wins. We touch AI security, changing best practices, and the leadership skill of saying “I don’t know yet” while still staying accountable and helpful. If you’re planning a cybersecurity career pivot, hiring security talent, or trying to make security work for the business instead of against it, this conversation will give you language, frameworks, and a mindset you can use immediately. Subscribe, share this with a friend who’s considering a pivot, and leave a review to help more people find the show. Send us Fan Mail [https://www.buzzsprout.com/2434484/fan_mail/new] Support the show [https://www.buzzsprout.com/2434484/support] https://www.vigilantviolet.com/ www.linkedin.com/in/jessvachon1

17 de jun de 202656 min
Portada del episodio Downloading Random AI Tools Is...A Career Choice

Downloading Random AI Tools Is...A Career Choice

Everybody wants AI right now, and that includes the teams security rarely sees as “technical.” When marketing, HR, and ops start downloading agent tools, prompt packs, and random code from the internet, we get a new kind of software supply chain risk, one that most security programs are not staffed or tooled to handle. I sit down with Amber Bennoui, a product leader and builder who has worked across cloud security, developer pipelines, and software supply chain security, and who now co-leads community efforts through the AI Security Alliance (AISECA). We talk about the mindset behind frontier work: learning fast, asking better questions, and refusing to ship “AI features” that do not answer the basics of who, what, when, where, and why. Amber shares what it looks like to pressure-test guidance with peer reviewers so it works in real companies, not just on a spreadsheet. We also go deep on Jiffy Labs, Amber’s project to bring visibility, scanning, and risk scoring to the AI artifact ecosystem. Think inventory for prompts, models, and agent components, plus practical ways to assess provenance and lineage when security tools are blind to what is actually being pulled into environments. From the Mythos conversation to the reality of ephemeral code rewritten by autonomous agents, we unpack why traditional security patterns struggle and why the AI “shared responsibility model” is still missing. If you care about AI security, AI governance, DevSecOps, and the future of AppSec, this conversation will sharpen how you think and what you ask for next. Subscribe, share the show with a friend, and leave a review to help more people find Voices of the Vigilant. Send us Fan Mail [https://www.buzzsprout.com/2434484/fan_mail/new] Support the show [https://www.buzzsprout.com/2434484/support] https://www.vigilantviolet.com/ www.linkedin.com/in/jessvachon1

13 de may de 202652 min
Portada del episodio GRC Has Layers!

GRC Has Layers!

Security teams get asked the same question in a hundred different ways: “What’s the ROI?” We go straight at it with Monica Reagor, Manager of Information Security Compliance at Crestron Electronics and host of the My GRC POV podcast, to show how governance, risk, and compliance becomes a growth lever when it’s done with clarity, data, and the right relationships. We trace Monica’s path from technical IT roles into compliance, then zoom in on the real work of modern information security compliance: translating legislation into executive decisions, turning requirements into engineering action, and mapping frameworks like NIST and ISO 27001 so you can scale evidence, audits, and certifications without burning out your team. We also talk about why “I don’t make money” is the wrong framing and how security can protect revenue, reduce loss, and even help win contracts when customer security questionnaires become the price of entry. Then we get into the pressure cooker: AI governance, privacy, supply chain risk management, and the reality that regulations evolve across US states, federal agencies, the EU, and APAC markets at the same time. Monica shares why operating to the most restrictive standard can be the simplest global strategy, and why GRC must show up early so teams can move fast with documented risk decisions instead of last-minute blockers. If you’re building a GRC program, defending a security budget, or trying to connect compliance to real business outcomes, you’ll leave with language you can use and a clearer mental model for the layers. Subscribe, share this with a teammate who needs it, and leave a review with your biggest challenge proving security value. Send us Fan Mail [https://www.buzzsprout.com/2434484/fan_mail/new] Support the show [https://www.buzzsprout.com/2434484/support] https://www.vigilantviolet.com/ www.linkedin.com/in/jessvachon1

29 de abr de 202647 min
Portada del episodio Podcasthon 2026 Special - Cyberjutsu’s Playbook For Belonging In Cybersecurity

Podcasthon 2026 Special - Cyberjutsu’s Playbook For Belonging In Cybersecurity

We are participating in Podcasthon 2026. Podcasthon is the world’s largest podcast charity initiative, bringing together podcasters globally to raise awareness for charitable causes. In support of this noble cause, we spotlight the Women’s Society of Cyberjutsu with CEO Mari Galloway, tracing how hands-on training, cohort mentorship, and a tight-knit community create real jobs and lasting confidence. We unpack CyberjutsuCon 2026, the “Beyond The Patterns” theme, and a make a clear ask to support growth. In this episode we discuss: • Origins of Cyberjutsu and the early workshop model • Mary’s path across SOC, vuln management, sales, and leadership • Why hands-on labs beat lectures for real skill transfer • The evolving mission to include chapters, academies, and grants • measuring impact with surveys, testimonials, and outcomes • Cohort mentorship that builds leaders and peers • Accessibility, scholarships, and low-cost entry points • CyberjutsuCon 2026 format, theme, and community vibe • Sponsorship tiers, current partners, and funding needs • Chapter expansion targets in Miami, Chicago, Seattle, Midwest • Vigilance as authentic leadership and daily practice If you know me personally, even if you don't know me personally, but you know me professionally, and we've done business together before, I expect you to step up. We need you to step up. You have no problem using the talent that is being produced by Cyberjutsu and other organizations. It's time for you to help. This is an easy way for you to invest in developing and growing talent  for your organization. It is a no brainer. Please get a hold of Mari, get a hold of me, go to the website - https://womenscyberjutsu.org/ and make difference. Send us Fan Mail [https://www.buzzsprout.com/2434484/fan_mail/new] Support the show [https://www.buzzsprout.com/2434484/support] https://www.vigilantviolet.com/ www.linkedin.com/in/jessvachon1

19 de mar de 202643 min