IT Horror Stories

• POS SOS

  In this episode, Wyatt Hansen, Vice President of Information Technology Services at LeaderOne Financial, sits down with host Jonathan Crowe to discuss an IT horror story that he experienced early on in his career while working at an MSP. He unpacks how a back of house server going down turns into a massive nightmare for one of his biggest retail clients, shuttering POS systems and leading to business chaos. He also explores the upsides of having a nontraditional career path, learning on the job and having room to fail, and why clear communication and documentation are the best ways to counteract crisis.Wyatt Hansen is the VP of Information Technology Services at LeaderOne Financial, a leader in mortgage banking. He was born in Alaska, raised in South Dakota, and now resides in Kansas with his wife and their beloved Corgi, Luna. He attended the University of South Dakota, where he graduated with a BFA in Theatre in 2019 while working part time with Erickson Solutions Group LLC (where he got his start in remote technical support!). When he’s not working, he can be found whipping up brunch, breaking out a board game, or catching up with friends on Helldivers 2.Time stamps:00:26 - About Wyatt01:41 - Let’s set the scene06:48 - Oh the Horror!36:05 - Don’t Be in the Sequel36:25 - The big take awaysLinks:Find Wyatt on LinkedInFind Jonathan on LinkedInLearn more about NinjaOneSubscribe on Apple PodcastsSubscribe on Spotify

  --------  

  33:07
• Confessions of an Adversary

  In this episode, Dr. Chase Cunningham, aka DrZeroTrust, joins us to shed light on what a horror story looks like from an adversarial perspective. In drawing on his extensive red teaming and NSA background, he explores why doing the basics and applying them intelligently does matter, why people should abandon the notion of perfect security, and what controls and practices organizations can adopt and follow to make it a bad day for bad actors.---------Key Quotes:“ It's called a best practice for a reason. It's not because somebody woke up and was like, how can I just, you know, put things on a piece of paper? It's a best practice because it's a practice that's best.”“ I think people should abandon the idea of perfect security because it doesn't exist. You know, you think if you're if you're postured up and you've spent enough money and you've got the right things in place that you're not going to have a breach. The odds of you not having a breach are really, really slim. It's just a matter of time. That doesn't mean that you stop trying, but it just means to be aware of when things go wrong, what is your plan, how will you isolate, how will you minimize the damage, how do you move or how do you stop lateral movement, etc.”“There are some people that you just have to say like, Look, man, I gotta put some additional controls around you because you're, you're prone to clicking, bro. Like I don't know what to tell you, man, but I got to do something about you. And it's not because I don't like you and I don't like your hair color or whatever else, but you're a risk to my business.”---------Time stamps:02:26 - About Chase03:58 - What’s a classic attacker horror story?08:49 - Red teamer incidents12:35 - Lessons learned26:00 - Advice for security leaders---------Links:Find Chase on LinkedInFind Jonathan on LinkedInLearn more about NinjaOne

  --------  

  29:59
• Last Out

  When COVID lockdowns loom in early 2020, it’s up to Matthews team to prepare hundreds of laptops for an employee base that’s about to start working from home.Matthew Schuster, Information Security Analyst at a major sports team, describes the inevitability of IT problems, and the importance of learning how to solve them. His stance is that no questions or problems should be left unresolved.Matthew Schuster has spent six years navigating the world of IT operations and information security within the fast-paced professional sports industry, steadily rising from an intern to various technician and analyst roles along the way. In addition to all things ITOps and security, he’s passionate about cars, motorcycles, baking, and 3D printing!---------Key Quotes:“ During that time period where everyone was working from home, that gave us time to kind of think about and sit back of like, hey, we got through it.  If we had to do this again, which hopefully we don't, how can we make things better? Not only just adapting like that emergency plan. But also just improving  our day to day kind of stuff. And so, the changes that we made to that plan transitioned to our actual laptop refresh and desktop refresh strategy.”“ We have a saying in the information security world of, you know, it's not if you get hacked, it's when you get hacked. So you got to be prepared for things and be proactive, but also learn how to fail and learn how to fail  quickly is the most important thing and learn from those mistakes.”“A very, very common theme in IT is that at the end of the day, problems exist, and you gotta learn how to solve them. And, me personally, I don't like leaving a question or a problem unsolved. “---------Time stamps:00:59 - Matthew’s role03:50 - Oh, the horror09:29 - IT in a stadium10:21 - Breaking down the tasks15:57 - Don’t be in the sequel21:05 - Matthew’s survival kit---------Links:Find Matthew on LinkedInFind Jonathan on LinkedInLearn more about NinjaOne

  --------  

  22:14
• No Longer a Drill

  In this episode, Mike Anderson, CIO & CDO at Netskope, joins Jonathan to discuss several IT horror stories that have stuck with him throughout his career – including a fire suppression test gone wrong, how he helped his organization quickly recover from a ransomware attack in his first tenure as CIO, and now as a more seasoned CIO, how he thinks about taking calculated risks, investing in people, and depositing in relationship accounts to drive business forward.---------Key Quotes:“ Security is everyone's responsibility in an organization. It's not just the CIO. It's not the CISO. It’s everyone in the organization, including the board of directors. And it's your job to make sure you're bringing forward the risks and having conversations about your risk appetite and how much you're willing to invest around the various controls you need to have and why certain controls are more important than others, depending on the business you're in and the risk if those business operations are disrupted.”“ Things are going to happen. Things are going to go wrong. It's how you respond to it and how you recover. It's the resilience of your team.”“ We have to make sure we're making calculated risks, but we also have to make sure we're creating a culture where people can experiment because that's how we're going to drive real innovation inside of our organizations.”---------Time stamps:01:08 - Meet Mike02:58 - The shutdown disaster05:38 - Managing risk06:06 - First CIO cyber incident15:17 - What we’ve learned29:23 - The fiber catastrophe---------Links:Find Mike on LinkedInFind Jonathan on LinkedInLearn more about NinjaOne

  --------  

  33:55
• Dead in the Water

  When a corrupted virus definition file was distributed by a centralized management server, it was up to Jay Abbott to find a fix for the company-wide blue screen of death. Jay describes how the emergency escalated, how he mobilized an all-hands-on-deck response, and how he diagnosed the issue.Tune in for a masterclass in incident response and disaster recovery as Jay, Director of Corporate IT at NinjaOne, tells his story to our host, Jonathan Crowe. ---------Key Quotes:“It highlighted that nobody plans for this scale of a problem.”“We tried to make it as fun as it could be. You have to be able to laugh at it.”“Communicate with users. They're a lot nicer than you want to give them credit for as long as they understand what the solution is.”“Don't let inaction paralyze you.”---------Time stamps:00:34 - About Jay04:04 - The incident12:24 - Finding a solution13:30 - Nailing prioritization20:24 - Keeping morale up in a crisis27:40 - Lessons learned30:16 - Jay’s survival kit32:45 - Advice for future leaders---------Links:Find Jay on LinkedInFind Jonathan on LinkedInLearn more about NinjaOne

  --------  

  32:57

Mais podcasts de Tecnologia

Podcasts em tendência em Tecnologia

Sobre IT Horror Stories