In this episode, Jacob speaks with Penetration Tester & Social Engineer Chris Silvers!

Chris Silvers is the founder of CG Silvers Consulting! Chris has a vast amount of experience ranging from CMMC assessments to penetration testing. He even won the prestigious DEF CON black badge during the DEF CON 24 Social Engineering Capture the Flag (SECTF)!

In this episode they focus on how organizations can defend against social engineering attacks!

Here are some highlights from the episode:

- Winning the DEF CON SECTF black badge
- Social engineering tactics and tools
- CEO impersonation / fraud attacks
- How can GRC help defend against social engineering?
- Why businesses shouldn't start with a penetration test

Follow Chris on LinkedIn:   / cgsilvers  

Chris's Website: https://www.cgsilvers.com/

-----------

Governance, Risk, and Compliance Academy (GRC) Academy is a training and research platform!

Online GRC Training: https://grcacademy.io/courses/?utm_so...

Need a FedRAMP authorized Password Manager?

Start a free 14-day trial of Keeper: https://grcacademy.io/ref/keeper/b2b-...

See the CMMC controls that Keeper meets: https://grcacademy.io/ref/keeper/cmmc...

00:00 Beginning
00:24 Chris's background
01:49 Winning the DEF CON SECTF black badge
04:56 Social engineering tactics
05:54 Social engineering tools
09:05 CEO impersonation / fraud attacks
11:23 Three defenses against social engineering
13:44 How can GRC help defend against social engineering?
17:33 CMMC / NIST controls that are effective against social engineering
21:06 Why businesses shouldn't start with a penetration test
25:55 What is OSINT CTF?
29:58 Conclusion