Qualys’ Post

Things are getting technical tomorrow @ 9:30 CST w/ Brian Pontarelli, Founder & CEO of FusionAuth. Brian started coding at the age of 10 and has stayed in the field ever since. His most recent venture, FusionAuth, is helping to add additional security to websites, but we'll talk more about that tomorrow. See you there!

artwork

🌊 Recap of Our Last "F*ckUp Night" – Lessons from the Community 🌊 We want to take a moment to express our #gratitude to everyone who attended and participated in our last F*ckUp Night! 🙌 The openness, honesty, and willingness to share your lows were truly inspiring. Reality is, behind every success are multiple stories of failure, of projects that didn’t go as planned, and of lessons learned the hard way. At this event, we embraced those failures. 💥 Some key #takeaways from the experience: 🔑 Failure isn’t the enemy 🔐 Security is never 100% 💡 Maturity is born from risk-taking 🤝 Community over everything Thank you again to our #CISO #community for your bravery, transparency, and for embodying the spirit of continuous learning and improvement. Your willingness to speak openly about failure is what makes us stronger, individually and collectively. 🌟 We look forward to our next events where we can learn from both our successes and our failures. Let's keep pushing forward, together. PS: Thanks to Bro🥦 Kohli who captured the moments! #CISOCommunity #F*ckUpNight #FailureIsGrowth #LearningFromFailure #CyberResilience #TransparencyMatters #TogetherWeRise

One of the very first things I learned about during my onboarding here was The Valentis Standard. The tone was set from my first day. Here, we do not confuse standards for "guidelines". Standards are constant, precise, unwavering and non-negotiable, while Guidelines are general rules, indications, outlines. Guidelines say, “that’s good enough” or “close enough”. Standards say, "NOT good enough" or "close enough is NOT enough". I learned that The Valentis Standard is exact. There is no such thing as good enough or close enough. 99 is not 100. As a Women-Owned Small Business (WOSB), that starts with our CEO. It is an honor to be part of a commitment to excellence regardless of what the competition does or does not do. We will not work with a client that believes "good enough" is good enough.

One year ago, I was heading into my final semester of college with lots of unanswered questions. My cofounder and I had:
❌ No product.
❌ No technical cofounder.
❌ Very little funding. Fast forward to today—January 1st, 2025—and here’s where we stand:
1️⃣ Our first working product is live with a mainnet release coming soon (waitlist link in my bio).
2️⃣ We found a CTO and cofounder who shares our vision for bringing zero-liability fraud protection to web3.
3️⃣ We secured (and are continuing to secure) VC funding to help bring our vision to life. I’m sharing this not to sound impressive, but to encourage anyone who’s been hesitating to take the leap. When we started, I wasn’t “special.” I didn’t have all the answers or a foolproof plan. What I did have however, was a commitment: we were going to make this happen—no matter what. That mindset is everything. Yes, it will be harder than you expect. Yes, it will take longer than you think. But if you love what you’re doing, it’s worth every moment. Here’s to making 2025 the year you bet on yourself. Take the chance. Start that thing. You might be surprised where you end up. Happy New Year! 🎉🚀

Adaptability, scalability, and flexibility are the core for achieving business agility. 💡 But it’s not just about being agile in general. You need pricing agility, go-to-market agility, and product agility to truly thrive in an ever-changing landscape. So, how do you achieve that? 🤔 Check out the video below.

👀 Get a sneak peek of the topics Netskope has planned for #BHUSA ♦️ Detecting insider threats with machine-learning and user risk tracking ♦️ Current GenAI risks and controls in production environments ♦️ Better cloud defenses using stealthy tripwires

#CyblackSOCacademy Jun'24 cohort Update ✨ Alongside gaining LetsDefend badges, CyBlack SOC Academy ensured that our newly acquired knowledge was applied in a real-life experience. Over the weekend, I completed the first sprint, Cyber Threat Intelligence, where I conducted a comprehensive analysis of the "NotPetya" ransomware attack. This includes; 1️⃣ Conducting a thorough TTP analysis to determine the extent of the attack, exploitation and encryption methods. 2️⃣ Profiling the threat actor known as Sandworm Team attributed to Russia's Main Intelligence Directorate (GRU) to understand their motivation identified as sabotage and disruption, which is usually politically motivated and encompasses various capabilities. 3️⃣ Identifying attribution indicators, such as the encryption technique, code similarities, malware used, vulnerabilities exploited, tools used and delivery method. 4️⃣ Investigating the threat actor landscape to identify other similar threat actors like the Sandworm Team that are likely to conduct similar attacks and understand their motivations, capabilities and how to prepare for them. 5️⃣ Developing robust mitigation strategies to strengthen our cyber security defences. Working on this task has enhanced my analytical and critical thinking skills, as well as improved my effective communication and collaborative skills. #cybersecurity #threatintelligence #cyblack #letsdefend

👀 Get a sneak peek of the topics Netskope has planned for #BHUSA ♦️ Detecting insider threats with machine-learning and user risk tracking ♦️ Current GenAI risks and controls in production environments ♦️ Better cloud defenses using stealthy tripwires