Twitter | Search | |
Robert M. Lee
Founder & CEO | SANS & course author & Senior Instructor | writer | NSA & USAF Veteran
19,475
Tweets
497
Following
40,121
Followers
Tweets
Robert M. Lee retweeted
SANS DFIR 12h
Survey | How do you get the most out of ? Take the SANS 2021 CTI Survey written by :
Reply Retweet Like
Robert M. Lee Sep 16
Replying to @RobertMLee
For those not working at asset owners and operator companies (e.g. the wonderful consultants, vendors, etc doing a lion’s share of the work) no worries on missing out we do plenty of open community events throughout the year like the SANS DISC event, so stay tuned.
Reply Retweet Like
Robert M. Lee Sep 16
Replying to @DragosInc
Attendees will be mailed sweet sweet swag.
Reply Retweet Like
Robert M. Lee Sep 16
Still time to register for the 3rd annual Dragos Industrial Security Conference (DISC) on November 5th. Limited to asset owners and operators (folks working at industrial organizations) but free and plenty of cutting edge ICS/OT cybersecurity research
Reply Retweet Like
Robert M. Lee retweeted
Sam Van Ryder is SOCIAL DISTANCING Sep 16
Virtual and FREE this year - please RT and spread the good word - a lot of great content planned for the community!
Reply Retweet Like
Robert M. Lee Sep 16
Replying to @WeldPond @Stake
It’s amazing the crew has done all that and consistently remained good human beings in the process. Good example for others. Thanks for that
Reply Retweet Like
Robert M. Lee Sep 14
Replying to @soomple_pompler
Thanks! Very kind of you and I hope we get to when all this craziness is over
Reply Retweet Like
Robert M. Lee Sep 14
Replying to @PatrickCMiller
Green Egg. Love mine and use it for grilling and smoking, converting it to a smoker is an accessory inside the grill for indirect heat and doesn’t change the space used.
Reply Retweet Like
Robert M. Lee Sep 13
Then there’s the old “it depends” which relates to type of company, requirements, resources, etc. e.g may not make sense for an airport may make sense for a large power company, etc
Reply Retweet Like
Robert M. Lee Sep 13
Whether you call that a dedicated OT SOC or integrated is dependent on lexicon. I’d call it dedicated but that does still mean plenty of shared resources like shared tier 1 even and doesn’t mean anything to budgets and org charts
Reply Retweet Like
Robert M. Lee Sep 13
Tier 3 = understand impact and ICS at that site. Cyber champion not necessarily super cyber skills. Tier 2 for the OT SOC would be more specialized and can hunt when not dealing with alerts as should be low frequency high consequence opposite of “normal” SOC
Reply Retweet Like
Robert M. Lee Sep 13
Here’s a paper I wrote on it Basically my view is that OT SOC is required but that just means people/process/tech. So share Tier 1 is fine, OT specific Tier 2 with unique process/tech, and I’d partner with plant personnel to be Tier 3
Reply Retweet Like
Robert M. Lee retweeted
Little Bobby Sep 13
Reply Retweet Like
Robert M. Lee Sep 11
Replying to @qtfimik @DragosInc
It’s a good catch should just say 8+ years experience with experience being an EM not 8 years as an EM we’ll get it fixed thanks
Reply Retweet Like
Robert M. Lee Sep 11
Thanks we’re constantly growing and UAE and other countries in GCC are definitely on the roadmap
Reply Retweet Like
Robert M. Lee Sep 11
Replying to @nickdothutton
Thanks that’s very kind
Reply Retweet Like
Robert M. Lee Sep 11
Replying to @jrobah @DragosInc
All our jobs are remote accessible but for the country we’re listing. So if it says Canada, US, UK, etc anywhere there is fine. We have hired in seven countries so far but often positions are a point in time. E.g. same position in US this round might be in Germany next time.
Reply Retweet Like
Robert M. Lee Sep 11
Replying to @RobertMLee
If you don’t know ICS that’s fine. You just need to have a huge passion to learn. I.e. if you know ICS we can teach you the skills, if you have the skills like IR we can teach you ICS. Just need to be excited to learn and have one set of skills for the position.
Reply Retweet Like
Robert M. Lee Sep 11
Replying to @ilwombato @DragosInc
We actually have teams there - just this round of applications doesn’t include any more openings there but they will next quarter
Reply Retweet Like
Robert M. Lee Sep 11
We have a lot of jobs open, engineering, sales, marketing, IT, and services (hunting/pentesting/IR) at . Current jobs: US, Canada, and KSA. Come join our growing team. Great pay/equity/benefits and work life balance. Amazing ICS/OT community
Reply Retweet Like