@JimmyVo profile picture
Jimmy Vo @JimmyVo
Joined March 2008
  • Tweets 61,688
  • Following 2,124
  • Followers 4,152
1,629 Photos and videos
Jimmy Vo@JimmyVo
31 May 2024
Before you speculate and dunk on Snowflake's Security team, remember they're real fucking good a threat detection. How would I know? I've built a threat detection program based off their Threat Detection Maturity Model: medium.com/snowflake/threat-… #hugops

Threat Detection Maturity Framework

How do you measure the success or maturity of a Threat Detection program? What should a Threat Detection team roadmap look like? What is…

medium.com
1
6
528
Jimmy Vo@JimmyVo
31 May 2024
Actually don't dunk on any security team dealing with shit unless you want me to heel hook you
9
257
Jimmy Vo@JimmyVo
25 Feb 2024
ugh computers
1
1
8
652
Jimmy Vo@JimmyVo
20 Oct 2022
You get “you up?” texts for booty calls. I get them from pager duty. We are not the same
𝚒𝚍𝚒𝚘𝚝 𝚜𝚊𝚗𝚍𝚠𝚒𝚌𝚑@chilicrispp
20 Oct 2022
you get "you up?" texts for booty calls. i get them for honest star wars reviews. we are not the same.
8
Jimmy Vo@JimmyVo
6 Oct 2022
I’m gutted to hear the world has lost @kriggins. He was someone I always looked up to. I had the pleasure of meeting Kevin in person. We shared a mutual love for lifting weights and corgis. He has always been a role model and embodied excellence.
3
1
20
Jimmy Vo@JimmyVo
6 Oct 2022
June 2012 - I finished grad school and was trying to break into security. Kevin sent me a graduation present. He was always cheering for me. April 2014 - I meet Kevin for the first time at BSides Chicago. He took a sweet headshot that I used for years.
1
7
Jimmy Vo@JimmyVo
6 Oct 2022
Nov 2018 - I was drowning in grief and agony. I didn’t realize until now that he sent this message of support and I didn’t even fucking thank him.
8
Jimmy Vo@JimmyVo
6 Oct 2022
My wife received a heart 15 years ago, on this day. Be a donor - @DonateLife
1
2
74
Jimmy Vo@JimmyVo
5 Oct 2022
Replying to @M_haggis @subtee @ionstorm
I think that’s why an abstraction of asset management is interesting, like @jupiterone. Use current tooling to grab inventories, whether it be VM scanners, your CSPM product, EDR, doesn’t matter and dump into J1 for future querying.
1
1
Jimmy Vo@JimmyVo
5 Oct 2022
It’s funny how we go back to asset management. I think about malicious docker containers on dev laptops. What are the rare docker images on laptops? What are some rare node packages?
1
4
Jimmy Vo@JimmyVo
5 Oct 2022
I found @lnavapp be really useful when I have to review a log file.
1
1
Jimmy Vo retweeted
Mario Platt@madplatt
30 Sep 2022
So, I’m expecting in the next 2 weeks to have posted the following roles to join my team: - Senior Compliance Lead - Compliance Analyst - Senior Risk Lead - 3rd party Risk Lead - Senior Technical Privacy Lead - Security Awareness and Culture Lead Feel free to DM, and please RT
1
22
18
Jimmy Vo@JimmyVo
29 Sep 2022
A coworker got called a hipster for using Miro for a kanban board. I’m just realizing how hilarious that comment was.
2
8
Jimmy Vo retweeted
Teneika Askew | Analytics & Automation
@teneikaask_you
28 Sep 2022
AWS She Builds is offering FREE training & cert vouchers for the AWS Solutions Architect Associate. Women will also join a community of learners & build connections to women in tech! awsshebuildscloudupsaa.splas… 🎓Earn AWS Certs 📆 8-weeks 🤩Register by 10/15 🛑NO experience required

14
236
559
Jimmy Vo@JimmyVo
22 Sep 2022
Vendors can ML all they want but out of the box detections often lack context of your environment. Consume raw EDR events and augment with custom detections. Same applies with control plane/data plane logs on your cloud provider.
4n6lady
@4n6lady
21 Sep 2022
An EDR/XDR isn't your be-all and end-all tooling to safeguard your environment against cyber incidents. You still need to manage it and update it. It's not a magic wand.
2
3
6
Jimmy Vo@JimmyVo
22 Sep 2022
The security vendor space is interesting because there is incentive from an ARR perspective to become a platform which offers many prevention or detection capabilities by 1 vendor. When your VM vendor can do SIEM things, you can combine context (asset events). That's great.
1
1
Jimmy Vo@JimmyVo
22 Sep 2022
What if I only want to use one solution on your platform? Let's hope there's an integration.
Jimmy Vo@JimmyVo
20 Sep 2022
Check out @daycyberwox’s channel if you haven’t yet. The content is geared towards those trying to get into security. Day has built an awesome community of folks who are trying to pivot into the field.
DFIR Diva@DfirDiva
19 Sep 2022
A Deep Dive into Wireshark for Security Analysts - Complete Wireshark Course for Beginners in Cybersecurity by @daycyberwox of @CyberwoxAcademy youtube.com/playlist?list=PL…
1
6
21
Jimmy Vo@JimmyVo
12 Sep 2022
I've been working on a few internal RFCs and various other docs and I stumbled upon @HashiCorp's Technical Writing Workshop slides. It's full of gems: drive.google.com/file/d/1zyt…

[How HashiCorp Works] HashiCorp Education_ Technical Writing Workshop.pdf

drive.google.com
1
3
35
Jimmy Vo@JimmyVo
12 Sep 2022
I saw the power of great technical writing at Datadog, where various different teams could articulate problems and propose solutions. Reading about how Hashicorp Corps, you can see the first step is defining the problem with a PRD: works.hashicorp.com/articles…

HashiCorp | An IBM Company

HashiCorp helps organizations automate hybrid cloud environments with a unified approach to Infrastructure and Security Lifecycle Management.

hashicorp.com
1
3
Jimmy Vo@JimmyVo
12 Sep 2022
If you understand anything about strategy, what makes a remarkable strategy is a problem definition and an approach to solving them. Go write technical documents.
Load more