Ep. 138 – Security With Marcus Sailler of Capital Group

In this episode, Chris Hadnagy and Ryan MacDougall are joined by industry professional, Marcus Sailler to discuss his experience as the red team information security manager at Capital Group. Marcus shares some great tips on creating a successful security team and how you can prevent it from becoming the "No Police". They also go over the recent changes in the industry, including how big hacks have increased security awareness in the general public.    00:09 – Introduction to the new Security Awareness Series  01:28 – Introduction to Ryan MacDougall  Phishing as a Service (PHaaS)  Vishing as a Service (VaaS)  Social-Engineer.com  02:32 – Introduction to Marcus Sailler  04:20 – How Marcus got into information security  06:08 – Recent changes in the infosec industry- How a big hack increases security awareness  12:09 – How a red team and security awareness team can collaborate to enhance security  14:25 – Introduction to Capital Group  16:17 – Coming up with relevant attacks for a global company  18:08 – How a security team can avoid becoming the “No Police”  21:39 – Why it’s better to build a blue team first  22:24 – The importance of attitude and ego for a red teamer  25:04 – How a red team benefits from partnership  26:53 – Emulate the bad guy, but remember to be good  29:18 – Steps corporations should implement now  30:58 – Some of Marcus’ most respected industry professionals  Chris Hadnagy  David McGuire  Jason Frank  Jeff Dimmock  David Kennedy  Amanda Berlin  Ian Coldwater  Rachel Tobac  34:47 – Marcus' book recommendations  Sizing People Up: A Veteran FBI Agent's User Manual for Behavior Prediction  The 5 Love Languages: The Secret to Love that Lasts  39:18 – Marcus' contact info  LinkedIn  Twitter  14:38 – Outro  Social-Engineer.org  Social-Engineer.com  The Innocent Lives Foundation    SEVillage: The Human Hacking Conference  Human Hacking Book Website  Human Hacking Book Amazon  Clutch  Chris on Twitter  Social-Engineer on Twitter