Justin Berman

@justinmberman

Building StockApp from nothing. HIRING! Former Head of Security for Dropbox. Musician. Chef enthusiast. All views my own. He/Him.

Oakland, CA

Joined January 2007

217 Following

797 Followers

992 Posts

Justin Berman @justinmberman

about 3 years ago

@AccidentalCISO @AlyssaM_InfoSec A frat of bros? A tryhard of alphas Someone smarter than me figure out how to weave the words “fragile masculinity” in to this?

148

Justin Berman @justinmberman

about 3 years ago

Hey @circlemd my care team has not responded to me in 4 days and I can’t get my medicine because my pharmacy tried to contact your team and you won’t respond to them. Please help!

205

Justin Berman @justinmberman

over 3 years ago

@aprilwright So wait… how do you know which mastodon servers have the smart people?

Justin Berman @justinmberman

over 3 years ago

@ElleArmageddon What about when you take a problem that has solutions and hyper focus on how you extract more profit by automating jobs?

Who to follow

zane

@zanelackey

GP @a16z helping build amazing cybersecurity and platform engineering companies. Previously Co-Founder of @SignalSciences and CISO @Etsy

Phil Venables

@philvenables

All about cyber, resilience, risk, AI - at scale. Partner - Ballistic Ventures / 4 x CISO / Board Director / Chief Risk Officer

Ryan McGeehan

@Magoo

Writes "Starting Up Security" @ https://t.co/Rv0MaSThQ1, tweets horror stories @badthingsdaily

Justin Berman @justinmberman

over 3 years ago

@sparklebutch Distract - do things that focus your intensely elsewhere (like a tough physical activity or a hobby you can hyper focus Accept - feelings are harder to ignore when we are in a loop of not wanting to feel them. Sit with the feeling and it will stop sooner.

Justin Berman @justinmberman

over 3 years ago

@ElleArmageddon I think it’s an incentives problem. The problems with promoting too fast or hiring too high are often more noticeable more quickly than when you don’t promote fast enough/under level at hiring. That said, good leaders are putting practices into place to prevent both.

Justin Berman @justinmberman

over 3 years ago

@Infosec_Taylor If you have a bug bounty does that count as “with permission”? I think when we say “pentest” I don’t know what we mean. Like did they do legit vulnerability research? Did they point a tool? Can they be a team player or are they only going to go rogue whenever they want?

166

Justin Berman @justinmberman

over 3 years ago

@ElleArmageddon @IanColdwater Doing a chore around the house like weeding my garden is, at times, such a simple satisfying thing. I think it’s the dopamine of doing a thing and it being an uncomplicated straightforward low executive function cost thing.

Justin Berman @justinmberman

over 3 years ago

@jmwind Last point. As an (elder) millennial manager, I got into because I wanted to do better by people. I’ve had some rough experiences with managers and I think more of the millennial (and younger) crowd want to apply all their therapy to the betterment of others. N/n

Justin Berman @justinmberman

over 3 years ago

@jmwind Gap Filling: great managers fill any gap they see in pursuit of delivery. If that means filling in for product, tech lead or hands on keyboard, they do it. Tech leads are often asked to do the same but given no authority. I’d rather have the authority and accountability. 4/n

Justin Berman @justinmberman

over 3 years ago

@anshuman_bh @rmhrisk Yes please!

Justin Berman @justinmberman

over 3 years ago

@mlgualtieri @AccidentalCISO If an SMB is not being targeted (and can reasonably forecast what might cause that to change), then i would say their investment in security focusing on opportunistic adversaries is pretty reasonable. Thoughts?