How do you defend Fox News, hedge funds, and global networks while building groundbreaking startups? John Terrill shares his journey.

In this episode of Hackers for Founders, cybersecurity executive John Terrill shares his fascinating journey from a curious 12-year-old attending 2600 meetings in Atlanta to becoming a seasoned CISO and co-founder of Drawbridge Networks. He delves into the formative experiences that shaped his career, including his early exposure to security research at Internet Security Systems and his role in founding and developing innovative security technologies. Terrill highlights his learnings about product-market fit, timing, and the challenges of building technology ahead of its time, such as with Drawbridge Networks' pioneering work in micro-segmentation.

The conversation also explores Terrill’s tenure as CISO at Fox News during a transformative period, including its sale to Disney, and at Point72, where he tackled challenges like the rise of ransomware, executive protection, and the pivot to remote work during the pandemic. Throughout the episode, Terrill emphasizes the importance of aligning cybersecurity efforts with business objectives, explaining the delicate "yin and yang" balance between offensive and defensive security strategies. He also critiques current board-level approaches to cybersecurity, advocating for more nuanced discussions around practical solutions, recovery planning, and metrics to assess whether organizations are genuinely improving security posture.

Companies and Organizations

1. Phosphorus Cybersecurity Inc: A cybersecurity company specializing in xIoT security solutions.
2. Point72: A global hedge fund focused on investment and asset management.
3. Fox News Media: A major American media company known for its news and television broadcasting.
4. OPĀQ Networks: A network security company acquired by Fortinet.
5. Drawbridge Networks: A cybersecurity startup co-founded by John Terrill, focusing on network microsegmentation.
6. NYU Tandon School of Engineering: The engineering school of New York University, where John Terrill was an adjunct professor.
7. BlackRock: A global investment management corporation, where John led application security efforts.
8. NASDAQ OMX: A global financial services corporation operating stock exchanges, where John worked as a consultant.
9. IBM (Internet Security Systems): A technology and cybersecurity company where John started as an X-Force researcher.
10. Zettaset: A cybersecurity startup focusing on big data security, co-founded by John.

Events and Concepts

1. 2600 Meetings: Monthly hacker meetings where cybersecurity enthusiasts and professionals share knowledge.
2. Microsegmentation: A network security strategy for isolating workloads and preventing lateral movement.
3. Zero Trust: A cybersecurity framework emphasizing the elimination of implicit trust in networks.
4. MITRE ATT&CK Framework: A globally accessible knowledge base of adversary tactics and techniques.