Afleveringen
-
In this episode of Signals & Stories, host Kali Fencl sits down with Vertex Project analysts Ryann "Reign" Hallback, Jen "The Silence" Kolde, and Mary Beth "Savage" Lee to explore the investigative mindset behind threat intelligence work.
The conversation goes beyond indicators and malware to examine how experienced analysts approach uncertainty, evaluate evidence, and determine whether a lead is worth pursuing. The team discusses the importance of context, how to separate signal from noise, why confidence should be backed by evidence, and the cognitive biases that can derail an investigation.
They also share lessons learned from years of intelligence work, including common mistakes analysts make, the challenges of proving attribution, the role of malware in investigations, and why skepticism is one of the most valuable skills an analyst can develop.
Whether you're a seasoned intelligence professional or just starting your cybersecurity journey, this episode offers a candid look at the thought processes that drive effective investigations.
In this episode:
Where investigations really beginHow analysts decide what is worth pursuingThe difference between signal and noiseWhy context matters more than a single indicatorThe risks of over-relying on malware familiesCommon mistakes analysts makeHow Synapse helps analysts connect disparate data sourcesThe importance of showing your work and validating conclusions
https://vertex.link/10-year-anniversary#CyberSecurity #ThreatIntelligence #CTI #CyberThreatIntel #APT1 #InformationSecurity #ThreatAnalysis #CyberPodcast #TheVertexProject
Join our community:
SlackLinkedInTwitter/XBluesky -
In this episode of the Signals & Stories limited series, host Kali Fencl sits down with Tom Hegel, Distinguished Threat Researcher and Research Lead at SentinelOne, alongside Visi Stark, co-founder of The Vertex Project, for a deep dive into how cyber threat intelligence has evolved over the past decade.
The conversation explores the increasing professionalization of nation-state and criminal threat actors, the blurred lines between cybercrime, espionage, and hacktivism, and the growing complexity of attribution in modern CTI. Tom shares insights from SentinelOne’s research into DPRK IT workers posing as job applicants, explaining how North Korean operators infiltrate organizations through automated hiring campaigns and why cybersecurity companies themselves have become top-tier targets.
The episode also examines why cross-functional intelligence sharing matters more than ever — from recruiting and HR to sales and security operations — and how organizations can use intelligence platforms to connect signals across teams. Along the way, the discussion touches on AI’s role in threat intelligence, the challenges of scaling analysis, and why analyst creativity and iterative exploration still matter in an increasingly automated world.
Topics covered include:
- The evolution of cyber threat actors over the last decade
- DPRK IT worker operations and fake job applicants
- Threat intelligence beyond the SOC
- Cross-functional collaboration in cybersecurity
- Intelligence platforms and analytical workflows
- AI, automation, and the future of CTI research
Subscribe for more episodes from Signals & Stories as we continue exploring the past, present, and future of cyber threat intelligence.
https://vertex.link/10-year-anniversary#CyberSecurity #ThreatIntelligence #CTI #CyberThreatIntel #APT1 #InformationSecurity #ThreatAnalysis #CyberPodcast #TheVertexProject
Join our community:
SlackLinkedInTwitter/XBluesky -
Zijn er afleveringen die ontbreken?
-
As part of The Vertex Project’s 10-year anniversary podcast series, Kali Fencl sits down with Vertex analysts Ryann “reign” Hallback, Jennifer “thesilence” Kolde, and Mary Beth “savage” Lee for a conversation about how cyber threat intelligence has evolved over the last decade and where it’s headed next.
From the lasting impact of the APT1 report to the realities of attribution, intelligence sharing, media pressure, and modern threat reporting, this episode explores how analysts balance technical rigor, operational context, and public narratives in today’s cybersecurity landscape.
The discussion also dives into mentorship, representation, and the qualities that truly make a great analyst: critical thinking, curiosity, adaptability, and intellectual humility.
In this episode:
• How cyber reporting evolved beyond malware analysis
• Why attribution is more complicated than most people realize
• The tension between intelligence sharing and publicity
• How geopolitics now shapes cyber operations
• Why diverse perspectives improve intelligence analysis
• The traits that separate strong analysts from the rest
Whether you work in cyber threat intelligence, SOC operations, incident response, or are simply interested in how the industry has changed over the past decade, this conversation offers an inside look at the people and thinking behind modern cyber investigations.
#CyberSecurity #ThreatIntelligence #CTI #CyberThreatIntel #APT1 #InformationSecurity #ThreatAnalysis #WomenInCyber #CyberPodcast #TheVertexProject
https://vertex.link/10-year-anniversaryJoin our community:
SlackLinkedInTwitter/XBluesky -
Cyber Threat Intelligence (CTI) has come a long way—but has its definition kept pace with its potential? In this episode, Vertex co-founders Visi Stark and John “Whippit” Rodgers reflect on a decade of CTI evolution, from manual workflows to automation-driven analysis. They explore the risks of narrowing intelligence into rigid outputs, the hidden dangers of ambiguity in modern data processing, and why precision, timing, and intentional automation are critical to delivering real impact. This conversation challenges listeners to rethink CTI not as a function, but as a discipline that drives better decisions across the business.
Learn more about The Vertex Project.
Celebrate our 10 Year Anniversary with us!
Join our community:
SlackLinkedInTwitter/XBluesky -
A lot has changed in the past 10 years, including how we collect and analyze intelligence. This is Signals and Stories, 10 years with The Vertex Project, a limited series breaking down how analysts actually investigate threats. From infrastructure pivots and identity modeling, to the hidden impact of bad data and broken assumptions, to the biases and shortcuts that quietly derail analysis.
We're unpacking what it really takes to build intelligence you can trust. Featuring conversations with Vertex analysts and industry experts, this series goes beyond indicators and into the reality of modern cyber threat intelligence. 10 episodes, 10 years of lessons, 10 years with the Vertex project.
vertex.link
