SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

Joshua Goldfarb

Joshua Goldfarb (Twitter: @ananalytical) is currently Field CISO at F5. Previously, Josh served as VP, CTO - Emerging Technologies at FireEye and as Chief Security Officer for nPulse Technologies until its acquisition by FireEye. Prior to joining nPulse, Josh worked as an independent consultant, applying his analytical methodology to help enterprises build and enhance their network traffic analysis, security operations, and incident response capabilities to improve their information security postures. He has consulted and advised numerous clients in both the public and private sectors at strategic and tactical levels. Earlier in his career, Josh served as the Chief of Analysis for the United States Computer Emergency Readiness Team (US-CERT) where he built from the ground up and subsequently ran the network, endpoint, and malware analysis/forensics capabilities for US-CERT.

Why Sincerity Is a Strategic Asset in Cybersecurity

Strong security doesn’t just rely on tools—it starts with trust, clarity, and sincerity from the top down.

June 25, 2025

Rethinking Success in Security: Why Climbing the Corporate Ladder Isn’t Always the Goal

Many security professionals feel pressured to pursue leadership roles, but success can also mean going deeper, not just higher.

June 11, 2025

Actions Over Words: Career Lessons for the Security Professional

In a world full of noise and promises, it’s those who consistently deliver behind the scenes who build the most respected and rewarding careers.

May 1, 2025

Groucho’s Wit, Cloud Complexity, and the Case for Consistent Security Policy

The greatest security policies in the world are useless if enterprises don’t have a reasonable, consistent, and reliable way to implement them.

April 9, 2025

Through the Lens of Music: What Cybersecurity Can Learn From Joni Mitchell

A Joni Mitchell song from the 1960s can teach us a lot about securing hybrid and multi-cloud environments.

March 20, 2025

The Hidden Cost of Compliance: When Regulations Weaken Security

The current state of regulation and the overwhelming burden it brings to most enterprises is a discussion worth having

February 27, 2025

Security Teams Pay the Price: The Unfair Reality of Cyber Incidents

The blame of security incidents may be shared—but the burden of response always falls on the security team. Here’s how to prepare for the...

February 6, 2025

Rationalizing the Stack: The Case for Security Vendor Consolidation

Consolidating from an overly burdensome number of point solutions to an easier to manage platform-based approach brings with it a number of benefits.

January 8, 2025

Spotting the Charlatans: Red Flags for Enterprise Security Teams

Even with careful and deliberate hiring, enterprise security teams will find themselves with a charlatan from time to time.

December 4, 2024

API Security Matters: The Risks of Turning a Blind Eye

Willfully ignoring important security issues to make our lives easier is, unfortunately, something that does happen in the security field.

October 31, 2024

Improving SecOps: How Simplification, Visibility, and Analytics Can Drive Success

How simplifying complexity, enhancing visibility, and empowering analysis can address key challenges in modern cybersecurity operations and investigations.

October 9, 2024

Beyond Immature Rhetoric: The Case Against Mockery and Ambulance Chasing in the Security Industry

Five reasons why “Ambulance Chasing” and mocking harm the security profession and are never a good idea.

September 11, 2024

AI in the Enterprise: Cutting Through the Hype and Assessing Real Risks

The introduction of AI can bring benefits to the enterprise while not introducing additional risk that is beyond acceptable levels.

August 5, 2024

From the SOC to Everyday Success: Data-Driven Life Lessons from a Security Analyst

By taking a data-driven approach to life, grounded in truth and facts, we can improve our chances of making better decisions and achieving better...

July 2, 2024

Legacy of Wisdom: Security Lessons Inspired by My Father

Honoring my father by translating his timeless life lessons into practical wisdom for the cybersecurity profession.

May 16, 2024

Navigating Vendor Speak: A Security Practitioner’s Guide to Seeing Through the Jargon

As a security industry, we need to focus our energies on those professionals among us who know how to walk the walk.

April 24, 2024

Know Your Audience When Speaking to Security Practitioners

How can security practitioners make sense of the vendor landscape and separate those who talk a good game from those who can execute, perform,...

April 3, 2024

Diversifying Defenses: FjordPhantom Malware Shows Importance of a Multi-Pronged Approach

Security teams need to combine the angles of client-side and server-side detection in order to have the best chance of mitigating the risk of...

February 21, 2024

Beyond Protocols: How Team Camaraderie Fortifies Security

The most efficient and effective teams have healthy and constructive cultures that encourage team members to go above and beyond the call of duty.

January 4, 2024

Beyond the Noise: Appreciating the Quiet Work of Effective Doers

More often than not, we are grateful for and celebrate the wrong people. It is incumbent on all of us to take the time...

December 14, 2023

Page 1 of 912 3 4 5 6 7 8 9