Send us a text

The most reliable way to learn cybersecurity is to touch the tools, break things safely, and build them back with intent. That’s the heartbeat of our conversation with John Hammond, where we unpack how hands-on labs, community feedback, and a healthy mindset can speed up your growth and make it last.

We start with the spirit of DEF CON: presenters acting like instructors, guiding real exercises where attendees build muscle memory instead of passive notes. John explains how that approach inspired Just Hacking Training—an accessible, collaborative platform with expert-led curriculum, live ranges, quizzes, and walkthroughs you can actually use on the job. We talk about why practical, application-first learning is the quickest path for newcomers who don’t have enterprise tools at home and need portfolio-ready proof of skill.

From there, we explore the tension between chasing headlines and building evergreen skills. John’s framework is simple: anchor your time in fundamentals that compound—networking, scripting, Linux, detection engineering, exploit analysis—and use the latest vulnerabilities as sparks for practice. You’ll avoid the burnout of the news cycle while keeping your curiosity alive. We dive into “learning in public” as a force multiplier: sharing notes, repos, and writeups creates a feedback loop, accelerates improvement, and leaves visible evidence of progress for hiring managers and mentors.

Imposter syndrome and overwhelm come for everyone. John offers grounded ways to cope: compare yourself only to yesterday’s you, turn doubt into small daily reps, and step off the treadmill when you need recovery. Pair that with community—Discords, conferences, local meetups—and you’ll find both accountability and energy. For anyone starting today, the blueprint is clear: keep it fun, share your work, and show up where people learn together.

If this resonates, follow John on YouTube, LinkedIn, and X, and explore Just Hacking Training for name-your-price labs and courses. Enjoy the episode, then subscribe, leave a review, and tell a friend who’s trying to break into cybersecurity—what’s the one skill you’re doubling down on next?

Socials

• Join our Chipmunk community Discord server: https://discord.gg/9yfWP6evYQ
• Follow us on Twitter: https://twitter.com/SecChipmunk
• You can find us online at: https://securitychipmunks.com

Send us a text

Want a real-world map into penetration testing instead of a maze of hot takes? We sit down with Philip Wiley—offensive security veteran, teacher, and author of The Pentester Blueprint—to unpack practical paths that work today. Philip traces his journey from sysadmin to consultant and shows how prior roles become leverage in security: command line fluency, networking instincts, audit rigor, and the ability to translate technical findings into business impact. If you’ve wondered whether you “must” start in IT, you’ll hear why transferable skills matter more than a single prescribed path.

We dig into how learning has shifted. Five years ago, home labs were the default; now, cloud-based platforms like Hack The Box, TryHackMe, and Antisyphon accelerate skill-building without the drag of fragile setups. Philip breaks down which certifications best reflect hands-on ability—think PNPT, TCM’s junior pen tester, and OSCP—and how to structure your study with focused reps, thorough enumeration, and disciplined reporting. Expect honest advice about fundamentals over shortcuts, the value of repetition, and why a good methodology beats a bag of tricks.

Mentorship and community run through everything here. Philip shares what successful learners actually do, how encouraging guidance can flip hesitation into action, and why showing up at B-Sides, OWASP, and local hacker associations opens doors you didn’t know existed. We also talk personal branding—publishing talks, write-ups, and even books—to make your progress visible and credible to hiring managers. You’ll leave with a weekly cadence you can start immediately: deliberate labs, concise notes, a study group, and one community touchpoint that compounds into opportunities.

If this conversation helps you chart your next step into offensive security, follow the show, share it with a friend who’s studying, and leave a review so more learners can find it.

Socials

• Join our Chipmunk community Discord server: https://discord.gg/9yfWP6evYQ
• Follow us on Twitter: https://twitter.com/SecChipmunk
• You can find us online at: https://securitychipmunks.com

Send us a text

"We're too small to be hacked" might be the most dangerous myth in small business cybersecurity today. As James Baierle, founder of SecurePoint Solutions, asks with a touch of irony – how exactly do you let the bad guys know to leave you alone? The hard truth is you can't, and that's why specialized security services for small businesses are more critical than ever.

The cybersecurity landscape presents unique challenges for the 13 million American businesses with fewer than 10 employees. These organizations – from your favorite coffee shop to your child's daycare center – face the same sophisticated threats targeting Fortune 500 companies but lack the resources for enterprise-level protection. SecurePoint Solutions was born specifically to bridge this gap, providing scaled security solutions that make protection accessible to businesses of all sizes.

For aspiring cybersecurity professionals, Baierle offers refreshingly practical career advice gained from his journey from Navy operations to founding his own security company. "Writing is what gets us paid," he emphasizes, noting that technical skills alone won't advance your career if you can't effectively communicate findings and impacts to non-technical stakeholders. He recommends starting a blog to showcase communication abilities and advises newcomers to manage expectations – you probably won't start as an elite penetration tester, but numerous opportunities exist in areas like Security Operations Centers where demand for talent is high.

Beyond cybersecurity, Baierle shares his passionate advocacy for foster care, having adopted three siblings after years of fostering children. With approximately 200,000 foster beds needed nationwide, he suggests respite care as an accessible entry point for those interested in helping but uncertain about full-time commitment. This personal mission reflects the protective instinct that drives many security professionals to make a difference both within and beyond their technical expertise.

Whether you're a small business owner concerned about cybersecurity, an aspiring professional looking to break into the field, or someone interested in making a broader social impact, this conversation offers valuable insights into protecting what matters most. Ready to chip away at building better security for your business or career? This episode is your starting point.

Socials

• Join our Chipmunk community Discord server: https://discord.gg/9yfWP6evYQ
• Follow us on Twitter: https://twitter.com/SecChipmunk
• You can find us online at: https://securitychipmunks.com