Meet the Author
Tom Eston VP of Consulting and Cosmos at Bishop Fox
| Tom Eston is the VP of Consulting and Cosmos at Bishop Fox. Tom's work over his 15 years in cybersecurity has focused on application, network, and red team penetration testing as well as security and privacy advocacy. He has led multiple projects in the cybersecurity community, improved industry standard testing methodologies and is an experienced manager and leader. He is also the founder and co-host of the podcast The Shared Security Show; and a frequent speaker at user groups and international cybersecurity conferences including Black Hat, DEF CON, DerbyCon, SANS, InfoSec World, OWASP AppSec, and ShmooCon. |
Posts from Tom Eston
Jun 14, 2023
Architecting An Offensive Security Blueprint: 2023 Insights From the Ponemon Institute
Jun 24, 2021
Free Tools and Add-Ons to Explore for Applying DevSecOps in Your Organization
Jun 10, 2021
Applying DevSecOps in Your Organization
Feb 23, 2021
Choosing the Right Modern Application Security Tools
Events from Tom Eston
Wednesday, May 8, 2025
Speaking Board Language: Translating Cybersecurity for Executive Leadership
Wednesday May 8, 2024
Beyond Whack-a-Mole: Modern AppSec Strategies for High-Growth Companies
Wednesday May 8, 2024
Beyond Technical Exploits: The Strategic Value of Red Team Engagements
Wednesday May 8, 2024
AI's Dark Potential: Robert Hansen, RSnake and Author of AI's Best Friend, Warns of Superintelligence Risks
Wednesday May 8, 2024
Bishop Fox RSAC 2024 Livestream
On-demand Webcast
Cyber Resilience: Tactics for Post-Attack Recovery
October 25-27, 2023
Tom Eston to Present at ISC2 Congress
August 8-9, 2023
Tom Eston & Barry MacLaughlin to Present at BSidesLV 2023
Wednesday, June 28 at 11 am PT
Get the Blueprint: Insights from Ponemon Institute’s 2023 State of Offensive Security Study
On-Demand
Watch a Special Livestream From DEF CON 30
On-Demand Session
Ready or Not? Test Your Ransomware Defenses Against Real-World Playbooks
November 15- 16, 2023
The Ransomware Crisis...From Every Business Perspective
On-Demand Webcast
Hacker Insights Revealed: Explore New SANS Survey Results
Past Event
Bishop Fox at DEF CON 30
Past Event
Tom Eston and Yael Basurto to Present at BSides Las Vegas
On-Demand Webcast
What Bad Could Happen? Managing Application Risk with Threat Modeling
On-Demand Webcast
How to Build a DevSecOps Program that Works for Developers AND Security
On-Demand Webcast
DevSecOps and Application Penetration Testing: Defying the Myth
On-Demand Webcast
Log4j Vulnerability: A Fireside Chat
Resources from Tom Eston
Shifting Left: A DevSecOps Field Guide
Our eBook offers practical recommendations on how developers and security teams alike can move towards a DevSecOps model in any organization – with a goal of shared responsibility and creating a perpetual and repeatable process.
Watch a Special Livestream From DEF CON 30
Watch the lineup of leaders & influencers from the infosec community who joined us live at DEF CON 30!
Bishop Fox Live at DEF CON 30 featuring Jayson Street
Listen to Jayson E. Street, Hacker & Author of "Dissecting the Hack: The F0rb1dd3n Network," discuss his hacking adventures with Bishop Fox hosts Tom Eston and Joe Sechman during our inaugural 2022 DEF CON livestream!
Bishop Fox Live at DEF CON 30 featuring Ray Espinoza
Tune in as Ray Espinoza, CISO at Inspectiv, discusses coaching in security, making infosec more diverse, doing vulnerability management, and more!
Bishop Fox Live at DEF CON 30 featuring Raghu Nandakumara
Hear Raghu Nandakumara, Senior Director and Head of Solutions at Illumio, discuss ransomware and zero-trust segmentation.
Bishop Fox Live at DEF CON 30 featuring Kevin Johnson
Check out Kevin Johnson, co-host of The Shared Security Show Podcast, discuss topics like open-source, the OWASP SamuraiWTF, and application security!
Bishop Fox Live at DEF CON 30 featuring Vinnie Liu
Listen to this exclusive interview with Bishop Fox CEO Vinnie Liu where he shares his opinion on various cybersecurity trends and hot topics.
Bishop Fox Live at DEF CON 30 featuring Alethe Denis
Listen to social engineering expert Alethe Denis share her stories and insight with our DEF CON livestream hosts Tom Eston and Joe Sechman.
Bishop Fox Live at DEF CON 30 featuring Juneau
As part of our inaugural DEF CON livestream in 2022, our hosts Tom Eston and Joe Sechman spoke to infosec community member Juneau about her professional journey and the topics she's most passionate about.
Bishop Fox Live at DEF CON 30 featuring Tanya Janca
In this session from our DEF CON livestream, Tanya Janca (AKA SheHacksPurple) talks about her books, her security journey, SAST/DAST, and more!
Bishop Fox Live at DEF CON 30 featuring Barrett Darnell
In this session from the Bishop Fox DEF CON 30 livestream, Principal Security Engineer at Intuit & former Fox Barrett Darnell stops by to chat with hosts Tom Eston and Joe Sechman.
Bishop Fox Live at DEF CON 30 featuring Yael Basurto Esquivel
Listen to Bishop Fox Security Consultant Yael Basurto Esquivel discuss some of his latest infosec research during this DEF CON 30 interview!
Bishop Fox Live at DEF CON 30 featuring Steve Ragan
Check out this DEF CON 30 livestream snippet with security storyteller and editor at Cisco Steve Ragan!
Bishop Fox Live at DEF CON 30 featuring DFIR Matt Scheuer
Tune in to this snippet from the Bishop Fox DEF CON livestream 30 where Tom Eston and Joe Sechman interview DFIR Matt Scheuer, host of the ThreatReel podcast.
Bishop Fox Live at DEF CON 30 featuring Sandeep Singh
In this DEF CON 30 interview from the Bishop Fox livestream, ProjectDiscovery co-founder and Nuclei creator Sandeep Singh (Geekboy) shares some thoughts about the open source community, his company, and more.
Managing Application Security Risk with Threat Modeling
13th BSides Las Vegas - Management Hacking 101
Tom Eston, AVP of Consulting at Bishop Fox, shares his best advice for becoming a successful manager and leader in the security industry.