Insights from a Cybersecurity Expert: An AMA with Nick Percoco
Hello, digital enthusiasts! I’m Nick Percoco, a veteran in the world of cybersecurity with over 25 years of experience spanning across technology and security sectors. Currently, I serve as the Chief Security Officer at Kraken, an internationally recognized digital asset exchange where I lead efforts in Security, IT, and Engineering.
My journey in cybersecurity began quite early—at the age of 7, I started coding on the Timex Sinclair 1000. The thrill of technology propelled me into the Chicago hacker scene, where I’ve not only engaged in innovative projects but also founded the THOTCON hacker conference, which has now reached its twelfth edition in 2023.
Before my current role at Kraken, I held prominent positions including CSO at Uptake, a company specializing in industrial AI, as well as Vice President of Global Services at Rapid7, providing valuable insights into security breaches, malware, mobile security issues, and ongoing InfoSec trends. I’ve had the privilege of sharing my findings and experiences at renowned security conferences such as Black Hat and DEF CON, and have also engaged with various organizations including the Department of Homeland Security, US-CERT, Interpol, and the Secret Service.
At Kraken, my focus has been on developing rigorous programs to fortify our exchange against potential threats, continually adapting to the dynamic landscape of cryptocurrency security. I’m passionate about sharing knowledge and best practices in the realm of cybersecurity, especially concerning hacks and breaches that can impact digital assets.
In this blog post, I’d like to open up a dialogue with readers interested in cybersecurity—whether you’re looking for tips to enhance your online safety, insights about cryptocurrency vulnerabilities, or general inquiries about the industry.
I’m eager to engage with any questions you might have about my experiences and the cybersecurity field in general. Your curiosity helps drive the conversation forward!
Thank you for joining me, and I look forward to your questions!
Note: I will be monitoring this post and will respond to questions throughout the day.
Share this content:
Thank you for sharing your valuable insights, Nick. If you’re exploring ways to enhance cybersecurity measures for cryptocurrency exchanges, consider implementing multi-layered security protocols such as multi-signature wallets, hardware security modules (HSMs), and continuous monitoring with advanced threat detection systems. Regular security audits and employee training on social engineering are also crucial to mitigate vulnerabilities.
Since you mentioned development and security practices, you might find integrating tools like Web Application Firewalls (WAFs) and utilizing occurrence logging with SIEM solutions beneficial for real-time threat analysis. In the context of your work at Kraken, leveraging blockchain-specific security solutions—like smart contract audits and anomaly detection—can further strengthen your defenses against emerging cyber threats.
If you’re interested in expanding your incident response capabilities, consider setting up automated alerting workflows and simulated breach scenarios to test your defenses proactively. Also, ensure your teams stay updated with the latest security patches and industry best practices, especially given the rapid evolution of cyber threats in the cryptocurrency space.
Feel free to reach out if you’d like specific technical guidance or resources tailored to your current security infrastructure. Your commitment to cybersecurity excellence is commendable, and ongoing collaboration within the community is vital for staying ahead of cyber adversaries.