News

Madhav Nakar — AI Security Researcher and Documentarian of Spirituality and Play  

Episode 70 — Madhav Nakar

Madhav Nakar — AI Security Researcher and Documentarian of Spirituality and Play  2026-03-14T16:33:07-04:00

Career Launch Series: From Curious High Schooler to Cybersecurity Analyst

Issac Ward

Assistant Security Operations Center Manager Duy Dao and new employee Issac Ward in the SOCAP classroom

Meet Isaac Ward

When Isaac Ward first started exploring the early internet and the history of computers in high school, he did not yet know it would lead him to a career in cybersecurity. But late-night dives into forums discussing cybercriminal groups, the dark web, malicious code, and major data breaches sparked something.
“I thought it was cool,” he says. “I liked the unknown and mysterious aspect.”

That curiosity eventually led him to study cybersecurity at the University of South Florida, drawn by both a full-ride scholarship and Tampa’s growing reputation as one of Florida’s largest cybersecurity hubs. Today, Isaac is bringing that same curiosity and drive to his new full-time role as a Cybersecurity Analyst in Cyber Florida’s Security Operations Center Apprentice Program (SOCAP).

Taking a Leap: Finding the Right Challenge

Near the end of his junior year at the University of South Florida, Isaac was already gaining hands-on experience in cybersecurity research while working at USF’s Institute of Applied Engineering (IAE). It was a strong opportunity he appreciated, but something was missing.

The institute had just begun building out a “cyber lab” initiative when Isaac arrived. While promising, it wasn’t yet the immersive, operational experience he was looking for. At the same time, he was balancing a heavy course load and side projects. Still, he felt the pull to push himself further.

“I needed more of a challenge and a more realistic experience of what I could expect in the field,” he explains.

During winter break, Isaac began searching for internships and part-time roles that would provide that real-world exposure. When he came across a job posting from Cyber Florida, he admits he didn’t check every qualification box.

“I remember meeting very few of the job requirements and just applying on a whim,” he says.

At the time, he knew little about Cyber Florida or SOCAP beyond having seen the organization mentioned on LinkedIn. But after being invited to interview, he dug deeper into the program and quickly realized it was exactly the kind of hands-on, operational environment he had been searching for.

The interview process itself stood out.

“It was a bit ‘different’ than normal interviews,” he says with a smile. “That’s a secret for future applicants. But it reflected the relaxed, casual work environment at Cyber Florida.”

In January 2025, Isaac officially joined the SOC as a student assistant, a decision that would ultimately shape the trajectory of his cybersecurity career.

Finding His Path to SOCAP

Like many students entering cybersecurity, Isaac knew the field was broad but wasn’t yet sure which direction to specialize in. After hearing about security operations centers while researching career paths, he decided to see firsthand what SOC work was really like.

As a SOC student analyst, he quickly discovered there was no such thing as a “typical day.”

“New alerts, incidents, news, and the freedom to choose what projects I wanted to pursue meant that there was no typical day in the SOC.”

That dynamic environment proved to be the right fit. When the opportunity arose to transition into a full-time role after graduating in December 2025, the decision was easy.

“SOCAP was not just a program to pick up new skills,” Isaac explains. “It was an information exchange, an environment where I could learn from different analysts’ thought processes, methods, and real-world knowledge.”

Making an Impact as a Student Analyst

During his time as a student analyst, Isaac made substantial contributions to SOCAP’s operations and threat intelligence efforts. He:

  • Conducted incident response investigations in collaboration with the USF IT team
  • Resolved more than 500 security alerts
  • Developed automation tools to enhance SOC operations and cut response times
  • Authored and published two Threat Advisories in Cyber Florida’s Threat Room
  • Established the SOCAP Honeypot project to collect threat intelligence and analyze attacker behavior

For Isaac, publishing threat advisories and assisting with digital forensic investigations for clients, including USF, were particularly meaningful.

“Writing and publishing reports on current threats that others can read has a meaningful impact,” he says. “Working with USF IT to conduct investigations is fulfilling. I got to experience real incident response procedures while helping to strengthen the university’s security posture.”

Resolving hundreds of alerts also sharpened critical skills. Rather than seeing repeat alerts as “noise,” Isaac viewed them as opportunities to refine pattern recognition, distinguish anomalies from normal behavior, and improve workflow efficiency, foundational skills for any effective SOC analyst.

Building Threat Intelligence from the Ground Up

One of Isaac’s signature contributions was setting up SOCAP’s T-Pot Honeypot project.

Having previously experimented with honeypots, he saw an opportunity for Cyber Florida to collect its own threat intelligence, analyze attacker tactics, and potentially share insights with the broader security community. The volume of automated malicious traffic he observed was eye-opening.

“It surprised me just how much automated traffic is filtered out by network and email security tools behind the scenes. It showed that without strong filtering and access controls, an organization would succumb to bots and spam almost immediately.”

Through threat advisories and intelligence sharing, Isaac helped clients stay ahead of emerging threats by providing actionable indicators of compromise (IOCs) and clear vulnerability breakdowns, empowering organizations to build stronger detection and prevention rules.

Stepping Into Leadership

Now a full-time Cybersecurity Analyst employed by Cyber Florida, Isaac’s responsibilities have expanded. In addition to working with SIEM, DLP, IDP, EDR, and other security tools to detect and respond to threats, he also provides technical support, creates documentation, and contributes to ongoing investigations.
With that shift has come a new perspective.

“As a full-time employee, I feel more accountable in representing the SOCAP and acting as a leader for student apprentices. It has encouraged me to explore subjects beyond my comfort zone so I can broaden my knowledge and have more to share.”

Isaac particularly enjoys working with SIEMs and EDR platforms, such as Splunk, Microsoft Sentinel, SentinelOne Singularity, and CrowdStrike Falcon. Optimizing queries to surface high-value data efficiently is a challenge he genuinely enjoys.

“Tough investigations are fun,” he says. “When they’re too easy, I don’t feel like I’m growing. Difficulty isn’t an obstacle; it’s a challenge.”

Looking Ahead: AI and the Future of SOC Operations

Over the next year, Isaac is focused on expanding SOCAP’s threat intelligence capabilities and exploring the role of agentic AI in security operations.

He’s particularly interested in how AI can enhance SOC workflows, from automation and collaboration to improving report structure and efficiency. His goal is to continue publishing threat advisories, strengthen intelligence correlation using the T-Pot environment, and to help new student analysts develop their own methodologies.

For students aspiring to work in a SOC, his advice is clear:
“Learn how to automate or perfect your workflow through scripting, AI, or automation platforms. Balancing time and effort is key. Knowing when to dig deeper into an alert and when to recognize a false positive is a valuable, learned skill.”

From a high school student intrigued by the mystery of cyber threats to a full-time analyst strengthening Florida’s cybersecurity posture, Isaac Ward represents the power of hands-on experience, curiosity, and collaboration.

We’re proud to welcome him into this next chapter at Cyber Florida and excited to see the impact he’ll continue to make.

Career Launch Series: From Curious High Schooler to Cybersecurity Analyst2026-03-26T10:27:09-04:00

Tampa, Technically Connected: Voices from CyberBay 2025

What happens when you mix cybersecurity conversations with a game of Connect4?

In this bonus episode of the CyberBay Podcast, producer Sarina Gandy sits down with six attendees from the CyberBay Summit 2025 for candid conversations about their work, their paths into cybersecurity, and how they see the CyberBay movement shaping Tampa Bay’s future – all while playing a (peaceful) game of Connect4. Between moves, guests share perspectives on collaboration, accessibility, and why cybersecurity is ultimately a human problem – one that’s best solved through community, education, and connection.

The CyberBay Podcast is produced by Sarina Gandy, powered by Cyber Florida, and supported by Bellini Capital.

00:00 Intro

00:40 Ryan Seymour

07:57 – Peter Bellini

14:29 – Kendra Siler & Kevin Salzer

22:58 – Gowtham Chilakapati

35:14 – Paul Perry

Tampa, Technically Connected: Voices from CyberBay 20252026-02-27T09:12:42-05:00

Teacher Spotlight: Monica La Rocca-Mitchell

Monica La Rocca-Mitchell

Teacher: La Rocca-Mitchell

District: Miami-Dade County

At Miami Lakes Educational Center, Monica La Rocca-Mitchell is shaping the next generation of cyber talent as the lead instructor for the Cisco Networking Academy within the IT Academy. She delivers advanced coursework for 10th–12th grade students in the CCNA program and AP Cybersecurity, equipping them to earn college credit and in-demand industry certifications, including CompTIA Security+ and Network+.

Drawing on 16 years of classroom experience, Ms. La Rocca-Mitchell prioritizes immersive, real-world learning through high-impact competitions such as Cyber Launch and CyberPatriot, where students sharpen their technical expertise while practicing ethical decision-making and teamwork. Her students consistently perform at high levels, earning top placements in district contests and advancing to state-level competitions.

Through an ongoing partnership with Cyber Florida, she is expanding access to rigorous, hands-on cybersecurity education and opening doors to future academic and career opportunities for her students.

Would you like to be featured in our Teacher Spotlight? To nominate yourself or another deserving teacher, complete the interest form below!

Teacher Spotlight: Monica La Rocca-Mitchell2026-02-20T14:43:49-05:00

Virtual Cyber Exercise for Critical Infrastructure 2026/03/04

Virtual Cybersecurity Workshop for Critical Infrastructure

March 4, 2026 | 8:30am – 12 Noon (Eastern Time)

Cyber Florida’s Critical Infrastructure Program (CIP) Workshop brings together public-sector leaders, IT professionals, and emergency managers to learn to better manage real-world cyber threats facing Florida’s essential services. These hands-on sessions deliver practical tools, expert insights, and interactive scenarios designed to help SLTT agencies strengthen their cyber resilience and readiness.

  • Receive actionable recommendations for enhancing compliance with Florida Statute 282.318
  • See an overview of Cyber Florida’s no-cost solutions and services to strengthen your organization’s cyber defenses.
  • Engage in an exciting tabletop exercise hosted by the National Cybersecurity Preparedness Consortium (NUARI), offering hands-on experience in responding to cyber incidents.

Whether you’re securing water systems, transportation networks, or municipal services, these workshops are your front line in building a safer Florida. Don’t miss this chance to improve your cybersecurity posture and resilience!

Virtual Cyber Exercise for Critical Infrastructure 2026/03/042026-02-24T09:58:23-05:00

Sue Serna – Social Media Security and Governance Leader and Lover of All Beagles

Episode 69 — Sue Serna

Sue Serna – Social Media Security and Governance Leader and Lover of All Beagles2026-02-17T09:17:50-05:00

Florida Ransomware Incidents 2020-2024

Through a search of publicly available news sources, we identified 30 ransomware incidents in the state of Florida occurring between 2020 and 2024. This is an increase from 18 ransomware incidents between 2016 and 2019 (see Florida Ransomware Incidents 16-19). Ransomware attacks have been on the rise against these targets: government agencies, local emergency services, hospitals, small and medium-sized businesses, and small NGOs. The attacked targets share a number of common features: (1) most targeted entities relied heavily on centralized information technology (IT) and operational technology (OT) infrastructures; (2) they were generally not large, high-profile service providers; (3) they did not extensively investigate the incident or seek to attribute or take official action to report or prosecute those responsible; and (4) they typically had sufficient financial resources to pay out a ransom demand. Read our in-depth report for more insights.

Florida Ransomware Incidents 2020-20242026-02-16T16:38:14-05:00

FirstLine Exercise for Pinellas County April 9th, 2026

CYBERSECURITY TABLETOP EXERCISE TAILORED FOR: – PINELLAS COUNTY

Participants will engage in a dynamic tabletop exercise led by the Norwich University Applied Research Institutes (NUARI) that is crucial for mastering the skills needed to tackle simulated cyber incidents more effectively. This interactive experience will sharpen your strategic thinking and collaborative problem-solving abilities, helping you to be better-prepared for real-world cyber challenges. Seize this opportunity to elevate your capabilities!
Cyber Florida invites you to a complimentary light breakfast and lunch to connect with fellow cybersecurity professionals and industry colleagues.
Once Cyber Florida processes your registration, you’ll promptly receive a confirmation email filled with essential event details. Don’t miss out on this opportunity, stay informed and prepared for an incredible experience!

Registration is now closed. Please contact firstline@cyberflorida.org with any questions. Thank you.

FirstLine Exercise for Pinellas County April 9th, 20262026-04-02T19:19:38-04:00

CyberBay Summit 2026: Advancing the Future of Digital Defense

CyberBay

Tampa Bay conference unites cybersecurity, AI, national security leaders

February 5, 2026—Tampa, Fla—CyberBay Summit returns this spring to Tampa Bay as the next evolution of a high-impact conference that convenes the nation’s leading voices in cybersecurity, artificial intelligence, and national security. Building on the success of its inaugural event last fall, the Summit will once again bring together leaders from business, investment, education, and law enforcement, this time with an expanded agenda focused on accelerating innovation, strengthening cyber resilience, and shaping the future of digital defense.

Summit Details

Set for March 11-13, 2026, at the JW Marriott Tampa Water Street, the event is hosted by Bellini Capital, Cyber Florida, and the University of South Florida (USF). Registration is now open at CyberBay.org/summit.

The agenda of speaker sessions and workshops will focus on:

  • critical infrastructure
  • cyber management
  • emerging technology
  • entrepreneur
  • law enforcement/cybercriminology
  • workforce development

Keynote Speakers

Jen Easterly, former Director of the Cybersecurity and Infrastructure Security Agency (CISA), is one of the most influential leaders in national cyber defense. From protecting critical infrastructure to shaping the future of cyber resilience, Jen brings a perspective few can match.

Rachel Wilson, Chief Data Officer for Wealth Management at Morgan Stanley, combines top-tier national security experience with financial-sector cybersecurity leadership. After 15 years at the NSA, spanning counterterrorism, Olympic cyber defense, and major cyber operations, she now leads cybersecurity, fraud, data quality, and privacy risk management for the firm.

Together, they bring unmatched expertise spanning government, intel, and finance—offering a rare, 360-degree view of today’s cyber threat landscape.

Cost

The CyberBay Summit 2026 planning committee is committed to ensuring the event remains accessible and affordable for the full cybersecurity ecosystem. Registration options are designed to support broad participation:

  • General admission is $250
  • Discounted tickets of $200 are available for government, academia, military, and nonprofit professionals
  • Deeply reduced student rate of $50 to encourage the next generation of cyber leaders to attend and engage

Survey

Insights from the inaugural CyberBay Survey, alongside a newly commissioned survey currently underway, are shaping the agenda for CyberBay Summit 2026 to address real-world cybersecurity challenges across sectors and inform CyberBay workgroup initiatives.

CyberBay Cup Competition Returns

The CyberBay Cup 2026 returns as a marquee, optional event at CyberBay Summit, bringing elite student and professional cybersecurity talent together for a live Capture the Flag (CTF) competition. Hosted by SkillBit (formerly MetaCTF), the high-energy challenge takes place on day two of the Summit and features real-world cyber scenarios, team-based competition, and significant cash prizes, showcasing the skills, innovation, and next-generation talent driving the future of digital defense.

Exhibitor and Sponsorship Packages

Building on a sold-out 2025 event, CyberBay offers unparalleled access to decision-makers and innovators shaping the future of digital defense. Sponsors and exhibitors gain high-visibility engagement with:

  • National security leaders from SOCOM, CENTCOM, federal agencies, and defense contractors
  • Cross-sector professionals spanning technical and non-technical roles across public and private sectors
  • Entrepreneurs and emerging talent, including participants in the CyberBay Cup and the new CyberBay Innovation Challenge

More than a conference, CyberBay is a rapidly growing ecosystem where organizations can showcase innovation, influence practice, and build lasting partnerships in Tampa Bay’s cybersecurity community and beyond.

Visit https://cyberbay.org/sponsor/ for more details.

Media Welcome

Journalists interested in attending should contact Jennifer Kleman, APR, CPRC, cyber outreach manager at Jennifer437@cyberflorida.org for a complimentary ticket.

About Bellini Capital
Deploying capital through a blend of seed investment and philanthropy, Bellini Capital is seeking to create an unbreakable ecosystem of cybersecurity innovation, talent development, and ecological stewardship. The firm was founded by technology entrepreneur, investor, and philanthropist, Arnie Bellini, and is based in Tampa, Florida (a.k.a. CyberBay).

About Cyber Florida at USF
The Florida Center for Cybersecurity at the University of South Florida, commonly referred to as Cyber Florida at USF, was established by the Florida Legislature in 2014. Its mission is to position Florida as a national leader in cybersecurity through comprehensive education, cutting-edge research, and extensive outreach. Cyber Florida leads various initiatives to inspire and educate current and future cybersecurity professionals, advance applied research, and enhance cybersecurity awareness and safety of individuals and organizations.

About USF’s Bellini College of AI, Cybersecurity and Computing
The Bellini College of AI, Cybersecurity and Computing at the University of South Florida is the first named college for AI, cybersecurity, and computing, dedicated to advancing education, research and ethical innovation. The College is designed to foster interdisciplinary innovation and technology development through strong industry and government partnerships, serving as a critical talent center for CyberBay and the cybersecurity sector as a whole.

CyberBay Summit 2026: Advancing the Future of Digital Defense2026-02-07T13:46:43-05:00