ESWEpisode174

From Security Weekly Wiki
Jump to navigationJump to search

Enterprise Security Weekly Episode 174 - 2020-03-04

Episode Audio

Enterprise Security Weekly Episode 174

Announcements

  • Is your Open Source code secure? Learn how to verify your code during development, not after the build in our next webcast with Synopsys. Register for our upcoming webcasts or virtual trainings by visiting securityweekly.com/webcasts. You can also access our on-demand library of previously recorded webcasts/trainings by visiting securityweekly.com/ondemand. Each webcast will earn you 1 CPE credit that we will submit on your behalf if you provide your ISC2 number.
  • Join us at InfoSecWorld 2020 - June 22nd-24th at the Disney Contemporary Resort! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020, click the register button to register with our discount code or the schedule button to sponsor a micro-interview!
  • OSHEAN and the Pell Center are partnering together to present Cybersecurity Exchange Day on Wednesday, March 18th from 9am-3pm at Salve Regina University in the beautiful Newport, RI! Visit securityweekly.com/OSHEAN2020 to register for free and come join in the fun!

News - Enterprise News

Description:

News from Nozomi Networks, Code42, CrowdStrike, SCYTHE, Palo Alto Networks, Gurucul, SentinelOne and more!


Content:

Nozomi Networks improves security and reliability across mixed IT, OT and IoT network environments

Code42 enhances its cloud data security solution to detect data threats caused by high-risk employees CrowdStrike Falcon's expanded visibility protects workloads across all environments SCYTHE Marketplace: Enabling corporate red teams to test the latest real-world cyber threats Palo Alto Networks unveils Cortex XSOAR, a security orchestration, automation and response platform SentinelOne launches container and cloud-native workload protection offering - Help Net Security Centrify Debuts Identity-Centric Privileged Access Management Qualys Readies VMDR, Game-Changing Vulnerability Management Solution, for General Availability in Mid-March CyCognito Wins Three Cybersecurity Excellence Awards

Sophos acquired by Thoma Bravo for US$3.9 billion


John Strand's Content:

John Strand-0.jpg


Template:ESW174NewsJohn Strand

Matt Alderman's Content:

MattAlderman-0.png


Template:ESW174NewsMatt Alderman

Paul Asadoorian's Content:

Paul Asadoorian-0.png


  1. Neustar's enhanced UltraDNS capabilities boast greater capacity, global reach and security - Help Net Security
  2. HPE Container Platform: Unified container platform built on open source Kubernetes - Help Net Security
  3. WatchGuard acquires Panda Security to expand endpoint capabilities - Help Net Security
  4. Zimperium's new solution helps orgs protect their mobile apps throughout their entire life cycle - Help Net Security
  5. Ping Identity launches two hybrid IT focused solution packages
  6. Fortinet updates FortiOS & launches next-gen firewall product
  7. SD Times news digest: Sonatype's enhanced JavaScript capabilities, Mendix expands cloud deployment options, and General Assembly launches CODE for Good - SD Times


Fullaudio - None

Description:

This week, we talk Enterprise News, to talk about CrowdStrike Falcon's expanded visibility protects workloads across all environments, SentinelOne launches container and cloud-native workload protection offering, Forcepoint's Tech Partnership with Amazon Web Services, Ping Identity Announces New Workforce and Customer Authentication Solutions for the Modern Digital Enterprise, and a whole lot more! In our second segment, we air two pre-recorded interviews from RSAC 2020 with Mike Nichols of Elastic and Tod Beardsley of Rapid7! In our final segment, we air two more pre-recorded interviews from RSAC 2020 with Dan DeCloss of PlexTrac and Corey Thuen of Gravwell!

Visit https://www.securityweekly.com/esw for all the latest episodes!

Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly



John Strand's Content:

John Strand-0.jpg


Template:ESW174FullaudioJohn Strand

Matt Alderman's Content:

MattAlderman-0.png


Template:ESW174FullaudioMatt Alderman

Paul Asadoorian's Content:

Paul Asadoorian-0.png


  1. test
  2. test


Interview: RSAC Micro Interview - Elastic & Rapid7 - 6:00-6:45PM

Description:

It is no secret that elections are under constant attack. Attacks take many shapes and forms, from dis-information to malware to denial of service, its all in play as adversaries look to disrupt enemy infrastructure. Tod Beardsley, Director of Research at Rapid 7 brings unique and insightful perspectives on this topic as he is analyzing data from scans of the entire Internet and monitoring over 250 honeypots.Mike Nichols, Head of Product at Elastic, discusses election security and their partnership with the DDC to offer 2020 campaigns free security.

Guest: Bio:
Mike Nichols is Head of Product, Elastic Security at Elastic
Mike leads Product Management at Elastic Security and is the former Vice President of Product Management at Endgame. He manages the PM team and ensures the product team is constantly listening to customers, researching the market, and deriving differentiated technology in order to choose the best strategic path for the company. Mike is also a Cybersecurity Strategy Instructor at Georgetown.
Guest: Bio:
Tod Beardsley is Director of Research at Rapid7
Tod Beardsley is the Director of Research at Rapid7. He has over 30 years of hands-on security experience, stretching from in-band telephony switching to modern IoT implementations. He has held IT Ops and Security positions in large organizations such as 3Com, Dell, and Westinghouse, as both an offensive and defensive practitioner. Today, Tod directs the security research program at Rapid7, is a frequent speaker at industry conferences, is a CVE Board member, and is a contributing author to a number of research papers produced by Rapid7.

Hosts

Matt Alderman - CEO at Security Weekly
Paul Asadoorian - Founder & CTO at Security Weekly

Interview: RSAC Micro Interview - Plextrac & Gravwell - 6:00-6:45PM

Description:

Dashboards are a great way to enable junior security analysts to be more effective when trying to discover security events. Cory Thuen is the Founder and CEO of Gravwell, and they want to your logs, all of your logs. Gravwell's solution allows you to run queries and create dashboards that lead to actionable events. Cory explains how this works and even how customers are using Gravwell to collect logs on-premise and in the cloud. Vulnerabilities and exposures come from many different sources. Plextrac allows you to bring in data from anywhere and track those findings across your entire organization.

Guest: Bio:
Corey Thuen is Co-Founder at Gravwell
Corey Thuen is a founder of Gravwell and has spent over a decade doing cybersecurity at places like Department of Energy national labs, Digital Bond, and IOActive. That experience is now driving development of a full-stack analytics platform built to alleviate pain points he personally experienced from inflexible tools.
Guest: Bio:
Daniel DeCloss is President / CEO at PlexTrac
Dan DeCloss is the Founder and CEO of PlexTrac and has over 15 years of experience in Cybersecurity. Dan started his career in the Department of Defense and then moved on to consulting where he worked for various companies including serving as a Principal Consultant for Veracode on the penetration testing team. Dan's background is in application security and penetration testing, involving hacking networks, websites, and mobile applications for clients. He has also served as a Principal Security Engineer for the Mayo Clinic and a Sr. Security Advisor for Anthem. Prior to PlexTrac, Dan was the Director of Cybersecurity for Scentsy where he and his team built the security program out of its infancy into a best-in-class program. Dan has a master’s degree in Computer Science from the Naval Postgraduate School with an emphasis in Information Security. Additionally, Dan holds the OSCP and CISSP certifications. Dan has a passion for helping everyone understand cybersecurity at a practical level, ensuring that there is a good understanding of how to reduce their overall risk.

Hosts

Matt Alderman - CEO at Security Weekly
Paul Asadoorian - Founder & CTO at Security Weekly