ESWEpisode183

From Security Weekly Wiki
Jump to navigationJump to search

Enterprise Security Weekly Episode #183 - May 13, 2020

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. News - Cortex XSOAR, Fortinet, & YubiEnterprise - 12:30 PM-01:00 PM


Announcements

  • We are looking for high-quality guest suggestions for all of our podcasts to fill our Q3 recording schedule! Submit your suggestions for guests by visiting securityweekly.com/guests and submitting the form! We review suggestions monthly and will reach out to you once reviewed!
  • Learn how hidden vulnerabilities lead to application compromise in our next webcast with Snyk! Register for our upcoming webcasts or virtual trainings by visiting securityweekly.com/webcasts. Or visit securityweekly.com/ondemand to view our previously recorded webcasts!
  • Join us at InfoSecWorld 2020 - June 22nd-24th now a fully virtual event! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020, click the register button to register with our discount code!
  • Join the Security Weekly Mailing List & receive your invite to our community Discord server by visiting securityweekly.com/subscribe and clicking the button to join the list!

Description

In the Enterprise Security News, how GitHub Code Scanning aims to prevent vulnerabilities in open source software, SlashNext Integrates with Palo Alto Networks Cortex XSOAR to Deliver Automated Phishing IR and Threat Hunting, Portshift Announces Extended Kubernetes Cluster Protection, Vigilant Ops InSight Platform V1 automatically generates device software bill of materials, and more!


Hosts

John Strand's Content:

Articles

Matt Alderman's Content:

Articles

  1. Varonis Systems’ $253 Million Convertible Senior Note Offering
  2. Cloudflare prices $500M of 0.75% convertible senior notes due 2025
  3. CyberArk Acquires Identity as a Service Leader Idaptive

Paul Asadoorian's Content:

Articles

  1. Fortinet launches new enterprise network firewall
  2. Code Climate Announces $8.5M Series B to Expand their Engineering Intelligence Platform for Software Departments
  3. New Employee Workflows will support opening of company workplaces while supporting safety of employees and customers for a new world of work - ServiceNow Blog
  4. GitHub Code Scanning aims to prevent vulnerabilities in open source software - Help Net Security
  5. Qualys provides vulnerability management for customers of Azure Security Center - Help Net Security
  6. Yubico YubiEnterprise Delivery: Allowing orgs to ship YubiKeys to remote workforces - Help Net Security
  7. Vigilant Ops InSight Platform V1 automatically generates device software bill of materials - Help Net Security
  8. Relationship With Amazon Web Services, Supports Amazon GuardDuty
  9. SlashNext Integrates with Palo Alto Networks Cortex XSOAR to Deliver Automated Phishing IR and Threat Hunting
  10. Portshift Announces Extended Kubernetes Cluster Protection
  11. FinTech Pioneer Greenlight Banks on StackRox for Security in Amazon EKS
  12. Aruba Collaborates with Microsoft to Advance Enterprise Cyberattack Protection


2. Interview - Qualys VMDR: A Customer Perspective - 01:00 PM-01:30 PM


Visit https://securityweekly.com/qualys for more information!


Announcements

  • We are looking for high-quality guest suggestions for all of our podcasts to fill our Q3 recording schedule! Submit your suggestions for guests by visiting securityweekly.com/guests and submitting the form! We review suggestions monthly and will reach out to you once reviewed!
  • Layer 8 is Going Virtual! The conference will still be held on Saturday June 6th. Security Weekly listeners save $20 on their ticket by visiting layer8conference.com and using the promo code "SecurityWeekly" before selecting your ticket type! Please consider supporting Layer8 or one of their partner organizations when purchasing your ticket! Some of the Security Weekly team will be in our own channel on the Layer8 Discord server answering questions and possibly doing some contests!

Description

Discuss approach to vulnerability management at Toyota Financials and benefits of a full life-cycle approach to vulnerability management.

To learn more about Qualys VMDR, visit: https://securityweekly.com/qualys



Guest(s)

Georges Bellefontaine

Georges is the manager of Vulnerability Management at Toyota Financial. He has been in IT security for more than 20 years.


Hosts

3. Interview - Using the Network to Reduce Remediation Costs - 01:30 PM-02:00 PM


Visit https://securityweekly.com/viavi for more information!


Announcements

  • Join the Security Weekly Mailing List & receive your invite to our community Discord server by visiting securityweekly.com/subscribe and clicking the button to join the list!
  • Layer 8 is Going Virtual! The conference will still be held on Saturday June 6th. Security Weekly listeners save $20 on their ticket by visiting layer8conference.com and using the promo code "SecurityWeekly" before selecting your ticket type! Please consider supporting Layer8 or one of their partner organizations when purchasing your ticket! Some of the Security Weekly team will be in our own channel on the Layer8 Discord server answering questions and possibly doing some contests!

Description

Many companies hire external consultants to conduct incident response and remediation, which can add up quickly in cost. By providing these security consultants with network data in seconds as opposed to hours or days, we can drastically reduce remediation costs and speed breach containment.

To learn more about VIAVI Solutions, visit: https://securitweekly.com/viavi


- How can we do incident response internally better so we don't need consultants?

- How can we manage consultants better for incident response?

- What tools can we have in place so consultants can be more efficient (i.e. packet captures, logs, system images, malware samples)?


Guest(s)

Sid Nanda

Sid Nanda is a Sr Product Marketing Manager at VIAVI Solutions, where he develops and drives the GTM strategy for VIAVI's Enterprise & Cloud division. He brings a wealth of experience delivering to market complex products in the cybersecurity space. Prior to his time at VIAVI, Sid was a Cyber Consultant where he worked on a variety of digital forensics, incident response, IP litigation, and proactive risk advisory engagements.


Hosts