ES Episode109

From Paul's Security Weekly
Jump to: navigation, search

Enterprise Security Weekly #109

Recorded October 3, 2018 at G-Unit Studios in Rhode Island!

Episode Audio


  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • John Strand
    Security analyst, Founder of Black Hills Information Security, and CTO of Offensive Countermeasures.
  • Annoucements:

    • Check out our On-Demand material! Some of our previously recorded webcasts are now available On-Demand at:
    • DerbyCon is holding its first-ever Mental Health & Wellness Workshop - to help support their efforts, please go to
    • Join us for our Webcast with DomainTools about How To Analyze And Investigate Malicious JavaScript Attacks @3-4pm EST. Go to to register now!

    Interview: Michael Gordover, ObserveIT

    Michael Gordover is the Sr. Solutions Architect at ObserveIT
    Mike Gordover is a Pre-Sales manager and solutions architect at ObserveIT. He has been at ObserveIT consulting on insider threat management for 5 years, working hands on with over 300 deployments, and working with researchers and analysts on strategies to mitigate internal risk.

    ObserveIT Landing Page

    1. What is the current perception in the market of DLP?
    2. Why are information security professionals largely skeptical of DLP?
    3. Large security vendors are making announcements about DLP, what are the pros and cons of these DLP solutions?
    4. How do ObserveIT's solutions differ from traditional DLP?
    5. What are the largest challenges faced when combatting insider threats?
    6. What do security professionals today need to know in order to tackle the insider threat problem?
    7. Does insider threat also mean attackers moving laterally in your organization?
    8. Do I need to put an agent on every endpoint, server, and application?
    9. In the latest product release an updated feature was announced: File Activity Monitoring, what problem does this solve and how does it help security professionals today?
    10. Amazon was reported in the news recently as having discovered insider threats: The Wall Street Journal’s report states that Amazon employees, particularly those in China, have reportedly received payments that range from $80-$2,000 from outside brokers in exchange for deleting negative reviews, restoring banned accounts, and offering access to otherwise confidential information — including reviewers’ email addresses and internal sales data. Is this a typical scenario for a large enterprise?
    11. ObserveIT : Brings Powerful New Insider Threat Detection Features to Market; Achieves Record Growth in Q3

    Enterprise News

    1. Mimecast offers free training kit as part of Cybersecurity Awareness Month
    2. Microsoft killing off the old Skype client... for real this time
    3. Ziften Enters United Kingdom (UK) and Ireland with Endpoint Protection Platform; Partners with Microsoft Windows Defender ATP Specialist Threatscape
    4. Security startup Tanium raises another $200M at a $6.5B valuation
    5. LogRhythm receives patent for data monitoring tech
    6. Tufin launches pay-per-use MSSP program | Channelnomics
    7. Morphisec Announces Interoperability with RSA NetWitness Platform
    8. Tufin Launches First of Its Kind Program for MSSPs
    9. 3 Reasons Why BlackBerry (TSX:BB) Stock May Be About to Soar!