ES Episode138

From Paul's Security Weekly
Jump to: navigation, search

Recorded May 22, 2019 at G-Unit Studios in Rhode Island!

Episode Audio


  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Matt Alderman
    CEO at Security Weekly, Strategic Advisor, and Wizard of Entrepreneurship
  • Annoucements:

    • We have exciting news about the Security Weekly webcast program: We are now partnered with (ISC)2 as an official CPE provider! If you attend any of our webcasts, you will be receiving 1 CPE credit per webcast! Register for one of our upcoming webcasts by going to If you have missed any of our previously recorded webcasts, you can find our on-demand library at

    • We need your help in a survey we are running for research purposes for an upcoming webcast. How mature is your process automation for your various security capabilities? Please visit to submit your responses to our 5 Stages of Automation Maturity Survey! We'll share the results in a webcast in November!

    Interview: Corey Thuen, Gravwell

    Corey Thuen
    is the Co-Founder at Gravwell.
    Corey Thuen co-founded Gravwell to enable log management of every data type an organization might need for success -- analyzing binary packets alongside syslog with a dash of business KPIs enables analytics that improve the entire organization, not just reduce security risk. Prior to founding Gravwell, Corey conducted security assessments on anything from power equipment to vehicle computers to over-engineered juicers while working for companies such as IOActive, Digital Bond, and Southfork Security. Before that Corey did cybersecurity work for the US Department of Energy at Idaho National Laboratory and the FBI.

    Topic: Focusing on the basics that sustain us

    Interview: Candy Alexander, ISSA (Information Systems Security Association)

    Ms. Alexander has 30 years of information security experience working for various high-tech companies. She has held several positions as CISO (Chief Information Security Officer) for which she developed and managed corporate security programs. She is now working as a Virtual or Fractional CISO and Executive Cyber Security Consultant assisting companies large and small to improve their security programs through effective security initiatives.

    Ms. Alexander is very active within the profession, where her contributions include International President for the Information Systems Security Association (ISSA), chief architect for the Cyber Security Career Lifecycle and a long-standing Director on the International Board. She is also the inaugural President and past Board Member of the ISSA Education and Research Foundation. She remains a loyal member at the local level with the New England Chapter and the ISSA New Hampshire Chapter.

    Ms. Alexander has received numerous awards and recognitions, including that of Distinguished Fellow of the ISSA, ranking her as one of the top 1% in the association, and she was inducted into the ISSA’s Hall of Fame. As a leader in the cyber security profession, she is often a featured speaker at many events, including the most memorable to date; the IT Security Symposium at the United Nations in New York and the Offices of President of the United States.

    Enterprise News

    1. |
    2. ThreatQuotient Expands Integration with MITRE ATT&CK Framework to Offer Full Support for Customers
    3. Israeli Cybersecurity Firm Guardicore Raises $60M | News Brief
    4. KnowBe4 Focuses on Security Culture with CLTRe Acquisition
    5. Duo Mobile Makes It Easier to Restore Your Third-Party Personal Accounts
    6. Infocyte Launches First Agentless Cloud Workload Protection Platform, Strengthens Check Point Softwares Threat Detection and IR Capabilities in Dynamic AWS Environments
    7. Checkmarx deploys CxSAST on Project Hosts FPC FedRAMP-authorized PaaS - Help Net Security
    8. JASK launches a new Heads Up Display for security operations centers - Help Net Security
    9. InfoSec Handlers Diary Blog - Using Shodan Monitoring
    10. ThreatQ adds support for mobile and PRE-ATT&CK in response to rapid customer adoption - Help Net Security
    11. Tata Communications and Cisco to enable enterprises a multi-cloud native hybrid network transformation - Help Net Security
    12. Exabeam enhances security management approach and boosts cybersecurity degree program - Help Net Security
    13. Identity Management Firm Auth0 Raises $103 Million | SecurityWeek.Com
    14. Guardicore Raises $60 Million in Series C Funding | SecurityWeek.Com