ES Episode143

From Paul's Security Weekly
Jump to: navigation, search

Recorded June 26, 2019 at G-Unit Studios in Rhode Island!

Episode Audio

Hosts

  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • John Strand
    Security analyst, Founder of Black Hills Information Security, and CTO of Offensive Countermeasures.
  • Matt Alderman
    CEO at Security Weekly, Strategic Advisor, and Wizard of Entrepreneurship
  • Annoucements:

    • We have exciting news about the Security Weekly webcast program: We are now partnered with (ISC)2 as an official CPE provider! If you attend any of our webcasts, you will be receiving 1 CPE credit per webcast! Register for one of our upcoming webcast with Zane Lackey of Signal Sciences, Ian McShane from Endgame, or Stephen Smith and Jeff Braucher of LogRhythm (or all 3!) by going to securityweekly.com/webcasts If you have missed any of our previously recorded webcasts, you can find our on-demand library at securityweekly.com/ondemand

    • So many of the big East Coast cybersecurity tradeshows take place in crowded cities like Boston and New York, where parking is a nightmare and will cost you an arm and a leg. However, this year's Compass Cybersecurity Symposium is being held at Twin River Casino in Lincoln, RI, just 15 minutes outside of Providence! The venue has plenty of free and easy parking. Speakers include social engineering expert Chris Hadnagy and Security Weekly podcast founder Paul Asadoorian. Use the discount code "SW2019" to save $20 on registration!

    • Security Weekly will be at Hacker Halted in Atlanta, GA this October 10th-11th! EC-Council is offering our listeners a $100 discount to attend the two day conference. Use discount code HH19SW when you register or go to securityweekly.com/hackerhalted and register there! Make sure you checkout the keynote (Paul Asadoorian) and Mr. Jeff Man's talk as well!

    • Have you been trying your hardest to get a ticket to DerbyCon FinishLine?! We know that tickets sold out almost immediately, as they do almost every year, and we have an exciting announcement: Security Weekly is giving away 7 tickets to DerbyCon! Here's what you need to do - subscribe to the Security Weekly YouTube channel and send an email to sam@securityweekly.com with either a written or video testimonial about what Security Weekly means to you! That's it, it's really that simple! First 7 people to complete this will receive a ticket to DerbyCon! You will also be invited to participate in our Security Weekly DerbyCon interview series that Sam and Mark will be running at the conference!



    Enterprise News

    1. Ciscos Duo Security Now Offers Out-of-the-Box Multi-Factor Authentication for Amazon Web Services
    2. Protect Against Email Data Exfiltration in Real-Time with ObserveIT 7.8
    3. Qualys : Cloud Platform 2.39 New Features | MarketScreener
    4. CyberArk opens integration ecosystem to community contributions
    5. Lockpath Announces Significant Updates to Blacklight Platform Blacklight 2.0 Introduces File Integrity Monitoring
    6. ExtraHop Announces Reveal(x) Cloud
    7. Symantec: Cybersecurity Capabilities Lagging in Cloud Adoption
    8. McAfee announced updates to McAfee MVISION Cloud for Amazon Web Services
    9. AWS Announces General Availability of AWS Security Hub
    10. Elastic expands cybersecurity push in new version of software suite - SiliconANGLE
    11. Vulcan raises $10 million to remediate cybersecurity vulnerabilities
    12. Ping Identity releases new Cloud identity solution update
    13. https://aws.amazon.com/blogs/aws/new-vpc-traffic-mirroring/

    Interview: Saikrishna (Sai) Chavali, ObserveIT

    Sai Chavali is the Security Strategist at ObserveIT
    Saikrishna (Sai) Chavali is a Security Strategist at ObserveIT where he is defining a new product category in the information security industry: insider threat management. Sai has expertise in growing and building information security products to protect data, applications and users across insider threat management and application security. Prior to his role at ObserveIT, Sai held product management positions at Veracode, where his products helped to reduce software vulnerabilities in web applications used by Fortune 100 enterprise companies and consumers all over the world.

    Topic: Email Data Exfiltration: Prevention is Ideal, but Detection & Response is a Must

    Segment Description:

    Most companies have preventative controls on email today, however, they are still finding that users exfiltrating sensitive data through corporate email is all too common. Currently, detection and investigation of out-of-policy user activity and security incidents are time-consuming and riddled with manual processes. Learn more on how ObserveIT helps security teams with real-time detection and take investigation time from months to minutes.


    Interview: Britta Glade & Linda Gray-Martin - RSAC APJ

    Britta Glade
    is the Director, Content and Curation for RSA Conference.
    Britta Glade is Director, Content and Curation for RSA Conference. She has been in the learning and security sector for 23 years. Most recently she headed analyst relations for RSA and in 2014 was recognized by industry analysts as one of the top 10 analyst relations professionals by the Institute of Analyst Relations Professionals, a global recognition that values responsiveness, relationships and results.



    Linda Gray
    is the Director & Chief of Operations for RSAC APJ.
    With more than 20 years of experience in the technology industry, Linda Gray-Martin is currently the Director & Chief of Operations for RSA Conferences globally, which take place annually in the US, the Asia Pacific & Japan region and Europe, Middle East & Africa region. As Director Chief of Operations for RSA Conferences, Gray Martin ensures that all attendees across the global RSA Conferences receive the same phenomenal experience. Gray Martin’s responsibilities range from conference strategy and architecture, to oversight of marketing, PR and technology strategy, vendor management, and keynote program management.

    To learn more about RSAC APJ, visit: https://www.rsaconference.com/events/ap19