ES Episode61

From Paul's Security Weekly
Jump to: navigation, search

Enterprise Security Weekly #61

Recorded September 13, 2017 at G-Unit Studios in Rhode Island!

Episode Audio

Hosts

  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Matt Alderman
    CEO at Security Weekly, Strategic Advisor, and Wizard of Entrepreneurship
  • Interview: Tom Parker, Accenture

    Tom is the Group Technology Officer of Accenture Security and a recognized thought leader in the security industry. He co-founded FusionX, which was acquired by Accenture in August 2015. Tom is known for his research in multiple areas, including adversary and threat profiling and software vulnerability.

    Enterprise News

    1. Confessions of an Insecure Coder - Earlier in your education learn software engineering, entering into your career you have to know secure software development. We are teaching everything too late, and this is a great example.
    2. Go Development Tools for Testing and Hot Reloading - If you are doing web application assessments, or have applications to secure using Go, you may want to read up, I think we will see more of this language and associated frameworks.
    3. ThreatQ News ThreatQuotient and PhishMe Partner - This sounds good to me: By integrating PhishMe Intelligence into the ThreatQ Threat Library, security teams are able to ingest indicators of phishing including payload URLs, command and control servers, malicious file hashes, and IP addresses. The ability to import human-readable reports allow analysts to easily link indicators with context; as well as extract and store phishing campaigns, malware families and artifacts. ThreatQ automates much of an analyst’s process to help accelerate the transformation of data into actionable intelligence, and give unmatched control over their threat operations and management.
    4. Bay Dynamics Joins VMware Mobile Security Alliance to Enable Risk-Based Authentication & Authorization :: ITbriefing.net :: - I wish I knew what this really means: integration between Bay Dynamics' flagship cyber risk analytics platform, Risk Fabric®, and the VMware Workspace ONE digital workspace platform powered by VMware AirWatch technology will enable risk-based authentication and authorization for remote users.
    5. Flexera to Acquire BDNA So: BDNA transforms enterprise asset data by enriching it with market context to vastly simplify integrations, improve decision-making and accelerate business transformation. Okay, but what problem are you trying to solve?