Scw36

From Security Weekly Wiki
Jump to navigationJump to search

Security and Compliance Weekly Episode #36 - July 21, 2020

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. PCI Dream Team - Part 1 - 12:00 PM-12:30 PM


Announcements

Description

PCI Dream Team: Ben Rothke, Jeff Hall, David Mundhenk, Art Cooper answer all of the toughest PCI questions.



Guest(s)

Arthur Cooper

Coop has over 42 years of experience in Information Technology with the last sixteen years focusing on payment systems and architectures, eCommerce, payment application assessments, forensic investigations, compliance security assessments, development of secure network architectures, risk management programs, security governance initiatives, and regulatory compliance. Mr. Cooper was a member of the U.S. Air Force for most of his young adult life starting in 1978 and had direct experience with the original ARPANET and ARPANET 1822 Protocols. He was directly involved with the original DoD X.25 networks, the Defense Data Network (DDN), and the Automatic Digital Information Network (AUTODIN). He was directly involved with the original BBN Packet Switch Node (PSN) systems and has been involved with every major information technology "leap" or development since that time.

Ben Rothke

Ben Rothke manages information security at Tapad and has over 20 years of industry experience in information systems security and privacy. His areas of expertise are in risk management and mitigation, security and privacy regulatory issues, design and implementation of systems security, encryption, cryptography and security policy development. Rothke is the Author of Computer Security: 20 Things Every Employee Should Know (McGraw-Hill), and writes book reviews for the RSA Conference blog.

David Mundhenk

David Mundhenk is an information security, governance, risk and compliance consultant with extensive multi-organizational experience providing a myriad of professional security services to business & government entities worldwide. David has worked as a computer and network systems security professional for 28 years. David’s experience covers a broad spectrum of security disciplines including security compliance assessments, security product quality assurance, vulnerability scanning, penetration testing, application security assessments, network and host intrusion detection/prevention, disaster and recovery planning, protocol analysis, formal security training instruction, and social engineering. David has successfully completed 200+ PCI DSS assessments, and scores of PA-DSS assessments.

Jeff Hall

Jeff Hall is a senior consultant at Wesbey Associates and focuses on Payment Card Industry and related security and compliance projects. Jeff has over 30 years of technology and compliance projects. Jeff has done a significant amount of security work in the health care industry including security assessments of medical devices and security of medical equipment and network security in hospitals and clinics. Jeff is part of the PCI Dream Team and is the writer of the PCI Guru blog (http://pciguru.blog).


Hosts

2. PCI Dream Team - Part 2 - 12:30 PM-01:00 PM


Announcements

  • Security Weekly is an official media partner for Virtual BlackHat 2020! To register and save $200, visit <a href="https://securityweekly.com/summercamp2020" rel="nofollow">https://securityweekly.com/summercamp2020</a> and click the register button. Discount code: “20SecWeekbh” Alongside Virtual BlackHat, we will be running our conference micro-interviews, you guessed it, virtually, in an event called Security Weekly Virtual Hacker Summer Camp, August 3 – August 6, 2020. Options, pricing and availability are all listed on the same page! Reserve your slot now to get your message out to BlackHat attendees!

  • Learn how to keep your “internet self” safe in our next webcast on August 13th! Register for our upcoming webcasts or virtual trainings by visiting <a href="https://securityweekly.com/webcasts" rel="nofollow">https://securityweekly.com/webcasts</a>. Or visit <a href="http://securityweekly.com/ondemand" rel="nofollow">securityweekly.com/ondemand</a> to view our previously recorded webcasts!

Description

PCI Dream Team: Ben Rothke, Jeff Hall, David Mundhenk, Art Cooper answer all of the toughest PCI questions, Part 2!



Guest(s)

Arthur Cooper

Coop has over 42 years of experience in Information Technology with the last sixteen years focusing on payment systems and architectures, eCommerce, payment application assessments, forensic investigations, compliance security assessments, development of secure network architectures, risk management programs, security governance initiatives, and regulatory compliance. Mr. Cooper was a member of the U.S. Air Force for most of his young adult life starting in 1978 and had direct experience with the original ARPANET and ARPANET 1822 Protocols. He was directly involved with the original DoD X.25 networks, the Defense Data Network (DDN), and the Automatic Digital Information Network (AUTODIN). He was directly involved with the original BBN Packet Switch Node (PSN) systems and has been involved with every major information technology "leap" or development since that time.

Ben Rothke

Ben Rothke manages information security at Tapad and has over 20 years of industry experience in information systems security and privacy. His areas of expertise are in risk management and mitigation, security and privacy regulatory issues, design and implementation of systems security, encryption, cryptography and security policy development. Rothke is the Author of Computer Security: 20 Things Every Employee Should Know (McGraw-Hill), and writes book reviews for the RSA Conference blog.

David Mundhenk

David Mundhenk is an information security, governance, risk and compliance consultant with extensive multi-organizational experience providing a myriad of professional security services to business & government entities worldwide. David has worked as a computer and network systems security professional for 28 years. David’s experience covers a broad spectrum of security disciplines including security compliance assessments, security product quality assurance, vulnerability scanning, penetration testing, application security assessments, network and host intrusion detection/prevention, disaster and recovery planning, protocol analysis, formal security training instruction, and social engineering. David has successfully completed 200+ PCI DSS assessments, and scores of PA-DSS assessments.

Jeff Hall

Jeff Hall is a senior consultant at Wesbey Associates and focuses on Payment Card Industry and related security and compliance projects. Jeff has over 30 years of technology and compliance projects. Jeff has done a significant amount of security work in the health care industry including security assessments of medical devices and security of medical equipment and network security in hospitals and clinics. Jeff is part of the PCI Dream Team and is the writer of the PCI Guru blog (http://pciguru.blog).


Hosts