From Security Weekly Wiki
Jump to navigationJump to search
35 bytes added ,  18:37, 10 July 2019
no edit summary
= Interview: Peter Smith, [ Edgewise] - 6:00-6:30PM =
[[File:PeterSmith.jpg|right|250px|thumb|<center>'''[ Peter Smith]'''is the Founder & CEO of [ Edgewise]</center>]] Peter Smith, Edgewise Founder and CEO, is a serial entrepreneur who built and deployed Harvard University’s first NAC system before it became a security category. Peter brings a security practitioner’s perspective to Edgewise with more than ten years of expertise as an infrastructure and security architect of data centers and customer-hosting environments for Harvard University, Endeca Technologies (Oracle), American Express, Fidelity UK, Bank of America, and Nike. Most recently, Peter was on the founding team at Infinio Systems where he led product and technology strategy.<!--,br><center>{{#ev:youtube|WJAiTXAvtRQdwLI7iDLHUA}}</center>-->
[[File:CoreyThuen.jpg|right|220px|thumb|<center>'''[ Corey Thuen]'''<br> is the Co-Founder at [ Gravwell].</center>]] Corey Thuen co-founded Gravwell to enable log management of every data type an organization might need for success -- analyzing binary packets alongside syslog with a dash of business KPIs enables analytics that improve the entire organization, not just reduce security risk. Prior to founding Gravwell, Corey conducted security assessments on anything from power equipment to vehicle computers to over-engineered juicers while working for companies such as IOActive, Digital Bond, and Southfork Security. Before that Corey did cybersecurity work for the US Department of Energy at Idaho National Laboratory and the FBI.<br><br>Topic: Security analytics using the new Sysmon DNS logging and Sysmon DNS logging dropped this week.<br><br>Description:
*This week Mark Russinovich released an update to sysmon that adds DNS logging to the popular (and free) endpoint monitoring tool. In this segment, Corey will talk about sysmon use cases and deployment, crack open the new DNS events, conduct some endpoint DNS analytics, and then incorporate threat feeds to stand up DNS monitoring (time permitting).
*Obviously this all hinges on the tool actually going out. As of June 8, that's still the plan:<br.<center>{{#ev:youtube|e_E6F1G6b88}}</center>
= Security News - 7:30PM-8:30PM =
 <!-- <center>{{#ev:youtube|iPHM80z9D9kYWwH5VVamfw}}</center>-->
== Paul's Stories ==

Navigation menu