ES Episode138

From Security Weekly Wiki
Revision as of 14:14, 10 July 2019 by Wheat Loaf (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to navigationJump to search

Recorded May 22, 2019 at G-Unit Studios in Rhode Island!

Episode Audio

Hosts

  • Paul Asadoorian
    Embedded device security researcher, security podcaster, and CEO of Active Countermeasures .
  • Matt Alderman
    CEO at Security Weekly, Strategic Advisor, and Wizard of Entrepreneurship
  • Annoucements:

    • Join us at InfoSecWorld 2020 - March 30 - April 1, 2020 at the Disney Contemporary Resort! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020, click the register button to register with our discount code or the schedule button to sponsor a micro-interview!
    • OSHEAN and the Pell Center are partnering together to present Cybersecurity Exchange Day on Wednesday, March 18th from 9am-3pm at Salve Regina University in the beautiful Newport, RI! Visit securityweekly.com/OSHEAN2020 to register for free and come join in the fun!
    • We have officially migrated our mailing list to a new platform! Sign up for the list to receive invites to our virtual trainings, webcasts, and other content relative to your interests by visiting securityweekly.com/subscribe and clicking the button to join the list! You can also submit your suggestions for guests by going to securityweekly.com/guests and submitting the form! We'll review them monthly and reach out if they are a good fit!
    • Our first-ever virtual training is happening on March 19th @11:00am ET, with Adam Kehler & Rob Harvey from Online Business Systems Risk, Security & Privacy Team. In this training you will learn how to generate a complex SHA-256 hashed password and then use password cracking tools to break it. Register for our upcoming trainings by visiting securityweekly.com, selecting the webcast/training drop down from the top menu bar and clicking registration.


    Interview: Corey Thuen, Gravwell

    Corey Thuen
    is the Co-Founder at Gravwell.

    Corey Thuen co-founded Gravwell to enable log management of every data type an organization might need for success -- analyzing binary packets alongside syslog with a dash of business KPIs enables analytics that improve the entire organization, not just reduce security risk. Prior to founding Gravwell, Corey conducted security assessments on anything from power equipment to vehicle computers to over-engineered juicers while working for companies such as IOActive, Digital Bond, and Southfork Security. Before that Corey did cybersecurity work for the US Department of Energy at Idaho National Laboratory and the FBI.

    Topic: Focusing on the basics that sustain us


    Interview: Candy Alexander, ISSA (Information Systems Security Association)

    Ms. Alexander has 30 years of information security experience working for various high-tech companies. She has held several positions as CISO (Chief Information Security Officer) for which she developed and managed corporate security programs. She is now working as a Virtual or Fractional CISO and Executive Cyber Security Consultant assisting companies large and small to improve their security programs through effective security initiatives.

    Ms. Alexander is very active within the profession, where her contributions include International President for the Information Systems Security Association (ISSA), chief architect for the Cyber Security Career Lifecycle and a long-standing Director on the International Board. She is also the inaugural President and past Board Member of the ISSA Education and Research Foundation. She remains a loyal member at the local level with the New England Chapter and the ISSA New Hampshire Chapter.

    Ms. Alexander has received numerous awards and recognitions, including that of Distinguished Fellow of the ISSA, ranking her as one of the top 1% in the association, and she was inducted into the ISSA’s Hall of Fame. As a leader in the cyber security profession, she is often a featured speaker at many events, including the most memorable to date; the IT Security Symposium at the United Nations in New York and the Offices of President of the United States.


    Enterprise News

    1. | PYMNTS.com
    2. ThreatQuotient Expands Integration with MITRE ATT&CK Framework to Offer Full Support for Customers
    3. Israeli Cybersecurity Firm Guardicore Raises $60M | News Brief
    4. KnowBe4 Focuses on Security Culture with CLTRe Acquisition
    5. Duo Mobile Makes It Easier to Restore Your Third-Party Personal Accounts
    6. Infocyte Launches First Agentless Cloud Workload Protection Platform, Strengthens Check Point Softwares Threat Detection and IR Capabilities in Dynamic AWS Environments
    7. Checkmarx deploys CxSAST on Project Hosts FPC FedRAMP-authorized PaaS - Help Net Security
    8. JASK launches a new Heads Up Display for security operations centers - Help Net Security
    9. InfoSec Handlers Diary Blog - Using Shodan Monitoring
    10. ThreatQ adds support for mobile and PRE-ATT&CK in response to rapid customer adoption - Help Net Security
    11. Tata Communications and Cisco to enable enterprises a multi-cloud native hybrid network transformation - Help Net Security
    12. Exabeam enhances security management approach and boosts cybersecurity degree program - Help Net Security
    13. Identity Management Firm Auth0 Raises $103 Million | SecurityWeek.Com
    14. Guardicore Raises $60 Million in Series C Funding | SecurityWeek.Com