Difference between revisions of "SCWEpisode6"

From Security Weekly Wiki
Jump to navigationJump to search
Line 10: Line 10:
== Topic: Building a {{Strikethrough|Security}} Compliance Program  12:00-12:30PM ==
== Topic: Building a Security Compliance Program  12:00-12:30PM ==
== Security & Compliance News 12:30-1:00PM ==
== Security & Compliance News 12:30-1:00PM ==

Revision as of 16:08, 12 November 2019

Recorded on November 12, 2019, @G-Unit Studios in Rhode Island!


  • Jeff Man
    Infosec analyst
    Pioneering ex-NSA pen tester
    PCI specialist
    Tribe of Hackers
    InfoSec Curmudgeon
    Currently a Sr. InfoSec Consultant for Online Business Systems.
  • Matt Alderman
    CEO at Security Weekly, Strategic Advisor, and Wizard of Entrepreneurship
  • Scott Lyons
    CEO at Red Lion
    MISTI Instructor
    Patent Holder
  • Josh Marpet
    COO at Red Lion
    IANS Faculty
    Blockchain Patent Holder
    MISTI Instructor
    Entrepreneurship Curmudgeon
    Board Member BSidesDE
    Board Member BSidesDC
    Ex-cop and Fireman
  • Announcements

    • Join us at InfoSecWorld 2020 - March 30 - April 1, 2020 at the Disney Contemporary Resort! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020, click the register button to register with our discount code or the schedule button to sponsor a micro-interview!
    • OSHEAN and the Pell Center are partnering together to present Cybersecurity Exchange Day on Wednesday, March 18th from 9am-3pm at Salve Regina University in the beautiful Newport, RI! Visit securityweekly.com/OSHEAN2020 to register for free and come join in the fun!
    • We have officially migrated our mailing list to a new platform! Sign up for the list to receive invites to our virtual trainings, webcasts, and other content relative to your interests by visiting securityweekly.com/subscribe and clicking the button to join the list! You can also submit your suggestions for guests by going to securityweekly.com/guests and submitting the form! We'll review them monthly and reach out if they are a good fit!
    • Our first-ever virtual training is happening on March 19th @11:00am ET, with Adam Kehler & Rob Harvey from Online Business Systems Risk, Security & Privacy Team. In this training you will learn how to generate a complex SHA-256 hashed password and then use password cracking tools to break it. Register for our upcoming trainings by visiting securityweekly.com, selecting the webcast/training drop down from the top menu bar and clicking registration.

    Topic: Building a Security Compliance Program 12:00-12:30PM

    Security & Compliance News 12:30-1:00PM


    Jeff's Stories

    1. Payment Security Compliance Declines – 1 in 3 Companies Make the Grade Why does this matter? Or does it Matter?
    2. ‘Robust’ security foils cyber attack on Labour Party Who says we never report on good news – but then it was just a DDOS attack
    3. Why CFOs Must be Involved in Cybersecurity #FacePalm that this is the topic of an article. The serious question is, “what is the appropriate place for cybersecurity in an organization?”
    4. The password reuse problem is a ticking time bomb Love the conclusion: “stop looking at [password management] as a compliance task and start looking at it as a layer of protection”
    5. URMC Agrees to $3M HIPAA Settlement Over Mobile Device Encryption Does HIPAA require encryption?

    Matt's Stories

    Josh's Stories

    Scott's Stories