
Security Weekly Podcast Network (Video)
4,876 episodes — Page 66 of 98

Secure App Deployment With Unikernels - Application Security Weekly #70
Ian Eyber is the CEO of NanoVMs. Unikernels are an emerging trend in software deployment because of their isolation, performance and size. However they are still very much new so it's good to learn what benefits they bring and what their current drawbacks are. Listeners might be surprised to learn how many unikernel implementations there are and what organizations are actively using them. Full Show Notes: https://wiki.securityweekly.com/ASW_Episode70 Visit https://www.securityweekly.com/asw for all the latest episodes!

Security News: July 18, 2019 - Paul's Security Weekly #612
Slack Resets User Passwords After 2015 Data Breach, Hacker Breached Sprint Customer Accounts Through Samsung Website, Why 72% of people still recycle passwords Why 100% of Security Weekly hosts drink, A.I. has a bias problem and that can be a big challenge in cybersecurity I'll bet some of us agree with this and some disagree. Why? Bias., and much more! Full Show Notes: https://wiki.securityweekly.com/Episode612 Visit https://www.securityweekly.com/psw for all the latest episodes!

Topic Segment: Security Roundtable - Paul's Security Weekly #612
They will be covering: Vulnerability Management, Patching, Asset Management, and System Hardening. Full Show Notes: https://wiki.securityweekly.com/Episode612 Visit https://www.securityweekly.com/psw for all the latest episodes!

IT Industry, Jared Haggerty - Enterprise Security Weekly #145
Jared Haggerty is the Director, Content and Curation for Databerry. Jarred comes on the show to talk about an overview of security in business where it is now and where it is headed and the use of Automox in the IT Industry. Full Show Notes: https://wiki.securityweekly.com/ES_Episode145 Visit https://securityweekly.com/esw for all the latest episodes!

MITRE ATT&CK: Katie Nickels, MITRE - Paul's Security Weekly #612
Katie Nickels is the ATT&CK Threat Intelligence Lead at MITRE Corporation. MITRE ATT&CK is a globally-accessible knowledge base of adversary tactics and techniques based on real-world observations. The ATT&CK knowledge base is used as a foundation for the development of specific threat models and methodologies in the private sector, in government, and in the cybersecurity product and service community. Full Show Notes: https://wiki.securityweekly.com/Episode612 Visit https://www.securityweekly.com/psw for all the latest episodes!

Identity Authentication, David Harding - Enterprise Security Weekly #145
David Harding is the SVP & Chief Technology Officer at ImageWare Systems, Inc. Identity authentication is more important now than at any other time in history. Today's methods such as 2-factor authentication are falling short and are not as secure as once believed. How do we secure our networks, private information, financial transactions, and healthcare data without adding friction and losing privacy? We'll address the authentication methods that exist, when they are appropriate, and how to use both 2FA and multi-factor biometric authentication to control and manage your digital identity. Full Show Notes: https://wiki.securityweekly.com/ES_Episode145 Visit https://securityweekly.com/esw for all the latest episodes!

Eric McAlpine, Momentum Cyber - Business Security Weekly #136
Eric McAlpine is the Co-founder and Managing Partner at Momentum Cyber. Eric is a Founder & Managing Partner at Momentum Cyber a firm he co-founded in 2018 along with Dave DeWalt and Michael Tedesco. Momentum Cyber is the premier trusted strategic adviser to the Cybersecurity industry providing bespoke high-impact advice combined with tailored senior-level access from incubation to exit. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode136

Enterprise News: July 17, 2019 - Enterprise Security Weekly #145
Vade Secure's Auto-Remediate adds automated protection for Office 365 environments, Aqua Security deepens strategic relationship with Microsoft to accelerate Azure deployments, Trend Micro's Deep Security as a Service now available on the Microsoft Azure Marketplace, DefenseStorm raises $15M to invest in employees and innovation, and much more! Full Show Notes: https://wiki.securityweekly.com/ES_Episode145 Visit https://securityweekly.com/esw for all the latest episodes!

Security Money: July 15, 2019 - Business Security Weekly #136
This week we have our quarterly segment to review the money of security, including public companies, IPOs, funding rounds and acquisitions from the previous quarter. We also update the Security Weekly 25 index. Let's understand how the security market is doing. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode136

Application News - Application Security Weekly #69
Yes, the zoom thing, 50 Ways to Leak Your Data in 1,300 Popular Android Apps Access Data, Without Proper Permissions, GE Aviation exposed internal configs via open Jenkins instance, Preparing your enterprise to eliminate passwords, DevSecOps Survey Finds Failure to Communicate, What Quality Metrics Matter Most for DevOps? Full Show Notes: https://wiki.securityweekly.com/ASW_Episode69 Follow us on Twitter: https://www.twitter.com/securityweekly

Securing Multi-Cloud Environments - Application Security Weekly #69
Gururaj Pandurangi is a founder and CEO of Cloudneeti, a software-as-a-service company focused on continuous cloud security, data privacy and compliance assurance. Gururaj is coming on the show to discuss security in multi-cloud environments. To learn more about Cloudneeti, visit: https://securityweekly.com/cloudneeti Full Show Notes: https://wiki.securityweekly.com/ASW_Episode69 Follow us on Twitter: https://www.twitter.com/securityweekly

Porn Pirating, Zoom RCE, & Huawei - Paul's Security Weekly #611
In the Security News, Zoom's RCE Vulnerability is affecting over 700,000 companies, how YouTube is trying to ban hacking videos, 1TB of police body cam footage is available online, and how the US Cyber Command warns of Outlook flaw exploited by Iranian Hackers! Full Show Notes: https://wiki.securityweekly.com/Episode611 Follow us on Twitter: https://www.twitter.com/securityweekly

Biometric Authentication, Jumio - Paul's Security Weekly #611
Growth of account takeover and how to prevent it Data breaches continue to threaten organizations and expose usernames and passwords on the Dark Web, enabling fraudsters to use stolen data to access a user s existing account, tips to protect against account takeover. Full Show Notes: https://wiki.securityweekly.com/Episode611 Follow us on Twitter: https://www.twitter.com/securityweekly

Cloud-Based Training Solutions - Enterprise Security Weekly #144
Employees are the weakest link in Cybersecurity and because of this 80% of businesses will adopt a Cloud-based training solution by 2020. Small to Medium sized businesses are being left behind by complex, time-consuming solutions. Resellers need MRR, simple solutions that don't require training and certifications, and need help with client renewals. SMB's face the most complex, and highest rates of online attacks ever. Technology cannot solve all their risks, most solutions are too complex, time-consuming, and costly. Open solutions like CyberHoot allow you to build automated cybersecurity programs, track employee compliance, and address critical risks we all face. Segment References: https://wiki.securityweekly.com/ES_Episode144 Visit https://securityweekly.com/esw for all the latest episodes!

Blue/Purple Teaming (defense) - Paul's Security Weekly #611
Ben has been working in technology and development for over 20 years. He spent 13 years doing defense in the medical industry before moving over to the offense. He uses his knowledge of defense in order to refine his offensive skills and then uses this knowledge to equip customers with a better understanding of defensive methodologies. To learn more about TrustedSec, visit: https://securityweekly.com/trustedsec Full Show Notes: https://wiki.securityweekly.com/Episode611 Follow us on Twitter: https://www.twitter.com/securityweekly

PinID, Infoblox, & BeyondTrust - Enterprise Security Weekly #144
In the news segment, Is Broadcom buying Symantec?, Chronicle will join Google Cloud, PingID to Support FIDO-Compliant Biometric Authentication and Security Keys, and BeyondTrust Simplifies Endpoint Privilege Management with PAM Platform Integration. Full Show Notes: https://wiki.securityweekly.com/ES_Episode144 Visit https://securityweekly.com/esw for all the latest episodes!

Threat Hunting - Enterprise Security Weekly #144
John Strand and Matt Alderman will discuss Threat Hunting. Full Show Notes: https://wiki.securityweekly.com/ES_Episode144 Visit https://securityweekly.com/esw for all the latest episodes!

Application News - Application Security Weekly #68
WordPress Plugin WP Statistics Patches XSS Flaw, Three RCEs in Android's Media framework, Nine Best Practices For Integrating Application Security Testing Into DevOps, 6 Traits That Define DevSecOps, and much more! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode68 Follow us on Twitter: https://www.twitter.com/securityweekly

Science, Ben Franklin, & Lessons - Business Security Weekly #135
In the Leadership and Communications segment, Life Lessons of Ben Franklin, A Lesson in Leadership, How to Start a Speech: The Best (and Worst) Speech Openers, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode135

Cloud Native - Application Security Weekly #68
Mike Shema, John Kinsella, and Matt Alderman talk cloud native from an application perspective. Full Show Notes: https://wiki.securityweekly.com/ASW_Episode68 Follow us on Twitter: https://www.twitter.com/securityweekly

ANSI's Subscription-Based Model - Business Security Weekly #135
Mark Brown, Senior Director of Standards Connect, from ANSI. ANSI is a nonprofit that supports U.S. voluntary standards and conformity assessment and protects the integrity of these processes. One way in which ANSI helps to enhance the global competitiveness of US businesses and quality of life, is to provide access to standards for companies worldwide. Some companies find Standards Connect, a subscription-based platform for standards management, to be their best solution to search, access, collaborate, and manage the standards they need. To learn more about ANSI, visit: https://securityweekly.com/ansi Full Show Notes: https://wiki.securityweekly.com/BSWEpisode135

Mastercard, Gen Z, & Leadership - Business Security Weekly #134
In the Leadership and Communications segment, Mastercard CTO reveals must-have executive leadership traits, 10 Presentation Ideas That Will Radically Improve Your Presentation Skills, 7 tech skills managers hunt for, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode134

Security Training for Devs - Application Security Weekly #67
Mike Shema, John Kinsella, & Matt Alderman discuss security training for Devs! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode67 Follow us on Twitter: https://www.twitter.com/securityweekly

Security Challenges in the Global Value Chain - Business Security Weekly #134
Edna Conway is the Chief Security Officer, Global Value Chain at CISCO. Edna will be discussing Global Value Chain at Cisco. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode134

GKE, AWS, & S3 Buckets - Application Security Weekly #67
GKE improves authentication with Workload Identity, AWS reinforce reveals traffic tools and security solutions that improve support for DevOps, Brief history of Trusted Execution Environments, From the Enterprise's Project: How to Explain Service Mesh in Plain English, Developers and Security Teams Under Pressure to Collaborate! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode67 Follow us on Twitter: https://www.twitter.com/securityweekly

Security News - Paul's Security Weekly #610
Nearly 100 drivers following Google Maps detour get stuck in muddy field, Breach at Cloud Solution Provider PCM Inc., Inside the West s failed fight against China s Cloud Hopper hackers, Mozilla fixes second Firefox zero-day, Trump story. More stories and links here: https://wiki.securityweekly.com/Episode610 Follow us on Twitter: https://www.twitter.com/securityweekly

CySA+ & PenTest+ Certs, ITProTV - Paul's Security Weekly #610
Don Pezet will be discussing the new CySA+ and PenTest+ certs that ITProTV has to offer! Don has been working in the IT industry for more than 18 years and in training for more than 12 years. He is the co-founder of ITProTV. Don is certified by many vendors including Microsoft and Cisco. To learn more about ITProTV, visit: https://securityweekly.com/itprotv Full Show Notes: https://wiki.securityweekly.com/Episode610 Follow us on Twitter: https://www.twitter.com/securityweekly

Tools to Hack Your Career, CyberSecJobs - Paul's Security Weekly #610
Kathleen Smith is the CMO at CyberSecJobs.Com/ClearedJobs.Net. We all have cool tools, but not necessarily the best ones for career search or professional development. Why is it so hard? Many of the resources are at our fingertips, we just are using them or are too scared to reach for them. Slides: https://www.slideshare.net/CyberSecJobs/cyber-security-community-volunteering-survey-results-2018 Links to more slides here: https://wiki.securityweekly.com/Episode610 →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly

Enterprise News - Enterprise Security Weekly #143
CyberArk opens integration ecosystem to community contributions, ExtraHop Announces Reveal(x) Cloud, McAfee announced updates to McAfee MVISION Cloud for Amazon Web Services, and Elastic expands cybersecurity push in new version of software suite! Full Show Notes: https://wiki.securityweekly.com/ES_Episode143 Visit https://securityweekly.com/esw for all the latest episodes!

Email Data Exfiltration, ObserveIT - Enterprise Security Weekly #143
In our second segment, we welcome Sai Chavali, Security Strategist at ObserveIT. Most companies have preventative controls on email today, however, they are still finding that users exfiltrating sensitive data through corporate email is all too common. Currently, detection and investigation of out-of-policy user activity and security incidents are time-consuming and riddled with manual processes. Learn more on how ObserveIT helps security teams with real-time detection and take investigation time from months to minutes. To learn more about ObserveIT, visit: https://securityweekly.com/observeit Full Show Notes: https://wiki.securityweekly.com/ES_Episode143 Visit https://securityweekly.com/esw for all the latest episodes!

Don't Ignore APIs - Application Security Weekly #66
API are now over 80% of the HTTP traffic and enterprise application breaches through compromised APIs are mounting!. A guide to API Security. They also discuss Public VS Private APIs and if the best practice should be segregation of the two. Full Show Notes: https://wiki.securityweekly.com/ASW_Episode66 Follow us on Twitter: https://www.twitter.com/securityweekly

Leadership Articles - Business Security Weekly #133
In the Leadership and Communications segment, CEOs Share Their Most Helpful (and Unconventional) Career Advice, 3 Lessons From Emerging Leaders On The Power of Differing Perspectives, New breed of security vendor spells trouble for pure play firms, and more! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode133

RSAC Asia Pacific & Japan 2019 - Enterprise Security Weekly #143
In our final segment, we welcome Britta Glade, Director of Content and Curation of RSA Conference, and Linda Gray, Director and Chief of Operations for RSAC APJ, to discuss what's coming new this year for the RSA Conference APJ! To learn more about RSAC APJ, visit: https://www.rsaconference.com/events/ap19 Full Show Notes: https://wiki.securityweekly.com/ES_Episode143 Visit https://securityweekly.com/esw for all the latest episodes!

Third Party Vendor Management - Business Security Weekly #133
Tom Garrubba is Senior Director/CISO at Santa Fe Group/Shared Assessments. He is an internationally recognized thought leader, lecturer, and blogger on third party risk, and is the head instructor for the Certified Third Party Risk Professional (CTPRP) program. Previously, Tom was Senior Privacy Manager at a Fortune 10 US-based Healthcare company where he implemented and managed a world-class third party risk program. He has over 20 years of experience in IT security, privacy, audit, and compliance in industry and public consulting. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode133

Osquery, Netflix, & Mozilla - Application Security Weekly #66
Mozilla pushes a patch onto an Array, Netflix shares a stream of patches, Breach to bankruptcy for healthcare company, Osquery becomes a foundational tool, Avoiding DevOps dangers, and Assigning DevOps directions! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode66 Follow us on Twitter: https://www.twitter.com/securityweekly

Security News - Paul's Security Weekly #609
In the Security News, how not to prevent a cyberwar with Russia, the case against knee-jerk installation of Windows patches, U.S. customs and Border Protection data breach is the result of a supply chain attack, and a phishing scam that hacks 2 factor authentication! Full Show Notes: https://wiki.securityweekly.com/Episode609 Follow us on Twitter: https://www.twitter.com/securityweekly

Purple Teaming, SCYTHE - Paul's Security Weekly #609
We welcome back Bryson Bort, who is the Founder/CEO of GRIMM. Bryson will be talking about Purple Teaming, Top Attack Simulation Scenarios, and Testing Command & Control Channels. To learn more about SCYTHE, visit: https://securityweekly.com/scythe Full Show Notes: https://wiki.securityweekly.com/Episode609 Follow us on Twitter: https://www.twitter.com/securityweekly

AttackDefense Labs Platform - Paul's Security Weekly #609
We interview Vivek Ramachandranis the Founder & CEO of Pentester Academy. Pentester Academy, our AttackDefense Labs platform and other topics. Vivek will show a demo of their AttackDefense labs. We also have a free community security for your users to try out without requiring a subscription or credit card. Full Show Notes: https://wiki.securityweekly.com/Episode609 Follow us on Twitter: https://www.twitter.com/securityweekly

Inheriting Someone Else's Code - Enterprise Security Weekly #142
Paul will talk about the challenges of inheriting someone else's code. Paul will discuss 5 tips: Use an IDE, Variable Usage, Jump To Implementation and Declaration, Global Search, and Inspection. Full Show Notes: https://wiki.securityweekly.com/ES_Episode142 →Visit our website: https://www.securityweekly.com →Follow us on Twitter: https://www.twitter.com/securityweekly →Like us on Facebook: https://www.facebook.com/secweekly

Enterprise News - Enterprise Security Weekly #142
In the Enterprise News, Docker desktop for Windows 10 will soon switch to WSL 2, Netskope introduces Zero-Trust secure access to private enterprise applications, 10 notable security acquisitions of 2019, and can your patching strategy keep up with the demands of open source? Full Show Notes: https://wiki.securityweekly.com/ES_Episode142 Visit https://securityweekly.com/esw for all the latest episodes!

Challenges of Healthcare Security - Enterprise Security Weekly #142
Security in a healthcare environment takes on many unusual aspects that other industries do not typically deal with. From patient restraints to drug diversion to the highest workplace violence rates in any US industry, healthcare is one of the most complex and challenging security environments to maintain. Full Show Notes: https://wiki.securityweekly.com/ES_Episode142 Visit https://securityweekly.com/esw for all the latest episodes!

3 Shocking Ways To Show Up - Business Security Weekly #132
In the Leadership and Communications Segment, the trust crisis in business, employee engagement and successful change, and 3 shocking ways to show up today! Full Show Notes: https://wiki.securityweekly.com/BSWEpisode132

Shannon Lietz, Intuit - Application Security Weekly #65
Mike Shema and John Kinsella interview Shannon Lietz, the Director Information Security at Intuit about DevOps. Full Show Notes: https://wiki.securityweekly.com/ASW_Episode65 Follow us on Twitter: https://www.twitter.com/securityweekly

Azure & Cloud Migration For CISOs - Business Security Weekly #132
Jeremy Winter is the Director, Azure Management at Microsoft Azure. He joins us to talk about what CSOs & CISOs need to know about Azure + Cloud migration Tips + Mythbusting cloud security issues. This episode of Business Security Weekly will focus on what CSOs and CISOs need to know about Azure. Additionally, Jeremy will touch upon the best cloud migration tips and mythbust cloud security issues. Full Show Notes: https://wiki.securityweekly.com/BSWEpisode132

Grim, Vim, & Neovim - Paul's Security Weekly #608
In the Security News, the rise of purple teaming, the World's largest beer brewer sets up a Cyber-security team, a mystery signal shutting down key fobs in an Ohio neighborhood, why hackers ignore most security flaws, and warnings of real world-wide worm attacks are the real deal! Full Show Notes: https://wiki.securityweekly.com/Episode608 Follow us on Twitter: https://www.twitter.com/securityweekly

Bugs, Breaches, and More! - Application Security Weekly #65
There's no escape that will save you..., the privilege of running a Chrome extension, and Four practices towards DevSecOps! Full Show Notes: https://wiki.securityweekly.com/ASW_Episode65 Follow us on Twitter: https://www.twitter.com/securityweekly

Sysmon DNS Logging, Gravwell - Paul's Security Weekly #608
We welcome back Corey Thuen, Founder and CEO of Gravwell, to talk about security analytics using the new Sysmon DNS logging that dropped this week! To get involved with Gravwell, visit: https://securityweekly.com/gravwell Full Show Notes: https://wiki.securityweekly.com/Episode608 Follow us on Twitter: https://www.twitter.com/securityweekly

Seed Rounds, Equity Rounds, Debt Rounds - Enterprise Security Weekly #141
Matt and Paul talk about Seed Rounds, Equity Rounds, Debt Rounds! Discussing how to invest, how investors operate, and how to get involved with preferred stocks. Full Show Notes: https://wiki.securityweekly.com/ES_Episode141 Visit https://securityweekly.com/esw for all the latest episodes!

1 Click Microsegmentation, Edgewise - Paul's Security Weekly #608
Peter Smith, Edgewise Founder and CEO, is a serial entrepreneur who built and deployed Harvard University's first NAC system before it became a security category. Peter comes on the show to talk about Edgewise's 1 click microsegmentation! To get involved with Edgewise, visit: https://securityweekly.com/edgewise Full Show Notes: https://wiki.securityweekly.com/Episode608 Follow us on Twitter: https://www.twitter.com/securityweekly

Container Services In Azure, ITProTV - Enterprise Security Weekly #141
Do you wonder how your team can save costs by lifting and shifting your existing applications to containers, and build micro-services applications to deliver value to your users faster? Use end-to-end developer and CI/CD tools to develop, update, and deploy your containerized applications? Manage containers at scale with a fully managed Kubernetes container orchestration service that integrates with Azure Active Directory? Wherever you are in your app modernization journey, the hardest part is knowing where to begin. Full Show Notes: https://wiki.securityweekly.com/ES_Episode141 Visit https://securityweekly.com/esw for all the latest episodes!