ESW #217 | SC Media
Container security, Cloud security, SOC, Security research

ESW #217

February 24, 2021



This week in the Enterprise News: LasPass is no longer free, Tenable helps with dynamic assets, Security Scorecard and the Score Planner, Trend Micro XDR, & Imperva launches sonar! Funding announcements from: PerimeterX, SPHERE, Red Canary, 1Kosmos, & Strata Identity! In the Acquisition news: Sailpoint to Acquire Intello, Crowdstrike to Acquire Humio, Palo Alto to acquire Bridgecrew, Kaseya to Acquire Rocket Cyber, & more! Visit https://www.securityweekly.com/esw for all the latest episodes!

Full Episode Show Notes

Red Canary, Imperva Sonar, Data Breaches & Share Prices, & TrendMicro XDR

Hosts

Adrian Sanabria

Adrian Sanabria –

Senior Research Engineer at CyberRisk Alliance

Paul Asadoorian

Paul Asadoorian –

Founder at Security Weekly

Tyler Shields

Tyler Shields –

CMO at JupiterOne

Announcements

  • Do you want to stay in the loop on all things Security Weekly? Visit https://securityweekly.com/subscribe to subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server!

  • Our next live webcast will be on March 18th at 11am ET where you will learn how to Prepare Linux Hosts for Unexpected Threats! Visit https://securityweekly.com/webcasts to register now! If you missed any of our previously recorded webcasts or technical trainings, they are available for your viewing pleasure at https://securityweekly.com/ondemand

Audio



The 2020 SOC Survey results are in and the author, Chris Crowley, will discuss the detailed results in the report and how they can help individuals and organizations reduce the drag on our global community due to insecure information systems. Effective security operations rely on monitoring your data and being prepared to defend yourself and your organization. Chris will explain why he believes that the classic SOC will move, over the next few years, to MSSPs and how to be ready when threats are detected.

Download the report: https://soc-survey.com/ Visit https://www.securityweekly.com/esw for all the latest episodes!

Full Episode Show Notes

2020 Security Operations Survey

Guests

Christopher Crowley

Christopher Crowley –

Consultant at Montance LLC

Hosts

Adrian Sanabria

Adrian Sanabria –

Senior Research Engineer at CyberRisk Alliance

Paul Asadoorian

Paul Asadoorian –

Founder at Security Weekly

Tyler Shields

Tyler Shields –

CMO at JupiterOne

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Audio



The latest MITRE ATT&CK vendor evaluations are due out soon. In advance of the new round, Uptycs’ Ganesh Pai and Amit Malik will discuss this evaluation round, which focuses on the threat groups Carbanak and FIN7. They’ll also talk about how organizations are translating endpoint and cloud workload telemetry to most effectively support MITRE ATT&CK detections and investigations. Visit https://www.securityweekly.com/esw for all the latest episodes!

Full Episode Show Notes

Evaluating the MITRE ATT&CK Evaluations in their Third Year

Why ATT&CK represents a good test of detection efficacy for buyers https://d1zq5d3dtjfcoj.cloudfront.net/Using-Results-to-Evaluate-Endpoint-Detection-Products_Booklet.pdf

The upcoming ATT&CK 2020 evaluation for Carbanak and FIN7 https://attackevals.mitre-engenuity.org/carbanak-fin7/

Context-rich detections from Uptycs will keep security analysts sane [Blog Post] https://www.uptycs.com/blog/fast-consolidated-and-context-rich-detections-from-uptycs-will-keep-security-analysts-sane

The new ATT&CK Cloud Matrix https://attack.mitre.org/matrices/enterprise/cloud/

Solution page for Uptycs for EDR [Website] https://www.uptycs.com/solutions/endpoint-detection-and-response

Guests

Amit Malik

Amit Malik –

Principal Researcher at Uptycs

Ganesh Pai

Ganesh Pai –

Founder and CEO at Uptycs

Hosts

Adrian Sanabria

Adrian Sanabria –

Senior Research Engineer at CyberRisk Alliance

Paul Asadoorian

Paul Asadoorian –

Founder at Security Weekly

Tyler Shields

Tyler Shields –

CMO at JupiterOne

Announcements

  • If you missed Security Weekly Unlocked, you can now access all of the content on-demand, whether you registered before the live event or not, by visiting https://securityweekly.com/unlocked and clicking either the button to register or the button to login!

Audio

prestitial ad