ESW #293 – Martin Roesch, Edward Wu
Cloud computing’s velocity and dynamism make it hard for security teams to monitor and protect workloads in the cloud without impeding the agility of dev teams. ExtraHop Senior Principal Data Scientist Edward Wu joins ESW to discuss practical deployment approaches and scenarios to facilitate gathering and utilizing network data in cloud environments for improved visibility, detection, and response capabilities.
This segment is sponsored by ExtraHop Networks.
Visit https://securityweekly.com/extrahop to learn more about them!
The cloud and SaaS were supposed to make things easier, simpler, more scalable. Arguably, they have done all those things, but traditional, legacy networks linger. Migrations are messy and take time. Nearly everything is encrypted in transit by default.
Today, we interview Marty Roesch, the creator of Snort and founder of SourceFire, to discuss how things have changed and what defenders can do to catch up and restore some order to the madness. We'll step through some history along the way - listeners might be surprised at how much our current situation mirrors the reasons behind why Marty created Snort in the first place.
This week in the Enterprise News Adrian & the gang discuss: With Technology, there’s no such thing as “Magic”’, Cyber M&A Expected to Remain Robust Into 2023, Former NSO CEO and ex-Austrian Chancellor found startup, Field Effect raises USD $30M in Series A funding led by Edison Partners, & France-based TEHTRIS raises €44M to help companies fight cyber threats in real-time! Visit https://www.securityweekly.com/esw for all the latest episodes!
Follow us on Twitter: https://www.twitter.com/securityweekly Like us on Facebook: https://www.facebook.com/secweekly
Full Audio
Segments
1. Situational Awareness in an Age of Dispersed Assets & Atomized Networks – Martin Roesch – ESW #293
The cloud and SaaS were supposed to make things easier, simpler, more scalable. Arguably, they have done all those things, but traditional, legacy networks linger. Migrations are messy and take time. Nearly everything is encrypted in transit by default.
Today, we interview Martin Roesch, CEO of Netography and the creator of Snort and founder of SourceFire, to discuss how things have changed and what defenders can do to catch up and restore some order to the madness. We'll step through some history along the way - listeners might be surprised at how much our current situation mirrors the reasons behind why Martin created Snort in the first place.
Announcements
Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!
Guest
Hosts



2. An MRI for the Cloud: Network Data for Cloud Visibility, Detection & IR – Edward Wu – ESW #293
Cloud computing’s velocity and dynamism make it hard for security teams to monitor and protect workloads in the cloud without impeding the agility of dev teams. ExtraHop Senior Principal Data Scientist Edward Wu joins ESW to discuss practical deployment approaches and scenarios to facilitate gathering and utilizing network data in cloud environments for improved visibility, detection, and response capabilities.
This segment is sponsored by ExtraHop Networks.
Visit https://securityweekly.com/extrahop to learn more about them!
Announcements
Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.
Guest

Edward Wu is a Senior Principal Data Scientist (AI/ML and Detection Lead) at ExtraHop Networks. Edward holds 10+ ML and cybersecurity patents and is a contributor to the MITRE ATT&CK framework. He holds a MS from University of Washington and a BS from University of California, Berkeley.
Hosts



3. Unleashing the Bees, Magic VS Technology, Cyber M&A, & TEHTRIS – ESW #293
This week in the Enterprise News Adrian & the gang discuss: With Technology, there’s no such thing as “Magic”’, Cyber M&A Expected to Remain Robust Into 2023, Former NSO CEO and ex-Austrian Chancellor found startup, Field Effect raises USD $30M in Series A funding led by Edison Partners, & France-based TEHTRIS raises €44M to help companies fight cyber threats in real-time!
Announcements
Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!
Hosts

- 1. FUNDING: Banco Santander and Forgepoint Capital announce strategic alliance to advance cybersecurity investment and innovation globally
- 2. FUNDING: France-based TEHTRIS raises €44M to help companies fight cyber threats in real-time
- 3. FUNDING: Vanta lands $40M to automate cybersecurity compliance
- 4. FUNDING: Field Effect raises USD $30M in Series A funding led by Edison Partners
- 5. FUNDING: IronVest raises $23M for decentralized biometric password manager
- 6. NEW COMPANY: Product – Lumu Technologies
- 7. NEW COMPANY: Former NSO CEO and ex-Austrian Chancellor found startup
- 8. TRENDS: Cyber M&A Expected to Remain Robust Into 2023
- 9. TRENDS: Insights from Tenchi Day – the state of CISO challenges in Brazil
- 10. TRENDS: I made $200,000 last year ghostwriting tweets for superstar VCs. It takes me 5 hours a week. Here’s how I found my clients and built a booming side hustle from scratch.
- 11. MUST READS: With Technology, there’s no such thing as “Magic”’
- 12. SQUIRREL: Sting operation: Woman attacked officers with bees during eviction, deputies say
A Massachusetts woman is being charged with four counts of assault with a deadly weapon.
The weapon was bees.

