Paul's Security Weekly Subscribe

Know Where You’re Putting Your Tool – Paul’s Security Weekly #587

December 21, 2018

This week, we welcome Vaughn Adams, Enterprise Sales Engineer at LogRhythm! Vaughn will be talking about using freely available tools and logs you are already collecting to detect attacker behavior! In our second segment, we have a Round Table discussion entitled "What the Heck Are Security Basics?", to talk about what should organizations be doing to meet the basic security requirements, and much more! In our final segment, we air a pre-recorded interview with Mandy Logan on "Hacking the Brainstem", her trip through recovery, and how she came to love Information Security! Full Show Notes: https://wiki.securityweekly.com/Episode587 Visit https://www.securityweekly.com/psw for all the latest episodes! To get involved with LogRhythm, go to: www.securityweekly.com/logrhythm Support Mandy by going to her GoFundMe Page: https://www.gofundme.com/hacking-recovery-brainstem-stroke Visit https://www.activecountermeasures/psw to sign up for a demo or buy our AI Hunter! Follow us on Twitter:

View Show Index

Full Audio

Segments

1. Detecting Attacker Behavior, LogRhythm –

Vaughn will discuss using freely available tools and logs you are already collecting to detect attacker behavior. Vaughn has a cookbook that will allow you to configure and analyze logs to detect attacks in your environment. You don't need anything fancy to detect attacks, use what you have along with freely available tools and techniques!

To get involved with LogRhythm, go to: securityweekly.com/logrhythm

Full Show Notes: https://wiki.securityweekly.com/Episode587

Host

Paul Asadoorian

Paul Asadoorian

Founder at Security Weekly

https://securityweekly.com

2. What The Heck Are “Security Basics”? –

The question comes up quite often, what should organizations be doing to meet the basic security requirements? We often hear the terms "Security Basics", "Minimum Security Standards" or dear lord "Security Hygiene". But what does all this mean? Is it the same for everyone? People will point to different resources that attempt to define the security basics, but do they really work? Does compliance play into this picture?

Full Show Notes: https://wiki.securityweekly.com/Episode587

Hosts

Paul Asadoorian

Paul Asadoorian

Founder at Security Weekly

https://securityweekly.com

Doug White

Doug White

Professor at Roger Williams University

https://securedigitallife.com/

Jack Daniel

Jack Daniel

Security Wizard at Co-Founder of Security BSides

http://www.securitybsides.com/w/page/12194156/frontpage

Jason Wood

Senior Researcher at CrowdStrike

Jeff Man

Jeff Man

Sr. InfoSec Consultant – Online Business Systems at Online Business Sytems

https://www.obsglobal.com/

Joff Thyer

Joff Thyer

Security Analyst at Black Hills Information Security

https://www.blackhillsinfosec.com/team/joff-thyer/

Keith Hoodlet

Keith Hoodlet

Principal Security Specialist at GitHub

Larry Pesce

Larry Pesce

Product Security Research and Analysis Director at Finite State

https://www.finitestate.io/

Lee Neely

Lee Neely

Information Assurance APL at Lawrence Livermore National Laboratory

Matt Alderman

Matt Alderman

VP, Product at Living Security

3. Hacking the Brainstem, Mandy Logan –

Following a series of 5 strokes and major head injuries, Mandy is no longer in the construction engineering industry. Instead, she is pursuing all things InfoSec with an emphasis on Incident Response, Neuro Integration, Artificial General Intelligence, sustainable, ethical neuro tech, and improving the lives and community of InfoSec professionals and Neurodiverse professionals. She enjoys art, requires loads of rest still, and hopes to be half the person her service dog, Trevor, is.

Full Show Notes: https://wiki.securityweekly.com/Episode587

Host

Paul Asadoorian

Paul Asadoorian

Founder at Security Weekly

https://securityweekly.com

4. Hacking the Brainstem, Mandy Logan – Paul’s Security Weekly #587

Following a series of 5 strokes and major head injuries, Mandy is no longer in the construction engineering industry. Instead, she is pursuing all things InfoSec with an emphasis on Incident Response, Neuro Integration, Artificial General Intelligence, sustainable, ethical neuro tech, and improving the lives and community of InfoSec professionals and Neurodiverse professionals. She enjoys art, requires loads of rest still, and hopes to be half the person her service dog, Trevor, is. Support Mandy by going to her GoFundMe Page: https://www.gofundme.com/hacking-recovery-brainstem-stroke Full Show Notes: https://wiki.securityweekly.com/Episode587 Follow us on Twitter: https://www.twitter.com/securityweekly

5. What The Heck Are “Security Basics”? – Paul’s Security Weekly #587

The question comes up quite often, what should organizations be doing to meet the basic security requirements? We often hear the terms "Security Basics", "Minimum Security Standards" or dear lord "Security Hygiene". But what does all this mean? Is it the same for everyone? People will point to different resources that attempt to define the security basics, but do they really work? Does compliance play into this picture? Full Show Notes: https://wiki.securityweekly.com/Episode587 Follow us on Twitter: https://www.twitter.com/securityweekly

6. Detecting Attacker Behavior, LogRhythm – Paul’s Security Weekly #587

Vaughn will discuss using freely available tools and logs you are already collecting to detect attacker behavior. Vaughn has a cookbook that will allow you to configure and analyze logs to detect attacks in your environment. You don't need anything fancy to detect attacks, use what you have along with freely available tools and techniques! To get involved with LogRhythm, go to: https://www.securityweekly.com/logrhythm Full Show Notes: https://wiki.securityweekly.com/Episode587 Follow us on Twitter: https://www.twitter.com/securityweekly

Related

Vulnerability Management

Surprise Cam Nudes, Staples, Turtle, Apple, 23andme, P2Pinfect, Gmail, Jason Woods – SWN #346

December 5, 2023

Surprise Cam Nudes, Staples, Turtle, Apple, 23andme, P2Pinfect, Sellafield, Gmail, Jason Wood, and more on this edition of the Security Weekly News.

Prioritizing Identity and Getting the Fundamentals Right – Bezawit Sumner – CSP #151

December 5, 2023

Prioritizing identity and getting the fundamentals right. We are managing more identities than ever – people-people, machine-to-machine, and people-machines. What actions should CISOs be ensuring are being done within the environment to prioritize identities? Join us as we discuss where Bezwit has focused to enhance the identity management process....

Real Edge Computing Use Cases from the AT&T Cybersecurity Insights Report – Theresa Lanowitz, Mark Freifeld – BSW #330

December 4, 2023

Theresa Lanowitz joins Business Security Weekly to review real edge computing use cases from the AT&T Cybersecurity Insights Report. Specifically, we'll cover the following industry sector reports, including: Healthcare Manufacturing Retail US SLED Transportation Research for the AT&T Cybersecurity Insights Report was conducted during ...