Application security, Cloud security, Identity and access, Insider threat, Security awareness

Back in the 90’s – ASW #115

This week, we welcome Kris Rajana, President and CTO at Biarca, and Bhasker Nallapothula, Director of Engineering at Biarca, to talk about Cloud Security Posture Management & Governance! In the Application Security News, SIGRed Resolving Your Way into Domain Admin: Exploiting a 17 Year-old Bug in Windows DNS Servers, Introducing Google Cloud Confidential Computing with Confidential VMs, Internet of Things devices: Stick to these security rules or you could face a ban, Google Cloud Unveils 'Confidential VMs' to Protect Data in Use, and more!

Visit https://www.securityweekly.com/asw for all the latest episodes!

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

View Show Index

Full Audio

Segments

1. Cloud Security Posture Management & Governance – Bhasker Nallapothula, Kris Rajana – ASW #115

Digital transformation is taking the IT industry by storm. As the pace of adoption of public cloud increases, security posture management and governance is usually not top of the mind of cloud engineering teams. Cost of leaving the misconfiguration undetected and not rectified sure adds up and what to say about compromise to reputation. Biarca Patrol grew organically in close collaboration with our customers to address this gap. Biarca Patrol is now being offered widely.

Announcements

  • Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!

  • Security Weekly is an official media partner for Virtual BlackHat 2020! To register and save $200, visit https://securityweekly.com/summercamp2020 and click the register button. Discount code: "20SecWeekbh" Alongside Virtual BlackHat, we will be running our conference micro-interviews, you guessed it, virtually, in an event called Security Weekly Virtual Hacker Summer Camp, August 3 - August 6, 2020. Options, pricing and availability are all listed on the same page! Reserve your slot now to get your message out to BlackHat attendees!

Guests

Bhasker Nallapothula
Bhasker Nallapothula
Director of Engineering at Biarca

Bhasker is the Director of Engineering at Biarca and oversees the design and development of cutting-edge cloud solutions, with an emphasis on best practices and reliability engineering. Bhasker started his career in Silicon Valley where he was able to obtain engineering experience with several companies including Hewlett Packard, Broadcom, TiVo and security starting AOPTIX. Starting as a developer and soon moving into managing engineering teams, Bhasker brought together global teams for the deployment of server-side system software and tools, with an emphasis on embedded systems. Prior to working with the above firms, Bhasker held engineering and managerial positions at TATA and as an R&D scientist at the Defense Research and Development Organization. Bhasker has a Master’s Degree in Computer Science from Andhra University.

Kris Rajana
Kris Rajana
President and CTO at Biarca, Inc.

Kris brings 25+ years of storage/cloud experience and a big proponent of open source philosophy. His customer centric focus and approach to solving complex technical problems and execution has enabled Biarca to be a trusted advisor to many of our customers. Kris is responsible for engineering and management of distributed teams and execution to ensure “on time / on spec / on quality” delivery to Biarca’s global client base. His expertise in security posture management and compliance is key for our cloud security practice. Kris has led the efforts of customizing Biarca services/solutions across several industries such as health care, manufacturing, education, technology, media and entertainment. Kris holds a Ph.D from Penn State University and has continued his learning with many executive management courses at Stanford.

Hosts

Mike Shema
Mike Shema
Security Partner at Square
John Kinsella
John Kinsella
Co-founder & CTO at Cysense
Matt Alderman
Matt Alderman
Executive Director at CyberRisk Alliance

2. SIGRed RCE, Google Cloud ‘Confidential VMs’, & Twitter Hack Crypto Scam – ASW #115

This week, SIGRed – Resolving Your Way into Domain Admin: Exploiting a 17 Year-old Bug in Windows DNS Servers, Introducing Google Cloud Confidential Computing with Confidential VMs, Internet of Things devices: Stick to these security rules or you could face a ban, Google Cloud Unveils 'Confidential VMs' to Protect Data in Use, and more!

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

  • Join us June 29th for a webcast with Tyler Robinson and Beau Bullock to learn how to pivot into the world of Crypto security. Visit https://securityweekly.com/webcasts to register with only your name and email! Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

Hosts

Mike Shema
Mike Shema
Security Partner at Square
John Kinsella
John Kinsella
Co-founder & CTO at Cysense
Matt Alderman
Matt Alderman
Executive Director at CyberRisk Alliance
prestitial ad