Enterprise Security Weekly #282
1. Cybersecurity Is a Team Sport – Dixon Styres, Jamie Moles – ESW #282
In order to run a successful SOC, security leaders rely on tools with different strengths to create layers of defense. This has led to a highly siloed industry with over 2,000 vendors, each with their own specific function and who very seldom work together. To gain an advantage on attackers, we need to start seeing cybersecurity as a team sport––united for a shared mission.
In this session, ExtraHop's Jamie Moles and CrowdStrike's Dixon Styres discuss why and how vendors should work together to enable better integrated security for their customers. They'll share their joint philosophy toward an ecosystem approach to security and will show off some of the specific capabilities of the integration between ExtraHop Reveal(x) 360 and CrowdStrike Falcon in a live demo. This segment is sponsored by ExtraHop Networks. Visit https://securityweekly.com/extrahop to learn more about them!
Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!
Dixon Styres is a Solution Architect at CrowdStrike, providing partners with architectural and development API consulting. Dixon has a wealth of experience enabling customer integrations with SIEM, EDR, and NDR platforms, making him an expert in the SOC Triad architecture. He holds a master’s degree in Computer Science from the University of Mississippi.
Jamie has a wealth of experience having worked in the Computer Industry for over 34 years – cutting his teeth in IT-MIS he quickly discovered a talent for handling complex technical issues, building sophisticated infrastructure solutions to meet enterprise business requirements and talking to people at all levels of an organization to share knowledge.
With his passion for security and networking being long standing, having been a leader in the early Antivirus industry with his own scanning software and having built and maintained the Cisco routing and switching infrastructure for Europe’s first Application Service Provider his career has always been focused on the cutting edge of security and infrastructure solutions which he enjoys mastering and telling anyone who will listen how great these new technologies are.
2. Incident Response: Practice Like you Play – Paul Kelly, Tim Morris – ESW #282
Heightened emotions, demands for updates, not knowing how bad things might be...
Incident response isn't easy, but practice and the right tools can make it a whole lot less stressful. Some regulations like PCI require annual IR tests, but is that enough? Imagine playing a sport where the team meets for one half-hearted practice once a year. How would that team perform under pressure? How would they communicate?
Say this sports analogy has convinced you - the IR team should practice more and should practice effectively. Questions still remain - how often? Are tabletops enough, or are live exercises and simulations necessary? We'll aim to answer these questions and more during this interview with Tim and Paul from Tanium.
This segment is sponsored by Tanium. Visit https://securityweekly.com/tanium to learn more about them!
Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!
Paul Kelly is a IT Security and Operations technical expert and speaker with a focus on topics of Risk Management, Security Hygiene, Patching, Compliance, Converged Endpoint Management (XEM) and many other specialties. Paul has twenty two years of consultative experiences where he architected and deployed solutions to more than 10+ million endpoints globally, including end user compute and server platforms, critical infrastructure, investment banking platforms, Point of Sale systems, and Automatic Teller Machines.
Paul is the Global Director of Technical Solutions Engineering at Tanium and helps global customer realize the full potential of their Tanium investment.
Tim joined Tanium in May 2021, after retiring from Wells Fargo, where he spent 21 years. He led the Cyber Threat Engineering and Research teams within Information & Cyber Security for the bank.
Tim has worked with almost every facet of computer and network technologies. Concentration has been with endpoint detection & response, systems & patch management, and vulnerability assessment. He has built teams that manage: endpoint security, platform engineering, incident response, digital forensics, and offensive security, i.e., “red team”.
Tim was first introduced to Tanium in 2008. However, he didn’t begin working with it fully until 2013. Tim was privileged to have the opportunity to be one of the first to deploy & manage Tanium at a large scale on 500K endpoints. At the same time, he was able to build one of the best cyber security engineering teams in the industry. Their effectiveness and efficiency were due in large part to Tanium – The best incident response and system management tool in the industry.
3. Akamai, PerimeterX HUMAN Merger, Azure Vulns, Blockchain Sec Startups, & Brash CEOs – ESW #282
In the Enterprise Security News: Blockchain security startups are still raising tons of money, but not in crypto, since it’s now worthless. Ha! just kidding. Maybe. Am I? Anvilogic, AppViewX, Sotero, Resourcely, and Push Security all raise rounds
JUICY RUMORS! Is Crowdstrike buying Orca? Is Akamai getting bought out by a PE shop? HUMAN and PerimeterX join in a rare cybersecurity merger, Are Azure’s vulnerabilities out of control? Zoom brings end-to-end encryption to its cloud phone service, npm says FINE, we’ll add some security, Kaseya’s CEO is just, telling it like it is, man. The problem must be with you. A robot attacks a child, time to add EMP grenades to your EDC!
All that and more!
Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.
- 1. FUNDING: Blockchain Security Startup Raises $90 Million Despite Crypto WinterShould we start covering crypto security startups? This is a very large Series A...
- 2. FUNDING: Anvilogic Announces $25 Million in Series B Funding
- 3. FUNDING: AppViewX Raises $20M in Series B Funding to Help Organizations Reduce Risk Across the Growing Number of Machine Identities
- 4. FUNDING: Protecting data at rest, in transit, and under query, Sotero nabs $8M
- 5. FUNDING: Resourcely helps automate security, so developers can concentrate on coding – TechCrunch
- 6. FUNDING: Push Security Announces $4M Seed Round to Introduce User-Centric Approach to Securing SaaS
- 7. ACQUISITION RUMORS: CrowdStrike to buy Israeli cybersecurity cos for $2b
- 8. ACQUISITION RUMORS: P/E Firm Said Lining Up Financing for Potential Akamai (AKAM) Bid – Source
- 9. MERGER: HUMAN and PerimeterX Unite in Market-Changing Merger to Safeguard Customers From Sophisticated Bot Attacks, Fraud and Account Abuse
- 10. VULNS: Azure’s Security Vulnerabilities Are Out of Control
- 11. LEADING THOUGHTS: My imaginary VC investment portfolio: investing in product-led cybersecurity startups shaping evidence-based security
- 12. TRENDS: Security Chiefs Warn Bloated Cyber Market Must Learn to Work Together
- 13. REPORTS: Voice of the SOC Analyst
- 14. NEW PRODUCTS: Zoom brings end-to-end encryption to its cloud phone service
- 15. NEW PRODUCTS: Corey Quinn livetweet thread of AWS reInforce, key announcements
- 16. OPEN SOURCE: Introducing even more security enhancements to npm
- 17. NEW TOOLS: TLS-Anvil
- 18. LAYOFFS: Arete IR Is The Latest Cybersecurity Company To Lay Off StaffAs many as 90?
- 19. LEARNING RESOURCES: The Kubernetes Networking Guide :: The Kubernetes Networking Guide
- 20. SQUIRREL: Microsoft Announces “Start Menu as a Service”
- 21. SQUIRREL: ‘I’m Not Being A D*ck’Kaseya CEO Voccola’s Freewheeling Town Hall Spotlights Culture Clash With Incoming Datto Employees. He repeatedly insisted throughout the session that he was “not being a dick.”
- 22. SQUIRREL: Kaseya CEO Fred Voccola On The Raucous Town Hall Meeting That Ruffled Datto Employees’ Feathers
- 23. SQUIRREL: Chess robot breaks finger of seven-year-old boy in Russiahttps://www.dailymail.co.uk/news/article-11043807/Chess-robot-breaks-finger-seven-year-old-boy-tournament-Russia.html