Application security, Cloud security, Security awareness, Vulnerability management, Zero trust, Cybersecurity Asset Management, DevOps

Shut You Down – ESW #213

This week, in the Enterprise Security News, Beyond Security partners with Vicarius, Amazon’s Parler removal and what it means for cloud confidence, Kount sold to Equifax, McAfee vs Crowdstrike, Jumpcloud raises some funds, Red Hat Acquires StackRox, and SolarWinds warnings of weak security and more. In the second segment, we talk Asset Management, Could this be the year we get a better handle on discovering and managing assets? In the final segment, we welcome Chris Blask from Unisys for an interview!

Visit https://www.securityweekly.com/esw for all the latest episodes!

Follow us on Twitter: https://www.twitter.com/securityweekly

Like us on Facebook: https://www.facebook.com/secweekly

View Show Index

Full Audio

Segments

1. Amazon’s Parler Removal, Beyond Security & Vicarius Partner, & More SolarWinds! – ESW #213

This week, Beyond Security partners with Vicarius, Amazon’s Parler removal and what it means for Cloud onfidence, Kount sold to Equifax, McAfee vs Crowdstrike, JumpCloud raises some funds, Red Hat acquires StackRox, and SolarWinds warnings of weak security and more!

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

  • If you missed Security Weekly Unlocked, you can now access all of the content on-demand, whether you registered before the live event or not, by visiting https://securityweekly.com/unlocked and clicking either the button to register or the button to login!

Hosts

John Strand
John Strand
Founder; Security Professional at Black Hills Information Security
Tyler Shields
Tyler Shields
CMO at JupiterOne

2. It’s 2021, Do You Know Where Your Assets Are? – ESW #213

We all know asset management is one of the basics. In fact, it's literally the first two items on the Center for Internet Security's list of top 20 critical security controls.

https://www.cisecurity.org/controls/cis-controls-list/

The term "basics" can be deceptive though. We typically expect something basic to also be easy. This is InfoSec though, and the basics aren't simple or easy. We call them basics because they're foundational.

Put another way, the other 18 critical security controls on that top 20 list can't be applied to assets that haven't been discovered yet!

In the past few years, we've seen a resurgence in asset management. There are a few players taking a fresh crack at solving this problem and we're hearing positive things. Could this be the year we get a better handle on discovering and managing assets? Join us as we discuss.

Announcements

  • Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!

Hosts

Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly
Adrian Sanabria
Adrian Sanabria
Director of Product Management at Tenchi Security
Tyler Shields
Tyler Shields
CMO at JupiterOne

3. The DBoM Consortium – Chris Blask – ESW #213

The DBoM consortium is a Linux Foundation project to be able to share information with third parties safely, securely, and with control over the information, even after handing it over! Unisys has just open sourced the code to make this possible, and Chris was a big part of their effort. Using a blockchain based approach, DBoM works to share software bill of materials (SBoM)s in a fashion that works in a cloud centric, internet time approach.

Announcements

  • Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

Guest

Chris Blask
Chris Blask
Global Director, Industrial Control Systems Security at Unisys

A well regarded figure, Chris has been involved in the ICS and information security industries for more than 25 years, spanning the breadth of the cybersecurity spectrum. He invented one of the first commercial firewall products, built a multibillion-dollar firewall business at Cisco, co-founded an early Security Information and Event Management (SIEM) vendor and co-authored the first book on SIEM. He chairs the Industrial Control System Information Sharing and Analysis Center (ISAC), serves on the Board of Directors for the International Association of Certified ISAOs (Information Sharing and Analysis Organizations) and is involved with a wide range of national and international cybersecurity efforts. Chris lives in Orlando, Florida.

Hosts

Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly
Adrian Sanabria
Adrian Sanabria
Director of Product Management at Tenchi Security
Josh Marpet
Josh Marpet
Executive Director at RM-ISAO
Tyler Shields
Tyler Shields
CMO at JupiterOne
prestitial ad