Security Weekly
Paul's Security WeeklySubscribe
Vulnerability Management, Compliance Management, Security Staff Acquisition & Development, Distributed Workforce, Application security

Thunderstruck – PSW #655

Full Audio

View Show Index

Segments

1. Enhancing Vulnerability Management By Including Penetration Testing Results – Dan DeCloss – PSW #655

We’ll discuss how organizations can improve their vulnerability management life cycle and demo some quick ways to get started with vulnerability management and combining penetration test results. Then walking through the whole life cycle of a vulnerability.

To learn more about PlexTrac, visit: https://securityweekly.com/plextrac

Sponsored By

PlexTrac

Announcements

  • We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!

Guest

Dan DeCloss
Founder / CEO & President at PlexTrac

Dan has over 15 years of experience in cybersecurity. Dan started his career in the Department of Defense and then moved on to consulting where he worked for various companies. Prior to PlexTrac, Dan was the Director of Cybersecurity for Scentsy where he and his team built the security program out of its infancy into a best-in-class program. Dan has a master’s degree in Computer Science from the Naval Postgraduate School with an emphasis in Information Security. Additionally, Dan holds the OSCP and CISSP certifications.

Hosts

Principal Security Evangelist at Eclypsium
Sr. InfoSec Consultant at Online Business Sytems
Senior Cyber Advisor at Lawrence Livermore National Laboratory
CEO at Red Lion
Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

2. OSS Vulnerabilities, UPnP Flaws, & 0-Days for Bad People – PSW #655

Hospital-busting hacker crew may be behind ransomware attack that made Honda halt car factories, 3 common misconceptions about PCI compliance, SMBleed could allow a remote attacker to leak kernel memory, Kubernetes Falls to Cryptomining via Machine-Learning Framework, and The F-words hidden superpower: How Repeating it can increase your pain threshold!

Announcements

  • Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!

  • Join us at InfoSecWorld 2020 - June 22nd-24th now a fully virtual event! Security Weekly listeners save 15% off the InfoSec World Main Conference or World Pass! Visit securityweekly.com/ISW2020, click the register button to register with our discount code!

Hosts

Principal Security Evangelist at Eclypsium
Sr. InfoSec Consultant at Online Business Sytems
Senior Cyber Advisor at Lawrence Livermore National Laboratory
CEO at Red Lion
Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

3. New Web Technology & Impact on Automated Security Testing – Benjamin Daniel Mussler – PSW #655

As web applications have evolved from static HTML pages into fully-fledged applications with a native feel to them, web browsers continue to provide developers with truly novel functionality. The resulting paradigm shift from merely rendering web pages to acting as an OS-agnostic abstraction layer poses unique challenges to everyone involved with web application security, including automated web application security scanning solutions.

Announcements

  • Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

Guest

Benjamin Daniel Mussler
Senior Security Researcher at Acunetix

Web Application Security Researcher at Acunetix

Hosts

Principal Security Evangelist at Eclypsium
Senior Cyber Advisor at Lawrence Livermore National Laboratory
Chief Product Officer at CyberSaint
CEO at Red Lion
Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

Related