Cybercrime, Incident response, Leadership, Security awareness, Vulnerability management

CISA Stories – Josh Corman – PSW #729

February 23, 2022

Josh Corman joins to describe, in vivid detail, some of his experiences working for CISA, as a fed, & from the frontlines.

Additional resources:

https://www.cisa.gov/sites/default/files/publications/CISA_Insight_Provide_Medical_Care_Sep2021.pdf

https://www.cdc.gov/mmwr/volumes/70/wr/mm7046a5.htm?s_cid=mm7046a5_w

https://www.cisa.gov/BadPractices

https://www.cisa.gov/publication/stuff-off-search

https://www.cisa.gov/sites/default/files/publications/Assets_Showing_Overview_508c.pdf

https://www.cisa.gov/known-exploited-vulnerabilities-catalog

https://www.youtube.com/watch?v=F-uh-lx_KKU&t=6s

Full episode and show notes

Announcements

Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Guest

Josh Corman

Founder, I am The Cavalry / recently Chief Strategist for the CISA COVID Task Force at I am The Cavalry

Joshua Corman is a Founder of I am The Cavalry (dot org), and recently served as Chief Strategist for the CISA COVID Task Force. He previously served as CSO for PTC, Director of the Cyber Statecraft Initiative for the Atlantic Council, CTO for Sonatype, and other senior roles. He co-founded RuggedSoftware and IamTheCavalry to encourage new security approaches in response to the world’s increasing dependence on digital infrastructure. His unique approach to security in the context of human factors, adversary motivations, and social impact has helped position him as one of the most trusted names in security. He also serves as an Adjunct Faculty for Carnegie Mellon’s Heinz College, and was a member of the Congressional Task Force for Healthcare Industry Cybersecurity.

Hosts

Paul Asadoorian

Founder at Security Weekly

0offset

https://securityweekly.com

Josh Marpet

Executive Director at RM-ISAO

Larry Pesce

Product Security Research and Analysis Director at Finite State

https://www.finitestate.io/

Lee Neely

Information Assurance APL at Lawrence Livermore National Laboratory

Tyler Robinson

Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

trob#6466

http://darkelement.io/

Vulnerability management

Empathy, Bitwarden, Lexmark, Exchange, Dragonbridge, & Derek Johnson Talks About Hive – SWN #269

January 27, 2023

This week Dr. Doug discusses: Empathy, hacking back, typosquatting, Bitwarden, Lexmark, Exchange, Russians, Iranians, Dragonbridge, Derek Johnson talks about Hive and more on the Security Weekly News.

Insider threat

A Whole Lotta BS (Behavioral Science) About Cybersecurity – Lisa Plaggemier – ESW #299

December 8, 2022

Let’s be honest: people can frustrate us. They don’t always do the things we’d like, and they often do some things we’d rather they didn’t. New research from the National Cybersecurity Alliance reveals insights about the public’s attitudes and beliefs about security. We’ll explore the 2022 Oh Behave! Cybersecurity Attitudes and Behaviors Report a...

Vulnerability management

RCE in Muddy Waters, Hacking Smart Watches, FCC Bans Stuff, & When BMC’s Attack – PSW #765

November 30, 2022

This week in the Security News: When you just wanna hurl, malicious containers, FCC bans stuff, these are not the CVE's you're looking for, Linux password mining, mind the gap, hacking smart watches, & more!