Application security, Cybersecurity Asset Management, Cloud security, DevOps, Incident response, Insider threat, Remote access, Threat intelligence, Zero trust

SWVHSC: Micro-Interview – Tanium & Vectra – Anton Chuvakin, Chris Morales, Matt Hastings – ESW #195

Matt and Anton will discuss the new integration between Tanium and Chronicle, designed for distributed IT in a remote-work world. The two will explore some of the unique challenges that security teams are facing in light of this change. They will also provide details on the new integrations, which combines comprehensive endpoint telemetry from Tanium with Chronicle s cloud-scale analytics to inform threat hunting and investigations with one year of recorded endpoint activity. This is just the beginning of the partnership between Google Cloud and Tanium. Check out the blog post on Tanium's website to learn more about the future of the partnership and what it means for security. This segment is sponsored by Tanium. Visit https://securityweekly.com/tanium to learn more about them!

Risk remains the top concern for organizations adopting software-as-a-service (SaaS) models and this is an issue that is only getting worse. What is needed today is the ability to remove the dependency on human behavior and human error, bringing control back to the security team. Risk in a SaaS environment is largely an identity problem. Specifically, it is a misuse of identity and the privilege access granted to that identity. Before implementing any SaaS platform, you must consider how much access is really being granted in the cloud. More importantly, how is that privilege access being used? This segment is sponsored by Vectra. Visit https://www.vectra.ai/o365 to learn more about them! To see how Vectra can detect attacks in SaaS like Office 365, please visit: https://www.vectra.ai/o365

Full episode and show notes

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Guests

Anton Chuvakin
Anton Chuvakin
Head of Solutions Strategy at Google Cloud

Dr. Anton Chuvakin is now involved with security solution strategy at Google Cloud, where he arrived via Chronicle Security (an Alphabet company) acquisition in July 2019. Anton was, until recently, a Research Vice President and Distinguished Analyst at Gartner for Technical Professionals (GTP) Security and Risk Management Strategies team. Anton is a recognized security expert in the field of log management, SIEM and PCI DSS compliance. He is an author of books “Security Warrior”, “Logging and Log Management: The Authoritative Guide to Understanding the Concepts Surrounding Logging and Log Management” and “PCI Compliance, Third Edition: Understand and Implement Effective PCI Data Security Standard Compliance” (book website) and a contributor to “Know Your Enemy II”, “Information Security Management Handbook” and other books.

Chris Morales
Chris Morales
Principal Security Advisor at Vectra AI

Chris Morales is Principal Security Advisor at Vectra AI, where he advises and designs incident response and threat management programs for Fortune 500 enterprise clients. He has two decades of information security experience in an array of cybersecurity consulting, sales, and research roles. Christopher is a widely respected expert on cybersecurity issues and technologies and has researched, written and presented numerous information security architecture programs and processes.

Matt Hastings
Matt Hastings
Senior Director, Product Management at Tanium

Matt Hastings is a Senior Director of Product at Tanium. He has over a decade of experience in incident response, forensic analysis, and penetration testing with companies including Madiant (FireEye), where he worked with Fortune 500 companies, government agencies, and global organizations to investigate and respond to incidents and implement security controls. Matt also regularly lectures on incident response and forensic analysis for corporate groups and security conferences, including: Black Hat USA, Black Hat Asia, DerbyCon, DEFCON, BruCON, CounterMeasure, and BSides.

Host

Paul Asadoorian
Paul Asadoorian
Founder at Security Weekly
prestitial ad