Security Weekly
Paul's Security WeeklySubscribe

What The Heck Are “Security Basics”? –

The question comes up quite often, what should organizations be doing to meet the basic security requirements? We often hear the terms "Security Basics", "Minimum Security Standards" or dear lord "Security Hygiene". But what does all this mean? Is it the same for everyone? People will point to different resources that attempt to define the security basics, but do they really work? Does compliance play into this picture?

Full Show Notes: https://wiki.securityweekly.com/Episode587

Full episode and show notes

Hosts

Principal Security Evangelist at Eclypsium
Professor at Roger Williams University
Security Wizard at Co-Founder of Security BSides
Security Researcher
Sr. InfoSec Consultant at Online Business Sytems
Security Analyst at Black Hills Information Security
Principal Security Specialist at GitHub
Product Security Research and Analysis Director at Finite State
Senior Cyber Advisor at Lawrence Livermore National Laboratory
Chief Product Officer at CyberSaint

Related

Threat Modeling and Understanding Inherent Threats – Adam Shostack – ESW #359

This is a great interview with Adam Shostack on all things threat modeling. He's often the first name that pops into people's heads when threat modeling comes up, and has created or been involved with much of the foundational material around the subject. Adam recently released a whitepaper that focuses on and defines inherent threats. Resources: ...
How GenAI Can Improve SecOps – Ely Kahn – ESW #359

We've talked about generative AI in a general sense on our podcast for years, but we haven't done many deep dives into specific security use cases. That ends with this interview, as we discuss how generative AI can improve SecOps with Ely Kahn. Some of the use cases are obvious, while others were a complete surprise to me. Check out this episode if...