Third-party risk, DevOps, Intrusion detection, Threat modeling

Making the Case for Supply Chain Behavior Transparency – Ben Higgins, Ted Driggs – BSW #221

June 21, 2021

Sponsored By

sponsor Visit for more information!

The Biden Cyber Executive Order includes a Software Bill of Materials that is a critical and necessary first measure for protecting the software supply chain. To defend against cyber attacks, such as the ones that impacted SolarWinds and the Colonial Pipeline, organizations also need transparency about the behaviors of the software in their supply chain––how, and with whom, they are engaging in and outside of their networks. Ben Higgins and Ted Driggs of ExtraHop join Security Weekly to explore how behavior transparency can give organizations an advantage by distinguishing between expected noise and indications of compromise.

Segment Resources:

This segment is sponsored by ExtraHop Networks.

Visit to learn more about them or visit to learn more about behavior transparency! Visit for all the latest episodes!

Full Episode Show Notes

Making the Case for Supply Chain Behavior Transparency


Ben Higgins

Ben Higgins - Distinguished Software Engineer at ExtraHop


Ben Higgins is a Distinguished Software Engineer at ExtraHop with 15 years of experience in cybersecurity. He has extensive experience in systems engineering and protocol parsing, fingerprinting, and encryption. Ben is an experienced speaker, with recent appearances on Risky Business and Security Weekly. He holds a degree in Computer Science from the University of Washington.

Ted Driggs

Ted Driggs - Head of Product at ExtraHop


Ted Driggs is the Head of Product at ExtraHop. He is passionate about building security solutions that give defenders the upper hand. Before ExtraHop, Ted was a PM for Windows at Microsoft. He is regular on tech and security podcasts, including Risky Business, Security Weekly, and DM Radio. In his free time, you can expect to find Ted on the side of a mountain––zipping through powder or hiking up rocks.


Adrian Sanabria

Adrian Sanabria - Senior Research Engineer at CyberRisk Alliance


Adrian is an outspoken researcher that doesn't shy away from uncomfortable truths. He loves to write about the security industry, tell stories, and still sees the glass as half full.

Jason Albuquerque

Jason Albuquerque - CIO & CSO at Carousel Industries


Jason Albuquerque is the CIO & CSO at Carousel Industries

Matt Alderman

Matt Alderman - Executive Director at CyberRisk Alliance


Strategic Advisor at Automox, security consultant, and wizard of entrepreneurship.


  • Security Weekly is ecstatic to announce that Security Weekly Unlocked will be held IN PERSON this December 5-8 at the Hilton Lake Buena Vista! Call for presentations & early registration for Security Weekly listeners is open now! Visit to submit your presentation & register for the early registration price before it expires!

  • Join us June 24 at 11 AM ET to learn how web application firewalls can help mitigate exposure in a complex threat landscape. Then join us July 15 at 11 AM ET to learn how a thoughtful approach to SASE can improve security and enable scalability. Visit to register now! If you missed any of our previously recorded webcasts or technical trainings, they are available for your viewing pleasure at

prestitial ad