esw191

Enterprise Security Weekly Episode #191 – July 22, 2020

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. The Evolution of Enterprise Web Apps & Its Impact on Web Security – 01:00 PM-01:30 PM

Sponsored By

sponsor
Visit https://securityweekly.com/acunetix for more information!

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Description

Over the last 15 years the web application landscape has changed more dramatically than many might realize, including the exponential growth in the number of web sites, the rise of complex web apps, the growing web traffic through APIs and more. Let’s discuss what this means for enterprises web security and how to mitigate a growing cybersecurity risk.

Visit https://securityweekly.com/acunetix to learn more about them!

Discovery, assign, address, integrate, SDLC, report, schedule scans.

If you would like to find out more about Acunetix, here are some helpful resources: -Four ways to combat cybersecurity skills gap – https://www.acunetix.com/blog/web-security-zone/4-ways-combat-cybersecurity-skills-gap/
-Seven cybersecurity KPIs that security analysts should focus on – https://www.acunetix.com/blog/web-security-zone/7-cybersecurity-kpis-focus/
-Web Vulnerability Report 2020 – https://www.acunetix.com/acunetix-web-application-vulnerability-report/
-White Paper: The Future is the Web! How to Keep it Secure? – https://www.acunetix.com/whitepaper-the-future-is-the-web/

Guest(s)

Mark Ralls

Mark Ralls –

President and Chief Operating Officer at Acunetix

Mark Ralls is President and Chief Operating Officer of Acunetix, a world leader in web application vulnerability scanning. In this role, Mark leads several functions, including the company’s Marketing team. Prior to joining Acunetix, Mark was Managing Director of Business Operations at Vista Consulting Group, the consulting arm of Vista Equity Partners. Prior to joining Vista, Mr. Ralls worked as Senior Vice President of Product Management and Strategy at Social Solutions Global, where he led Product Management and Product Marketing teams and was responsible for driving product strategy for nonprofit and public sector customers. Before his time with Social Solutions, Mr. Ralls worked at SolarWinds, a provider of IT management software, where he served as Group Vice President of Business Applications and Analytics. Prior to SolarWinds, Mr. Ralls worked at the Boston Consulting Group, where he consulted for Fortune 1000 clients across a number of industries and functions.

Hosts

MattAlderman

Matt Alderman –

Executive Director at CyberRisk Alliance

PaulAssadorian

Paul Assadorian –

Founder/CIO at Security Weekly/CyberRisk Alliance

2. Secretless & the End of Application Secrets as We Know Them – Brian Kelly – 01:30 PM-02:00 PM

Sponsored By

sponsor
Visit https://securityweekly.com/cyberark for more information!

Announcements

  • We have officially wrapped up all of the recordings for our 2020 webcasts & technical trainings! Stay tuned as we build out our schedule for next year! Visit https://securityweekly.com/ondemand to view all of our 2020 webcasts & trainings!

Description

Passwords, keys, and other secrets are becoming an outdated technique for applications to use. They are usually over-privileged, easy to steal, and very hard to handle securely. Developers frequently log them by accident or stash them in unsafe places. The Secretless pattern is a new way of architecting applications that guarantees that the application never handles the secrets it needs to access databases or other secure resources. Secretless architectures open up a whole set of opportunities for a new model of secure application development and governance. This segment is sponsored by CyberArk.

Visit https://securityweekly.com/cyberark to learn more about them!

Presenter(s)

Brian Kelly

Brian Kelly –

Head of Conjur Engineering for CyberArk at CyberArk

Brian is Head of Conjur Engineering for CyberArk. He leads the R&D teams focused on DevOps integration products. Brian has over 20 years of experience as a software leader, having been a VP of Engineering at multiple technology companies prior to joining CyberArk. He has deep experience in DevOps, cybersecurity, distributed systems, and SaaS. His current professional focus is on increasing the security of application development while also the kind of high velocity that markets now demand.

Hosts

MattAlderman

Matt Alderman –

Executive Director at CyberRisk Alliance

PaulAssadorian

Paul Assadorian –

Founder/CIO at Security Weekly/CyberRisk Alliance

3. An Overview of Black Hat USA 2020 – 02:00 PM-02:30 PM

Announcements

  • Do you always end up missing our live streams? Need somewhere to flag Security Weekly podcasts that you want to listen to? Subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server to stay in the loop on all things Security Weekly! Visit: https://securityweekly.com/subscribe

  • Security Weekly is an official media partner for Virtual BlackHat 2020! To register and save $200, visit https://securityweekly.com/summercamp2020 and click the register button. Discount code: “20SecWeekbh” Alongside Virtual BlackHat, we will be running our conference micro-interviews, you guessed it, virtually, in an event called Security Weekly Virtual Hacker Summer Camp, August 3 – August 6, 2020. Options, pricing and availability are all listed on the same page! Reserve your slot now to get your message out to BlackHat attendees!

Description

Tune-in to get the inside scoop on Blackhat 2020! Steve Wylie, Black Hat General Manager, joins us to talk about to what attendees can expect from this year’s virtual Blackhat event. Steve discusses the highly-anticipated briefings, trainings, new tracks, community programs, and the all new virtual conference platform.

Guest(s)

Steve Wylie

Steve Wylie –

General Manager at Black Hat

Steve Wylie is a senior business leader with extensive experience in the event industry, leading highly regarded business technology conferences. His background includes launching new conferences focused on the latest technology trends as well as running major industry events around the world. He is currently General Manager over Informa Tech’s Black Hat business, overseeing a portfolio of information security events and leading the company’s overall strategy for the Information Security sector.

Hosts

MattAlderman

Matt Alderman –

Executive Director at CyberRisk Alliance

PaulAssadorian

Paul Assadorian –

Founder/CIO at Security Weekly/CyberRisk Alliance