esw193

Enterprise Security Weekly Episode #193 – August 05, 2020

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. SWVHSC: Put Zero Trust in Your Devices – 07:00 PM-07:30 PM

Sponsored By

sponsor
Visit https://securityweekly.com/eclypsium for more information!

Announcements

  • We have officially wrapped up all of the recordings for our 2020 webcasts & technical trainings! Stay tuned as we build out our schedule for next year! Visit https://securityweekly.com/ondemand to view all of our 2020 webcasts & trainings!

Description

The recent shift to a remote work environment has created new challenges for many businesses and government institutions with profound impacts on organizational security models. Users are no longer protected by the many layers of security found on-premise in the corporate network. Organizations must adapt security policies to support a massive influx of inbound connections. Security teams must consider how to adapt core security concepts like Zero Trust to include remote work environments that include corporate laptops, BYOD devices, and home networking gear. Join our conversation as we discuss how much trust you can put in your devices as well as what organizations are doing to assess and verify device integrity down to the firmware and hardware level. Eclypsium will also discuss the #BootHoleVulnerability research they disclosed last week.

This segment is sponsored by Eclypsium.

Visit https://securityweekly.com/eclypsium to learn more about them!

To learn more about securing devices down to the firmware and hardware level, visit: https://eclypsium.com/

Guest(s)

John Loucaides

John Loucaides –

VP of Research & Development at Eclypsium

John Loucaides is the VP of Research and Development at Eclypsium, the comprehensive cloud-based device security platform that protects enterprise devices all the way down to the firmware and hardware level. Headquartered in Portland, Oregon, the company was named to Fast Company’s annual list of the World’s Most innovative Security Companies for 2020, the CNBC Upstart 100 list, and Gartner’s Cool Vendor list for Security Operations and Threat Intelligence. John has extensive history in hardware and firmware threats from experience at Intel Corporation and the United States government. At Intel he served as the Director of Advanced Threat Research, Platform Armoring and Resiliency, PSIRT, and was a CHIPSEC maintainer. Prior to this, he was Technical Team Lead for Specialized Platforms for the federal government.

Hosts

MattAlderman

Matt Alderman –

Executive Director at CyberRisk Alliance

PaulAssadorian

Paul Assadorian –

Founder/CIO at Security Weekly/CyberRisk Alliance

2. DigiCert Automation Gateway, Veracode Security Labs, & CyberArk Shadow Admin – 07:30 PM-08:00 PM

Announcements

  • Do you always end up missing our live streams? Need somewhere to flag Security Weekly podcasts that you want to listen to? Subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server to stay in the loop on all things Security Weekly! Visit: https://securityweekly.com/subscribe

Description

Tanium offering new cybersecurity service through a partnership with Google Cloud, CyberArk launches open-source Shadow Admin identification tool for Azure and AWS, Threat Stack Cloud Security Platform extends security observability to AWS Fargate tasks, Polyrize announces its SaaS-based security platform, and more!

Hosts

JeffMan

Jeff Man –

MattAlderman

Matt Alderman –

PaulAssadorian

Paul Assadorian –

  1. Qualys acquires software assets of Spell Security (NASDAQ:QLYS)
  2. Tanium offers new cybersecurity service through partnership with Google Cloud – SiliconANGLE
  3. Google, Microsoft Join Hands to Work on Securing Your Emails
  4. CyberArk launches open-source Shadow Admin identification tool for Azure and AWS – SiliconANGLE
  5. Veracode Security Labs Community Edition launches to close the security gap – SD Times
  6. AttackIQ : Launches Preactive Security Exchange (PSE) to Improve Security Controls Effectiveness for Customers
  7. Citrix Web App and API Protection: Security for apps and APIs in the multi-cloud – Help Net Security
  8. Threat Stack Cloud Security Platform extends security observability to AWS Fargate tasks – Help Net Security
  9. Polyrize announces its SaaS-based security platform – Help Net Security
  10. RiskIQ joins Palo Alto Networks Cortex XSOAR Marketplace as a launch partner
  11. DigiCert Announces DigiCert Automation Gateway
  12. Aqua Extends its Alliance with Red Hat and IBM to Bring Cloud Native Security to the Red Hat Marketplace

3. SWVHSC: Mapping MITRE ATT&CK to PCI DSS – 08:00 PM-08:30 PM

Announcements

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Description

MITRE ATT&CK seems to be the “next big thing”. Every time I hear about it I can’t help but wonder, “how do you prevent all these attacks in the first place? Shouldn’t that be the end game?” To that end, I set out to map all the recommended “Mitigations” for all the “Techniques” detailed in ATT&CK to see how many are already addressed by what is required in the Payment Card Industry Data Security Standard (PCI DSS). My hypothesis was all of them. The results were interesting and a little surprising, and I’m still trying to figure out how to best use the results and subsequently ATT&CK itself. I will present my findings in the briefing and hopefully generate a discussion about what to do with the results.

Guest(s)

Jeff Man

Jeff Man –

Information Security Evangelist at Online Business Systems

Respected Information Security advocate, advisor, evangelist, international speaker, keynoter, host of Security & Compliance Weekly, co-host on Paul’s Security Weekly, Tribe of Hackers, TOH Red Team, TOH Security Leaders, TOH Blue Team, and currently serving in a Consulting/Advisory role for Online Business Systems. Certified NSA Cryptanalyst. Previously held security research, management and product development roles with the National Security Agency, the DoD and private-sector enterprises and was part of the first penetration testing “red team” at NSA.

Hosts

MattAlderman

Matt Alderman –

Executive Director at CyberRisk Alliance

PaulAssadorian

Paul Assadorian –

Founder/CIO at Security Weekly/CyberRisk Alliance