esw199

Enterprise Security Weekly Episode #199 – September 16, 2020

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. Zscaler Zero Trust Exchange, Gravwell Data Fusion, & CrowdStrike Falcon – 12:30 PM-01:00 PM

Announcements

  • Do you always end up missing our live streams? Need somewhere to flag Security Weekly podcasts that you want to listen to? Subscribe on your favorite podcast catcher or our Youtube channel, sign up for our mailing list, and join our Discord Server to stay in the loop on all things Security Weekly! Visit: https://securityweekly.com/subscribe

  • Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Description

Acunetix new data retention policies, 5 Things to Ask Your Web App Pen Test Provider, Microsoft’s open source tool for sniffing out Windows 10 bugs, Datadog unveils support for distributed tracing for AWS Step Functions via AWS X-Ray, Gravwell’s Data Fusion platform breaks the mold of legacy data ingestion engines, and more!

Hosts

MattAlderman

Matt Alderman –

  1. Snyk bags another $200M at $2.6B valuation 9 months after last raise
  2. StackRox nabs $26.5M for a platform that secures containers in Kubernetes
PaulAssadorian

Paul Assadorian –

  1. CrowdStrike Store continues momentum with diverse applications that bolster unified approach to security through Falcon platform
  2. Acunetix update introduces data retention policies, static JavaScript method analysis, user-based timezone settings, and new vulnerability checks
  3. OneLogin Supports Thousands of CMS Employees in Seamless Transition towards Remote Working
  4. 5 Things to Ask Your Web App Pen Test Provider
  5. ThreatQ Integration with Polarity Gives Analysts Immediate Data Awareness and Recall
  6. Niagara Networks and Netsweeper Enable Easy, Flexible Deployments of Advanced, AI-Driven Internet Content Filtering for Security, Organizational Policy and Compliance
  7. Exabeam : and Code42 Announce Strategic Partnership to Detect and Respond to Risk from Insider Threats
  8. Microsoft has open sourced its tool for sniffing out Windows 10 bugs
  9. Thycotic Automates and Extends Privileged Access Security in DevOps Environments
  10. Device Authority releases new version of IoT security platform with support for Microsoft Azure Sphere
  11. Zscaler releases new data protection innovations in Zscaler Zero Trust Exchange
  12. Datadog unveils support for distributed tracing for AWS Step Functions via AWS X-Ray – Help Net Security
  13. Gravwell Data Fusion platform breaks the mold of legacy data ingestion engines – Help Net Security
  14. ThreatConnect acquires Nehemiah Security – Help Net Security

2. Current Security Needs Of Modern Enterprise Companies – 01:00 PM-01:30 PM

Sponsored By

sponsor
Visit https://securityweekly.com/netsparker for more information!

Announcements

  • BSides Boston is back in action for their 10 year anniversary! The conference will be held on Saturday, September 26th & tickets are only $10! Get yours at https://bsidesbos.org! Some of the Security Weekly team will be in our own channel on the BSides Boston Discord server answering questions and possibly doing some contests!

Description

As organizations grow and get more mature, they are looking for ways to achieve more with less. Join this ESW segment to learn how mature organizations approach web application security at scale, how they achieve greater visibility, shift security left and how they save time for their team whilst building more effective web application security programs.

This segment is sponsored by Netsparker.

Visit https://securityweekly.com/netsparker to learn more about them!

Debunking top 5 myths about DASThttps://www.netsparker.com/blog/web-security/debunking-5-dast-myths/

Guest(s)

Ferruh Mavituna

Ferruh Mavituna –

CEO at Netsparker

Ferruh’s deep understanding of web application security was the driving force behind Netsparker’s success. Prior to founding Netsparker, he worked as security consultant and penetration tester for several enterprise companies in the US and UK. Ferruh focuses on web app security research and automated vulnerability detection & exploitation. A frequent speaker at conferences and podcasts, he has released several research papers and tools.

Hosts

MattAlderman

Matt Alderman –

Executive Director at CyberRisk Alliance

PaulAssadorian

Paul Assadorian –

Founder/CIO at Security Weekly/CyberRisk Alliance

3. Securing Enterprise Digital Transformations – 01:30 PM-02:00 PM

Sponsored By

sponsor
Visit https://securityweekly.com/signalsciences for more information!

Announcements

  • We have officially wrapped up all of the recordings for our 2020 webcasts & technical trainings! Stay tuned as we build out our schedule for next year! Visit https://securityweekly.com/ondemand to view all of our 2020 webcasts & trainings!

Description

The drivers behind transformation, or roadbloacks, come in different forms. Mergers and acquisitions present both security challenges and opportunities for growth. Legacy technology always presents unique challenges, especially when it comes to security. Of course, everyone wants to be cloud native, but just how far along are you on the journey? Join us for a discussion on these topics with Jimmy Mesta from Signal Sciences!

This segment is sponsored by Signal Sciences.

Visit https://securityweekly.com/signalsciences to learn more about them!

Guest(s)

Jimmy Mesta

Jimmy Mesta –

Director of Security Research at Signal Sciences

Jimmy Mesta is the Head of Security Research at Signal Sciences, and a veteran application and infrastructure security leader with more than 15 years of experience. He has spent time on both the offensive and defensive side of the industry, working to build modern, developer-friendly security solutions. Prior to Signal Sciences, Jimmy maintained a global network, consulting with companies, and delivering technical security training, research, and infrastructure around the world. He previously ran the local Santa Barbara OWASP chapter and taught Kubernetes, Docker, DevOps, Mobile Security and Pentesting courses for Manicode.

Hosts

MattAlderman

Matt Alderman –

Executive Director at CyberRisk Alliance

PaulAssadorian

Paul Assadorian –

Founder/CIO at Security Weekly/CyberRisk Alliance