esw249

Enterprise Security Weekly Episode #249 – November 04, 2021

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. Detecting the Next Breach: How to Win the War With NSX NDR – 03:00 PM-03:30 PM

Sponsored By

sponsor
Visit https://securityweekly.com/vmware for more information!

Announcements

  • In case you missed it: Paul’s Security Weekly’s new streaming time is Wednesday nights from 6pm-9pm ET & Enterprise Security Weekly’s new streaming time is Thursday afternoons from 3pm-4:30pm ET. You can view our live stream schedule at any time at https://securityweekly.com/live!

Description

When it comes to detecting the next cyber breach, would your organization pass the test? Of course, in real life, you not only need to ace the practice exam – you need to test against the real threats. So when SE Labs recently conducted the industry’s first network detection and response (NDR) test against NSX NDR, they used a range of advanced persistent threats designed to compromise systems and penetrate target networks in the same way as criminals and other attackers breach systems and networks. And the result? VMware NSX Network Detection and Response (NDR) was able to detect every targeted attack and tracked each of the hostile activities that occurred during the attacks. Every. One.

Segment Resources:
https://blogs.vmware.com/networkvirtualization/2021/10/vmware-achieves-industry-first-aaa-rating-for-network-detection-response-from-se-labs.html/ https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/NDR-Solution.pdf https://www.vmware.com/content/dam/digitalmarketing/vmware/en/pdf/docs/vmw-nsx-ndr-breach-response-test-report.pdf

This segment is sponsored by VMware.

Visit https://securityweekly.com/vmware to learn more about them!

Guest(s)

Chad Skipper

Chad Skipper – Director Product Marketing at VMware

Chad Skipper serves as Global Security Technologist in the Network and Security Business Unit at VMware. With more than 25 years in Information Security, Chad has served in many executive security technologist and strategist roles of endpoint, network, cloud, and hosted security services at Lastline, acquired by VMware, Cylance, acquired by Blackberry, Dell, Cisco, Symantec and is a USAF veteran.

Hosts

AdrianSanabria

Adrian Sanabria

@sawaba

Senior Research Engineer at CyberRisk Alliance

KatieTeitler

Katie Teitler

@Katherinert15

Sr. Product Marketing Manager at Axonius

TylerShields

Tyler Shields

@txs

CMO at JupiterOne

2. Building Up the Blue Team – 03:30 PM-04:00 PM

Announcements

  • InfoSec World 2021 is proud to announce its keynote lineup for this year’s event! Hear from Robert Herjavec plus heads of security at the NFL, TikTok, U.S. Department of Homeland Security, Stanford University, and more… Plus, Security Weekly listeners save 20% on Digital Pass registration! Visit https://securityweekly.com/isw2021 to register now!

Description

Traditionally, the red team has been seen as “fun and interesting”, with blue team characterized as “all work, no play” in terms of cybersecurity career paths. Today we talk with Frank McGovern to explore the current state of blue teams and the importance of security policy. Not only has Frank been a practitioner his entire career, but he also built Blue Team Con, a labor of love designed to fill a significant gap in both the Chicago security events scene and across the wider cybersecurity events industry.

Guest(s)

Frank McGovern

Frank McGovern – Cybersecurity Architect at StoneX Group Inc.

@FrankMcG

Frank McGovern is a Cybersecurity Architect in Chicago, Illinois. He holds CISSP, CISM, CNSS-4016-I, CSM, and Microsoft 365 Certified: Security Administrator Associate certifications. Frank currently works for StoneX, an international financial commodities and research company that includes a vast M&A portfolio. His previous role involved being in a large organization with a small cybersecurity team, which let him wear many cybersecurity hats and learn numerous verticals. Frank has experience working in cybersecurity architecture, design, and implementation, GRC (policy, risk management, and compliance tracking), and more. He has specialization in the Microsoft E5 product stack. Frank also co-founded Blue Team Con, is involved in the automotive detailing industry, and loves to play video games.

Hosts

AdrianSanabria

Adrian Sanabria

@sawaba

Senior Research Engineer at CyberRisk Alliance

KatieTeitler

Katie Teitler

@Katherinert15

Sr. Product Marketing Manager at Axonius

TylerShields

Tyler Shields

@txs

CMO at JupiterOne

3. Facebook Gets Meta, Crazy Valuations, IBM XDR, & Analysts V.S Darktrace – 04:00 PM-04:30 PM

Announcements

  • Security Weekly Unlocked will be held IN PERSON this December 5-7 at the Hilton Lake Buena Vista! Keynotes from Alyssa Miller, John Strand, Lesley Carhart, & Dave Kennedy! Visit https://securityweekly.com/unlocked to register for free and check out our rockstar lineup!

  • Join us for our next live webcast on November 11th to learn the key insights and takeaways from the the 2021 OWASP top ten. Visit https://securityweekly.com/webcasts to save your seat! Don’t forget to check out our library of on-demand webcasts & technical trainings at https://securityweekly.com/ondemand

Description

In the Enterprise Security News for this week: Laika raises $35m in the growing compliance-as-a-service segment, IBM launches XDR, CrowdStrike acquires SecureCircle and moves into the data layer, HelpSystems acquires endpoint DLP vendor Digital Guardian, Crazy valuations, Questionable statistics, Analysts shine a doubtful light on Darktrace’s value, Facebook gets all Meta on us, and more!

Hosts

AdrianSanabria

Adrian Sanabria

@sawaba

Senior Research Engineer at CyberRisk Alliance

  1. FUNDING: Compliance-as-a-service platform Laika raises $35M
  2. FUNDING: Phishing Protection Provider SlashNext Raises $26 Million
  3. FUNDING: Quantum Cybersecurity Provider QuintessenceLabs Raises $18 Million
  4. ACQUISITIONS: HelpSystems Acquires Enterprise Data Loss Prevention Leader Digital Guardian
  5. ACQUISITION: CrowdStrike to Extend Zero Trust Protection to the Data Layer with Acquisition of SecureCircle – crowdstrike.com
  6. ACQUISITION: SecureAuth Acquires Acceptto to Redefine AI-driven MFA and Continuous Passwordless Authentication for the Workplace
  7. ACQUISITION: IBM Acquires ReaQta EDR; Touts QRadar XDR for MSSP Partners – MSSP Alert
  8. NEW STARTUPS: Encryption-as-a-Service Provider Vaultree Emerges From Stealth
  9. REPORTS: Lamboozling Attackers: A New Generation of Deception – ACM Queue
  10. REPORTS: 40% of organizations suffered a cloud-based data breach in the past 12 months – Help Net Security
  11. REPORTS: Zscaler’s 2021 Encrypted Attacks Report Reveals 314% Spike in HTTPS Threats
  12. TRENDS: Darktrace shares crash after analysts slash its value
  13. TRENDS: Microsoft giveth and Microsoft Taketh away… – 4 weeks ago: “Microsoft is disabling Excel 4.0 macros by default to protect users”
    2 days ago: “Microsoft brings JavaScript to Excel”
  14. TOOLS: Meet Ottr: A Serverless Public Key Infrastructure Framework
  15. REGULATIONS: U.S. Blacklists Israeli Firm NSO Group Over Spyware
  16. REGULATIONS: Biden Administration Orders Federal Agencies to Fix Hundreds of Cyber Flaws
  17. SQUIRREL: Zuckerberg Announces Fantasy World Where Facebook Is Not a Horrible Company
  18. SQUIRREL: The smart toilet era is here! Are you ready to share your analprint with big tech?
KatieTeitler

Katie Teitler

@Katherinert15

Sr. Product Marketing Manager at Axonius

TylerShields

Tyler Shields

@txs

CMO at JupiterOne