Enterprise Security Weekly Episode #272 – May 05, 2022

Subscribe to all of our shows and mailing list by visiting: https://securityweekly.com/subscribe

1. Security Orchestration & Automation Simplified – 03:00 PM-03:30 PM

Announcements

• Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!

Description

Due to the high influx of security incidents and limited resources available, conducting incident response is an enormous task for all organizations, large or small. This necessitates the use of security automation, in which we would require a single centralized platform that connects to all other security technologies in order to effectively address incidents in a short period of time. SOAR (Security Orchestration, Automation, and Response) functions similarly to an orchestrator, but instead of controlling and conducting multiple individuals playing various instruments, SOAR manipulates a variety of tools to produce a more streamlined and fluent incident response process.

Guest(s)

Prashasth Baliga – Senior Security Consultant (Customer Success Engineer) at Palo Alto Networks @prashasthbaliga As a senior security consultant, my area of work is mostly focussed in the area of security automation. Programming and security is something I am extremely passionate about and as a result, I started automating various VAPT tools to provide a seemless testing process for the security testers. I gradually moved towards automating SOC wherein I have worked extensively in SIEM and SOAR technologies. After several years of handson experience, I have now started focussing on providing consultation as a customer success engineer wherein I work as an SME for the SOAR products.

Hosts

Adrian Sanabria @sawaba Director of Product Management at Tenchi Security

Katie Teitler @Katherinert15 Sr. Product Marketing Manager at Axonius

Lee Neely @lelandneely Information Assurance APL at Lawrence Livermore National Laboratory

2. Getting Value From SOAR Beyond Phishing Workflows – 03:30 PM-04:00 PM

Announcements

• Security Weekly listeners, save $100 on your RSA Conference 2022 Full Conference Pass! RSA Conference will be live in San Francisco June 6th-9th, 2022. Security Weekly will be there in full force, delivering real-time, live coverage and interviewing some of the event’s top speakers and sponsors. To register using our discount code, please visit https://securityweekly.com/rsac2022 and use the code 52UCYBER. We hope to see you there!

Description

This topic will go over getting value from SOAR beyond just an initial phishing workflow. It will focus on orchestration and response, give ideas for other types of workflows and change the conversation from using SOAR to replace analysts to increasing SOC retention!

Guest(s)

Ryan Fried – Senior Security Engineer at Brooks Running Ryan holds a masters degree in cyber security, has worked in the cybersecurity field for 9 years, and works as an adjunct professor teaching cyber security at a college for 7 years. Currently Ryan works for Brooks Running as a senior security analyst, specializing in security automation, network segmentation and purple teaming.

Hosts

Adrian Sanabria @sawaba Director of Product Management at Tenchi Security

Katie Teitler @Katherinert15 Sr. Product Marketing Manager at Axonius

Lee Neely @lelandneely Information Assurance APL at Lawrence Livermore National Laboratory

3. WeHackPurple, DevSecOps Evolution, Product-Led Growth, & 10 Security Startups – 04:00 PM-04:30 PM

Announcements

• Don’t miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!

• Don’t forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

Description

In the Enterprise Security News, Veza raises $110M for Data Security, Traceable raises $60M for API Security, 10 other security startups get funded, Synopsis buys Whitehat for $330M, HackerOne approves a PullRequest, Bright Security acquires WeHackPurple, LexusNexis acquires BehaviorSec, JupiterOne continues to release some compelling books, the DevSecOps evolution, the future of Product-Led Growth, & more!

Hosts

Adrian Sanabria @sawaba Director of Product Management at Tenchi Security

FUNDING: Veza, the Data Security Company Built On The Power of Authorization, Emerges from Stealth and Announces $110 Million in Funding – FUNDING: Traceable Enters Next Phase of Growth to Deliver Hyperscale API Security – $60M Series B, $450M valuation, led by Institutional Venture Partners. Product focuses on “API security & observability”. FUNDING: Strider Technologies Raises $45 Million Led by Valor Equity Partners – FUNDING: Source Defense Raises $27M, Aims To Beef Up Channel Relationships – FUNDING: Smallstep Secures $26M in Funding to Further Practical Zero Trust by Automating Certificate Management – FUNDING: Enveil Secures $25 Million in Series B Funding – FUNDING: Intigriti secures more than €21M in Series B funding – Intigriti – FUNDING: Fleet nabs $20M to help enterprises manage their devices – TechCrunch – FUNDING: World’s First DDoS Risk Assessment Product – Israeli Cybersecurity Company MazeBolt Announces $10 Million in Funding – FUNDING: Hubble Technology Banks $9 Million for Asset Visibility Platform – FUNDING: Doppler expands secrets management to the enterprise with $6.5M in funding – FUNDING: Rita Personal Data Raises €1 Million in pre-Seed Round – ACQUISITIONS: Synopsys Buying WhiteHat Security from NTT for $330 Million – WhiteHat Security Was acquired in 2019 by NTT Security, but apparently wasn’t material enough for the deal price to get reported. We were able to find estimates of revenue ranging from $60-65M, which puts the multiple here between 5x and 5.5x. The deal makes sense for Synopsys and rounds out the company’s appsec offerings. ACQUISITIONS: HackerOne Acquires PullRequest to Power Developer-First Security Testing Solutions – ACQUISITIONS: We Hack Purple, Acquired by Bright Security! – ACQUISITIONS: Sabanci Acquires OT Security Vendor Radiflow – Radiflow – ACQUISITIONS: LexisNexis Risk Solutions Acquires Behavioral Biometric Innovator BehavioSec – NEW PRODUCTS: Uptycs Strengthens Cloud Security Offering with Cloud Identity and Entitlement Management (CIEM), Announces Multi-Cloud Support – EVENTS: Innovation Sandbox – Probably my favorite RSAC moment every year, Innovation Sandbox is a shark tank-style contest where ten security startup finalists pitch to a panel of judges with a harshly-enforced 3 minute time limit. This year, it will be happening at Noon on Monday (June 6th). Previous winners include Apiiro, Axonius, BigID, and Phantom. The finalists include: Araali Networks (Container Security) BastionZero (Remote Access) Cado (Cloud Incident Response Platform) Cycode (AppSec and Data Leakage Detection) Dasera (Data Security) Lightspin (CNAPP Security) Neosec (API Security) Sevco (SOARv2) Talon (Enterprise Browser) Torq (SOARv2) NEW BOOKS: JupiterOne Releases ‘Reinventing Cybersecurity’ Book, A Collection of Stories from Female and Non-Binary Security Practitioners Challenging The Status Quo – GOOD READS: The VC View: The DevSecOps Evolution and Getting “Shift Left” Right – GOOD READS: The Future of Product-Led Growth Might Be Hiding Where You Least Expect It – OpenView – REGULATIONS: New US Breach Reporting Rules for Banks Take Effect May 1 –

Katie Teitler @Katherinert15 Sr. Product Marketing Manager at Axonius

Lee Neely @lelandneely Information Assurance APL at Lawrence Livermore National Laboratory