loader from loading.io

Cloud Security Part 2

CISO Dojo Podcast

Release Date: 05/04/2021

Dealing with Burn Out and GPEN Versus OSCP show art Dealing with Burn Out and GPEN Versus OSCP

CISO Dojo Podcast

In this episode I talk about an approach to deal with burn out on your team. This is based on a study located I also look at the GPEN versus the OSCP certification in this episode.

info_outline
Meet Paul Tucker CISO of Bank of Oklahoma show art Meet Paul Tucker CISO of Bank of Oklahoma

CISO Dojo Podcast

Paul Tucker CISO of Bank of Oklahoma joins us for this episode of the CISO Dojo Podcast. Paul Tucker is Senior Vice President and Chief Information Security and Privacy Officer at BOK Financial. In this role Tucker leads the cybersecurity team responsible for the banks efforts to protect information important to the banks operation, while ensuring the overall cyber resiliency and privacy of the bank.

info_outline
Cloud Security, Casinos, Supply Chain Attacks, INFOSEC Bikini, and Haters of Pants show art Cloud Security, Casinos, Supply Chain Attacks, INFOSEC Bikini, and Haters of Pants

CISO Dojo Podcast

Joe Sullivan and Stacy Dunn wrap up the the third part of their cloud security series. The episode extends into current events with casino ransomware attacks, supply chain attacks, and why casinos should not be getting breached. We also talk about Social Media happenings like INFOSEC Bikini, the negative element on Twitter, and haters of pants.

info_outline
Attack Surface Management & Threat Intelligence with Alex Tarter show art Attack Surface Management & Threat Intelligence with Alex Tarter

CISO Dojo Podcast

Alex Tarter joins us on the podcast to discuss attack surface management and threat intelligence. Alex is one of the founding members of TurgenSec which has recently had an interesting string of responsible disclosures related to: Virgin Media The Gates Foundation Charity 190+ Law Firms The Philippines Government Check out Alex at:  

info_outline
Stacy Dunn on Diversity, Equity, and Inclusivity | Part 3 show art Stacy Dunn on Diversity, Equity, and Inclusivity | Part 3

CISO Dojo Podcast

Part 3: Action items and actionable information; Give insights into how to support marginalized people and adopt better hiring practices.  Sources:                      

info_outline
Meet CISO Chad Kliewer show art Meet CISO Chad Kliewer

CISO Dojo Podcast

Chad Kliewer, CISO of Pioneer Telephone shares his journey in information security where he overcame nearly insurmountable challenges.  Chad has faced broad use of credential sharing, placing the mouse on the monitor, because this is how it's supposed to work right? Chad has survived Sox audits and even the SolarWinds attack. There's so much to learn from this episode from a CISO and information security perspective! Connect with Chad on Twitter @ChadKliewer  

info_outline
CISO Dojo Ransomware Special Edition show art CISO Dojo Ransomware Special Edition

CISO Dojo Podcast

The White House just release a special document to the private sector about responsibility and steps to prevent ransomware. Quoting directly from the document: Companies that view ransomware as a threat to their core business operations rather than a simple risk of data theft will react and recover more effectively. The document goes on to talk about best practices such as: Utilizing Multifactor Authentication Endpoint Detection and Response Threat Hunting Utilizing Threat Intelligence Backing up your data and keeping it offline Updating and patching systems Testing your incident response...

info_outline
Stacy Dunn on Diversity, Equity, and Inclusivity | Part 2 show art Stacy Dunn on Diversity, Equity, and Inclusivity | Part 2

CISO Dojo Podcast

Part of being an effective security leader is understanding and including people from all types of backgrounds. Usually, it’s talk tech, security, and strategy, but for these episodes, it’s time to discuss the 8th layer and how acceptance is not just 1’s and 0’s. In this short solo three-parter, Stacy will take you through the who, what, when, and why of Diversity, Equity, and Inclusivity. (DEI) Sources for Part 2:   .                    A link to my own Medium Article:

info_outline
Stacy Dunn on Diversity, Equity, and Inclusivity | Part 1 show art Stacy Dunn on Diversity, Equity, and Inclusivity | Part 1

CISO Dojo Podcast

In this episode Stacy Dunn talks about Diversity, Equity, and Inclusivity and how we can get better at improving the culture of the information security workplaces and community. Part of being an effective security leader is understanding and including people from all types of backgrounds. Usually, it’s talk tech, security, and strategy, but for these episodes, it’s time to discuss the 8th layer and how acceptance is not just 1’s and 0’s. In this short solo three-parter, Stacy will take you through the who, what, when, and why of Diversity, Equity, and Inclusivity. (DEI) Sources for...

info_outline
Hiring Pen Testers, Hacking Holidays, and Hand Grenades show art Hiring Pen Testers, Hacking Holidays, and Hand Grenades

CISO Dojo Podcast

Chris Elgee is a senior security analyst and design lead for , and commander of the Army National Guard's 126th Cyber Protection Battalion. At Counter Hack, Chris is responsible for the design and implementation of NetWars challenges and has created some of the player-favorite challenges throughout NetWars and the . Chris also teaches for the SANS Institute. Read more about Chris Elgee at: Follow Chris on Twitter: @chriselgee  

info_outline
 
More Episodes

In this episode we discuss concerns with security in the cloud that organizations need to be aware of. Moving to the cloud doesn't automatically mean it's more secure.

We'll take a look at the CIS Controls and how you can implement them in a cloud environment to better secure your networks and data.

The topics discussed in this episode are:

  1. Malware Defenses in the Cloud
  2. Limiting Network Protocol Ports and Services
  3. Cloud Security Data Recovery Capabilities
  4. Cloud Security Configurations