loader from loading.io

DtR Episode 113 - NewsCast for October 6th, 2014

Down the Security Rabbithole Podcast

Release Date: 10/06/2014

DtSR Episode 513 - CSO Perspective on Security Fundamentals show art DtSR Episode 513 - CSO Perspective on Security Fundamentals

Down the Security Rabbithole Podcast

Prologue "Just do the basics!" "Remember the security fundamentals." ...sick of hearing those catch phrases without anything to actually get it DONE? Yeah, us too. This week we're joined by John Scimone of Dell Technologies to talk about his take on fundamentals both security and IT. His approach is not unique, per se, but it's one that works and it's repeatable. More importantly, he's willing to share his expertise and what he's done to be successful in raising the bar to his level of "good enough" -- so unless you've gotten where YOU want to be in those security fundamentals, it's time...

info_outline
DtSR Episode 512 - Why is Enterprise Security Program Maturity so Tough? show art DtSR Episode 512 - Why is Enterprise Security Program Maturity so Tough?

Down the Security Rabbithole Podcast

Prologue This week, long-time friend and well-known industry personality, Jessica Hebenstreit joins Rafal to talk about her journey in consulting to very large security programs and why maturity is elusive in many of those programs. As it turns out, maturity is influenced by many factors but highly dependent on actually solving problems and being able to show progress. This is an interesting conversation for anyone who wants to understand what's inside the head of a former practitioner who has ventured into the field to help others solve large-scale, complex, problems. Guest Jessica...

info_outline
DtSR Episode 511 - Managing Technical Teams show art DtSR Episode 511 - Managing Technical Teams

Down the Security Rabbithole Podcast

Prologue This week on the podcast, the one and only Tom Eston joins Rafal & James to talk about managing teams. Tom is a well-known personality who runs the "Shared Security Show" podcast -- which has been running even longer than we have, give them a listen if you don't already. Tom talks about the difficulties of managing, coping with various types of personalities, and helping employees thrive while finding the right balance between in-office and remote. Great show if you're in a leadership position, or hoping to be, managing technical teams. Guest Tom Eston The Shared Security Show ...

info_outline
DtSR Episode 510 - The Big Services Discussion - Part 1 show art DtSR Episode 510 - The Big Services Discussion - Part 1

Down the Security Rabbithole Podcast

Prologue It's always a pleasure to have someone on the show who is an expert in their trade, someone who has experience, expertise, and depth of understanding like few others. In this case, James and I host Jim tiller - one of the people I consider a mentor and long-time friend, who is all of those things and more. Jim is a quintessential expert on cybersecurity services - and in this discussion we push some of the buttons that really get him talking, passionate, and dispensing wisdom. I hope you brought a notepad, because you'll want to be taking notes. This episode is for those out there who...

info_outline
DtSR Episode 509 - The Shift Left Debate show art DtSR Episode 509 - The Shift Left Debate

Down the Security Rabbithole Podcast

Prologue James has been talking about "shift left" for a while so when Jeff Williams posted interesting research on LinkedIn - we jumped on an opportunity to have him on the show to talk about the subject. Let's face it, everyone is shifting left, and most of this is just marketing nonsense, but some of it is actually an attempt to push security "earlier" into the cycles - but is that good? Does it even make sense? Jeff kills one of my favorite, go-to, security myths about software security...and a fun discussion ensues. Join us, and maybe add to the conversation! Guest Jeff Williams ...

info_outline
DtSR Episode 508 - DNS Under Siege, So What? show art DtSR Episode 508 - DNS Under Siege, So What?

Down the Security Rabbithole Podcast

Prologue DNS is a big topic, and you may be asking yourself why. Well, as we noted in a recent show ( ) DNS is officially middle-aged. And with that middle-age comes some more problems. These issues have caused a situation where it's increasingly evident that DNS needs to evolve, mature, or simply revise (2.0?) itself ... but into what? And why? Listen to Ken Carnesi from DNSFilter who joins James & Rafal to talk about the challenges and the future, and why it's still such a sh*tshow today. Guest Ken Carnesi LinkedIn:

info_outline
DtSR Episode 507 - Beyond NDR: Of Badguys and Bottlenecks show art DtSR Episode 507 - Beyond NDR: Of Badguys and Bottlenecks

Down the Security Rabbithole Podcast

Prologue Let's start with NDR - Network Detection and Response - because it's not new, but the discussions lately have been very interesting. Is it still relevant? Does it have a place in today's hybrid and cloud world? Well, in this conversation with Raja Mukerji, co-founder of ExtraHop, Rafal tackles these questions and gets some interesting answers. For those of you who have followed for a while - I have a surprise reveal for you at the end.

info_outline
DtSR Episode 506 - What the Heck is ASPM show art DtSR Episode 506 - What the Heck is ASPM

Down the Security Rabbithole Podcast

Prologue As some of you know, I've been either in the AppSec space, or adjacent, since the fairly early days. I built a program at GE a million years ago, and worked selling dynamic web app testing software for many years. If you've been in the space, you can feel a little bit hopeless with all the different options, tools, and advice only to look at the stale OWASP Top 10 and wonder ...why aren't things improving? Matt Rose joins me in a post-RSA conversation about ASPM (Application Security Posture Management), and before you dismiss it as another analyst buzzword, let's talk about why this...

info_outline
DtSR Episode 505 - Reflections on RSA Conference 2022 show art DtSR Episode 505 - Reflections on RSA Conference 2022

Down the Security Rabbithole Podcast

Prologue RSA Conference 2022 has come and gone. Rafal was there for all the circus and madness, and sits down with James to discuss what was seen and heard. Also, you'll get some clips in here from some of the interviews from the show as Rafal caught up with some interesting vendors, old friends, and even some poetry. Guests Tyler Moffitt LinkedIn:   Rock Lambros LinkedIn:   Matt Rose LinkedIn:   Dr. Khawaja Saeed LinkedIn:   Ray Canzanese LinkedIn:   Deidre Diamond LinkedIn:  

info_outline
DtSR Episode 504 - DNS Turns 40 show art DtSR Episode 504 - DNS Turns 40

Down the Security Rabbithole Podcast

Prologue In this RSA conference-themed episode, I bring on Jonathan Barnett from OpenText Security Solutions to discuss DNS turning 40 years old. Yeah, it was originally invented in 1983 y'all. As DNS turns 40, some of the lingering problems are getting worse, some of the new solutions open up other problems, and we're all about solutions here so we tackle some of the things Jonathan is doing to address the issues. Interesting episode to ponder, and reflect on, as DNS turns 40 years old next year and we try and figure out "now what?" Guest Jonathan Barnett LinkedIn: OpenText Security...

info_outline
 
More Episodes

Topics covered