Enterprise Security WeeklySubscribe
Cloud Security, Leadership, Incident Response, Identity, Vulnerability Management, Security Staff Acquisition & Development

The Human Element – ESW #252

Full Audio

View Show Index

Segments

1. Are We Ever Going to Get Information Sharing Right? – Edna Conway – ESW #252

In this interview, we discuss defenders sharing information, how Edna deals with Azure's supply chain challenges, ransomware trends, and some future predictions. Edna has been in security as long as most other folks we interview, but was a lawyer for 20 years before that!

She's smart, dangerous, and has some great takes we can't wait to dive into.

Announcements

  • We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!

Guest

VP, Chief Security & Risk Officer, Azure at Microsoft

Edna Conway currently serves as VP, Security & Risk Officer, Azure Hardware Systems & Infrastructure at Microsoft. She is responsible for the security, resiliency and governance of the cloud infrastructure upon which Microsoft’s Intelligent Cloud business operates. She has built new organizations delivering trust, transparency, cybersecurity, compliance, risk management, sustainability and supply chain transformation.

Conway is recognized domestically (U.S. Presidential Commissions) and globally (NATO) as the developer of architectures delivering value chain security, sustainability and resiliency. She was appointed to the Executive Committee of the U.S. Department of Homeland Security Task Force on ICT Supply Chain Risk Management. Her insight is featured in a range of publications, analyst reports, and case studies, including Forbes, Fortune, Bloomberg, CIO Magazine and the Wall Street Journal.

An influential speaker and author, Conway has contributed to a number of industry-related books and presented at events/forums spanning industry, government and academia.

Hosts

Principal Researcher at The Defenders Initiative
Product Marketer and Content Strategist at OX Security
Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

2. First Look: Is Passwordless Really Killing the Password? – ESW #252

Passwordless is everywhere these days, but like most new security markets, it's shrouded in confusion. There are already dozens of vendors promising to kill the password, but they don't all seem to be coming at the challenge the same way.

In this "First Look" segment, our goal is to define Passwordless, discuss some of the companies doing it, and how they're doing it. We'll even go through a few live passwordless demos.

Announcements

  • In an overabundance of caution, we have decided to flip this year’s SW Unlocked to a virtual format. The safety of our listeners and hosts is our number one priority. We will miss seeing you all in person, but we hope you can still join us at Security Weekly Unlocked Virtual! The event will now take place on Thursday, Dec 16 from 9am-6pm ET. You can still register for free at https://securityweekly.com/unlocked.

Hosts

Principal Researcher at The Defenders Initiative
Product Marketer and Content Strategist at OX Security
Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

3. Killing the SOC, Burger King Runes, ReliaQuest Valuation, & StrongDM – ESW #252

This week in the enterprise security news: ReliaQuest crests a $1bn valuation, CyCognito raises a $100m Series C, AWS enhances cloud vulnerability management, StrongDM automates access to infrastructure, Can we trust AI written code?, Killing the SOC - is the SOC dead?, Comparing secure messaging apps, The best cities for cybersecurity professionals, and Don't miss today's Squirrel Story - it's a personal anecdote!

Announcements

  • Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.

  • Throughout 2022, CRA's Business Intelligence Unit will be releasing research reports on the top topics across the security industry. Our first report will be on Third-Party Risk and the Supply Chain. To participate in the survey, please visit https://securityweekly.com/thirdpartyrisk. The results will be shared at our Third-Party Risk eSummit in January.

Hosts

Principal Researcher at The Defenders Initiative
  1. 1. FUNDING: ReliaQuest Valued At More Than One Billion Dollars Following Growth Round Led by KKR – ReliaQuest
  2. 2. FUNDING: Attack surface management startup CyCognito raises $100M Series C on $800M valuation – TechCrunch
  3. 3. FUNDING: Cycode raises $56M Series B to help secure software supply chains – TechCrunch
  4. 4. ACQUISITION: Coinbase to acquire leading cryptographic security company, Unbound Security
  5. 5. ACQUISITION: Aqua acquiring Israeli software supply chain startup Argon
  6. 6. PRODUCT: Amazon Web Services unveils enhanced cloud vulnerability management
    https://venturebeat.com/2021/11/29/amazon-web-services-unveils-enhanced-cloud-vulnerability-management/
  7. 7. PRODUCT: strongDM is a proxy that manages and audits access to databases, servers, clusters, and web apps
  8. 8. TRENDS: AI Code Generation and Cybersecurity
  9. 9. TRENDS: OpenAI Codex – Wikipedia
  10. 10. TRENDS: Kill your SOC with a D-IR model
  11. 11. TRENDS: Lloyd’s Carves Out Cyber-Insurance Exclusions for State-Sponsored Attacks
  12. 12. TOOLS: Secure Messaging Apps Comparison
  13. 13. TOOLS: CVE Trends – crowdsourced CVE intel
  14. 14. CAREERS: Best cities for cybersecurity professionals – Help Net Security
    https://www.helpnetsecurity.com/2021/11/26/best-cities-cybersecurity-professionals/
  15. 15. SQUIRREL: TIL my local Burger King is using Nordic runes to protect itself
Product Marketer and Content Strategist at OX Security
Director of Offensive Security & Research at Trimarc Security, Founder & CEO at Dark Element

Related

You can skip this ad in 5 seconds