ESW #269 – Bob Erdman & Justin Tolman
Full Audio
View Show IndexSegments
1. The Role of Automation in Pen Testing – Bob Erdman – ESW #269
With cybersecurity attacks continually on the rise, security teams are under more pressure than ever. It’s imperative to use your pen testing resources wisely, leveraging automation capabilities where it makes sense to save time and help conduct more impactful engagements. During this interview, Bob Erdman will discuss how to find the right balance between the reliability and efficiency of pen testing automation with the astuteness and logic of human intervention.
Segment Resources: The Truth About Pen Testing Automation - https://www.coresecurity.com/blog/the-truth-abouth-pen-testing-automation
Core Impact Rapid Pen Tests - https://www.coresecurity.com/products/core-impact/rapid-pen-tests
This segment is sponsored by Core Security, A Help Systems Company.
Visit https://securityweekly.com/coresecurity to learn more about them!
Sponsored By
Announcements
Don't forget to check out our library of on-demand webcasts & technical trainings at securityweekly.com/ondemand.
Guest
Bob Erdman is the Director of Development for a number of HelpSystems’ cybersecurity solutions, having worked closely with the Core Security, Cobalt Strike, Digital Defense and Beyond Security products. With more than 25 years of experience in information technology, he has worked with global customers across the government, healthcare, financial, and military industries to help implement mission-critical technology. Bob is also a veteran of the United States Army National Guard and a current member of the U.S. Federal Bureau of Investigation’s InfraGard Cyber Health Working Group.
Hosts
2. Forensic Challenges for Security Professionals – Justin Tolman – ESW #269
Security professionals face a variety of challenges on a daily basis. The cybersecurity talent shortage and the so-called Great Resignation can lead to gaps in security, an increase in insider threats and overworked employees, not to mention external threats like hacking and ransomware. Digital forensics can help alleviate these challenges with solutions that collect evidence properly, automate workflows, function in Zero Trust environments and detect and mitigate insider threats.
Segment Resources: FTK Over the Air podcast: https://www.exterro.com/ftk-over-the-air-podcast FTK Feature Focus weekly videos: https://youtube.com/playlist?list=PLjlGL4cu_NaM0e7h1RCTJwNnZb-dyUf3B
This segment is sponsored by Exterro.
Visit https://securityweekly.com/exterro to learn more about them!
Sponsored By
Announcements
We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!
Guest
Justin Tolman is the Forensic Subject Matter Expert at Exterro. He was formerly the Director of Training for North America at AccessData prior to and after the acquisition by Exterro. Justin has been developing written and video programs and training AccessData clients worldwide for almost 6 years. He also consults with clients on investigations and problems related to forensic issues and procedures.
Prior to working for AccessData, Justin worked as a Computer Forensic Specialist for the state of Ohio’s Bureau of Criminal Investigations. Justin has a master’s degree in Cyber Forensics from Purdue University and a bachelor’s degree in Computer Information Technology from Brigham Young University—Idaho.
Hosts
3. DuckDuckGo for Mac, Juniper Networks, Future of InfoSec, & Subpar Products – ESW #269
This week in the Enterprise News: Datto to be Acquired by Kaseya for $6.2 Billion, with Funding Led by Insight Partners, Perforce Software Puppet, Synopsys acquires Juniper Networks, Managed detection and response startup Critical Start lands $215M in funding, Thinking About the Future of InfoSec, DuckDuckGo launches Mac app in beta, How I automated my presence in video calls for a week (and nobody knew), Why Do So Many Cybersecurity Products Suck?
Announcements
Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!
Security Weekly listeners, save $100 on your RSA Conference 2022 Full Conference Pass! RSA Conference will be live in San Francisco June 6th-9th, 2022. Security Weekly will be there in full force, delivering real-time, live coverage and interviewing some of the event’s top speakers and sponsors. To register using our discount code, please visit https://securityweekly.com/rsac2022 and use the code 52UCYBER. We hope to see you there!
Hosts
- 1. ACQUISITIONS: U.S. private equity giant Thoma Bravo acquires SailPoint for $6.9 billionActually on the smaller size for Thoma Bravo recently. The PE firm picked up Proofpoint last year for over $12B. Folks have been saying for a while that an increase in large PE deals is a sign of a market correction... and we've got a few of them this week.
- 2. ACQUISITIONS: Datto to be Acquired by Kaseya for $6.2 Billion, with Funding Led by Insight Partners$6.2B acquisition by Kaseya - Datto is a 15-year old disaster recovery software vendor. 5 years ago, it was acquired by Vista and taken public 3 years later.
- 3. ACQUISITIONS: KKR to Acquire Barracuda NetworksThoma Bravo acquired Barracuda 4.5 years ago for $1.6B (at somewhere between 4-5x), taking the company private. Since this is a private sale to KKR (another PE firm), we don't know the deal price, but I wouldn't expect it to be drastically different. Barracuda has grown revenue by maybe 30-40% depending on sources, so somewhere around $2-2.5B wouldn't be a total wash for Thoma?
- 4. ACQUISITIONS: Perforce Software acquires Puppet – TechCrunch
- 5. ACQUISITIONS: Tufin Agrees to $570 Million Acquisition With 30-Day ‘Go Shop’ OptionTufin has about a month to look for other options, but it looks like they're going the PE route as well, for $570M.
- 6. ACQUISITIONS: HelpSystems Acquires Terranova Security to Aid Global Customers in Building Localized Employee Security Awareness Training
- 7. NOT ACQUISITIONS: Synopsys acquires Juniper Networks – 2022-04-04 – Crunchbase Acquisition ProfileSo, at first glance, this looked like an acquisition and someone updated Crunchbase to make it so. I took a closer look and it seems like Juniper Networks and Synopsys are actually creating an entirely new company that they will jointly own: https://www.i-micronews.com/synopsys-juniper-networks-to-form-new-company-to-provide-silicon-photonics-platform/?cn-reloaded=1 It's always a bit confusing when Synopsys is in the news for something, because their main business is in semiconductor/chip design, but they also have a large appsec portfolio.
- 8. FUNDING: Managed detection and response startup Critical Start lands $215M in funding – SiliconANGLE
- 9. FUNDING: Goldman Sachs joins other investors in $88M round for web3 and blockchain security firm CertiK – TechCrunch
- 10. FUNDING: Prelude raises $24M to help organizations harden their cybersecurity defenses – TechCrunch
- 11. FUNDING: Dfns Raises $13.5M to Build Out Password Protection for Crypto Wallets
- 12. FUNDING: HacWare lands $2.3M to expand cybersecurity awareness training – TechCrunch
- 13. FUNDING: Malwation raises an undisclosed seed roundThanks to the Security, Funded newsletter for the hat tip on this one: "a malware simulation platform for testing endpoint protection tools and threat hunting exercises, raised an undisclosed Seed."
- 14. TRENDS: U.S. Says It Secretly Removed Malware Worldwide, Pre-empting Russian CyberattacksWe heard rumors that the FBI had actively fixed some vulnerable Exchange systems a year or so ago, so this doesn't seem totally unprecedented. It's still a bit shocking though. Or is it on-brand for the US? #AmericaWorldPolice
- 15. TRENDS: Obsidian Security Releases Industry-First SaaS Session Hijacking Detection Feature to Protect Today’s Cloud-First OrganizationsWe're in the midst of a CASB 2.0 market trend right now, with more and more startups focusing on security concerns around third party SaaS applications. It appears that Obsidian is going the API, out-of-band route here, which is wise. Few customers back in the CASB 1.0 days seemed comfortable with reverse proxies, forward proxies, or agent-based approaches, all of which could be disruptive and fragile.
- 16. TRENDS: The metaverse could be tech’s next trillion-dollar opportunity: These are the companies making it a reality – CB Insights ResearchThere's a ton of chatter out there about how the Metaverse isn't a real thing, or how it's simply a relabeling of existing companies and technologies. There's some truth to that, but this is the first time I've actually seen someone map everything out and categorize it. How is this relevant to an enterprise security podcast? I believe ALL technology trends are potentially relevant to enterprise security. I'll occasionally include news items that I think are strategically important for security practitioners to start familiarizing themselves with. This way, on the day your CEO or marketing team excitedly suggests getting Oculus Quests for the entire staff to improve productivity, you'll be somewhat prepared ;)
- 17. DEEP THINKS: Thinking About the Future of InfoSec (v2022)
- 18. NEW PRODUCTS: DuckDuckGo launches Mac app in beta – TechCrunch
- 19. HOT TAKES: Defense in Depth: Why Do So Many Cybersecurity Products Suck? – CISO Series
- 20. HOT TAKES: ForAllSecure offering $1K to integrate free fuzzer to open source projectshttps://www.scworld.com/analysis/application-security/forallsecure-offering-1k-to-integrate-free-fuzzer-to-open-source-projects
- 21. SQUIRREL: How I automated my presence in video calls for a week (and nobody knew) – Videohttps://www.cnet.com/videos/how-i-automated-my-presence-in-video-calls-for-a-week-and-nobody-knew/
