ESW #279 – Mark St. John, Branden Williams, Jeff Man, Len Noe
Full Audio
View Show IndexSegments
1. What’s New With PCI v4.0 – Jeff Man – ESW #279
PCI DSS v4.0 was released on March 31st, 2022 and we've got Jeff Man joining us today to discuss some of the more notable changes that folks should be aware of.
Some great resources from Jeff and his employer on PCI 4.0: https://info.obsglobal.com/pci-4.0-resources
And the PCI Council's own summary of changes between PCI 3.2.1 and 4.0: https://securityweekly.com/wp-content/uploads/2022/06/PCI-DSS-Summary-of-Changes-v321-to-v4_0.pdf
Announcements
We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!
Guest
Cryptanalyst, infosec analyst, pioneering ex-NSA pen tester, PCI specialist and certified security curmudgeon. Currently a Sr. InfoSec Consultant for Online Business Systems.
Hosts
2. “The Road to Data Theft is Paved with Identities” – Len Noe – ESW #279
Extortion, business disruption, and monumental payouts. We’ll cover trends in attacker “innovation” and role of identities and credentials. This segment is sponsored by CyberArk. Visit https://securityweekly.com/cyberark to learn more about them!
Sponsored By
Announcements
Don't miss any of your favorite Security Weekly content! Visit https://securityweekly.com/subscribe to subscribe to any of our podcast feeds and have all new episodes downloaded right to your phone! You can also join our mailing list, Discord server, and follow us on social media & our streaming platforms!
Guest
Len Noe is a Technical Evangelist & White Hat Hacker for CyberArk; Len is an international security speaker has presented in over 31 countries and at multiple major security conferences worldwide. He has been published on multiple Industry Leading information sites.
Prior to 2001 Len was a Black/Grey Hat Hacker and learned most of his skills by practical application. Len has spent 28 years in the areas of web development, system engineering / administration, architecture, coding, and the past 9 years focusing on information security from an attacker’s perspective. He is on the cutting edge of the BioHacking attack vectors, using microchip implants in his body to compromise systems.
He actively participates in the activities of the Information Security Communities in Texas, the Autism Society, and many others.
Hosts
3. Attack Surface Management & Experience in the Age of Security – ESW #279
Over the past year, we’ve seen more buzz develop around attack surface management. In fact, major analyst firms Forrester and Gartner recently released research about this topic. But what exactly is it?
In this segment, join Mark St. John, LookingGlass’s SVP of Product, to learn more about how to define your attack surface, how to manage it, and how it can help your organization improve its cybersecurity. This segment is sponsored by LookingGlass Cyber. Visit https://securityweekly.com/lookingglass to learn more about them!
As the push toward digital transformation continues, every organization is having to choose: Security or experience first? We are entering an era where Security and Identity professionals work together to eliminate tradeoffs and rapidly evolve from technical experts to experience artists. Using solutions that customize, code, and integrate for you while boosting security through MFA, passwordless logins, and risk modernizes your identity experience. This segment is sponsored by Ping. Visit https://securityweekly.com/ping to learn more about them!
Guests
Dr. Branden R. Williams has nearly twenty-five years of experience in business, technology, and cybersecurity as a consultant, strategist, and executive. Dr. Williams has experience working for the largest and smallest institutions as an entrepreneur, practitioner, and advisor. His specialty is navigating complex landscapes—be it compliance, security, technology, or business—and finding innovative solutions that promote growth while reducing risk. He is a practitioner and advisor for operational, engineering, and management of IT and IS tools. He’s held several executive roles in the industry, and served on both the PCICo and EMVCo boards. He is an author of several books on PCI Compliance, and his blog and other publications can be found at his website (brandenwilliams.com).
Mark St. John, Senior Vice President of Product for LookingGlass Cyber Solutions, brings over 20 years of security operations expertise and incident response team leadership to the company. He works closely with government, financial, and technology clients to map their attack surface, proactively detect security threats and defend their enterprise.
Prior to LookingGlass, Mark served as the COO of AlphaWave, which was acquired by LookingGlass in 2021. He has also led threat Intelligence and incident response teams at technology-forward organizations including Appgate and Verizon Business. Mark is widely recognized for his cyber security acumen and ability to provide customers with valuable, relevant, and relatable information they can act upon.
Hosts
