The Fallout and Lessons Learned from the CrowdStrike Fiasco – Shimon Modi, Jeff Pollard, Allie Mellen, Boaz Barzel – ASW #296
Full Audio
View Show IndexSegments
1. The Fallout and Lessons Learned from the CrowdStrike Fiasco – Allie Mellen, Jeff Pollard – ASW #296
This week, Jeff Pollard and Allie Mellen join us to discuss the fallout and lessons learned from the CrowdStrike fiasco. They explore the reasons behind running in the kernel, the challenges of software quality, and the distinction between a security incident and an IT incident. They also touch on the need to reduce the attack surface and the importance of clear definitions in the cybersecurity industry. The conversation explores the need for a product security revolution and the importance of transparency and trust in security vendors.
Guests
Allie Mellen is a Forrester analyst covering security operations, nation-state threats, and the use of automation, machine learning, and AI in security tools. She has been in the technology industry for over a decade in various engineering roles: doing research at MIT, running her own engineering consultancy, and being a hacker before finally becoming a security practitioner. She now advises Fortune 500 CISOs and security teams on their detection and response practice and frequently speaks at industry-leading events and with the press.
Jeff primarily contributes to Forrester’s offerings for security and risk professionals. He leads Forrester’s research on the role of the CISO, specializing in topics related to security strategy, budgets, metrics, business cases, and presenting to the board. His research also includes security services, featuring global coverage of managed security services, professional security services, and security-as-a-service. Jeff also takes an active role in Forrester’s forward-looking research on security innovation, the security market, and security predictions.
Hosts
2. Navigating the Path to Maturity & AI is helping combat cyber threats – Shimon Modi, Boaz Barzel – ASW #296
As development cycles shorten and more responsibilities shift to developers, application security (AppSec) is rapidly evolving. Organizations are increasingly building mature programs that automate and enhance AppSec, moving beyond manual processes. In this discussion, we explore how organizations are adapting their AppSec practices, highlighting the challenges and milestones encountered along the way.
Key topics include the integration of security into the development lifecycle, the impact of emerging technologies, and strategies for fostering a security-first culture. Boaz Barzel shares his experiences and offers practical advice on overcoming common obstacles, ensuring that security measures keep pace with rapid technological advancements. This segment serves as a comprehensive guide for organizations striving to enhance their AppSec practices and continuously optimize their posture.
This segment is sponsored by OX Security. Visit https://securityweekly.com/oxbh to learn more about them!
Given the rapid rise of threat actors utilizing AI for cyber-attacks, security teams need advanced AI capabilities more than ever.
Shimon will discuss how Dataminr’s Pulse for Cyber Risk uses Dataminr’s leading multi-modal AI platform to provide the speed and scale required to build enterprise resilience in the modern cyber threat environment. Dataminr's world-leading AI platform helps companies stay informed - performing trillions of daily computations across billions of public data inputs from more than one million unique public data sources encompassing text, image, video, audio and sensor signals to provide real-time information when you need it most.
https://www.dataminr.com/resources/on-demand-webinar/why-cyber-physical-convergence-really-matters
This segment is sponsored by Dataminr. Visit https://securityweekly.com/dataminrbh to learn more about their world-leading AI platform perform!
Sponsored By
Guests
As the VP of Product Management at Dataminr, Shimon leads the strategy and execution of new cybersecurity products that leverage data science, cloud computing, and analytics to deliver real-time insights and alerts to clients across various industries and sectors. He has over 15 years of experience in building, launching, and scaling B2B SaaS solutions from 0 to $MM/ARR.
Shimon has a strong background in cyber security, threat intelligence, and machine learning, and has published multiple papers and patents in these fields. He has also presented at prestigious conferences and served as a technical expert on international standards organizations.
Boaz Barzel is currently an Technical Evangelist and Director of Enablement at OX Security, a position he has held since April 2023. Prior to this, he led the Sales Enablement team at Cato Networks, where he built the function from scratch and significantly drove revenue growth. From 2011 to 2021, Boaz held various roles at Check Point Software Technologies, advancing from QA Engineer to QA Team Manager, and later becoming a Threat Prevention Solutions Expert and Cyber Security Products Expert/Architect. He began his career as a Combat Officer in the IDF’s Nachal Brigade. Boaz holds dual B.A. degrees in East Asian Studies and Sociology and Anthropology from Tel Aviv University and has numerous professional certifications from LinkedIn and Check Point Software Technologies.
Hosts
