Cybersecurity’s Love Affair with Distractions – Fred Wilmot – ESW #370
Remember 20 years ago? When we were certain SIEMs would grant our cybersecurity teams superpowers? Or 10 years ago, when we were sure that NGAV would put an end to malware as we knew it? Or 15 years ago, when we were sure that application control would put an end to malware as we knew it? Or 18 years ago, when NAC would put an end to unauthorized network access?
Why do we keep thinking that the next vendor offering is going to solve all our problems? In this interview, we talk with Fred Wilmot about the hard work of building effective processes and resilient architectures that will actually yield reductions in risk and detection/response capabilities that actually work.
We'll discuss shifts in thinking that can move us past the latest distractions, and keep security teams focused on work that moves the needle. Fred may also mention his past transgressions against the industry and what he's doing to "wipe out the red from his ledger".
Announcements
We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!
Guest
Fred is the CEO and co-founder at Detecteam. Prior to Detecteam, Fred was head of product and engineering at Interpres, building a patented the first-CTEM platform. He was the first CISO at identity provider JumpCloud and at Devo. As head of Security Products and Engineering at Devo, Fred released a Security Operations platform generating 24MM in its first year shipping. As CEO/CTO at PacketSled, built a DFIR product capable of finding adversaries on the network in 48 hours. Fred was the founder of the Global Security Practice at Splunk deeply tied to Enterprise security product and content at its birth. He also co-founded the Red Team Offensive Village at DEF CON, and researches threats and detections in OT technology in support of industry safety improvement.
Hosts
