Paul's Security WeeklySubscribe
Vulnerability Management, Critical Infrastructure Security, Patch/Configuration Management

The Known Exploited Vulnerability catalogue, aka the KEV – Tod Beardsley – PSW #843

Gain insights into the CISA KEV straight from one of the folks at CISA, Tod Beardsley, in this episode of Below the Surface. Learn how KEV was created, where the data comes from, and how you should use it in your environment.

This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them!

Sponsored By

Eclypsium
Full episode and show notes

Guest

Vulnerability Analysis and Operations Team Lead at Cybersecurity & Infrastructure Security Agency (CISA)

Tod Beardsley is employed at CISA, the Cybersecurity and Infrastructure Security Agency, part of the US government. He’s also a founder and CNA point of contact for AHA!. He spends most of his time involved in vulnerability research and coordinated vulnerability disclosure (CVD). He has over 30 years of hands-on security experience, stretching from in-band telephony switching to modern IoT implementations. He has held IT ops, security, software engineering, and management positions in large organizations such as Rapid7, 3Com, Dell, and Westinghouse, as both an offensive and defensive practitioner. Tod is a CVE Board member has authored several research papers, and hosted the Security Nation podcast. He is also a Travis County Election Judge in Texas, and is an internationally-tolerated horror fiction expert.

Hosts

Principal Security Researcher at Eclypsium
Executive Director at Guardedrisk

Related