The Tripwire Cybersecurity Podcast
33 episodes - English - Latest episode: over 2 years ago -Tripwire’s cybersecurity podcast features 20-minute conversations with the people who protect people from cyber threats. Hosted by Tripwire’s VP of Product Management and Strategy, Tim Erlin, each episode brings on a new guest to explore the evolving threat landscape, technology trends, and cybersecurity best practices.
Homepage Google Podcasts Overcast Castro Pocket Casts RSS feed
Episodes
Why Privacy Matters in Cybersecurity
April 08, 2022 12:51 - 26 minutes - 24.1 MBIn this episode, Jarell Oshodi, Deputy Chief Privacy Officer for the Centers for Disease Control and Prevention, discusses the role of privacy in the cybersecurity field. As an attorney, she brings a unique perspective to the conversation on how we can work better with our privacy officers.
Human Factors: Why Technology Alone Will Never Equal Cyber Secure
March 11, 2022 16:32 - 27 minutes - 25 MBIn this episode, Kai Roer, Chief Research Officer at KnowBe4, explains how human factors will always play a role in how secure our technology is.
The Crossroads of Disinformation and Nation State Attackers
February 14, 2022 15:03 - 29 minutes - 26.7 MBIn this episode, Ian Thornton-Trump, CISO at Cyjax, digests nation state's disinformation campaigns and the cybersecurity landscape. He also discusses the role disinformation on social media plays in cybersecurity.
Behind the Community Defense Model with CIS
January 08, 2022 00:23 - 28 minutes - 25.7 MBIn this episode, Curt Dukes, Executive Vice President and General Manager of the Center for Internet Security explains the need for their Community Defense Model. He also details their process for designing their models as a non-profit organization.
9-1-1 There's Been A Data Breach
December 03, 2021 21:22 - 30 minutes - 27.8 MBIn this episode, Lisa Forte, Partner at Red Goad Cybersecurity discusses what happens when organizations go unprepared for inevitable cyber breach. She explains how practicing your breach plan is the best line of defense in preparing your strategy.
What Makes Us Click? Cyberscams and The Brain with Martina Dove, PhD
November 12, 2021 20:08 - 28 minutes - 26 MBIn this episode, Tripwire's Senior UX Researcher, Martina Dove, uses her psychology research to explain to us how the brain operates when presented with a cyberscam. She also discusses her model for identifying fraud susceptibility and what we can do to prevent falling for these scams. Check out Martina's book here: https://www.amazon.com/Psychology-Fraud-Persuasion-Scam-Techniques/dp/0367859564 Check out her blog articles on State of Security: https://www.tripwire.com/state-of-se...
No Integrity, No Trust. The Foundation of Zero Trust Architecture
October 22, 2021 15:58 - 26 minutes - 24.5 MBIn the episode, Tripwire's Maurice Uenuma, discusses the role of integrity when it comes to Zero Trust Architecture. With results from our latest research survey on the Executive Order and Zero Trust, he and Tim make the case that Zero Trust cannot be maintained without proper Integrity controls at its foundation.
Delivering Electrons, Generating Data Lakes, and the Security & Privacy Considerations of Running a Modern Industrial Organization
September 29, 2021 16:08 - 29 minutes - 27.2 MBIn this episode, Patrick Miller, Founder of Ampere Industrial Security, discusses what utilities and other industrial companies need to consider when it comes to the goldmines of data they're collecting from their machines and customers, and why security and privacy needs to be incorporated in these operations by design.
Clearing Up Elements of Cloud Security
September 10, 2021 17:35 - 28 minutes - 26.3 MBIn this episode, Tripwire's Brent Holder and Raymond Kirk discuss what cloud security means today. Breaking down the different aspects of cloud security controls, they cover the technology, security implications and risks with cloud use.
Are We Past Peak Ransomware?
August 13, 2021 17:42 - 26 minutes - 24.2 MBIn this episode, Greg Wilson, CISO of Docupace, discussed the rise of ransomware during uncertain times (i.e. COVID pandemic), whether its here to stay, and how to prevent damage with security hygiene.
Protecting People, Across Professional and Personal Life
July 23, 2021 16:31 - 28 minutes - 25.6 MBJihana Barrett, CEO of Cybrsuite unpacks the security needs from not just from an enterprise perspective but for day-to-day life. She also tells us about how her organization, Tech Sorority, teaches aspiring women to break stereotypes in tech.
The False Identity Frenzy and the Need for Authentication
July 09, 2021 13:00 - 26 minutes - 24.3 MBEmil Sayegh, president and CEO of Ntirety, unpacks of the issue of inauthentic identities opening doors to untraceable, fake social accounts and the impact that has on society. Emil is a cloud visionary and known as one of the "fathers of OpenStack."
Anticipate, Respond & Adapt: Organizational Resilience
June 25, 2021 16:36 - 32 minutes - 29.5 MBGary Hibberd, Professor of Communicating Cyber for Cyberfort and former head of business continuity and information security at various companies, teaches the importance of building resilience in your organization not just with technology, but with people and processes.
Why CISOs Need To Speak The Language Of Business
June 11, 2021 16:45 - 26 minutes - 24.5 MBDr. Eric Cole, former CISO and founder of Secure Anchor Consulting, explains how learning to communicate with business language can create a more compelling case for executive buy-in.
Where Should I Spend My Time? Looking at Verizon DBIR & Executive Order
May 28, 2021 16:23 - 30 minutes - 27.9 MBAnthony Israel-Davis joins the show to discuss what you can do with the DBIR as a practitioner and his perspective on the proposed Cybersecurity Safety Review Board.
Industrial Security: Not Just IT and OT, but Old OT and New OT
April 23, 2021 13:19 - 27 minutes - 25.2 MBLane Thames, PhD and principal security researcher at Tripwire explains the challenges you might not have considered in IT/OT convergence
Reverse Engineering: A Security Researcher's Toolkit
March 12, 2021 19:29 - 23 minutes - 21.5 MBCraig Young, Principal Security Researcher at Tripwire, unpacks the modern security researcher's toolkit to reverse engineer complex designs.
Industrial Cybersecurity and the Florida Water Supply Attack with Dale Peterson
February 19, 2021 17:06 - 27 minutes - 25.1 MBThrough the lens of the Florida water supply hack, Dale Peterson teaches how events like these remind us to take the necessary steps to maintain our cybersecurity. Founder and chair of S4 Events, Dale has been helping security professionals effectively and efficiently manage risk to their critical assets for over 15 years.
The Right to Privacy and Safety Implications with Zoe Rose
January 25, 2021 17:49 - 30 minutes - 27.8 MBZoe Rose is a cybersecurity consultant and recognized as one of the 50 most influential women in cybersecurity. On this episode Zoe explains why it is important for the average person to be aware of privacy and shares tips for staying safe. Content warning: mentions of domestic abuse and violence
The Future of Infosec: Teaching a College Cybersecurity Course with Tyler Reguly
December 11, 2020 17:06 - 25 minutes - 23.2 MBAside from managing Tripwire's security research team, Tyler Reguly also teaches a college course on cybersecurity. On this episode, Tyler shares his experience teaching the next generation of cybersecurity practitioners who are about to graduate and enter the workforce.
Advocating for Hackers with Chloe Messdaghi
November 20, 2020 18:45 - 34 minutes - 31.2 MBChloe Messdaghi, VP of Strategy at Point3, advocate and activist joins the show to explain common misconceptions about the hacking community and how we can do better to combat those stigmas. She also unpacks the diversity challenges specifically in the infosec industry.
Face off: Debating Facial Recognition with Thom Langford & Paul Edon
October 09, 2020 17:37 - 37 minutes - 34.7 MBRecovering CISO and Director of (TL)2 Security Thom Langford joins the show to debate Tripwire’s Paul Edon on facial recognition vs. security.
Cloud Misconfigurations: Simple Mistakes, Big Consequences
September 04, 2020 17:07 - 26 minutes - 23.9 MBTripwire’s Brent Holder and Stephen Wood discuss recent study findings that provide a snapshot of what organizations are doing (and not doing) to secure their cloud.
Sharpening Your Defenses With MITRE ATT&CK’s New Sub-Techniques
July 31, 2020 23:27 - 23 minutes - 21.3 MBThe MITRE ATT&CK framework now includes sub-techniques that get more granular about specific adversary behaviors. Jen Burns, a lead engineer at MITRE and the cloud lead for ATT&CK, joins the show to discuss these updates and how the security community can make the most of them.
Industrial Cybersecurity: From HVAC Systems to Conveyor Belts
June 15, 2020 16:23 - 25 minutes - 23.5 MBTripwire's GM of Industrial Cybersecurity Kristen Poulos discusses the risks that come with the increasing number of connected devices operating on the plant floor and throughout facilities. She shares how IT can partner with OT to protect the safety, productivity, and quality of operations.
Industrial Cybersecurity: From HVAC Systems to Conveyor Belts
June 12, 2020 17:26 - 25 minutes - 23.5 MBTripwire's GM of Industrial Cybersecurity Kristen Poulos discusses the risks that come with the increasing number of connected devices operating on the plant floor and throughout facilities. She shares how IT can partner with OT to protect the safety, productivity, and quality of operations.
The Perimeter Really Is Gone: CIS Controls and COVID-19 with Tony Sager
May 15, 2020 22:02 - 33 minutes - 30.3 MBTony Sager, Senior Vice President and Chief Evangelist at CIS (Center for Internet Security) joins us to discuss the best approaches to the changing security landscape in the wake of COVID-19. Tony is a lifelong defender, with more than 44 years of experience. He spent most of his career at the NSA and now leads the development of the CIS Controls, a worldwide consensus project to find and support technical best practices in cybersecurity.
Tripwire Research: Taking Over IoT Devices with MQTT
May 01, 2020 21:37 - 22 minutes - 20.2 MBTripwire Principal Security Researcher Craig Young discusses vulnerabilities in MQTT, a lightweight messaging protocol increasingly used with the rise of IoT. His research found improper implementation and use of MQTT can put everything from locks and alarm systems to critical infrastructure at risk.
Staying Up to Speed on Your Top Security Priorities with CISO Mark Houpt
April 10, 2020 20:50 - 25 minutes - 23.5 MBMark Houpt has to stay on top of a vast range of compliance and security issues as the CISO at managed services and co-location data service provider Databank. He shares how he works with all organizations of all sorts to help them address a myriad of emerging regulations, standards and security issues across all industries and sectors.
Navigating the Widening Skills Gap
March 19, 2020 20:53 - 26 minutes - 24.2 MBIt’s still getting harder and harder for organizations to staff their security teams. Anthony Israel-Davis and Onyeka Jones discuss the strain organizations are feeling and how they can find some relief.
Thinking Like an Attacker with Travis Smith
March 02, 2020 18:02 - 19 minutes - 17.9 MBPrincipal Security Researcher Travis Smith explains MITRE ATT&CK, a knowledge base of adversary tactics and techniques based on real-world observations. Travis is a contributor to the ATT&CK framework.
The Human Element: Cybersecurity Awareness with Graham Cluley
February 07, 2020 22:07 - 25 minutes - 23.7 MBOriginator of the phrase “The cloud is just someone else’s computer,” Graham Cluley stops by the Tripwire podcast to discuss the importance of keeping cybersecurity awareness fresh in the minds of the non-security community.
What “Attack Surface” Means in 2020
January 10, 2020 17:06 - 22 minutes - 21.1 MBWhat does “attack surface” even mean today, and what will it look like tomorrow? Tripwire CTO David Meltzer breaks down the inside baseball terminology around cyber threats and what the modern attack surface looks like, how we got here, and where security professionals need to focus their attention.