About the show

The Three Buddy Problem is a popular Security Conversations podcast that goes beyond industry talking points to discuss what others won’t -- nation-state malware, attribution, cyberwar, ethics, privacy, and the messy realities of securing computers and corporate networks.

Hosted by three veteran security pros -- journalist Ryan Naraine and malware paleontologists Costin Raiu and Juan Andres Guerrero-Saade -- the weekly show attracts a highly engaged audience of security researchers, corporate defenders, CISOs, and policymakers.

Connect with Ryan on Twitter (Open DMs).

Three Buddy Problem on social media

Episodes

  • Andy Greenberg, Senior Writer, Wired

    August 11th, 2020  |  59 mins 47 secs
    journalism, news gathering, story-telling, writing

    Cybersecurity journalist and author Andy Greenberg joins the podcast to talk about his career as a journalist, the ins-and-outs of negotiating a big story with sources, the intricacies of writing a good book, and some of his biggest stories to date.

  •

    Brooke Pearson, Security Awareness, Uber

    June 17th, 2020  |  1 hr 1 min
    diplomacy, security, security awareness

    After a career in diplomacy at the U.S. State Department, Uber's Brooke Pearson headed to Silicon Valley to find a new path in cybersecurity. We chat about her early interest in Russia and international relations, a life-changing chance encounter during an airport layover, using non-traditional skills to find success in tech, and her passion for helping minorities find meaningful careers in security.

  • Tim MalcomVetter, Red Team Lead, Walmart

    May 4th, 2020  |  59 mins 34 secs
    blue team, offense vs defense, red team, simulated hacking attacks

    Tim joins the podcast to talk about red-team/blue team dynamics, the adversarial relationship between the two sides, the mentality of a determined attacker, and why everyone in cybersecurity should give jiu-jitsu a try.

  •

    Matt Suiche, Comae Technologies

    April 17th, 2020  |  42 mins 36 secs
    community building, entrepreneurship, memory forensics

    Hacker-turned-entrepreneur Matt Suiche reminisces about the hacking scene in France, his introduction to memory forensics, building a selling a company, and his passion for spreading security research in developing countries.

  •

    Jaime Blasco, AT&T Cybersecurity

    April 14th, 2020  |  31 mins 7 secs
    leadership, mentorship, threat intel

    AT&T Cybersecurity's Jaime Blasco talks about falling in love with security as a high-school student in Spain, finding a career path in pen-testing and offense, shifting to building defensive technologies and his current passion for exploring the value of machine learning.

  •

    Collin Mulliner, Security Engineer, Cruise

    April 3rd, 2020  |  33 mins 28 secs
    android, ios, mobile, palmos

    Mobile security research pioneer Collin Mulliner talks about the early days of hacking PalmOS devices, the current state of smartphone platforms, his work on securing self driving cars, and why he built and open-sourced a firmware analyzer tool.

  •

    Michael Piacente, Principal, Hitch Partners

    March 30th, 2020  |  33 mins 10 secs
    career track, ciso, job hunting

    Hitch Partners principal Michael Piacente dishes on the cybersecurity job market during an economic crisis, the intricacies of recruiting top-flight security talent, the high rate of turnover among CISOs, and why companies should spend more time on writing better job descriptions.

  •

    Dave Aitel, Founder and CEO, Immunity

    March 23rd, 2020  |  37 mins 43 secs
    leadership, marketing, security, storytelling

    Security industry pioneer Dave Aitel dishes on entrepreneurship, fostering a "one team, one parking lot" culture, how lessons from his time at the NSA still guides his decisions, and his approach to blunt, honest marketing. We also discuss a shared passion for Brazilian Jiu-Jitsu and his work supporting Project Grapple in Miami.

  •

    Sounil Yu, Cyber Defense Matrix

    March 17th, 2020  |  35 mins 48 secs
    cybersecurity, infosec, security framework

    Former Chief Security Scientist at Bank of America, Sounil Yu, explains why he created the Cyber Defense Matrix framework and how organizations are using it to drive visibility and security decisions in multiple places. We discuss securing "cattle vs pets," the next era of security innovation, and the increasing security poverty line that hurts small- and medium-sized businesses.

  •

    Andy Ellis, Chief Security Officer, Akamai Technologies

    March 11th, 2020  |  32 mins 8 secs
    diversity, inclusion, recruiting

    In an industry where 10-15% of staff are women, Akamai's security team is 40% women and growing. Chief security officer Andy Ellis joins the podcast to share lessons on practical things -- some subtle, some major -- that pushed real diversity on Akamai's security team.

  •

    Costin Raiu, Global Director, GReAT, Kaspersky Lab

    September 3rd, 2018  |  51 mins 21 secs
    apt, ics-scada, targeted-attacks, threat-intel

    Veteran malware hunter Costin Raiu talks about writing his own an anti-virus program as a teenager in Romania, his work tracking advanced threat actors globally, and why he assumes his computer is compromised by at least three APT groups.

  •

    Josh Lefkowitz, Founder and CEO, Flashpoint

    August 28th, 2018  |  32 mins 10 secs
    analytics, entrepreneur, internet-scans, threat-intel

    Flashpoint chief executive Josh Lefkowitz talks about how his previous work as a counter-terrorism analyst underscored the value of contextual threat-intelligence, his company's approach to gathering and analyzing data, and his mission to be an extension of a client's security team.