David Weston, Principal Security Engineering Manager, Microsoft

June 24th, 2018  |  46 mins 23 secs

exploits, microsoft, mitigations, windows

David Weston manages the Windows Device and Offensive Security Research teams at Microsoft. He joins the podcast to talk about how proactive red-team exercises push major mitigations to Microsoft's products and the current state of security in the Windows ecosystem.

Rich Seiersen, SVP and CISO, Lending Club

June 18th, 2018  |  37 mins 28 secs

careers, cisos, decisionmaking

SVP and Chief Information Security Officer (CISO) at Lending Club, Rich Seiersen, digs into the nuts and bolts of defending a financial services firm, his approach to finding quality cybersecurity talent, and the importance of confronting security with data. (Recorded during fireside chat at SecurityWeek's CISO Forum)

Andrew Morris, Founder and CEO, GreyNoise Intelligence

May 31st, 2018  |  37 mins 19 secs

analytics, entrepreneur, internet-scans, threat-intel

Founder and CEO of GreyNoise Intelligence Andrew Morris talks about his anti threat-intelligence company, the ways SOCs are using it to filter through scanning noise and the trials and tribulations of bootstrapping a start-up.

Yoav Leitersdorf, Managing Partner , YL Ventures

May 21st, 2018  |  26 mins 7 secs

Managing Partner at YL Ventures, Yoav Leitersdorf, explains the surge in cybersecurity investments in Israel, the priorities for his $75 million fund, and which sectors are ripe for the picking.

Juan Andrés Guerrero-Saade, Principal Security Researcher, Recorded Future

May 14th, 2018  |  1 hr 1 min

apt, threat-intel

Principal Security Researcher at Recorded Futures Insikt Group, Juan Andrés Guerrero-Saade, explains the nuances of good threat intelligence, sheds light on nation-state hacker activity and warns that adversaries don't have to be sophisticated to launch successful attacks.

Robert M. Lee, Chief Executive Officer, Dragos Inc.

May 10th, 2018  |  54 mins 44 secs

apt, ics-scada, targeted-attacks, threat-intel

The founder and CEO of Dragos, Inc. Robert M. Lee cuts through the hype around threats to critical infrastructure and offers a matter-of-fact take on active defense, “hacking-back,” and nation-state espionage operations.

Brandon Dixon, Vice President, RiskIQ

May 9th, 2018  |  1 hr 3 mins

VP of Product at RiskIQ Brandon Dixon delves into nation-state cyber operations, explains why it’s dangerous to underestimate North Korea’s capabilities, and his passion for roasting the perfect coffee bean.

Ryan Huber, Security Architect, Slack

May 8th, 2018  |  1 hr 4 mins

Slack security architect Ryan Huber talks about the gargantuan task of defending an organization with 8 million daily active users, burnout, and fatigue in security teams and a range of issues around bug bounties and penetration testing.

Ivan Arce, CTO at Quarkslab

May 4th, 2018  |  1 hr 15 secs

Chief Technology Officer at Quarkslab Ivan Arce tells stories about the birth of penetration testing platforms, the concentration of hacking talent in Argentina, and his focus on security problems in the Android ecosystem.

Sinan Eren, Founder and CEO, Fyde

May 2nd, 2018  |  44 mins 18 secs

Founder and CEO of Fyde (@FydeApp) Sinan Eren discusses the “iOS-ification” of platforms and the security ramifications, the dangers of running AV software, the iOS vs. Android security argument, and his new venture to address mobile phishing attacks.

Stephen Ridley, Founder and CTO, Senrio

April 30th, 2018  |  49 mins 58 secs

Founder and CTO at Senrio Stephen Ridley talks about the abysmal state of IoT security, his recent exploitation of an IP camera, and router to exfiltrate corporate data and his experience as a minority in the security industry.

Mischel Kwon, Founder and CEO, MKA Cyber

April 26th, 2018  |  39 mins 2 secs

analytics, entrepreneur, internet-scans, threat-intel

Founder and CEO at MKACyber Mischel Kwon joins the podcast to address the state of the SOC (Security Operations Center) and how businesses should deal with issues around excessive alerts, incident response times, and outdated metrics.