|
SEARCH PODCAST CATEGORIES
BROWSE PODCASTS ALPHABETICALLY
VIEW NEWEST EPISODES
LEARN ABOUT PODCAST MARKETING
PODCAST GLOSSARY
|
|
| |
|
Special interview with newly appointed CIO of Heartland Payment Systems - Episode 35
|
|
|
eDiscovery, Data Integrity and the Path to Trusted Time Stamping - Episode 34
In this episode I speak with Paul Doyle, Founder & CEO at ProofSpace and Co-Inventor of the company's Transiant Key Technology.
eDiscovery is being talked about more and more, but what does this have to do with infosec and the security professional? Data security and the security professional are indispensable elements in any organizations litigation preparedness or litigation team. Paul is a thought leader in the joint fields of information security and the law about the established importance of eDiscovery and the emerging concern about data integrity, authenticity and time as a trust anchor through Trusted Time Stamping. Paul Doyle has help write the first American National Standard for Trusted Time Stamping, helped establish the Information Assurance Consortium, co-Chairs the AIIM Evidentiary Support - Legal Standards Committee and is an active member and contributing author to work at both the Sedona Conference and the American Bar Association.
Read more about
eDiscovery, Data Integrity and the Path to Trusted Time Stamping - Episode 34
.
|
|
|
|
White Listing and End-to-End Trust - Episode 33
|
|
|
Non-Vulnerability Based Attacks - Episode 32
I was at the 2009 RSA Conference at the end of April for the whole week and was able to listen to quite a few interesting presentations, walk what I believe is the industry's largest trade show floor and indeed talk to a number of security professionals for my show.
Here is a discussion about attacks that don't exploit vulneratilities in applications but permit misuse or applications only to be detected by behavioural analysis - very interesting conversation. Called non-vulnerability based attacks for obvious reasons, Avi Chesla, Vice President with Radware explains the phenomenon.
Read more about
Non-Vulnerability Based Attacks - Episode 32
.
|
|
|
|
Botnets, Malicious Code and Latest Exploit Trends - Episode 31
|
|
|
Electric Sector SCADA Security Issues and Progress - Episode 30
I was at the 2009 RSA Conference at the end of April for the whole week and was able to listen to quite a few interesting presentations, walk what I believe is the industry's largest trade show floor and indeed talk to a number of security professionals for my show.
In this instance I was able to find a quiet spot for an interesting conversation with Walter Sikora, Vice President, Security Solutions with Industrial Defender.
Walter has some interesting experience working with some of the 1100 or so facilities that have signed on to meet the NERC CIP regulation which becomes enforcable starting in July. We are all in hopes this regulation and standard is adhered to and helps strengthen this piece of the nations critical infrastructure.
Read more about
Electric Sector SCADA Security Issues and Progress - Episode 30
.
|
|
|
Public sector and first responder credentialing and security - Episode 29
I spent a number of days at the FOSE / GovSec show in DC put on by the 1105 Media Group and had some good conversations with a number of folks over there. The show itself like all others has clearly shrunk in size but there seemed to still be quite a bit of energy on the show floor and in the sessions.
Secure credentialing came to the forefront of all of our minds imediately after the horror of 9/11, although subsequent disasters not the least of which was hurricane Katrina kept the focus on this issue. Keeping track of who we admit to secure locations and sites becomes as important as knowing who is currently at certain secure locations and disaster sites.
There are myriad Federal regulations and standards in this space but at the heart of them all is that 'c' word...convergence. Credentialing is a classic example of the connection between physical and logical security. Now who in the agency or enterprise controls this hardware and technology, well that is a bigger debate.
Here I speak with Chris Broderick, the CEO of CoreStreet and an individual who has a great deal of experience and knowledge in this space.
Read more about
Public sector and first responder credentialing and security - Episode 29
.
|
|
|
A familiar device with a new twist - printer security - Episode 28
I spent a number of days at the FOSE / GovSec show in DC put on by the 1105 Media Group and had some good conversations with a number of folks over there. The show itself like all others has clearly shrunk in size but there seemed to still be quite a bit of energy on the show floor and in the sessions.
Over the years I have talked to many sharp industry luminaries about new technologies and the security issues inherent in implementing them that we need to be aware of. A classic one related to this discussion was that of VoIP and how it made IT and IS people come to learn how a phone system can have a direct, and if not properly configured and secured, devastating impact on an organizations network.
Over the last couple of years printers have moved in to the same catagory. Printers and imaging devices (copiers, etc) now are not only connected to our networks but also have a ton of storage on board, raising security, compliance and general internal ownership issues - who owns that piece of the enterprise now, is it still facilities, or is it IT or now how do the IS people fit in?
To help answer some of these questions I was pleased to be able to sit down with Michael R Howard, WW Business Development Manager for Security Solutions in the Imaging and Printing side of HP. Long title I realize, but smart guy, and bottom line, Michael is the guy in the middle of the business of securing printers.
Read more about
A familiar device with a new twist - printer security - Episode 28
.
|
|
|
Secure machine to machine wireless commmunications - Episode 27
I spent a number of days at the FOSE / GovSec show in DC put on by the 1105 Media Group and had some good conversations with a number of folks over there. The show itself like all others has clearly shrunk in size but there seemed to still be quite a bit of energy on the show floor and in the sessions.
The first conversation I decided to put on the show was centered around machine to machine wireless communication. This was of particular interest to me given some of the vast changes and updates to smart meter technologies in the electric sector, as well as a major government and private sector move to minimize costs associated with doing business - which includes for instance economizing car and truck fleets among other things. GPS tracking was a key part of this discussion.
To that end, I was pleased to discuss this with Tony Tarsia, Director, Public Sector - KORE Telematics Inc.
Read more about
Secure machine to machine wireless commmunications - Episode 27
.
|
|
|
Defense in Dimension - a new way of viewing global threat data - Episode 26
In this episode we are discussing global threat analysis and discovery along with the importance of a reputational based approach.
My discussion is with Adam Mikrut, CEO and Founder of DigitalStakeout. Adam has a unique ability to be able to be behind the technology itself but also understand the business trends in the private and public sector that lead to the need for the kind of threat visibility we discuss. Adam is a trusted source for such information to many both in government and industry.
Read more about
Defense in Dimension - a new way of viewing global threat data - Episode 26
.
|
|
|
|
Interview with Joe Pistone, Howard Schmidt and Carlos Solari - Episode 25
|
|
|
|
Interview with Paul Fisher, SC Magazine - Episode 24
|
|
|
|
Interview with Wyatt Starnes - Episode 23
|
|
|
Interviews with Phil Skeffington, Mott MacDonald, Alan Broadway, The University of Greenwich and Chris Corcoran, Northwest Police - Episode 22
I was in London at an Alcatel-Lucent sponsored event called Security Keynotes 2008, which is where my next 4-5 podcasts are coming from. Speakers at this event included:
- Joe Pistone (aka Donnie Brasco)
- Howard Schmidt, President, ISF and Former White House Cybersecurity Advisor
- Wyatt Starnes, founder and CEO, SignaCert
- Carlos Solari, Bell Labs VP of Security and Former White House CIO
In this interview I spoke with Phil Skeffington, Head of ICT Services, Mott MacDonald; Alan Broadway, Head of ICT, The University of Greenwich; and Chris Corcoran, Detective Chief Superintendent, Northwest Police
Read more about
Interviews with Phil Skeffington, Mott MacDonald, Alan Broadway, The University of Greenwich and Chris Corcoran, Northwest Police - Episode 22
.
|
|
|
Interviews with Mark Hatton, SPHINX, and Fredrik Naslund, AppGate - Episode 21
I was in London at an Alcatel-Lucent sponsored event called Security Keynotes 2008, which is where my next 4-5 podcasts are coming from. Speakers at this event included:
- Joe Pistone (aka Donnie Brasco)
- Howard Schmidt, President, ISF and Former White House Cybersecurity Advisor
- Wyatt Starnes, founder and CEO, SignaCert
- Carlos Solari, Bell Labs VP of Security and Former White House CIO
In this interview I spoke with Mark Hatton, Managing Director, SPHINX and Fredrik Naslund, VP Information Technology, AppGate Network Security primarily about what they felt were some of the key things that are of concern to CIO's today on the topic of security.
Read more about
Interviews with Mark Hatton, SPHINX, and Fredrik Naslund, AppGate - Episode 21
.
|
|
|
|
Interview with Dor Skuler & Eric Lundbohm - Episode 20
|
|
|
|
Interview with Philippe Courtot - Episode 019
|
|
|
|
Steve Duncan & Ron Meyran from the RSA 2008 Trade Show Floor - Episode 018
|
|
|
|
Phyllis Schneck on Cloud Computing and reputation intelligence - Episode 017
|
|
|
|
Critical Infrastructure Protection (CIP) - Episode 015
|
|
|
|
|
|
|