To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!

Bhawna Singh Podcasts

Bhawna Singh public [search 0]
Related Topics
Podcasting Education Books Arts Tech Software Development Hacking Security Tech News News Discussions Paul Asadoorian Security Weekly News Security Weekly Productions Codeium
More
Download the App!
Get it on App Store Get it on Google Play
show episodes
 
Artwork

1
Enterprise Security Weekly (Audio)

Security Weekly Productions

Unsubscribe
Unsubscribe
 Weekly
 
News, analysis, and insights into enterprise security. We put security vendors under the microscope, and explore the latest trends that can help defenders succeed. Hosted by Adrian Sanabria. Co hosts: Katie Teitler-Santullo, Darwin Salazar.
  continue reading
 
Artwork

4
Security Weekly Podcast Network (Audio)

Security Weekly Productions

Unsubscribe
Unsubscribe
 Daily
 
Welcome to the Security Weekly Podcast Network, your all-in-one source for the latest in cybersecurity! This feed features a diverse lineup of shows, including Application Security Weekly, Business Security Weekly, Paul's Security Weekly, Enterprise Security Weekly, and Security Weekly News. Whether you're a cybersecurity professional, business leader, or tech enthusiast, we cover all angles of the cybersecurity landscape. Tune in for in-depth panel discussions, expert guest interviews, and ...
  continue reading
 
Loading …
show series
 
Artwork

1
Transforming the Defender's Dilemma into the Defender's Advantage - Charlotte Wylie, Bhawna Singh, Lenny Zeltser - ESW #381 1:50:15

Play Pause
1:50:15
Play Pause
  Play later
  Play later
  Lists
  Liked
1:50:15
 
Ever heard someone say, "the attacker only has to be right once, but the defender has to get it right every time"? On this episode, we'll dispel that myth. There is some truth to the saying, but only with regards to initial access to the target's environment. Once on the inside, the attacker's advantage flips to the defender. Call it the 'Home Alon…
  continue reading
 
Artwork

1
AI and the Autonomous SOC - Separating Hype from Reality - Justin Beals, Itai Tevet - ESW #384 1:56:05

Play Pause
1:56:05
Play Pause
  Play later
  Play later
  Lists
  Liked
1:56:05
 
There have been a lot of bold claims about how generative AI and machine learning will transform the SOC. Ironically, the SOC was (arguably) invented only because security products failed to make good on bold claims. The cybersecurity market is full of products that exist only to solve the problems created by other security products (Security Analy…
  continue reading
 
Artwork

1
AI and the Autonomous SOC - Separating Hype from Reality - Justin Beals, Itai Tevet - ESW #384 1:56:05

Play Pause
1:56:05
Play Pause
  Play later
  Play later
  Lists
  Liked
1:56:05
 
There have been a lot of bold claims about how generative AI and machine learning will transform the SOC. Ironically, the SOC was (arguably) invented only because security products failed to make good on bold claims. The cybersecurity market is full of products that exist only to solve the problems created by other security products (Security Analy…
  continue reading
 
Artwork

1
No CVE and No Accountability - Ed Skoudis - PSW #851 2:43:50

Play Pause
2:43:50
Play Pause
  Play later
  Play later
  Lists
  Liked
2:43:50
 
Alright, so we dove deep into some pretty wild stuff this week. We started off talking about zip files inside zip files. This is a variation of old-school zip file tricks, and the latest method described here is still causing headaches for antivirus software. Then we geeked out about infrared signals and the Flipper Zero, which brought back memorie…
  continue reading
 
Artwork

1
Modernizing AppSec - Melinda Marks - ASW #307 1:09:29

Play Pause
1:09:29
Play Pause
  Play later
  Play later
  Lists
  Liked
1:09:29
 
In this week's interview, Melinda Marks' joins us to discuss her latest research. Her recent report Modernizing Application Security to Scale for Cloud-Native Development delves into many aspects and trends affecting AppSec as it matures, particularly in cloud-first organizations. We also discuss the fuzzy line between "cloud-native" AppSec and eve…
  continue reading
 
Artwork

1
How to Combat the CISO Mental Health Crisis - Ram Movva - BSW #372 58:23

Play Pause
58:23
Play Pause
  Play later
  Play later
  Lists
  Liked
58:23
 
Stress in cybersecurity is an industrywide problem. The CISO role is one of the most stressful in any organization. And the stress levels are at an all time high, leading to a mental health crisis. How should CISOs cope with this stress and improve their mental health? Ram Movva, CEO & Founder at Securin, joins Business Security Weekly to discuss t…
  continue reading
 
Artwork

1
Cybersecurity Budgets: the Journey from Reactive to Proactive - Todd Thiemann, Theresa Lanowitz - ESW #383 2:01:03

Play Pause
2:01:03
Play Pause
  Play later
  Play later
  Lists
  Liked
2:01:03
 
CISOs struggle more with reactive budgets than CIOs or CTOs. It's not that part of the CISO's budget shouldn't be reactive, it's certainly necessary to an extent. The problem is when proactive measures suffer as a result. In this interview, we'll discuss some of the causes behind this and some strategies for breaking out of this loop. This segment …
  continue reading
 
Artwork

1
Cybersecurity Budgets: the Journey from Reactive to Proactive - Todd Thiemann, Theresa Lanowitz - ESW #383 2:01:03

Play Pause
2:01:03
Play Pause
  Play later
  Play later
  Lists
  Liked
2:01:03
 
CISOs struggle more with reactive budgets than CIOs or CTOs. It's not that part of the CISO's budget shouldn't be reactive, it's certainly necessary to an extent. The problem is when proactive measures suffer as a result. In this interview, we'll discuss some of the causes behind this and some strategies for breaking out of this loop. This segment …
  continue reading
 
Artwork

1
Cybersecurity For Schools - Kayne McGladrey - PSW #850 2:47:43

Play Pause
2:47:43
Play Pause
  Play later
  Play later
  Lists
  Liked
2:47:43
 
We chatted with Kayne about education systems security, funding for cyber tools and services, and what the future of education might look like to fill more cyber roles. In the news: Pacific Rim, Linux on Windows for attackers, one of the worst cases of a former employee's retaliation, Zery-Day FOMO, we predicted that, hacking for fun, working hard …
  continue reading
 
Artwork

1
Bug bounties, vulnerability disclosure, PTaaS, fractional pentesting - Grant McCracken - ASW #306 1:05:35

Play Pause
1:05:35
Play Pause
  Play later
  Play later
  Lists
  Liked
1:05:35
 
After spending a decade working for appsec vendors, Grant McKracken wanted to give something back. He saw a gap in the market for free or low-cost services for smaller organizations that have real appsec needs, but not a lot of means to pay for it. He founded DarkHorse, who offers VDPs and bug bounties to organizations of all sizes for free, or for…
  continue reading
 
Artwork

1
Planning A Merger Or Acquisition? Ask These Five Cyber Questions First - Craig Davies - BSW #371 1:05:15

Play Pause
1:05:15
Play Pause
  Play later
  Play later
  Lists
  Liked
1:05:15
 
Merger and acquisition (M&A) activity in finally starting to pick up. Although the allure of financial gains and market expansion drives these deals, the digital age demands a rigorous assessment of cybersecurity risks accompanying such mergers. Unanticipated cyber issues, like dormant malware or inconsistent access controls, can transform an ideal…
  continue reading
 
Artwork

1
Recall, Russia, Win 10, Phish n Ships, Midnight Blizzard, Rob Allen, and More... - Rob Allen - SWN #427 36:50

Play Pause
36:50
Play Pause
  Play later
  Play later
  Lists
  Liked
36:50
 
Recall III: the Re-Re-Recalling, Russia, Win 10, Phish n Ships, Midnight Blizzard, Emerald Whale, Rob Allen, and More, on this edition of the Security Weekly News. Segment Resources: https://www.bleepingcomputer.com/news/security/unitedhealth-says-data-of-100-million-stolen-in-change-healthcare-breach/ This segment is sponsored by ThreatLocker. Vis…
  continue reading
 
Artwork

1
What if securing buildings was as easy as your smartphone? - Damon McDougald, Blaine Frederick, Punit Minocha - ESW #382 2:06:19

Play Pause
2:06:19
Play Pause
  Play later
  Play later
  Lists
  Liked
2:06:19
 
The future is here! Imagine if you could get into the office, a datacenter, or even an apartment building as easily as you unlock your smartphone. Alcatraz AI is doing exactly that with technology that works similarly to how smartphones unlock using your face. It works in the dark, if you shave off your beard, and so quickly you don't even need to …
  continue reading
 
Artwork

1
What if securing buildings was as easy as your smartphone? - Damon McDougald, Blaine Frederick, Punit Minocha - ESW #382 2:06:19

Play Pause
2:06:19
Play Pause
  Play later
  Play later
  Lists
  Liked
2:06:19
 
The future is here! Imagine if you could get into the office, a datacenter, or even an apartment building as easily as you unlock your smartphone. Alcatraz AI is doing exactly that with technology that works similarly to how smartphones unlock using your face. It works in the dark, if you shave off your beard, and so quickly you don't even need to …
  continue reading
 
Artwork

1
Shadow IT and Security Debt - Dave Lewis - PSW #849 2:50:27

Play Pause
2:50:27
Play Pause
  Play later
  Play later
  Lists
  Liked
2:50:27
 
We had the pleasure of finally having Dave Lewis on the show to discuss shadow IT and security debt. Dave shared some fascinating insights from his long career in cybersecurity, emphasizing the importance of addressing fundamental security issues and the human aspect of security. We delved into the challenges of managing shadow IT, the complexities…
  continue reading
 
Artwork

1
AI: Bringing Us Closer Or Driving Us Apart? | EP 04 Jen Felch & Dell 45:10

Play Pause
45:10
Play Pause
  Play later
  Play later
  Lists
  Liked
45:10
 
Jen Felch took on the roles of Chief Digital Officer and CIO at Dell Technologies in 2019. Before this, she held various leadership positions at Dell, including roles in IT Order Management, Finance, and IT Enterprise Services. A strong proponent of technology, during her time at Dell, she focused on leveraging generative AI to enhance the develope…
  continue reading
 
Artwork

1
The CISO Mindset, Top Strategies, and Mandating Office Presence Without Purpose - David Bradbury, Erin Baudo Felter - BSW #370 1:03:37

Play Pause
1:03:37
Play Pause
  Play later
  Play later
  Lists
  Liked
1:03:37
 
In the leadership and communications segment, The CISO Mindset: A Strategic Guide for Aspiring CEOs and The Board Members, The Top Strategy to Earn More Respect at Work: A Leadership Expert’s Proven Method, The Problem with Mandating Office Presence Without Purpose, and more! Identity continues to be one of the most used attack vectors by cybercrim…
  continue reading
 
Artwork

1
Making TLS More Secure, Lessons from IPv6, LLMs Finding Vulns - Arnab Bose, Shiven Ramji - ASW #305 1:22:48

Play Pause
1:22:48
Play Pause
  Play later
  Play later
  Lists
  Liked
1:22:48
 
Better TLS implementations with Rust, fuzzing, and managing certs, appsec lessons from the everlasting transition to IPv6, LLMs for finding vulns (and whether fuzzing is better), and more! Also check out this presentation from BSides Knoxville that we talked about briefly, https://youtu.be/DLn7Noex_fc?feature=shared Generative AI has been the talk …
  continue reading
 
Artwork

1
Transforming the Defender's Dilemma into the Defender's Advantage - Charlotte Wylie, Bhawna Singh, Lenny Zeltser - ESW #381 1:50:15

Play Pause
1:50:15
Play Pause
  Play later
  Play later
  Lists
  Liked
1:50:15
 
Ever heard someone say, "the attacker only has to be right once, but the defender has to get it right every time"? On this episode, we'll dispel that myth. There is some truth to the saying, but only with regards to initial access to the target's environment. Once on the inside, the attacker's advantage flips to the defender. Call it the 'Home Alon…
  continue reading
 
Artwork

1
Secure By Default - How do we get there? - Andy Syrewicze - PSW #848 3:06:32

Play Pause
3:06:32
Play Pause
  Play later
  Play later
  Lists
  Liked
3:06:32
 
Andy drops some Microsoft Windows and 365 knowledge as we discuss the details on how we get to secure by default in our Windows and cloud environments. This week: The USB Army Knife that won't break the budget, I don't want to say EDR is useless (but there I said it), Paul's list of excellent hacking tips, FortiJump - an RCE that took a while to be…
  continue reading
 
Artwork

1
Aligning Tech Execs on Cyber Resilience - Theresa Lanowitz - BSW #369 1:01:21

Play Pause
1:01:21
Play Pause
  Play later
  Play later
  Lists
  Liked
1:01:21
 
Getting C-Suite execs aligned on cyber resilience and cybersecurity can be a challenge. LevelBlue's recent Futures™️ report sought to uncover the barriers that prevent companies from achieving cyber resilience in the enterprise today. The report not only surveyed C-Suite execs (CIOs, CTOs, and CISOs), but non-C-Suite leaders from engineering and ar…
  continue reading
 
Artwork

1
The Complexities, Configurations, and Challenges in Cloud Security - Scott Piper - ASW #304 1:17:25

Play Pause
1:17:25
Play Pause
  Play later
  Play later
  Lists
  Liked
1:17:25
 
Building cloud native apps doesn't mean you're immune to dealing with legacy systems. Cloud services have changed significantly over the last decade, both in the security controls available to them and the sheer volume of services that CSPs provide. Scott Piper shares some history of cloud security, the benefits of account separation, and how ratch…
  continue reading
 
Artwork

1
Cybersecurity Success is Business Success - Renuka Nadkarni, Theresa Lanowitz - ESW #380 1:46:37

Play Pause
1:46:37
Play Pause
  Play later
  Play later
  Lists
  Liked
1:46:37
 
Secure by design is more than just AppSec - it addresses how the whole business designs systems and processes to be effective and resilient. The latest report from LevelBlue on Cyber Resilience reveals security programs that are reactive, ill-equipped, and disconnected from IT and business leaders. Most security problems are out of security teams' …
  continue reading
 
Artwork

1
Cybersecurity Success is Business Success - Renuka Nadkarni, Theresa Lanowitz - ESW #380 1:46:37

Play Pause
1:46:37
Play Pause
  Play later
  Play later
  Lists
  Liked
1:46:37
 
Secure by design is more than just AppSec - it addresses how the whole business designs systems and processes to be effective and resilient. The latest report from LevelBlue on Cyber Resilience reveals security programs that are reactive, ill-equipped, and disconnected from IT and business leaders. Most security problems are out of security teams' …
  continue reading
 
Artwork

1
Effective Operational Outcomes - Ken Dunham - PSW #847 2:58:09

Play Pause
2:58:09
Play Pause
  Play later
  Play later
  Lists
  Liked
2:58:09
 
New security and vulnerability research is published every day. How can security teams get ahead of the curve and build architecture to combat modern threats and threat actors? Tune-in to a lively discussion about the threat landscape and tips on how to stay ahead of the curve. Segment Resources: https://blog.qualys.com/vulnerabilities-threat-resea…
  continue reading
 
Artwork

1
Perl & PHP Vulns, Fuzzing & Parsers, Protecting Multi-Hosted Tenants, Secure Design - ASW #303 41:59

Play Pause
41:59
Play Pause
  Play later
  Play later
  Lists
  Liked
41:59
 
Looking at vulnerable code in Ivanti (Perl) and Magento (PHP), fuzzing is perfect for parsers, handling tenant isolation when training LLMs, Microsoft's small steps towards secure design, and more! Visit https://www.securityweekly.com/asw for all the latest episodes! Show Notes: https://securityweekly.com/asw-303…
  continue reading
 
Artwork

1
Budget Planning Guide 2025: Security And Risk - Jeff Pollard - BSW #368 59:35

Play Pause
59:35
Play Pause
  Play later
  Play later
  Lists
  Liked
59:35
 
In today’s uncertain macroeconomic environment, security and risk leaders need practical guidance on managing existing spending and new budgetary requests. Jeff Pollard, Vice-President, Principal Analyst on the Security and Risk Team at Forrester Research, joins Business Security Weekly to review Forrester's Budget Planning Guide 2025: Security And…
  continue reading
 
Artwork

1
Community Knowledge Sharing with CyberNest - Ben Siegel, Aaron Costello - ESW #379 1:53:03

Play Pause
1:53:03
Play Pause
  Play later
  Play later
  Lists
  Liked
1:53:03
 
For this interview, Ben from CyberNest joins us to talk about one of my favorite subjects: information sharing in infosec. There are so many amazing skills, tips, techniques, and intel that security professionals have to share. Sadly, a natural corporate reluctance to share information viewed as privileged and private has historically had a chillin…
  continue reading
 
Artwork

1
Community Knowledge Sharing with CyberNest - Ben Siegel, Aaron Costello - ESW #379 1:53:03

Play Pause
1:53:03
Play Pause
  Play later
  Play later
  Lists
  Liked
1:53:03
 
For this interview, Ben from CyberNest joins us to talk about one of my favorite subjects: information sharing in infosec. There are so many amazing skills, tips, techniques, and intel that security professionals have to share. Sadly, a natural corporate reluctance to share information viewed as privileged and private has historically had a chillin…
  continue reading
 
Artwork

1
The Code of Honor: Embracing Ethics in Cybersecurity - Ed Skoudis - PSW #846 2:14:57

Play Pause
2:14:57
Play Pause
  Play later
  Play later
  Lists
  Liked
2:14:57
 
"Code of Honor: Embracing Ethics in Cybersecurity" by Ed Skoudis is a book that explores the ethical challenges faced by cybersecurity professionals in today's digital landscape. The book delves into the complex moral dilemmas that arise in the field of cybersecurity, offering guidance on how to navigate these issues while maintaining integrity. Th…
  continue reading
 
Artwork

1
The Future of Zed Attack Proxy - Simon Bennetts, Ori Bendet - ASW #302 1:12:35

Play Pause
1:12:35
Play Pause
  Play later
  Play later
  Lists
  Liked
1:12:35
 
Zed Attack Proxy has been a crucial web app testing tool for decades. It's also had a struggle throughout 2024 to obtain funding that would enable the tool to add more features while remaining true to its open source history. Simon Bennetts, founder of ZAP, and Ori Bendet from Checkmarx update us on that journey, share some exploration of LLM fuzzi…
  continue reading
 
Artwork

1
Run Your Security Program Like an Election Campaign - Kush Sharma - BSW #367 1:05:11

Play Pause
1:05:11
Play Pause
  Play later
  Play later
  Lists
  Liked
1:05:11
 
Does the CISO need to act like a politician? Negotiating budgets, communicating risks, and selling your strategy across the organization does sound a little like a politician. And if that's the case, are you hiring the right campaign staff? Kush Sharma, former CISO for CPR, City of Toronto, and Saputo, joins Business Security Weekly to discuss why …
  continue reading
 
Loading …

Quick Reference Guide

Top Podcasts
The Bill Simmons Podcast
PTI
First Take
Marketplace
Comedy of the Week
The Bugle
How Did This Get Made?
Doug Loves Movies
Planet Money
TED Talks Daily
NBC Nightly News with Lester Holt
The World This Hour
Daily Boost Motivation and Coaching
Radiolab
Science Friday
This American Life
Criminal
Sword and Scale
In The Dark
Player FM logo
Help/FAQ | Upgrade | Advertise
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2024 | Sitemap | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox