Using Rate Limiting to Protect Web Apps and APIs - Jack Zarris - ASW #108 | Security Weekly Podcast Network (Video) Podcast

Technology Rationalization in Cybersecurity - Max Shier - BSW #355: On average, CISOs manage 50-75 security products. Many of these products have either not been deployed or only partially deployed, while others overlap of products. How do CISOs effectively consolidate their products to a manageable size? Max Shier,... by Security Weekly Podcast Network (Video)

39 min listen

Zotac, Eldorado, Donex, Qlins, Ticketmaster, AI, Physical Security, Aaran Leyland... - SWN #396: Zotac, Eldorado, Donex, Qlins, Ticketmaster, AI, Physical Security, Aaran Leyland, and more, are on this edition of the Security Weekly News. Show Notes: by Security Weekly Podcast Network (Video)

34 min listen

Bringing the Boardroom to the Cyber Battlefield as CISOs Navigate the Role - BSW #355: In the leadership and communications section, Bringing the boardroom to the cyber battlefield, Navigating the CISO Role: Common Pitfalls for New Leaders, Ask Better Questions to be a Better Leader, and more! Show Notes: by Security Weekly Podcast Network (Video)

22 min listen

Polyfill Empties Trust, regreSSHion, CocoaPods Vulns & Secure Design, LLM Bughunters - ASW #290: Polyfill loses trust after CDN misuse, an OpenSSH flaw reappears, how to talk about secure design from some old CocoaPods vulns, using LLMs to find bugs, Burp Proxy gets more investment, and more! Show Notes: by Security Weekly Podcast Network (Video)

35 min listen

State Of Application Security 2024 - Sandy Carielli, Janet Worthington - ASW #290: Sandy Carielli and Janet Worthington, authors of the State Of Application Security 2024 report, join us to discuss their findings on trends this year! Old vulns, more bots, and more targeted supply chain attacks -- we should be better at this by now.... by Security Weekly Podcast Network (Video)

38 min listen

Binary - SWN Vault: Check out this interview from the SWN Vault, hand picked by main host Doug White! This segment was originally published on July 20, 2017. Doug talks about how to count from zero to one! Show Notes: by Security Weekly Podcast Network (Video)

26 min listen

Hacker Heroes - Joe Grand - PSW Vault: Exploring the Hardware Hacking Realm with Joe Grand, AKA Kingpin Joe Grand, also known by his hacker pseudonym "Kingpin," stands as a prominent figure in the cybersecurity landscape. With an extensive background in hardware hacking, reverse... by Security Weekly Podcast Network (Video)

104 min listen

How To Avoid Being Phished - SWN Vault: Check out this interview from the SWN Vault, hand picked by main host Doug White! This Secure Digital Life segment was originally published on March 6, 2017. Have you ever wondered what phishing is? Do you know what spear phishing attacks are? Doug... by Security Weekly Podcast Network (Video)

46 min listen

CISOs 2023 Planning Guide: Forecast The Recession's Impact On Your Program - Jeff Pollard - BSW Vault: Check out this interview from the BSW Vault, hand picked by main host Matt Alderman! This segment was originally published on October 11, 2022. As 2023 approaches, security leaders are hard at work preparing their budgets, identifying their projects,... by Security Weekly Podcast Network (Video)

33 min listen

Is GenAI Having a Rough Time? We check in to see how it's doing. - ESW #366: We've made a slight tweak to the news format, only focusing on the most interesting funding and acquisition stories. As always, you can go check out Mike Privette's for the full list of funded and acquired companies every week. This week, we discuss... by Security Weekly Podcast Network (Video)

60 min listen

MoveIT, Entrust, Fed Reserve, ISPs, Volt Typhoon & More - SWN #395: Healthcare and malware, MoveIT, Chrome won't trust Entrust, the discovery of Volt Typhoon, & more on this episode of the Security Weekly News! Segment Resources: Show Notes: by Security Weekly Podcast Network (Video)

29 min listen

Shifting Cybersecurity Philosophy from Threat-Centric to Compromise-Centric - Martin Roesch - ESW #366: For decades, security teams have been focused on preventing and detecting threats, only to find themselves buried so deep in alerts, they can't detect anything at all! We clearly need a different approach, which will be the topic of our conversation... by Security Weekly Podcast Network (Video)

43 min listen

The risks and best practices of deploying AI to an enterprise - Anurag Lal - ESW #366: We all might be a little worn out on this topic, but there's no escaping it. Executives want to adopt GenAI and it is being embedded into nearly every software product we use in both our professional and personal lives. In this interview, Anurag joins... by Security Weekly Podcast Network (Video)

34 min listen

Do We Need Penetration Testing and Vulnerability Scanning? - Adrian Sanabria, Josh Bressers - PSW #833: This may be controversial, however, we've been privately discussing how organizations benefit from penetration testing and vulnerability scanning. Do you still need these services as a critical part of your security program? Can't you just patch stuff... by Security Weekly Podcast Network (Video)

61 min listen

Hack all the things, patch all the things - PSW #833: Zyxl NAS devices are under attack and the exploit is pretty simple, A new UEFI vulnerability with a name that some people don't like, that time you setup a load balancer and forgot about it, I love it when there is a vulnerability in a Wifi driver,... by Security Weekly Podcast Network (Video)

111 min listen

AI at Work 2024: C-suite Perspectives on Artificial Intelligence - Bhawna Singh - BSW #354: In the age of AI, driving a business forward requires balancing three very significant considerations: growth through innovation, productivity through operational efficiency, and trust through security. To better understand how AI impacts the... by Security Weekly Podcast Network (Video)

33 min listen

OAuth 2.0 from Protecting APIs to Supporting Authorization & Authentication - Aaron Parecki - ASW #289: OAuth 2.0 is more than just a single spec and it's used to protect more than just APIs. We talk about challenges in maintaining a spec over a decade of changing technologies and new threat models. Not only can OAuth be challenging to secure by... by Security Weekly Podcast Network (Video)

37 min listen

Baltimore, GPS Jammed, US bans, ARM, YouTube, Kraken and Joshua Marpet - SWN #394: Baltimore, GPS Jammed, US bans, ARM, YouTube, Kraken and Joshua Marpet, and More, on this edition of the Security Weekly News. Show Notes: by Security Weekly Podcast Network (Video)

30 min listen

Shared Responsibility Models, AI in Offensive Security, Apple's Private Cloud Compute - ASW #289: Thoughts on shared responsibility models after the Snowflake credential attacks, looking at AI's current and future role in offensive security, secure by design lessons from Apple's Private Cloud Computer, and more! Show Notes: by Security Weekly Podcast Network (Video)

24 min listen

Building a Successful API Security Strategy - Luke Babarinde - BSW #354: With 71% of web traffic coming from API calls last year and the average organization maintaining 613 API endpoints, a robust strategy is needed to protect APIs against automated threats and business logic attacks. Tune in as Luke Babarinde, Global... by Security Weekly Podcast Network (Video)

33 min listen

Cybersecurity In College - SWN Vault: Check out this interview from the SWN Vault, hand picked by main host Doug White! This Secure Digital Life segment was originally published on June 19, 2018. This week, Doug and Russ interview Matthew Silva, President and Founder of the Cybersecurity... by Security Weekly Podcast Network (Video)

38 min listen

Access vs Actions, Beyond Traditional IGA, Remote Identity Verification, & Fraud - Tim Prendergast, Damon Tompkins, Andrew Bud, Chris Meyer - ESW Vault: Traditional approaches to access management are no longer sufficient to safeguard enterprise security. Tim will explain why the most effective approach to modern enterprise security requires a Zero Trust model that extends beyond just access to... by Security Weekly Podcast Network (Video)

59 min listen

iShield Key Experience, Automated (PKI) Infrastructure, & GenAI Identity Attacks - Kevin Fadaie, Roni Bliss, David Mahdi - ESW Vault: FIDO security keys are not new in the authentication workflow. They have been around now for 10 years. What is new is the combination of the most secure multi-factor authentication method not only for logical but also for physical access control with... by Security Weekly Podcast Network (Video)

45 min listen

Bringing Autonomy to AppSec - Dr. David Brumley - ESW Vault: Log4j, solar winds, tesla hacks, and the wave of high profile appsec problems aren’t going to go away with current approaches like SAST and SCA. Why? They are: -40 years old, with little innovation -Haven’t solved the problem. In this segment, we... by Security Weekly Podcast Network (Video)

32 min listen

Hacker Heroes - Dave Aitel - PSW Vault: Exploring the Strategic Minds in Cybersecurity: A Conversation with Dave Aitel Welcome to an enlightening episode of our podcast, where we sit down with Dave Aitel, a prominent figure in the cybersecurity landscape. With a robust background in... by Security Weekly Podcast Network (Video)

89 min listen

Learning EBPF - Liz Rice - ASW Vault: Check out this interview from the ASW Vault, hand picked by main host Mike Shema! This segment was originally published on April 4, 2023. Following on from her successful title "Container Security", Liz has recently authored "Learning eBPF", published... by Security Weekly Podcast Network (Video)

37 min listen

Back To School: Networking 101 - SWN Vault: Check out this interview from the SWN Vault, hand picked by main host Doug White! This Secure Digital Life segment was originally published on September 25, 2018. This week, Russ takes the reigns in the absence of Dr. Doug to talk about Networking... by Security Weekly Podcast Network (Video)

26 min listen

Zero Trust Is Not A SKU - Saša Zdjelar - BSW Vault: Check out this interview from the BSW Vault, hand picked by main host Matt Alderman! This segment was originally published on August 9, 2022. Zero Trust is the security buzzword of the moment, and while it is a very powerful approach, nearly every... by Security Weekly Podcast Network (Video)

33 min listen

Unlocking Business Value, Beyond Outages, & Combat Account and Platform Fraud - Ajay Gupta, Gerry Gebel, Mark Batchelor - ESW #365: Enterprises often struggle with achieving business value in identity programs. This is typically the result of technology choices that require a disproportionately greater amount of effort and focus and underestimating the workforce required for... by Security Weekly Podcast Network (Video)

46 min listen

Increasing KYB Coverage, Is your SSO on point, & The Future of Identity Management - Vibhuti Sinha, Tarvinder Sembhi, Chris Simmons - ESW #365: Several recent trends underscore the increasing importance of Know Your Business (KYB) practices in today's business landscape. One significant trend is the rise in financial crimes, including money laundering, fraud, and terrorist financing.... by Security Weekly Podcast Network (Video)

44 min listen

Discover this podcast and so much more

Using Rate Limiting to Protect Web Apps and APIs - Jack Zarris - ASW #108

Using Rate Limiting to Protect Web Apps and APIs - Jack Zarris - ASW #108

Description

Titles in the series (100)

More Episodes from Security Weekly Podcast Network (Video)

Related podcast episodes