0-Day Vulnerabilities & What's Next - Larry Maccherone - ASW #204 | Security Weekly Podcast Network (Video) Podcast

0-Day Vulnerabilities & What's Next - Larry Maccherone - ASW #204: 0-day vulnerabilities pose a high risk because cybercriminals race to exploit them and vulnerable systems are exposed until a patch is issued & installed. These types of software vulnerabilities can be found through continuous detection but even... by Application Security Weekly (Video)

36 min listen

ASW #204 - Larry Maccherone: 0-day vulnerabilities pose a high risk because cybercriminals race to exploit them and vulnerable systems are exposed until a patch is issued & installed. These types of software vulnerabilities can be found through continuous detection but even... by Security Weekly Podcast Network (Audio)

74 min listen

ASW #240 - Kelly Shortridge, Eric Fourrier, Richard Yew: What does software resilience mean? Why is status quo application security unfit for the modern era of software? How can we move from security theater to security chaos engineering? This segment answers these questions and more. Segment Resources:... by Security Weekly Podcast Network (Audio)

71 min listen

Web Asset Discovery in Application Security - Tolga Kayas - ESW #242: Large organizations develop hundreds of new web applications every year. Some of those deployments are lost in time, and others go wild with high severity vulnerabilities. Forgotten and outdated web applications are a common culprit of successful hack... by Enterprise Security Weekly (Video)

30 min listen

Web Asset Discovery in Application Security - Tolga Kayas - ESW #242: Large organizations develop hundreds of new web applications every year. Some of those deployments are lost in time, and others go wild with high severity vulnerabilities. Forgotten and outdated web applications are a common culprit of successful hack... by Security Weekly Podcast Network (Video)

30 min listen

Show, Don’t Tell, Your Developers How To Write Secure Code - Janet Worthington - ASW #213: Applications are the most frequent external attack vector for companies. However, application security can improve only if developers either code securely or remediate existing security flaws — unfortunately, many don’t receive training with... by Security Weekly Podcast Network (Video)

43 min listen

Show, Don’t Tell, Your Developers How To Write Secure Code - Janet Worthington - ASW #213: Applications are the most frequent external attack vector for companies. However, application security can improve only if developers either code securely or remediate existing security flaws — unfortunately, many don’t receive training with... by Application Security Weekly (Video)

43 min listen

Prepping for Security Incidents, Automated Validation & No-Code Automation Revolution - Amitai Ratzon, Jon Check, Thomas Kinsella - ESW #319: The reality is no organization is insusceptible to a breach – and security teams, alongside the C-suite, should prepare now to make the response more seamless once a crisis does happen. Based on his experience working 1:1 with security leaders in... by Enterprise Security Weekly (Video)

44 min listen

Prepping for Security Incidents, Automated Validation & No-Code Automation Revolution - Amitai Ratzon, Jon Check, Thomas Kinsella - ESW #319: The reality is no organization is insusceptible to a breach – and security teams, alongside the C-suite, should prepare now to make the response more seamless once a crisis does happen. Based on his experience working 1:1 with security leaders in... by Security Weekly Podcast Network (Video)

44 min listen

How to Build a Developer-First Application Security Program - Harshil Parikh - ASW #190: Developers ignore security issues. But can we really blame them? After all, security folks bombard them with an endless stream of issues that need to be addressed with no way for them to separate what’s actually critical from all the noise, all... by Application Security Weekly (Video)

36 min listen

How to Build a Developer-First Application Security Program - Harshil Parikh - ASW #190: Developers ignore security issues. But can we really blame them? After all, security folks bombard them with an endless stream of issues that need to be addressed with no way for them to separate what’s actually critical from all the noise, all... by Security Weekly Podcast Network (Video)

36 min listen

Reinventing Asset Inventory for Security - Ed Rossi - ESW #235: Security teams relying on asset inventory from their IT counterparts can be a challenge due to a lack of security context for assets. This gap can lead to missed opportunities to identify and fix asset-centric issues like EOL or unauthorized software... by Enterprise Security Weekly (Video)

31 min listen

Reinventing Asset Inventory for Security - Ed Rossi - ESW #235: Security teams relying on asset inventory from their IT counterparts can be a challenge due to a lack of security context for assets. This gap can lead to missed opportunities to identify and fix asset-centric issues like EOL or unauthorized software... by Security Weekly Podcast Network (Video)

31 min listen

ASW #213 - Janet Worthington: Applications are the most frequent external attack vector for companies. However, application security can improve only if developers either code securely or remediate existing security flaws — unfortunately, many don’t receive training with... by Security Weekly Podcast Network (Audio)

83 min listen

Alert Overlords - SCW #59: This week, we welcome Anthony Palmeri, Enterprise Account Executive at Ekran System, to talk Insider Threats! Mitigating insider threats is a key cybersecurity priority for any organization that works with sensitive data. And to do that, you need an... by Security Weekly Podcast Network (Audio)

72 min listen

SWVHSC Micro Interviews: deepwatch & ExtraHop - Corey Bodzin, Michael Sanders - ESW #197: deepwatch Lens Score - The first SecOps maturity benchmarking and planning app. Answers CISO Questions: How mature is my Security Program? How do I compare to my peers? What one thing should I do next? This segment is sponsored by deepwatch. Visit to... by Security Weekly Podcast Network (Video)

38 min listen

SWVHSC Micro Interviews: deepwatch & ExtraHop - Corey Bodzin, Michael Sanders - ESW #197: deepwatch Lens Score - The first SecOps maturity benchmarking and planning app. Answers CISO Questions: How mature is my Security Program? How do I compare to my peers? What one thing should I do next? This segment is sponsored by deepwatch. Visit to... by Enterprise Security Weekly (Video)

38 min listen

Managing Threats, Reduce your Attack Surface, MDR Evolved - Antonio Sanchez, Randy Watkins, Richard Yew - ESW #328: The rapid growth of APIs used to build microservices in cloud-native architecture has left many enterprises in the dark when it comes to knowing where, how many, and what types of APIs they have. With multiple teams creating their own API endpoints... by Enterprise Security Weekly (Video)

36 min listen

Managing Threats, Reduce your Attack Surface, MDR Evolved - Antonio Sanchez, Randy Watkins, Richard Yew - ESW #328: The rapid growth of APIs used to build microservices in cloud-native architecture has left many enterprises in the dark when it comes to knowing where, how many, and what types of APIs they have. With multiple teams creating their own API endpoints... by Security Weekly Podcast Network (Video)

36 min listen

Why Transparency Matters & Web Application Prioritization - Mark Ralls, Wayne Haber - ESW #235 by Enterprise Security Weekly (Video)

39 min listen

Why Transparency Matters & Web Application Prioritization - Mark Ralls, Wayne Haber - ESW #235: The shift away from web application security, caused by the pandemic and the focus on remote workforces, resulted in an increased number of web vulnerabilities. In this segment, Mark talks about the best starting point for organizations to get back on... by Security Weekly Podcast Network (Video)

39 min listen

Always Interesting - ASW #143: This week, we welcome John Morello, VP of Product at Palo Alto Networks, joins us to talk about Cloud Native Security Platforms! Modern appsec demonstrates the importance of a cloud native strategy for enterprise security and how much that strategy... by Security Weekly Podcast Network (Audio)

62 min listen

Redefining Threat Modeling - Security Team Goes on Vacation - Jeevan Singh - ASW #223: Threat modeling is an important part of a security program, but as companies grow you will choose which features you want to threat model or become a bottleneck. What if I told you, you can have your cake and eat it too. It is possible to scale your... by Application Security Weekly (Video)

40 min listen

Redefining Threat Modeling - Security Team Goes on Vacation - Jeevan Singh - ASW #223: Threat modeling is an important part of a security program, but as companies grow you will choose which features you want to threat model or become a bottleneck. What if I told you, you can have your cake and eat it too. It is possible to scale your... by Security Weekly Podcast Network (Video)

40 min listen

Building a Risk-Based Vulnerability Management Program - Bob Erdman - PSW #693: Risk-based vulnerability management is more than just a vulnerability scan or assessment. It incorporates relevant risk context and analysis to prioritize the vulnerabilities that pose the greatest risk to your organization This segment will explore... by Security Weekly Podcast Network (Video)

50 min listen

Simplifying Cloud Security - Terry Barber, Parag Bajaria - ESW #300: Security teams struggle with managing cyber risk across cloud workloads, services, resources, users, and applications. Parag will discuss the issues this presents and how Qualys’ new TotalCloud solution allows organizations to see all their cloud... by Enterprise Security Weekly (Video)

46 min listen

Simplifying Cloud Security - Terry Barber, Parag Bajaria - ESW #300: Security teams struggle with managing cyber risk across cloud workloads, services, resources, users, and applications. Parag will discuss the issues this presents and how Qualys’ new TotalCloud solution allows organizations to see all their cloud... by Security Weekly Podcast Network (Video)

46 min listen

Do Breaches Happen Because the Tool Fails, or the Tool Was Poorly Configured?: All links and images for this episode can be found on CISO Series. Security tools are supposed to do a job. Either they need to alert you, protect you, or remediate an issue. But they don't always work and that's why we have breaches. Who's at fault,... by Defense in Depth

32 min listen

How Security Tools Must Evolve - Dan Kuykendall - ASW #261: The categories of security tools that we're most familiar with have struggled to keep up with how modern apps are designed and what modern devs need. What if instead of being beholden to categories, we created tools that solved problems devs have... by Security Weekly Podcast Network (Audio)

87 min listen

Building a Proactive Security Strategy - Pablo Zurro - ESW #265: Learn how a proactive cybersecurity program can be a game changer for an organization's success through continuously assessing risk and evolving to stay ahead of threats. Join us as we discuss impactful ways to stay one step ahead with Pablo Zurro,... by Security Weekly Podcast Network (Video)

33 min listen

Discover this podcast and so much more

0-Day Vulnerabilities & What's Next - Larry Maccherone - ASW #204

0-Day Vulnerabilities & What's Next - Larry Maccherone - ASW #204

Description

Titles in the series (100)

More Episodes from Security Weekly Podcast Network (Video)

Related podcast episodes