최고 Cloud Security 팟캐스트 (2024)

1
The role of Real Time Defense in Cloud Security 21:35

3d ago21:35

21:35

In this episode from KubeCon Paris 2024, we spoke to Loris Degioanni, Co-Founder and CTO of Sysdig about Open Source Project, Falco that celebrated its graduation this year at KubeconEU, Loris shared with us this proud moment and journey from writing the 1st lines of code to its critical role in protecting Kubernetes environments, and the future ro…

1
EP168 Beyond Regular LLMs: How SecLM Enhances Security and What Teams Can Do With It 33:18

4d ago33:18

33:18

Guests: Umesh Shankar, Distinguished Engineer, Chief Technologist for Google Cloud Security Scott Coull, Head of Data Science Research, Google Cloud Security Topics: What does it mean to “teach AI security”? How did we make SecLM? And also: why did we make SecLM? What can “security trained LLM” do better vs regular LLM? Does making it better at sec…

1
59-The Talking Cloud Podcast-audio only -Guest-Jon Oltsik, Distinguished Analyst and ESG Fellow (Retired) 39:18

5d ago39:18

39:18

If you've been in the cybersecurity industry sometime during the past two decades, you've likely heard of the analyst firm ESG-Enterprise Strategy Group. What you may not know is, before my guest joined ESG more than 21 years ago, the 'S' stood for storage. My guest in Episode 59, Jon Oltsik originally launched the security practice at ESG which no…

1
Top Cybersecurity Trends leveraging AI with Industry Insider Mike Crowe 28:56

9d ago28:56

28:56

On this episode, Paladin Cloud’s CEO and co-founder Dan Deeney steps into John Richards’ shoes to play host! He welcomes cybersecurity veteran Mike Crowe to the show. With over 30 years of experience as CIO of Colgate-Palmolive, Mike provides unique insight into the evolution of threats, strategies for defense, and trends that keep CISO’s up at nig…

1
CSCP S4EP13 - Josh Goldberg - Crafting Secure Applications in the Age of AI with Josh Goldberg 38:10

12d ago38:10

38:10

A dev perspective on application security: Dive deep into the pivotal nexus of cybersecurity, application security, and software development in our latest podcast episode featuring Josh Goldberg, a renowned figure in the TypeScript ecosystem. This episode sheds light on the evolving realm of secure coding practices, acknowledging the progress achie…

1
CISO's guide to embracing risk in business 48:59

10d ago48:59

48:59

What is it like to build a successful business based on risk? In this episode Ashish spoke to Fredrick Lee, CISO at Reddit. FLee shared his deep insights into the essential role of risk in driving business success and innovation. With a career that spans across notable tech giants like Square (now Block), Twilio, and Gusto, Lee brings a wealth of e…

1
EP167 Stolen Cards and Fake Accounts: Defending Google Cloud Against Abuse 25:24

11d ago25:24

25:24

Speakers: Maria Riaz, Cloud Counter-Abuse, Engineering Lead, Google Cloud Topics: What is “counter abuse”? Is this the same as security? What does counter-abuse look like for GCP? What are the popular abuse types we face? Do people use stolen cards to get accounts to then violate the terms with? How do we deal with this, generally? Beyond core tech…

1
Why Email Breaches Still Happen? 30:02

14d ago30:02

30:02

Lets talk about the Evolution of Email Security. We have been speaking about Email Security for years but why has it not been solved? We spoke to Abhishek Agrawal, Co-founder of Material Security about the fact that despite of decades of advancements, email security remains a critical concern, with sophisticated attacks continually bypassing tradit…

1
Essential Strategies to master Incident Response in Cloud 45:49

17d ago45:49

45:49

How do you build a Robust Detection Framework? Ashish spoke to Andrew Tabona, SVP of Cyber Threat Management and Incident Response at a Fortune 500 company about challenging the conventional wisdom of applying on-premise incident response plans to cloud environments. They speak about the critical metrics of mean time to detect, respond, and recover…

1
EP166 Workload Identity, Zero Trust and SPIFFE (Also Turtles!) 30:06

18d ago30:06

30:06

Guests: Evan Gilman, co-founder CEO of Spirl Eli Nesterov, co-founder CTO of Spril Topics: Today we have IAM, zero trust and security made easy. With that intro, could you give us the 30 second version of what a workload identity is and why people need them? What’s so spiffy about SPIFFE anyway? What’s different between this and micro segmentation …

1
EP165 Your Cloud Is Not a Pet - Decoding 'Shifting Left' for Cloud Security 24:34

25d ago24:34

24:34

Guest: Ahmad Robinson, Cloud Security Architect, Google Cloud Topics: You’ve done a BlackHat webinar where you discuss a Pets vs Cattle mentality when it comes to cloud operations. Can you explain this mentality and how it applies to security? What in your past led you to these insights? Tell us more about your background and your journey to Google…

1
58-The Talking Cloud Podcast-audio only -Guest-Roland Cozzolino, CTO/COO at InsightCyber 1:06:17

26d ago1:06:17

1:06:17

Needless to say, the hottest topic today is Artificial Intelligence and all its variations. So, I found another expert on AI to be my guest. Roland Cozzolino has numerous inventions and patents to his name including inventing the real-time buying of online advertising, common today. Roland is a perfect example of someone who looks at things differe…

1
CSCP S4EP12 - Raj Umadas - Diving Deep into Cybersecurity and Application Security Journey exploring Frontiers with Maestro Raj Umadas 38:10

26d ago38:10

38:10

What does it take to get into application security from pentesting? Will AI replace the role of product security? How do you start an application security program and write a book about it? Join us on the Cybersecurity and Cloud Podcast as we welcome the insightful Raj Umadas, head of InfoSec at Ackblue, for a vibrant discussion on the varied pathw…

1
EP164 Quantum Computing: Understanding the (very serious) Threat and Post-Quantum Cryptography 31:23

1M ago31:23

31:23

Guest: Jennifer Fernick, Senor Staff Security Engineer and UTL, Google Topics: Since one of us (!) doesn't have a PhD in quantum mechanics, could you explain what a quantum computer is and how do we know they are on a credible path towards being real threats to cryptography? How soon do we need to worry about this one? We’ve heard that quantum comp…

1
57-The Talking Cloud Podcast-audio only -Guest-Gil Friedrich, Co-Founder Avanan, VP Email Security-Check Point 46:23

1M ago46:23

46:23

With a B.Sc., in Physics and Computer Science and M.Sc., in Computer Science, Face Recognition in Infrared Images, and achieving Magna Cum Laude in both, my guest on Episode 57 is a brilliant entrepreneur and the Co-Founder of revolutionary email security vendor, Avanan (Now part of Check Point Software). Hear how they put NLP and AI to work to cre…

1
Supercharge Workflows, Secure Data: Build Better Apps with AI 23:15

1M ago23:15

23:15

Exploring the AI-Powered Future of Cloud Security with Thomas Johnson On this episode of Cyber Sentries, host John Richards interviews Thomas Johnson, CTO and co-founder of Multiplayer, about how AI is transforming cloud security. As AI capabilities rapidly advance, Thomas provides insights into how engineering teams can leverage AI to enhance work…

1
From Code Suggestions to Security 21:23

1M ago21:23

21:23

What is GitHub Copilot? Its a AI-powered coding assistant that's redefining how developers write code. We spoke to Joseph Katsioloudes, a security specialist from the GitHub Security Lab. We spoke about how GitHub Copilot has been designed to serve not just developers but security professionals and others involved with code, enhancing productivity,…

1
EP163 Cloud Security Megatrends: Myths, Realities, Contentious Debates and Of Course AI 25:54

1M ago25:54

25:54

Guest: Phil Venables, Vice President, Chief Information Security Officer (CISO) @ Google Cloud Topics: You had this epic 8 megatrends idea in 2021, where are we now with them? We now have 9 of them, what made you add this particular one (AI)? A lot of CISOs fear runaway AI. Hence good governance is key! What is your secret of success for AI governa…

1
Cloud Security Operations for Modern Threats 35:49

1M ago35:49

35:49

How is your Cloud Incident Preparedness? Is your CSPM enough? Ashish spoke to Ariel Parnes, Co-Founder and COO at Mitiga about the concept of "Assume Breach" and its importance in developing a proactive cloud security framework. If you are looking to understand the nuances of of cloud incident response and being prepared for them, the effectiveness…

1
EP162 IAM in the Cloud: What it Means to Do It 'Right' with Kat Traxler 28:09

2M ago28:09

28:09

Guest: Kat Traxler, Security Researcher, TrustOnCloud Topics: What is your reaction to “in the cloud you are one IAM mistake away from a breach”? Do you like it or do you hate it? A lot of people say “in the cloud, you must do IAM ‘right’”. What do you think that means? What is the first or the main idea that comes to your mind when you hear it? Ho…

1
CSCP S4EP11 - Derek Fisher - Strengthening Digital Defenses Inside Application Security and the Role of AI in Cybersecurity 32:33

2M ago32:33

32:33

Will AI replace the role of product security? How do you start an application security program and write a book about it? One of the best Application Security mind Derek Fisher is with us today. Join us on a captivating journey as Derek, a mastermind in product security and a prolific author, shares his expertise on setting up a fortified applicati…

1
Understanding Threat Modeling in Cloud 50:06

2M ago50:06

50:06

Do you need an essential guide for Threat Modeling your Cloud Environment, then this episode is definitely for you. Ashish sat down with Tyson Garrett from TrustOnCloud. We explore why and how organizations should approach threat modeling in cloud to enhance their security posture. Tyson and Ashish go through the practical steps required for effect…

1
EP161 Cloud Compliance: A Lawyer - Turned Technologist! - Perspective on Navigating the Cloud 27:38

2M ago27:38

27:38

Guest: Victoria Geronimo, Cloud Security Architect, Google Cloud Topics: You work with technical folks at the intersection of compliance, security, and cloud. So what do you do, and where do you find the biggest challenges in communicating across those boundaries? How does cloud make compliance easier? Does it ever make compliance harder? What is y…

1
Balancing Efficiency & Security: AI’s Transformation of Legal Data Analysis 17:56

2M ago17:56

17:56

What is the role of AI in Legal Research and Data Security? We spoke to Matt McKeever, CISO and Head of Cloud Engineering at LexisNexis, a company that uses GenAI and Custom LLM models to help its customers with legal research, guidance and drafting. Matt spoke to us about intersection of cloud engineering, cybersecurity and the revolutionary impac…

1
EP160 Don't Cloud Your Judgement: Security and Cloud Migration, Again! 27:32

2M ago27:32

27:32

Guest: Merritt Baer, Field CTO, Lacework, ex-AWS, ex-USG Topics: How can organizations ensure that their security posture is maintained or improved during a cloud migration? Is cloud migration a risk reduction move? What are some of the common security challenges that organizations face during a cloud migration? Are there different gotchas between …

1
CSCP S4EP10 - David Matousek - Will Ai replace Product Security? automation vs experteese 23:53

2M ago23:53

23:53

Will AI replace the role of product security? This is an enlightening conversation with David Matousek exploring the intersection between automation and product security in application security. Join us on this enlightening journey with David Matousek, as we explore the intriguing world of product security within the cybersecurity realm. Listen in …

1
Sidecar Container Vulnerability in Kubernetes explained 15:32

2M ago15:32

15:32

Are you familiar with Sidecars in Kubernetes? We spoke to Magno Logan about the complex world of Kubernetes security and the silent but deadly vulnerabilities associated with sidecar containers. Magno shares his extensive research and insights on how attackers can exploit these vulnerabilities to stay hidden within a Kubernetes environment, posing …

1
AI for API Security: Field-Tested Insights from Cequence.ai Co-Founder Shreyans Mehta 30:01

2M ago30:01

30:01

John sits down with Shreyans Mehta, CTO and co-founder of Cequence Security, to discuss how AI and machine learning can be applied to improve cloud security. They provide valuable insights for security teams looking to leverage AI to protect their cloud environments and applications. The conversation focuses on using AI for security use cases like …

1
EP159 Workspace Security: Built for the Modern Threat. But How? 25:31

2M ago25:31

25:31

Guests: Emre Kanlikilicer, Senior Engineering Manager @ Google Sophia Gu, Engineering Manager at Google Topics Workspace makes the claim that unlike other productivity suites available today, it’s architectured for the modern threat landscape. That’s a big claim! What gives Google the ability to make this claim? Workspace environments would have ma…

1
56-The Talking Cloud Podcast-audio only -Guest-Venkat Raghavan, Co-Founder and CEO, Stack Identity 39:23

2M ago39:23

39:23

One of the most gnawing and growing security risks in the cloud is the explosion of identities, of all types. Identities mean entitlements, privileges, and access. And in the world of Zero-Trust, this can get pretty granular and complex. In this episode, we have the pleasure of a return guest. Venkat is the Co-Founder and CEO of Stack Identity (www…

1
EP158 Ghostbusters for the Cloud: Who You Gonna Call for Cloud Forensics 21:33

2M ago21:33

21:33

Guest: Jason Solomon, Security Engineer, Google Topics: Could you share a bit about when you get pulled into incidents and what are your goals when you are? How does that change in the cloud? How do you establish a chain of custody and prove it for law enforcement, if needed? What tooling do you rely on for cloud forensics and is that tooling avail…

1
CSCP S4EP09 - Micheal Smith - Code to Network Reachability how to use WAF to prioritize vulnerabilities 39:00

2M ago39:00

39:00

This is an enlightening conversation with Michael Smith exploring the intersection between vulnerabilities, DDoS and WAF technologies. Join us as we reconvene with cybersecurity virtuoso Michael Smith, Field CTO at Verkara, for a rerecording further to explore the fascinating intersection of cybersecurity and cloud technology. Listen in as Michael …

1
Role of application security posture management in cybersecurity 40:09

3M ago40:09

40:09

Navigating modern application security in a world of Cloud, DevSecOps and now AI is getting rather complex. We spoke to Idan Plotnik, who has 24 years of cybersecurity experience under his belt and is the Co-Founder of Apiiro about world of Application Security Posture Management (ASPM) and their relevance in both large and small organizations. Ida…

1
EP157 Decoding CDR & CIRA: What Happens When SecOps Meets Cloud 25:27

3M ago25:27

25:27

Guest: Arie Zilberstein, CEO and Co-Founder at Gem Security Topics: How does Cloud Detection and Response (CDR) differ from traditional, on-premises detection and response? What are the key challenges of cloud detection and response? Often we lift and shift our teams to Cloud, and not always for bad reasons, so what’s your advice on how to teach th…

1
Cybersecurity Best Practices and Password Security in Cloud and AI 29:59

3M ago29:59

29:59

We caught up with Troy Hunt and Scott Helme at NDC Security Oslo 2024 to talk about best practices when it come to decoding TLS, password security and data breaches in cloud and AI. Troy Hunt, known for his work with haveibeenpwned.com, spoke to us about the complexities of cloud deployment and paradox of data input versus privacy risk in Large Lan…

1
EP156 Living Off the Land and Attacking Critical Infrastructure: Mandiant Incident Deep Dive 25:12

3M ago25:12

25:12

Guest: Sandra Joyce, VP at Mandiant Intelligence Topics: Could you give us a brief overview of what this power disruption incident was about? This incident involved both Living Off the Land and attacks on operational technology (OT). Could you explain to our audience what these mean and what the attacker did here? We also saw a wiper used to hide f…

1
CSCP S4EP08 - Jay Jacobs - A Conversation with Jay Jacobs: Exploring the Future of Vulnerability Management and Data Science 43:09

3M ago43:09

43:09

This is an enlighting conversation with Jay Jacobs - Exploring the Future of Vulnerability Management and Data Science Unlock the secrets of cybersecurity's intricate dance with data science as I, Francesco Cipollone, sit down with tech wizard J Jacobs, co-founder of Cyanthia. Prepare to be captivated by J's inspiring tech odyssey, from his youthfu…

1
Multicloud strategy for AWS and GCP 27:29

3M ago27:29

27:29

What is a good multicloud strategy in 2024? We spoke to Vivek Menon, CISO for Digital Turbine about the maturity and security capabilities of major cloud service providers, AWS and GCP. Vivek spoke about the journey from on-premise to multi-cloud landscapes, the strategic approaches to cloud security in 2024, and the unique challenges that teams fa…

1
55-The Talking Cloud Podcast-audio only -Guest -Jonathan (Jon) Sargent, SVP, Cloud Security,Cyber Defense at Truist 55:39

3M ago55:39

55:39

Episode 55 kicks off 2024 with a terrific discussion, covering numerous topics, with a highly seasoned cybersecurity executive. Jonathan (Jon) Sargent has held various CISO/CTO/Cloud Security executive roles over the past two decades. Additionally, he's served as adjunct faculty and assistant adjunct professor for cybersecurity. Adding to his rich …

1
EP155 Cyber, Geopolitics, AI, Cloud - All in One Book? 38:36

3M ago38:36

38:36

Guests: Derek Reveron, Professor and Chair of National Security at the US Naval War College John Savage, An Wang Professor Emeritus of Computer Science of Brown University Topics: You wrote a book on cyber and war, how did this come about and what did you most enjoy learning from the other during the writing process? Is generative AI going to be a …

1
AI's Role in Security Efficiency - Kubernetes Edition 20:07

3M ago20:07

20:07

Dive into the world of AI and Kubernetes with Shopify's Shane Lawrence in this episode of the Cloud Security Podcast. Shane, shares his experience in the security team at Shopify and working on the intersection of AI, Large Language Models (LLMs), and Kubernetes security. Shopify is looking to pioneer the use of AI to streamline developer operation…

1
Next Level Cloud Security: AI Opportunities with Shawn Anderson 30:25

3M ago30:25

30:25

Exploring the Transformative Potential of AI for Cloud Security In this episode of Cyber Sentries, host John Richards speaks with Shawn Anderson, an expert in cybersecurity and current CTO at Boston Meridian. They have an insightful discussion about how artificial intelligence is transforming cloud security. Shawn shares his valuable perspective fr…

1
EP154 Mike Schiffman: from Blueboxing to LLMs via Network Security at Google 35:41

3M ago35:41

35:41

Guest: Mike Schiffman, Network Security “UTL” Topics: Given your impressive and interesting history, tell us a few things about yourself? What are the biggest challenges facing network security today based on your experience? You came to Google to work on Network Security challenges. What are some of the surprising ones you’ve uncovered here? What …

1
CSCP S4EP07 - Caleb Sima - A Conversation with Caleb Sima - Bridging Offense and Defense in Cybersecurity and AI Promise for the Future 40:08

3M ago40:08

40:08

This is an enlighting conversation with Caleb Sima a returning guest on the podcast - Bridging Offense and Defense in Cybersecurity and AI Promise for the Future. Join us for the return of an esteemed guest, Caleb, for an engaging conversation with cybersecurity veteran Caleb Sima on our latest podcast episode. Caleb, known for his significant cont…

1
Build an Effective AWS Cloud Security Program in 2024 48:55

3M ago48:55

48:55

How can you build a robust cloud security program in AWS, particularly as a startup and small to medium-sized businesses navigating AWS in 2024? We spoke to Chris Farris, who is the event chair for fwd:cloudsec, a known cloud security expert and one of the first AWS Heroes for security. Chris shared his insights on how to build a security strategy …

1
Offensive Cloud Security Program for 2024 22:32

4M ago22:32

22:32

Is Offensive Security part of your 2024 Security Roadmap? We caught up with Sam Kirkman, Director at NetSPI EMEA at BlackHat Europe 2023 about what an Offensive Security Roadmap going into 2024 should look like. Offensive security is much more than pentesting. We spoke about how to build a capable team, different maturity stages of building such a …

1
EP153 Kevin Mandia on Cloud Breaches: New Threat Actors, Old Mistakes, and Lessons for All 28:41

4M ago28:41

28:41

Guest: Kevin Mandia, CEO at Mandiant, part of Google Cloud Topics: When you look back, what were the most surprising cloud breaches in 2023, and what can we learn from them? How were they different from the “old world” of on-prem breaches? For a long time it’s felt like incident response has been an on-prem specialization, and that adversaries are …

1
Understand Your Cloud Security Landscape to cut through the noise! 27:16

4M ago27:16

27:16

Cloud Security environments looks very complex in 2023, and it will continue to evolve in 2024 now with AI. At AWS re:Invent 2023 this year, we sat down with Alex Jauch, Senior Director of Product Management at Outshift to talk about the complexities in Cloud Security, the role of GenAI and what can be items to consider for your 2024 Cloud Security…

1
54-The Talking Cloud Podcast-audio only - Guest - Lena Smart, Global CISO at MongoDB 50:01

4M ago50:01

50:01

In episode 54 I have the dubious honor and privilege of having the Global Chief Information Security Officer for MongoDB, Lena Smart as my guest. Lena is an extremely sharp, pragmatic, and experienced CISO. We have a fantastic time discussing a variety of topics! Hear what she and her team are doing to stay ahead of the bad guys! It's a terrific 50…

1
Kubernetes Security Trends 2024 | Software Supply Chain Security, Zero Trust and AI 33:11

4M ago33:11

33:11

Kubernetes is shaping the future of cloud native technology with interest from security folks, businesses and developers - what does the future of Kubernetes Security look like? At Kubecon NA 2023, we spoke to Emily Fox who is the chair of CNCF's Technical Oversight Committee and Software Engineering Lead at RedHat about how Zero Trust plays out in…

들어볼 가치가 있는 팟캐스트

Cloud Security 팟 캐스트

들어볼 가치가 있는 팟캐스트

빠른 참조 가이드