The Tripwire Cybersecurity Podcast

In this episode, Jarell Oshodi, Deputy Chief Privacy Officer for the Centers for Disease Control and Prevention, discusses the role of privacy in the cybersecurity field. As an attorney, she brings a unique perspective to the conversation on how we can work better with our privacy officers.

In this episode, Kai Roer, Chief Research Officer at KnowBe4, explains how human factors will always play a role in how secure our technology is.

In this episode, Ian Thornton-Trump, CISO at Cyjax, digests nation state's disinformation campaigns and the cybersecurity landscape. He also discusses the role disinformation on social media plays in cybersecurity.

In this episode, Curt Dukes, Executive Vice President and General Manager of the Center for Internet Security explains the need for their Community Defense Model. He also details their process for designing their models as a non-profit organization.

In this episode, Lisa Forte, Partner at Red Goad Cybersecurity discusses what happens when organizations go unprepared for inevitable cyber breach. She explains how practicing your breach plan is the best line of defense in preparing your strategy. 

In this episode, Tripwire's Senior UX Researcher, Martina Dove, uses her psychology research to explain to us how the brain operates when presented with a cyberscam. She also discusses her model for identifying fraud susceptibility and what we can do to prevent falling for these scams.   Check out Martina's book here: https://www.amazon.com/Psychology-Fraud-Persuasion-Scam-Techniques/dp/0367859564 Check out her blog articles on State of Security: https://www.tripwire.com/state-of-security/security-data-protection/sextortion-scams-how-they-persuade-and-what-to-watch-for/ https://www.tripwire.com/state-of-security/security-data-protection/top-scam-techniques-what-you-need-to-know/ https://www.tripwire.com/state-of-security/security-data-protection/phishing-attacks-often-target-small-businesses-heres-what-to-watch-for/ https://www.tripwire.com/state-of-security/security-data-protection/how-social-norms-can-be-exploited-by-scammers-on-social-media/

In this episode, Greg Wilson, CISO of Docupace, discussed the rise of ransomware during uncertain times (i.e. COVID pandemic), whether its here to stay, and how to prevent damage with security hygiene.

Jihana Barrett, CEO of Cybrsuite explains unpacks the security needs from not just from an enterprise perspective but for day-to-day life. She also tells us about how her organization, Tech Sorority, teaches aspiring women to break stereotypes in tech.

Emil Sayegh, president and CEO of Ntirety, unpacks of the issue of inauthentic identities opening doors to untraceable, fake social accounts and the impact that has on society. Emil is a cloud visionary and known as one of the "fathers of OpenStack."

Gary Hibberd, Professor of Communicating Cyber for Cyberfort and former head of business continuity and information security at various companies, teaches the importance of building resilience in your organization not just with technology, but with people and processes.

Dr. Eric Cole, former CISO and founder of Secure Anchor Consulting, explains how learning to communicate with business language can create a more compelling case for executive buy-in.

Anthony Israel-Davis joins the show to discuss what you can do with the DBIR as a practitioner and his perspective on the proposed Cybersecurity Safety Review Board.

Lane Thames, PhD and principal security researcher at Tripwire explains the challenges you might not have considered in IT/OT convergence

Through the lens of the Florida water supply hack, Dale Peterson teaches how events like these remind us to take the necessary steps to maintain our cybersecurity. Founder and chair of S4 Events, Dale has been helping security professionals effectively and efficiently manage risk to their critical assets for over 15 years.

Zoe Rose is a cybersecurity consultant and recognized as one of the 50 most influential women in cybersecurity. On this episode Zoe explains why it is important for the average person to be aware of privacy and shares tips for staying safe. Content warning: mentions of domestic abuse and violence

Chloe Messdaghi, VP of Strategy at Point3, advocate and activist joins the show to explain common misconceptions about the hacking community and how we can do better to combat those stigmas. She also unpacks the diversity challenges specifically in the infosec industry.

Recovering CISO and Director of (TL)2 Security Thom Langford joins the show to debate Tripwire’s Paul Edon on facial recognition vs. security.

Tripwire’s Brent Holder and Stephen Wood discuss recent study findings that provide a snapshot of what organizations are doing (and not doing) to secure their cloud.

The MITRE ATT&CK framework now includes sub-techniques that get more granular about specific adversary behaviors. Jen Burns, a lead engineer at MITRE and the cloud lead for ATT&CK, joins the show to discuss these updates and how the security community can make the most of them.

Tripwire's GM of Industrial Cybersecurity Kristen Poulos discusses the risks that come with the increasing number of connected devices operating on the plant floor and throughout facilities. She shares how IT can partner with OT to protect the safety, productivity, and quality of operations.

Tripwire's GM of Industrial Cybersecurity Kristen Poulos discusses the risks that come with the increasing number of connected devices operating on the plant floor and throughout facilities. She shares how IT can partner with OT to protect the safety, productivity, and quality of operations.

Tony Sager, Senior Vice President and Chief Evangelist at CIS (Center for Internet Security) joins us to discuss the best approaches to the changing security landscape in the wake of COVID-19. Tony is a lifelong defender, with more than 44 years of experience. He spent most of his career at the NSA and now leads the development of the CIS Controls, a worldwide consensus project to find and support technical best practices in cybersecurity.

Tripwire Principal Security Researcher Craig Young discusses vulnerabilities in MQTT, a lightweight messaging protocol increasingly used with the rise of IoT. His research found improper implementation and use of MQTT can put everything from locks and alarm systems to critical infrastructure at risk.

Mark Houpt has to stay on top of a vast range of compliance and security issues as the CISO at managed services and co-location data service provider Databank. He shares how he works with all organizations of all sorts to help them address a myriad of emerging regulations, standards and security issues across all industries and sectors.

It’s still getting harder and harder for organizations to staff their security teams. Anthony Israel-Davis and Onyeka Jones discuss the strain organizations are feeling and how they can find some relief.

Principal Security Researcher Travis Smith explains MITRE ATT&CK, a knowledge base of adversary tactics and techniques based on real-world observations. Travis is a contributor to the ATT&CK framework.

Originator of the phrase “The cloud is just someone else’s computer,” Graham Cluley stops by the Tripwire podcast to discuss the importance of keeping cybersecurity awareness fresh in the minds of the non-security community.

What does “attack surface” even mean today, and what will it look like tomorrow? Tripwire CTO David Meltzer breaks down the inside baseball terminology around cyber threats and what the modern attack surface looks like, how we got here, and where security professionals need to focus their attention.