POPULARITY
Speaking Of Show - Making Healthcare Work for You & Founder's Mission Series
For three decades, both Phil Koopman and Steve Wilson have been working in AI. They joined us on Making AI Work for You for a conversation about health tech safety and security. With exceptional backgrounds and unparalleled experience, they share their perspectives on: Why cybersecurity is an “arms race” How safety standards differ from machine learning testing The considerations about the level of agency you give an AI system Why there needs to be a human “captain of the ship” Struggles with the software supply chain Why it's critical to have rigorous engineering processes Phil is an associate professor at Carnegie Mellon University, is the originator of UL 4600, and has been working on self-driving cars for 30 years. Steve is CPO of Exabeam, is an author, a member of the TTIC, and is an expert in machine learning, LLMs, and cybersecurity. He's been working in AI since 1992. Topical time codes: 1:47 - Phil - The importance of humans in autonomous technology 5:10 - Phil - You need a captain of the ship for safety 7:04 - Steve - Agentic systems 11:09 - Steve - Software supply chains 15:39 - Phil - The challenge of making sure software is safe 17:54 - Phil - Testing doesn't prove safety 20:27 - Phil - The purpose & value of UL 4600 23:06 - Phil - You can't wait until something is on fire to put out the fire 24:16 - Steve - Culture of the Product environment 25:27 - Steve - Need for focus around safety and security for good decisions 26:07 - Phil - In embedded AI, there are real people on the other side 27:36 - Steve - Cybersecurity is an arms race 29:38 - Phil - People short-cut safety when they're in a rush Connect with Phil Koopman: https://www.linkedin.com/in/philip-koopman-0631a4116/ Learn more about UL 4600: https://ulse.org/ul-standards-engagement/autonomous-vehicle-technology Connect with Steve Wilson: https://www.linkedin.com/in/wilsonsd/ Learn more about Exabeam: https://www.linkedin.com/company/exabeam/ Connect with Sherri Douville: https://www.linkedin.com/in/sdouville/ Learn more about TTIC: https://medium.com/@news_52674/about
As Cybersecurity Awareness Month 2024 unfolds, it is critical for organizations, especially in Asia, to emphasize the tangible business value of cybersecurity investments. With cyber threats becoming increasingly sophisticated and pervasive, cybersecurity is no longer just an IT issue; it is a fundamental aspect of business resilience and growth. Demonstrating the return on investment (ROI) from cybersecurity initiatives can help secure ongoing support from stakeholders, drive informed decision-making, and foster a culture of security within the organization. By clearly articulating how cybersecurity investments protect assets, ensure compliance, and enhance customer trust, CISOs and CIOs can align security strategies with broader business objectives.In this PodChats for FutureCISO, Steve Wilson, chief product officer at Exabeam, offers his take on how to demonstrate the business value of cybersecurity investments.Key Questions for CISOs and CIOsWhat is the current practice for quantifying the ROI of cybersecurity investments?Is it possible to leverage cybersecurity investments to gain competitive advantage?What metrics can be used to measure the effectiveness of cybersecurity programs?What is a quick win in cybersecurity and what strategies can be implemented to demonstrate quick wins in cybersecurity?How can CISOs/CIOs align cybersecurity goals with overall business objectives?What is the most effective way to communicate cybersecurity risks to non-technical stakeholders?What frameworks or standards can CISOs/CIOs adopt to benchmark their cybersecurity efforts?What partnerships or collaborations can enhance an organisation's cybersecurity capabilities?We are coming into 2025, how can CISOs/CIOs ensure that their cybersecurity investments are scalable and future-proof?What is your vision in your role as chief product officer for Exabeam?
As Cybersecurity Awareness Month 2024 unfolds, it is critical for organizations, especially in Asia, to emphasize the tangible business value of cybersecurity investments. With cyber threats becoming increasingly sophisticated and pervasive, cybersecurity is no longer just an IT issue; it is a fundamental aspect of business resilience and growth. Demonstrating the return on investment (ROI) from cybersecurity initiatives can help secure ongoing support from stakeholders, drive informed decision-making, and foster a culture of security within the organization. By clearly articulating how cybersecurity investments protect assets, ensure compliance, and enhance customer trust, CISOs and CIOs can align security strategies with broader business objectives.In this PodChats for FutureCISO, Steve Wilson, chief product officer at Exabeam, offers his take on how to demonstrate the business value of cybersecurity investments.Key Questions for CISOs and CIOsWhat is the current practice for quantifying the ROI of cybersecurity investments?Is it possible to leverage cybersecurity investments to gain competitive advantage?What metrics can be used to measure the effectiveness of cybersecurity programs?What is a quick win in cybersecurity and what strategies can be implemented to demonstrate quick wins in cybersecurity?How can CISOs/CIOs align cybersecurity goals with overall business objectives?What is the most effective way to communicate cybersecurity risks to non-technical stakeholders?What frameworks or standards can CISOs/CIOs adopt to benchmark their cybersecurity efforts?What partnerships or collaborations can enhance an organisation's cybersecurity capabilities?We are coming into 2025, how can CISOs/CIOs ensure that their cybersecurity investments are scalable and future-proof?What is your vision in your role as chief product officer for Exabeam?
Guest: Steve Wilson, Chief Product Officer, Exabeam [@exabeam] & Project Lead, OWASP Top 10 for Larage Language Model Applications [@owasp]On LinkedIn | https://www.linkedin.com/in/wilsonsd/On Twitter | https://x.com/virtualsteve____________________________Host: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/sean-martinView This Show's Sponsors___________________________Episode NotesIn this episode of Redefining CyberSecurity, host Sean Martin sat down with Steve Wilson, chief product officer at Exabeam, to discuss the critical topic of secure AI development. The conversation revolved around the nuances of developing and deploying large language models (LLMs) in the field of cybersecurity.Steve Wilson's expertise lies at the intersection of AI and cybersecurity, a point he emphasized while sharing his journey from founding the Top 10 group for large language models to authoring his new book, "The Developer's Playbook for Large Language Model Security." In this insightful discussion, Wilson and Martin explore the roles of developers and product managers in ensuring the safety and security of AI systems.One of the key themes in the conversation is the categorization of AI applications into chatbots, co-pilots, and autonomous agents. Wilson explains that while chatbots are open-ended, interacting with users on various topics, co-pilots focus on enhancing productivity within specific domains by interacting with user data. Autonomous agents are more independent, executing tasks with minimal human intervention.Wilson brings attention to the concept of overreliance on AI models and the associated risks. Highlighting that large language models can hallucinate or produce unreliable outputs, he stresses the importance of designing systems that account for these limitations. Product managers play a crucial role here, ensuring that AI applications are built to mitigate risks and communicate their reliability to users effectively.The discussion also touches on the importance of security guardrails and continuous monitoring. Wilson introduces the idea of using tools akin to web app firewalls (WAF) or runtime application self-protection (RASP) to keep AI models within safe operational parameters. He mentions frameworks like Nvidia's open-source project, Nemo Guardrails, which aid developers in implementing these defenses.Moreover, the conversation highlights the significance of testing and evaluation in AI development. Wilson parallels the education and evaluation of LLMs to training and testing a human-like system, underscoring that traditional unit tests may not suffice. Instead, flexible test cases and advanced evaluation tools are necessary. Another critical aspect Wilson discusses is the need for red teaming in AI security. By rigorously testing AI systems and exploring their vulnerabilities, organizations can better prepare for real-world threats. This proactive approach is essential for maintaining robust AI applications.Finally, Wilson shares insights from his book, including the Responsible AI Software Engineering (RAISE) framework. This comprehensive guide offers developers and product managers practical steps to integrate secure AI practices into their workflows. With an emphasis on continuous improvement and risk management, the RAISE framework serves as a valuable resource for anyone involved in AI development.About the BookLarge language models (LLMs) are not just shaping the trajectory of AI, they're also unveiling a new era of security challenges. This practical book takes you straight to the heart of these threats. Author Steve Wilson, chief product officer at Exabeam, focuses exclusively on LLMs, eschewing generalized AI security to delve into the unique characteristics and vulnerabilities inherent in these models.Complete with collective wisdom gained from the creation of the OWASP Top 10 for LLMs list—a feat accomplished by more than 400 industry experts—this guide delivers real-world guidance and practical strategies to help developers and security teams grapple with the realities of LLM applications. Whether you're architecting a new application or adding AI features to an existing one, this book is your go-to resource for mastering the security landscape of the next frontier in AI.___________________________SponsorsImperva: https://itspm.ag/imperva277117988LevelBlue: https://itspm.ag/attcybersecurity-3jdk3___________________________Watch this and other videos on ITSPmagazine's YouTube ChannelRedefining CyberSecurity Podcast with Sean Martin, CISSP playlist:
Guest: Steve Wilson, Chief Product Officer, Exabeam [@exabeam] & Project Lead, OWASP Top 10 for Larage Language Model Applications [@owasp]On LinkedIn | https://www.linkedin.com/in/wilsonsd/On Twitter | https://x.com/virtualsteve____________________________Host: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/sean-martinView This Show's Sponsors___________________________Episode NotesIn this episode of Redefining CyberSecurity, host Sean Martin sat down with Steve Wilson, chief product officer at Exabeam, to discuss the critical topic of secure AI development. The conversation revolved around the nuances of developing and deploying large language models (LLMs) in the field of cybersecurity.Steve Wilson's expertise lies at the intersection of AI and cybersecurity, a point he emphasized while sharing his journey from founding the Top 10 group for large language models to authoring his new book, "The Developer's Playbook for Large Language Model Security." In this insightful discussion, Wilson and Martin explore the roles of developers and product managers in ensuring the safety and security of AI systems.One of the key themes in the conversation is the categorization of AI applications into chatbots, co-pilots, and autonomous agents. Wilson explains that while chatbots are open-ended, interacting with users on various topics, co-pilots focus on enhancing productivity within specific domains by interacting with user data. Autonomous agents are more independent, executing tasks with minimal human intervention.Wilson brings attention to the concept of overreliance on AI models and the associated risks. Highlighting that large language models can hallucinate or produce unreliable outputs, he stresses the importance of designing systems that account for these limitations. Product managers play a crucial role here, ensuring that AI applications are built to mitigate risks and communicate their reliability to users effectively.The discussion also touches on the importance of security guardrails and continuous monitoring. Wilson introduces the idea of using tools akin to web app firewalls (WAF) or runtime application self-protection (RASP) to keep AI models within safe operational parameters. He mentions frameworks like Nvidia's open-source project, Nemo Guardrails, which aid developers in implementing these defenses.Moreover, the conversation highlights the significance of testing and evaluation in AI development. Wilson parallels the education and evaluation of LLMs to training and testing a human-like system, underscoring that traditional unit tests may not suffice. Instead, flexible test cases and advanced evaluation tools are necessary. Another critical aspect Wilson discusses is the need for red teaming in AI security. By rigorously testing AI systems and exploring their vulnerabilities, organizations can better prepare for real-world threats. This proactive approach is essential for maintaining robust AI applications.Finally, Wilson shares insights from his book, including the Responsible AI Software Engineering (RAISE) framework. This comprehensive guide offers developers and product managers practical steps to integrate secure AI practices into their workflows. With an emphasis on continuous improvement and risk management, the RAISE framework serves as a valuable resource for anyone involved in AI development.About the BookLarge language models (LLMs) are not just shaping the trajectory of AI, they're also unveiling a new era of security challenges. This practical book takes you straight to the heart of these threats. Author Steve Wilson, chief product officer at Exabeam, focuses exclusively on LLMs, eschewing generalized AI security to delve into the unique characteristics and vulnerabilities inherent in these models.Complete with collective wisdom gained from the creation of the OWASP Top 10 for LLMs list—a feat accomplished by more than 400 industry experts—this guide delivers real-world guidance and practical strategies to help developers and security teams grapple with the realities of LLM applications. Whether you're architecting a new application or adding AI features to an existing one, this book is your go-to resource for mastering the security landscape of the next frontier in AI.___________________________SponsorsImperva: https://itspm.ag/imperva277117988LevelBlue: https://itspm.ag/attcybersecurity-3jdk3___________________________Watch this and other videos on ITSPmagazine's YouTube ChannelRedefining CyberSecurity Podcast with Sean Martin, CISSP playlist:
Guest: Steve Wilson, Chief Product Officer, Exabeam [@exabeam] & Project Lead, OWASP Top 10 for Larage Language Model Applications [@owasp]On LinkedIn | https://www.linkedin.com/in/wilsonsd/On Twitter | https://x.com/virtualsteve____________________________Hosts: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/sean-martinMarco Ciappelli, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining Society PodcastOn ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/marco-ciappelli____________________________Episode NotesIn this episode of the Chat on the Road On Location series for OWASP AppSec Global in San Francisco, Sean Martin hosts a compelling conversation with Steve Wilson, Project Lead for the OWASP Top 10 for Large Language Model AI Applications. The discussion, as you might guess, centers on the OWASP Top 10 list for Large Language Models (LLMs) and the security challenges associated with these technologies. Wilson highlights the growing relevance of AppSec, particularly with the surge in interest in AI and LLMs.The conversation kicks off with an exploration of the LLM project that Wilson has been working on at OWASP, aimed at presenting an update on the OWASP Top 10 for LLMs. Wilson emphasizes the significance of prompt injection attacks, one of the key concerns on the OWASP list. He explains how attackers can craft prompts to manipulate LLMs into performing unintended actions, a tactic reminiscent of the SQL injection attacks that have plagued traditional software for years. This serves as a stark reminder of the need for vigilance in the development and deployment of LLMs.Supply chain risks are another critical issue discussed. Wilson draws parallels to the Log4j incident, stressing that the AI software supply chain is currently a weak link. With the rapid growth of platforms like Hugging Face, the provenance of AI models and training datasets becomes a significant concern. Ensuring the integrity and security of these components is paramount to building robust AI-driven systems.The notion of excessive agency is also explored—a concept that relates to the permissions and responsibilities assigned to LLMs. Wilson underscores the importance of limiting the scope of LLMs to prevent misuse or unauthorized actions. This point resonates with traditional security principles like least privilege but is recontextualized for the AI age. Overreliance on LLMs is another topic Martin and Wilson discuss.The conversation touches on how people can place undue trust in AI outputs, leading to potentially hazardous outcomes. Ensuring users understand the limitations and potential inaccuracies of LLM-generated content is essential for safe and effective AI utilization.Wilson also provides a preview of his upcoming session at the OWASP AppSec Global event, where he plans to share insights from the ongoing work on the 2.0 version of the OWASP Top 10 for LLMs. This next iteration will address how the field has matured and new security considerations that have emerged since the initial list.Be sure to follow our Coverage Journey and subscribe to our podcasts!____________________________This Episode's SponsorsAre you interested in sponsoring our event coverage with an ad placement in the podcast?Learn More
Guest: Steve Wilson, Chief Product Officer, Exabeam [@exabeam] & Project Lead, OWASP Top 10 for Larage Language Model Applications [@owasp]On LinkedIn | https://www.linkedin.com/in/wilsonsd/On Twitter | https://x.com/virtualsteve____________________________Hosts: Sean Martin, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining CyberSecurity Podcast [@RedefiningCyber]On ITSPmagazine | https://www.itspmagazine.com/sean-martinMarco Ciappelli, Co-Founder at ITSPmagazine [@ITSPmagazine] and Host of Redefining Society PodcastOn ITSPmagazine | https://www.itspmagazine.com/itspmagazine-podcast-radio-hosts/marco-ciappelli____________________________Episode NotesIn this episode of the Chat on the Road On Location series for OWASP AppSec Global in San Francisco, Sean Martin hosts a compelling conversation with Steve Wilson, Project Lead for the OWASP Top 10 for Large Language Model AI Applications. The discussion, as you might guess, centers on the OWASP Top 10 list for Large Language Models (LLMs) and the security challenges associated with these technologies. Wilson highlights the growing relevance of AppSec, particularly with the surge in interest in AI and LLMs.The conversation kicks off with an exploration of the LLM project that Wilson has been working on at OWASP, aimed at presenting an update on the OWASP Top 10 for LLMs. Wilson emphasizes the significance of prompt injection attacks, one of the key concerns on the OWASP list. He explains how attackers can craft prompts to manipulate LLMs into performing unintended actions, a tactic reminiscent of the SQL injection attacks that have plagued traditional software for years. This serves as a stark reminder of the need for vigilance in the development and deployment of LLMs.Supply chain risks are another critical issue discussed. Wilson draws parallels to the Log4j incident, stressing that the AI software supply chain is currently a weak link. With the rapid growth of platforms like Hugging Face, the provenance of AI models and training datasets becomes a significant concern. Ensuring the integrity and security of these components is paramount to building robust AI-driven systems.The notion of excessive agency is also explored—a concept that relates to the permissions and responsibilities assigned to LLMs. Wilson underscores the importance of limiting the scope of LLMs to prevent misuse or unauthorized actions. This point resonates with traditional security principles like least privilege but is recontextualized for the AI age. Overreliance on LLMs is another topic Martin and Wilson discuss.The conversation touches on how people can place undue trust in AI outputs, leading to potentially hazardous outcomes. Ensuring users understand the limitations and potential inaccuracies of LLM-generated content is essential for safe and effective AI utilization.Wilson also provides a preview of his upcoming session at the OWASP AppSec Global event, where he plans to share insights from the ongoing work on the 2.0 version of the OWASP Top 10 for LLMs. This next iteration will address how the field has matured and new security considerations that have emerged since the initial list.Be sure to follow our Coverage Journey and subscribe to our podcasts!____________________________This Episode's SponsorsAre you interested in sponsoring our event coverage with an ad placement in the podcast?Learn More
Pat Moorhead and Daniel Newman sat down with Sam Burd to discuss AI PCs at Dell Tech World. These new PCs include significant new AI integrations, and Dell expects these to initiate a "super cycle" of PC upgrades. We discussed the importance of Qualcomm Snapdragon X Elite earlier in the program, but what should we make of the market for AI PCs? This and more announcements from Dell Tech World on The Rundown. Time Stamps: 0:00 - Welcome to The Rundown 1:00 - Dell Writes a HYCU in their PowerProtect DataDomain 3:36 - GitHub Patches Massive Security Hole in Enterprise Servers 6:45 - Palo Alto Networks Acquires IBM QRadar 10:35 - Exabeam and LogRhythm to Merge to Strengthen AI-Driven Security Future 14:00 - PC Makers Debut AI PCs with Microsoft CoPilot+ 19:36 - CoPilot+ Totally Recalls Everything 23:09 - Announcements from Dell Tech World 23:55 - Dell AI Factory Using NVIDIA for AI Adoption 26:55 - Dell collaborates with NVIDIA, Microsoft, and ServiceNow on Dell NativeEdge 32:50 - Dell PowerStore using APEX AI innovations to Improve Storage Performance, Efficiency, and Resiliency 36:08 - Dell's AI PCs using Copilot+ 47:22 - The Weeks Ahead Hosts: Tom Hollingsworth: https://www.twitter.com/NetworkingNerd Stephen Foskett: https://www.twitter.com/SFoskett Follow Gestalt IT Website: https://www.GestaltIT.com/ Twitter: https://www.twitter.com/GestaltIT LinkedIn: https://www.linkedin.com/company/Gestalt-IT Tags: #Rundown, #DellTechWorld, #Copilot, #AI, @TheSixFiveMedia, @TheFuturumGroup, @TechFieldDay, @GestaltIT, @SFoskett, @NetworkingNerd, @DellTech, @DanielNewmanUV, @Krista_Lee, @PatrickMoorhead, @HYCU_Inc, @GitHub, @IBM, @PaloAltoNtwks, @LogRhythm, @Exabeam, @Qualcomm, @DellTech, @Lenovo, @HP, @Microsoft, @NVIDIA, @ServiceNow,
Take a Network Break! This week we discuss what IBM and Palo Alto Networks get out of a deal for Palo Alto Networks to buy the SaaS version of the QRadar SIEM from IBM, why LogRhythm is merging with Exabeam, and how Google is positioning its latest AI chip to take on the Nvidia juggernaut.... Read more »
Take a Network Break! This week we discuss what IBM and Palo Alto Networks get out of a deal for Palo Alto Networks to buy the SaaS version of the QRadar SIEM from IBM, why LogRhythm is merging with Exabeam, and how Google is positioning its latest AI chip to take on the Nvidia juggernaut.... Read more »
Take a Network Break! This week we discuss what IBM and Palo Alto Networks get out of a deal for Palo Alto Networks to buy the SaaS version of the QRadar SIEM from IBM, why LogRhythm is merging with Exabeam, and how Google is positioning its latest AI chip to take on the Nvidia juggernaut.... Read more »
Private equity giant Thoma Bravo has announced that its security information and event management (SIEM) company LogRhythm will be merging with Exabeam, a rival cybersecurity company backed by the likes of Cisco and Lightspeed Venture Partners. Learn more about your ad choices. Visit podcastchoices.com/adchoices
Suddenly SIEMs are all over the news! In a keynote presentation, Crowdstrike CEO George Kurtz talked about the company's "next-gen" SIEM. Meanwhile, Palo Alto, who was taken to task by some for not having an active presence on the RSAC expo floor, hits the headlines for acquiring IBM's SIEM product, just to shut it down! Meanwhile, LogRhythm and Exabeam merge, likely with the hopes of weathering the coming storm. The situation seems clear - there's no such thing as "best of breed" SIEM anymore. It's a commodity to be attached to the existing dominant security platforms. Are the days numbered for the older pure-play SIEM/SOAR vendors out there? Crowdstrike and Palo Alto alone could displace a lot of incumbents, even with a less than stellar product. Visit the show notes for full descriptions on each RSAC executive interview! Show Notes: https://securityweekly.com/esw-362
During the earnings call, Cisco Systems acknowledged the competitive landscape in cybersecurity and observability, as evidenced by Palo Alto Networks' acquisition of Exabeam. However, Cisco highlighted its strategic strengths in these areas, emphasizing the value of an integrated, unified platform for end-to-end security and insightful solutions.The company stated its focus on the immediate integration of its XDR (Extended Detection and Response) solution with Splunk Enterprise Security, showcasing its commitment to harnessing the combined strengths of Cisco and Splunk. This integration represents progress in developing seamless product alliances, innovative solutions, and robust go-to-market strategies.Furthermore, Cisco has integrated AI capabilities into its cybersecurity offerings, such as Cisco Hypershield, to differentiate itself from competitors relying on standalone products. The company asserted that embedding security within the network fabric provides a unique and significant market differentiation.Cisco's strategic emphasis on integration, AI capabilities, and unified platforms in cybersecurity and observability positions the company to leverage market opportunities and address evolving industry challenges effectively.Navigating Macroeconomic Challenges and Sector-Specific DynamicsWhile Cisco experienced revenue declines in its core networking business due to inventory implementations, its security and observability segments saw growth driven by innovations and the integration of Splunk. The company acknowledged the ongoing macroeconomic challenges, particularly in the telco and cable segments, although some stabilization was noted in the Webscale sector.Cisco's CEO, Chuck Robbins, stated, "So from a macro perspective, what I would say is that ironically, we saw the quarter actually slow -- showed slight improvement as we move through the quarter." The company's strong cash flow and strategic investments in AI, security, and the Splunk integration position it well for future growth, despite these headwinds.Balancing Growth Opportunities and Competitive PressuresCisco Systems reported mixed financial results, with revenues for Q3 down 13% year-over-year at $12.7 billion, primarily due to reduced product revenue. However, service revenue saw a 6% uptick, and the recent acquisition of Splunk added $413 million post-close, boosting annualized recurring revenue to $29.2 billion. Gross margins remained strong at 68.3%, and operating margins stayed steady.While the company faced declines in its core networking business, key customer sectors like data center and campus switching, security, and collaboration witnessed order increases. Capital returns to shareholders amounted to a robust $2.9 billion in Q3.Moving forward, Cisco Systems must navigate the competitive waters while capitalizing on growth opportunities in cybersecurity and observability. The company's strategic focus on integration, AI capabilities, and unified platforms positions it to address evolving industry challenges and leverage market opportunities effectively. This is a public episode. If you would like to discuss this with other subscribers or get access to bonus episodes, visit theearningscall.substack.com
Suddenly SIEMs are all over the news! In a keynote presentation, Crowdstrike CEO George Kurtz talked about the company's "next-gen" SIEM. Meanwhile, Palo Alto, who was taken to task by some for not having an active presence on the RSAC expo floor, hits the headlines for acquiring IBM's SIEM product, just to shut it down! Meanwhile, LogRhythm and Exabeam merge, likely with the hopes of weathering the coming storm. The situation seems clear - there's no such thing as "best of breed" SIEM anymore. It's a commodity to be attached to the existing dominant security platforms. Are the days numbered for the older pure-play SIEM/SOAR vendors out there? Crowdstrike and Palo Alto alone could displace a lot of incumbents, even with a less than stellar product. Visit the show notes for full descriptions on each RSAC executive interview! Show Notes: https://securityweekly.com/esw-362
Suddenly SIEMs are all over the news! In a keynote presentation, Crowdstrike CEO George Kurtz talked about the company's "next-gen" SIEM. Meanwhile, Palo Alto, who was taken to task by some for not having an active presence on the RSAC expo floor, hits the headlines for acquiring IBM's SIEM product, just to shut it down! Meanwhile, LogRhythm and Exabeam merge, likely with the hopes of weathering the coming storm. The situation seems clear - there's no such thing as "best of breed" SIEM anymore. It's a commodity to be attached to the existing dominant security platforms. Are the days numbered for the older pure-play SIEM/SOAR vendors out there? Crowdstrike and Palo Alto alone could displace a lot of incumbents, even with a less than stellar product. Show Notes: https://securityweekly.com/esw-362
Suddenly SIEMs are all over the news! In a keynote presentation, Crowdstrike CEO George Kurtz talked about the company's "next-gen" SIEM. Meanwhile, Palo Alto, who was taken to task by some for not having an active presence on the RSAC expo floor, hits the headlines for acquiring IBM's SIEM product, just to shut it down! Meanwhile, LogRhythm and Exabeam merge, likely with the hopes of weathering the coming storm. The situation seems clear - there's no such thing as "best of breed" SIEM anymore. It's a commodity to be attached to the existing dominant security platforms. Are the days numbered for the older pure-play SIEM/SOAR vendors out there? Crowdstrike and Palo Alto alone could displace a lot of incumbents, even with a less than stellar product. Show Notes: https://securityweekly.com/esw-362
Gianna Driver, CHRO at Exabeam, joined us on The Modern People Leader. We talked about how Exabeam's HR team built their AI roadmap and which AI for HR use cases have been the most successful for them. ---- [02:00] - Good news stories [06:00] - Gianna's career journey and her unexpected path into HR [10:00] - Discussion on pivotal career moments and the importance of supportive leadership [13:00] - Learning from failures [17:00] - Gianna talks about the integration and challenges of implementing AI within HR at Exabeam [21:00] - Initial failures and subsequent successes in adopting AI for HR at Exabeam [25:00] - Practical applications of AI in writing job descriptions and updating employee handbooks [30:00] - The potential and limitations of AI in handling complex HR tasks and strategic decision-making [34:00] - Gianna offers her perspectives on the future roles of AI in enhancing employee experience and development [40:00] - Discussing the ethical considerations and policy frameworks necessary for AI deployment in HR [45:00] - Closing thoughts on the importance of courage and innovation in HR ----
Send us a Text Message.Tyler Farrar, CISO at Exabeam, shared his background, including his experience as a naval officer and his journey to becoming a CISO at Exabeam. He discussed the “State of Threat Detection, Investigation, and Response” November 2023 report., which aims to shed light on cybersecurity threats and defenses from a global perspective, uncovering disparities and highlighting critical areas for improvement. He also talked about the transformation of the CISO role, the evolving dynamics of bad actors in cybercrime, and the cybersecurity posture of companies.The conversation also revolved around the challenges faced by insurance companies in insuring cybersecurity risks, the development of incident response playbooks, and the impact of AI in cybersecurity. Tyler emphasized the never-ending nature of cybersecurity and the need for professionals to remain agile in their approach.Key stats from the report include: More than one in two organizations experienced significant security incidents in the last year that required extra resources to mitigate — despite 70% of organizations reporting better performances on key cybersecurity KPIs Organizations globally report that they can only monitor 66% of IT environments — leaving significant gaps in coverage 53% of organizations have automated less than 50% of their TDIR workflows To learn more, visit www.exabeam.com/contact/get-in-touch
In this podcast episode, Angelique Cuevas, the Director of Talent Acquisition at Exabeam, shares insights about her journey from an individual contributor role to a leadership position. Discussing her initial struggle with the shifting dynamics of peer relationships, Cuevas presents various strategic approaches and methods implemented to ensure smooth transitions within the company. She highlights the need to learn and unlearn in this ever-evolving professional landscape. She also emphasizes the role of communication, delegation, and understanding individual career growth paths in successful people management. Highlights: 01:19 Transitioning from Individual Contributor to Leader 02:22 Angelique's Journey to Leadership 04:39 Challenges of Becoming a People Leader 07:03 The Importance of Talent Acquisition 08:33 Navigating Relationship Dynamics as a New Manager 12:39 Learning from Mistakes and Adapting Strategy 18:36 Empowering Team Members and Facilitating Growth Guest: Angelique Cuevas began her career in social work, volunteering as the Outreach Counselor. In this role, she attended county events to promote the services of the group home, a period during which she discovered a passion for connecting with and assisting people. This realization prompted a career transition into the tech startup sector, where she worked closely with the HR department. Eventually, Angelique took on full responsibility for managing all aspects of Recruiting, including training, system implementation, interview best practices, and the hiring and onboarding processes. https://www.linkedin.com/in/angelique-cuevas-918864a3/ ------ Thank you so much for checking out this episode of The Talent Tango, and we would appreciate it if you would take a minute to rate and review us on your favorite podcast player. Want to learn more about us? Head over at https://www.elevano.com Have questions or want to cover specific topics with our future guests? Please message me at https://www.linkedin.com/in/amirbormand (Amir Bormand)
Hello and welcome to Get It Started Get It Done, the Banyan Security podcast covering the security industry and beyond. In this episode, our host and Banyan's Chief Security Officer Den Jones speaks with Tyler Farrar. Tyler is CISO at Exabeam and is a veteran security leader with a background in defense department cyber operations and the US Navy. We hope you enjoy Den's discussion with Tyler Farrar. About Tyler: Tyler Farrar is the Chief Information Security Officer (CISO) at Exabeam. In this role, he is responsible for protecting Exabeam – its employees, customers, and data assets – against present and future digital threats. Farrar also leads efforts in supporting current and prospective customers' move to the Exabeam cloud-native New-Scale SIEM and security operations platform by helping them to address cloud security compliance barriers. With over 17 years of broad and diversified technical experience, Farrar is recognized as a business-focused and results-oriented leader with a proven track record of advancing organizational security programs. Prior to Exabeam, Farrar was responsible for the strategy and execution of the information security program at Maxar Technologies, which included security operations, infrastructure governance, cyber assurance, and USG program protection functions. As a former Naval Officer, he managed multiple projects and cyber operations for a multimillion-dollar U.S. Department of Defense program. Farrar earned an MBA from the University of Maryland and a Bachelor of Science in Aerospace Engineering from the United States Naval Academy. He also holds a variety of technical and professional certifications, including the Certified Information Systems Security Professional (CISSP) certification.
Join us on this episode as we chat with Gianna from Exabeam, exploring her journey from a budding doctor to a seasoned HR professional in cybersecurity. Dive into the nuances of HR, where human emotions intersect with business strategy. Gianna discusses the art of balancing employee needs with business goals, the role of communication in a growing company, and the power of empowering employees. Discover her insights on leveraging AI in HR for employee engagement and people analytics. Tune in to understand why this is an exhilarating era for HR and people operations, where technology enhances human potential in the workplace. More about Gianna and Exabeam: https://www.linkedin.com/in/gianna-driver-6183391/ https://www.linkedin.com/company/exabeam/ https://www.exabeam.com/ hyrd: https://hyrd.ai/ https://www.instagram.com/gethyrd/ https://www.linkedin.com/company/gethyrd/ https://www.facebook.com/gethyrd/ https://twitter.com/gethyrd CHECK OUT OUR OTHER PODCAST!!! get hyrd Podcast: https://www.youtube.com/@gethyrd https://open.spotify.com/show/2OHMNxXljWpKs1hU5eDqm2 https://podcasts.apple.com/us/podcast/get-hyrd/id1621089768 https://music.amazon.de/podcasts/d9924d00-9a8d-4882-9b27-b2f4d7fa9e2e/get-hyrd
Los aeropuertos son las infraestructuras críticas que más prevén invertir en ciberseguridad hasta 2030. Son un servicio esencial y un ciberataque puede tener un impacto de consecuencias imprevisibles en la seguridad de una región o un país. El piloto y experto en ciberseguridad aérea Hugo Teso nos desvela cuáles son algunas de las vulnerabilidades de mayor impacto que tiene este sector esencial. De la mano del CISO de Iberia, Jesús Mérida, conocemos cómo se gestiona la ciberseguridad de la mayor aerolínea española y cómo se integra en un sector con tanta tradición en la seguridad física. Y debatimos sobre el papel de la inteligencia artificial y de los sistemas de machine learning de análisis del comportamiento en la defensa y respuesta a ciberamenazas con Gorka Sadowski (director de Estrategia de Exabeam), Fabio Peña (CISO de Copa Airlines) e Irving J. Ferguson (Vicepresidente de Tecnología e Innovación del Aeropuerto de Tocumen en Panamá). Para más información visita www.cuidadoconlasmacrosocultas.com See omnystudio.com/listener for privacy information.
In this episode we wanted to put together for our listeners some of the best of our innovations in talent and culture chats. Shauna Geraghty, SVP & Global Head of People & Talent at Talkdesk, will share invaluable insights on optimizing the quality of hire. Debbie Shotwell, CPO at Stack Overflow, will delve into the secrets of developing a strong and vibrant company culture. Gianna Driver, CHRO at Exabeam, will challenge traditional notions of 'culture fit' and explore how embracing 'culture add' can ignite innovation within your organization. 1:15 Shauna Geraghty, SVP & Global Head of People & Talent at Talkdesk - Optimizing the quality of hire9:18 Debbie Shotwell, CPO at Stack Overflow - Employee well-being and onboarding process15:03 Gianna Driver, CHRO at Exabeam - Shifting culture fit to culture add Thank you to our sponsor, SecureVision, for making this show possible! Our host James Mackey Follow us:https://www.linkedin.com/company/82436841/#1 Rated Embedded Recruitment Firm on G2!https://www.g2.com/products/securevision/reviewsThanks for listening!
Ready to revolutionize your hiring process and build high-performing teams that add value to your organization? Join our host James Mackey and Gianna Driver, Chief Human Resources Officer at Exabeam, and discover how to redefine 'culture fit' as 'culture add,' and boost innovation. They share insights on measuring diversity impact, addressing performance issues, and handling workplace toxicity in the tech sector. 0:34 Gianna Driver's background 1:43 Effective hiring for high-performing teams11:38 Building diverse and inclusive workplaces16:52 Handling workplace toxicity in the tech sector.21:35 Importance of employee sentiment and feedback Thank you to our sponsor, SecureVision, for making this show possible! Our host James Mackey Follow us:https://www.linkedin.com/company/82436841/#1 Rated Embedded Recruitment Firm on G2!https://www.g2.com/products/securevision/reviewsThanks for listening!
In this episode of The Stream Life Podcast, Cribl's Desi Gavis-Hughson and Exabeam's Chris Stewart join the show to talk about the big news out of Black Hat 2023: Cribl and Exabeam's strategic partnership! Resources Press Release Blog Cribl's solutions with Exabeam If you want to automatically get every episode of the Stream Life podcast, you can subscribe on your favorite podcast app.
Aarna's News | Inspiring and Uplifting Stories of Women In STEM
Join industry experts, trailblazers, and advocates, including Ronit Polak, VP of Engineering at Exabeam and President of Women in Cybersecurity Silicon Valley Affiliate, as we explore strategies for overcoming gender bias in the workplace. Gain insights into personal stories, challenges faced by women, and practical solutions to foster equality and create inclusive work environments. Let's shatter the glass ceiling and empower everyone to thrive. Don't miss this thought-provoking episode! Ronit's Information Resources Mentioned: Lean In by Sheryl Sandberg --- Support this podcast: https://podcasters.spotify.com/pod/show/aarna-sahu/support
This week, host Sagi Eliyahu is joined by Gianna Driver, Chief Human Resources Officer at Exabeam. The focus of the conversation is on empathy and transparency with the people in an organization.Topics discussed include:- The amount of change and destabilization humans have gone through in the past few years.- The role of empathy in attracting and retaining talent in the workplace.- The importance of being empathic while still holding people accountable.- Tools and technology that allow people to anonymously express their opinions or feelings.- Transparency and openness in an organization.Gianna Driver - https://www.linkedin.com/in/gianna-driver-6183391/Exabeam - https://www.linkedin.com/company/exabeam/This episode is brought to you by Tonkean. Tonkean is the operating system for business operations and is the enterprise standard for process orchestration. It provides businesses with the building blocks to orchestrate any process, with no code or change management required. Contact us at tonkean.com to learn how you can build complex business processes. Fast.#Operations #BusinessOperations
When we talk about diversity, equity, and inclusion, or DEI, some leaders still roll their eyes or assume they have bigger fish to fry. But, happily, the trendline shows that companies that can move beyond diversity into true inclusivity experience sustained growth, higher performance, and more revenue. They are the ones harnessing more innovation, attracting top talent, getting more ideas and innovation from their people, and frankly, making smarter business decisions.Today, I talk to Gianna Driver about how DEI efforts support organizational goals and the link between DEI efforts and bottom-line performance. She shares how a company can make the leap from a diverse culture to a truly inclusive one in order to better enjoy those benefits. Gianna shares the ground rules you need to set to make DEI work, and how to be empathetic to - yet manage executive resistance to change. And we talk about her personal story growing up Filipino-American and how it shaped her passion for empowering people. Key Takeaways:People are at the heart and center of everything you do. If you are trying to make a change in your organization, you need to remember that. Healthy relationships have conflict. What matters is not the existence of conflict, but how individuals resolve conflict; the same is true of organizations.We do not leave our humanity at the door when we come to work. Employees need to be treated as humans with respect and multiple facets of their lives. When employees thrive, they bring their best selves to work and have higher performance as a result. "Conflict is necessary for high performance and innovation. What differentiates are those organizations who have found ways to create spaces where people can respectfully and healthfully disagree and come up with better solutions together." — Gianna Driver About Gianna Driver, CHRO, ExabeamGianna Driver is Chief Human Resources Officer (CHRO) at Exabeam, a global cybersecurity leader that adds intelligence to every IT and security stack. As CHRO, Driver manages the strategy and processes related to building, investing in, and retaining top talent at Exabeam, enabling employees to do their best work. She is responsible for architecting the company's talent strategy, driving corporate culture and diversity, equity and inclusion (DEI) initiatives, and leading the global human resources function. Prior to Exabeam, Driver was the Chief People Officer at BlueVine, a private fin-tech company based in Redwood City, CA. Driver has also led HR and People functions in high-growth technology, gaming, consumer, and SaaS organizations including Playstudios, Aristocrat, Actian Corporation, Talend, and Balsam Brands. She is passionate about building high-performance cultures, establishing operational excellence, and creating joy at work. Driver is a graduate of The Wharton School of the University of Pennsylvania.References MentionedThe Empathy Edge podcast: M.E. Hart: How to Have Honest Conversations at WorkConnect with Gianna DriverWebsite: https://exabeam.comLinkedIn: https://www.linkedin.com/in/gianna-driver-6183391/ Don't forget to download your free guide! Discover The 5 Business Benefits of Empathy: http://red-slice.com/business-benefits-empathy Connect with Maria: Get the podcast and book: TheEmpathyEdge.comLearn more about Maria and her work: Red-Slice.comHire Maria to speak at your next event: Red-Slice.com/Speaker-Maria-RossTake my LinkedIn Learning Course! Leading with EmpathyLinkedIn: Maria RossInstagram: @redslicemariaTwitter: @redsliceFacebook: Red Slice
When we talk about diversity, equity, and inclusion, or DEI, some leaders still roll their eyes or assume they have bigger fish to fry. But, happily, the trendline shows that companies that can move beyond diversity into true inclusivity experience sustained growth, higher performance, and more revenue. They are the ones harnessing more innovation, attracting top talent, getting more ideas and innovation from their people, and frankly, making smarter business decisions.Today, I talk to Gianna Driver about how DEI efforts support organizational goals and the link between DEI efforts and bottom-line performance. She shares how a company can make the leap from a diverse culture to a truly inclusive one in order to better enjoy those benefits. Gianna shares the ground rules you need to set to make DEI work, and how to be empathetic to - yet manage executive resistance to change. And we talk about her personal story growing up Filipino-American and how it shaped her passion for empowering people. Key Takeaways:People are at the heart and center of everything you do. If you are trying to make a change in your organization, you need to remember that. Healthy relationships have conflict. What matters is not the existence of conflict, but how individuals resolve conflict; the same is true of organizations.We do not leave our humanity at the door when we come to work. Employees need to be treated as humans with respect and multiple facets of their lives. When employees thrive, they bring their best selves to work and have higher performance as a result. "Conflict is necessary for high performance and innovation. What differentiates are those organizations who have found ways to create spaces where people can respectfully and healthfully disagree and come up with better solutions together." — Gianna Driver About Gianna Driver, CHRO, ExabeamGianna Driver is Chief Human Resources Officer (CHRO) at Exabeam, a global cybersecurity leader that adds intelligence to every IT and security stack. As CHRO, Driver manages the strategy and processes related to building, investing in, and retaining top talent at Exabeam, enabling employees to do their best work. She is responsible for architecting the company's talent strategy, driving corporate culture and diversity, equity and inclusion (DEI) initiatives, and leading the global human resources function. Prior to Exabeam, Driver was the Chief People Officer at BlueVine, a private fin-tech company based in Redwood City, CA. Driver has also led HR and People functions in high-growth technology, gaming, consumer, and SaaS organizations including Playstudios, Aristocrat, Actian Corporation, Talend, and Balsam Brands. She is passionate about building high-performance cultures, establishing operational excellence, and creating joy at work. Driver is a graduate of The Wharton School of the University of Pennsylvania.References MentionedThe Empathy Edge podcast: M.E. Hart: How to Have Honest Conversations at WorkConnect with Gianna DriverWebsite: https://exabeam.comLinkedIn: https://www.linkedin.com/in/gianna-driver-6183391/ Don't forget to download your free guide! Discover The 5 Business Benefits of Empathy: http://red-slice.com/business-benefits-empathy Connect with Maria: Get the podcast and book: TheEmpathyEdge.comLearn more about Maria and her work: Red-Slice.comHire Maria to speak at your next event: Red-Slice.com/Speaker-Maria-RossTake my LinkedIn Learning Course! Leading with EmpathyLinkedIn: Maria RossInstagram: @redslicemariaTwitter: @redsliceFacebook: Red Slice
My guest is cybersecurity expert Samantha Humphries. She has over 21 years of experience in cyber security, and during this time has held a plethora of titles, one of her favourites being Global Threat Response Manager. Sam has defined strategies for multiple security products and technologies, helped hundreds of organisations of all shapes, sizes, and geographies recover and learn from cyberattacks, and trained anyone who'll listen to security concepts and solutions. In her current role, she heads up marketing and security strategy for Exabeam in EMEA.She authors articles for various security publications, speaks frequently at industry events and enjoys mentoring new practitioners and speakers. Sam also volunteers at community events, including BSides, The Diana Initiative, and Defcon Blue Team Village.We discussed all things cybersecurity, password security, privacy screens, the future of cybersecurity, diversity and inclusion, and the skills gap in Cybersecurity.More on SamanthaSamantha on LinkedInSamantha on TwitterExabeam websiteYour Host: Actionable Futurist® Andrew GrillFor more on Andrew - what he speaks about and recent talks, please visit ActionableFuturist.com Andrew's Social ChannelsAndrew on LinkedIn@AndrewGrill on Twitter @Andrew.Grill on InstagramKeynote speeches hereAndrew's upcoming book
“The aim of a headline is not to impress the prospect,” Flint McGlaughlin teaches in Headline Writing: 4 principles that could drive down your website bounce rate (https://meclabs.com/course/sessions/headline-writing/).I realized that lesson could apply equally well to internal communications, during my latest podcast discussion. Do we spend too much time trying to impress our managers and team internally? Should we just give them the most accurate information and let them come to their own conclusions? As our guest taught – “bad news doesn't get better with age” and sometimes you just need to “eat the frog.” In other words, stop trying to impress your leaders and your team and just give it to them straight, and quickly. You can hear that conversation, along with many more lesson-filled stories, from my discussion with Sherry Lowe, Chief Marketing Officer, Exabeam (https://www.exabeam.com/).Lowe manages a team of 50 marketing and sales professionals at Exabeam.Exabeam is the ninth-fastest growing company in the Bay Area, according to the San Francisco Business Times. The cybersecurity company has reached unicorn status, with a valuation of $2.4 billion based on its most recent round of funding.Some lessons from Lowe that emerged in our discussion:Always bring the customer story forward.Contributed articles can be used to help ease burdens on editorial staffs.Honor your brand.Marketing and sales can't succeed without the otherBad news doesn't get better with age.Always care about your people.Related content mentioned in this episodeCustomer Experience: Take risks, fail early, and learn fast (podcast episode #32) (https://www.marketingsherpa.com/article/interview/customer-experience)The Indefensible Blog Post: Forget Charlie Sheen, here are 5 marketing lessons from marketers (https://sherpablog.marketingsherpa.com/marketing/marketing-lessons-peers/)Kellblog (https://kellblog.com/)Product Management & Marketing: Surround yourself with the right people (podcast episode #38) (https://www.marketingsherpa.com/article/interview/product)About this podcastThis podcast is not about marketing – it is about the marketer. It draws its inspiration from the Flint McGlaughlin quote, “The key to transformative marketing is a transformed marketer” from the Become a Marketer-Philosopher: Create and optimize high-converting webpages (https://meclabs.com/course/) free digital marketing course.Get more episodesTo receive future episodes of how I Made It In Marketing, sign up to the MarketingSherpa email newsletter at https://marketingsherpa.com/newslettersApply to be a guestIf you would like to apply to be a guest on How I Made It In Marketing, here is the podcast guest application – https://www.marketingsherpa.com/page/podcast-guest-application
Companies don't scale fast without the right people on the team. Leaders must focus on a strategy to develop people and create a place where culture is everything. Building the right team is essential if you want your company to scale fast. So slow down and make a sustainable plan to scale fast. Today's guest is Michael DeCesare, President, and CEO at Exabeam. Inc Magazine ranked his company #2945 on the 2022 Inc 5000 list. Exabeam is a global cybersecurity leader that created New-Scale SIEM™ for advancing security operations. Built for security people by security people, they reduce business risk and elevate human performance. In this episode, Michael talks about how to lead a company to scale fast and what it takes to build a strong team. He also talks about how the leadership team should be responsible for developing people. Discover how to take your business to the next level and continue to scale fast the way you want it. Get the show notes for Leading a Company to Scale Fast with Michael DeCesare at Exabeam Click to Tweet: Listening to a fantastic episode on Growth Think Tank featuring #MichaelDeCesare with your host @GeneHammett https://bit.ly/gttMichaelDeCesare #ScaleFast #GeneHammettPodcast #GHepisode945 #Inc2022 #globalcybersecurity #SIEM Give Growth Think Tank a review on iTunes!
To be successful, businesses and leaders have to be willing to embrace opportunities for change. This has played out in recent years as modern workplaces have openly acknowledged the importance of diversity. As part of this critical shift, more leaders are focsing on creating environments where employees feel safe being their authentic selves. Unfortunately, doing so is often easier said than done. Gianna Driver, Chief Human Resources Officer of Exabeam, teaches leaders how modeling vulnerability can empower their teams and establish a more positive, inclusive workplace. One of the first and most important steps is prioritizing humanness by recognizing that we are humans first and employees second. In this episode, Gianna explains why authenticity is key to developing a work culture that promotes not only learning and innovation but also kindness and communication. Listen to learn how reflection, a willingness to make mistakes, and a focus on empathy can enable transformation and growth.
In this episode of The New CISO, Steve is joined by Tyler Farrar, the CISO at Exabeam. With malware-free attacks becoming increasingly common, Tyler understands the best ways to bridge the effectiveness gap. With this in mind, he shares his SOC philosophy and the importance of threat detection. Listen to the episode to learn more about the act of prevention, the pillars of a SIEM product, and why attackers gravitate toward credential techniques. Listen to Steve and Tyler discuss the steps to success in an age of constantly increasing data : Meet Tyler (2:06) Host Steve Moore introduces our guest today, his colleague, Tyler Farrar. Before working at Exabeam, Tyler was a customer. With his impressive background in the security field, Tyler explains Exabeam's perspective on "defender behavior" and balancing incident response and crisis management with prevention. The Focus On Prevention (5:50) Steve presses Tyler on how you should balance your methods to increase prevention. Tyler lists different preventative tools, such as firewalls, and stresses the importance of detecting suspicious activity early on. Tyler gives his take on how response becomes prevention in crisis management. Preventative tools can fail, so being able to detect suspicious behaviors is critical. Addressing The Gap (10:36) Addressing the gap in analytics, Tyler recognizes that there is a difference between what the security team needs and what the SIEM product delivers. Every company faces an immense volume of data, an inefficient manual cyber process, and software that can fail to detect the attacker's behaviors. Tyler lists the solutions that can counteract these problems, including behavioral analytics. The Rise Of Malware-Free Attacks (14:32) Steve points out how 71% of cyber-attacks are credentialed and malware-free. Tyler explains that attackers use the compromised credentials approach because it is easy. CISOs can miss the mark because legacy software can be ineffective at detecting threats. New-Scale SIEM (20:43) According to Tyler, new-scale SIEMs would be able to securely ingest data from anywhere, parse through that information quickly, and then store that information and make it searchable. Tyler also explores his philosophy on how to design a SOC. One example of a productive SOC is conducting risk assessments throughout the organization to identify gaps and then acting on those results. Life Of The Analyst (28:52) Steve presses Tyler on how the experience of the investigation factors into meaningful work for the analyst. Tyler stresses the importance of SOC leadership to make the team effective. A stressed SOC can lead to the loss of talented workers and affect the company's security. New Software Ahead (33:16) Tyler discusses the products he is looking forward to on the horizon. Every CISO's goal is to keep their company safe. Being able to show all the threats and vulnerabilities in place would be hugely valuable, which is why Tyler is interested in Systems Navigator. SOC Philosophy (49:55) Tyler's top SOC philosophy is to be aligned with your adversaries and learn how they think in addition to your defenders. Understanding both perspectives can create a culture of empowerment and protect the organization from threats. Links mentioned: https://www.linkedin.com/in/tyler-j-farrar/ (LinkedIn)
This episode features an interview with Manish Sarin, CFO at Sprinklr, a cloud-based customer experience management company. Manish brings to the table more than 20 years working with high-growth technology and cybersecurity companies. Previously, he was CFO at Exabeam, EVP of Finance at ProofPoint, and led Software Strategy and Corporate Development at Hewlett-Packard. On this episode, Manish talks about collecting unstructured data from Twitter, Facebook and Reddit to grasp the public narrative around Sprinklr, using AI to predict what will happen in the quarter, and achieving the holy grail of finance, of real time data, sustainable growth, and a solid bottom line.Quotes*”We take all of this information, which is unstructured, could be Twitter feeds, could be posts, and we pull it together using a variety of AI models to get at what is the insight in terms of what groups of users are saying about our business. And so that gives me a sense for, at least in terms of my public narrative, what do I need to change or tweak or at least be aware of as we go and have our earnings calls?”*”I mentored under a public company CFO, and one of the things he would always tell me is, 'Don't be afraid to break glass.' And I've always taken that to heart, which is, rarely is there any other function in today's enterprise that has the level of insight on what's going on with the business, and therefore has a very defined point of view on what needs to happen going forward.”*”I would encourage people who are evaluating being a CFO that it is a very empowering role. And at no point should they feel like their voice is not gonna be heard because they have probably more insights on the business than even the people running sales or marketing or product. And to me, that is something that should be embraced [by] any new CFO. Very empowering role. Do not be worried about breaking glass. Go make sure your voice and opinion is heard.”*”We're growing much faster than a lot of the competitors in our space. That tells me there is enough total addressable market for us to go after. And you never wanna build your business to the vagaries of the market right now. So in other words, you should keep growing no matter what is happening on Wall Street. Of course, you don't want to overspend in an environment where spend is under increasing scrutiny. But I would also argue this wouldn't be the time to pull back on spend as long as you fundamentally believe you're in a high growth segment. So for us, it's been trying to find that balance between the two… we're now showing investors that we can actually achieve sustainably high levels of growth while being prudent on the bottom line.”Time Stamps[3:03] Manish's path to CFO[6:54] How the CFO is a strategic partner to the business[11:23] Cash Crossroads: Manish's technology vision at Sprinklr[14:16] How Manish manages a data lake to structure Sprinklr's data[19:07] All about Sprinklr[22:42] The Playbook: Finance Strategy at Sprinklr[25:35] Risk management at Sprinklr[28:59] How Sprinklr uses AI[29:52] Report from the Future: Manish on the next generation of finance leaders[34:02] Quick Hits: Rapid fire questions with Manish SarinSponsorThe Invisible Vault is powered by the team at Kyriba, the global leader in cloud treasury and finance solutions, empowering CFOs and their teams to transform how they activate liquidity as a dynamic, real-time vehicle for growth and value creation. To learn more visit www.kyriba.comLinksConnect with Manish on LinkedInConnect with Daniel on LinkedInFollow Daniel on Twitter
In der Mittagsfolge sprechen wir heute mit Maximilian von Wallenberg, CEO und Co-Founder von Unstoppable Finance, über die erfolgreich abgeschlossene Finanzierungsrunde in Gesamthöhe von 12,5 Millionen Euro. Unstoppable Finance hat mit Ultimate ein Wallet entwickelt, das jedem das dezentrale Finanzwesen (DeFi) eröffnen soll, indem es Tokenized Assets, Web3 und Digitale Identitäten in nur einer Lösung zugänglich macht. Eine intuitive und leicht verständliche Nutzererfahrung soll mit einer nativen Integration ausgewählter DeFi-Protokolle dazu führen, den Massenmarkt anzusprechen. Der Beta-Launch soll noch im August 2022 erfolgen und es stehen laut eigenen Angaben knapp 300.000 User auf der Warteliste. Der endgültige Start ist im Laufe des Jahres 2022 für Android und iOS geplant. Das FinTech wurde von SolarisBank-Co-Founder Peter Grosskopf, dem ehemaligen Soundcloud-Ingenieur Omid Aladini und Maximilian von Wallenberg-Pachaly, ehemaliger CEO des Bereichs Digital Assets der Börse Stuttgart, im Jahr 2021 in Berlin gegründet. Mittlerweile beschäftigt das Jungunternehmen mehr als 25 Mitarbeitende. Unstoppable Finance hat nun in einer Series-A-Finanzierungsrunde 12,5 Millionen Euro unter der Leitung von Lightspeed Venture Partners eingesammelt. Die im Jahr 2000 gegründete mehrstufige Risikokapitalgesellschaft konzentriert sich auf Innovationen in den Bereichen Unternehmen, Verbraucher, Finanztechnologie und Gesundheit. In den letzten zwei Jahrzehnten hat der VC hunderte Founder unterstützt und den Aufbau von mehr als 500 Unternehmen weltweit gefördert. Die Partnerstruktur von Lightspeed ist paritätisch und insgesamt wurden über 700 Millionen US-Dollar in Gründerinnen investiert. Zum Portfolio gehören u.a. Personalis, Snap Inc., Epic Games, Giphy, Wheel, Calm, Guardant, Orcabio, Blend, Riverbed, Arctic Wolf, Carta, Nutanix, Grafana, Exabeam, Rubrik, Netskope, Appdynamics, MuleSoft, Grab, ShareCHat, Honest, Nest, Byhus, Grubhub, Faire, Affirm und TripActions. Weitere Investoren der Serie A sind Speedinvest, Rockaway Blockchain Fund, Backed VC, Inflection, Discovery Ventures, Fabric Ventures und Anagram. Mit dem frischen Kapital soll das Wallet während der Beta-Phase weiterentwickelt und massentauglich gemacht werden. One more thing wird präsentiert von OMR Reviews – Finde die richtige Software für Dein Business. Wenn auch Du Dein Lieblingstool bewerten willst, schreibe eine Review auf OMR Reviews unter https://moin.omr.com/insider. Dafür erhältst du einen 15€ Amazon Gutschein.
Do you pretend to be someone different? If you threw all those habits aside, would you be able to say you know who you are? Gianna Driver, Chief Human Resource Officer atExabeam, found her voice by embracing what makes her different. And the best part? As soon as she started showing up as her authentic self, her community embraced her and encouraged her to do more of the same. In this episode, Gianna shares her story and discusses the lessons she learned around feeling like she didn't belong and finding commonality in shared struggles. Listen in for guidance around reflecting on who you intrinsically are so you can show up as your true self and, in turn, encourage others to do the same. Quick Links: Connect with Gianna: https://www.linkedin.com/in/gianna-driver-6183391/ Learn more about Exabeam: https://www.exabeam.com Connect with Andrea: https://www.linkedin.com/in/leaderdevelopmentcoach Learn more about HRD: https://hrdleadership.com/
A few years ago, most of our business was done in person, and your personal identity was showing up with your face and signature. As we move to a remote, digital work environment, creating Synthetic Identities is becoming easier and more common. In this podcast, Craig Jeffery of Strategic Treasurer talks with Jonathan Doskocil of TD Bank and Tyler Farrar of Exabeam on the importance of identity verification, education, and detecting compromised credentials.
Nir Polak is the co-founder of Exabeam, one of the most successful and valuable private cybersecurity firms currently valued at $2.4 billion. On today's episode, Jon Sakoda speaks with Nir about how his time in the Israeli Defense Forces prepared him for the constant battles in the early days of a startup and the importance of taking care of your mental health as a founder. From The Front Lines Of Combat To CEO [5:57 - 8:02] - After high school, Nir spent three years in combat with the Israeli Defense Forces where he was forced to keep his cool in the most chaotic of situations. The leadership lessons he learned on the front lines carried over to Exabeam where he was tasked with leading his team in a constant high pressure environment. Listen to hear more about how Nir's time in the IDF prepared him to become a founder and CEO. Take Care Of Your Mental Health [8:02 - 11:26] - The journey of building a startup can come with constant chaos. As a founder, you need the stamina to lead your team through all of the ups and downs. Nir knows firsthand the toll this amount of pressure can take on founders and encourages all founders to seek guidance on taking care of themselves throughout their career. Listen to hear why more founders need to prioritize their mental health in order to successfully lead a company. Tapping Into Conversations With Your Customers [15:55 - 18:37] - In early customer discovery conversations, there are often mixed signals on the journey to finding product market fit. Nir found it necessary to dig deeper into the details around why the early adopters were sharing and what was behind their pain points in order to better relate to them. Listen to learn how this detailed customer feedback can enable product market fit pre-launch. Don't Let Tech Debt Creep Up On You [21:16 - 24:40] - All founders hope to exceed their sales goals when they go to market, but the idea of tech debt can creep up on you just as quickly. Rapid success often leads to a greater number of requests from customers with high expectations which can really stress the company. Listen to hear how Nir suggests slowing down sales investments, temporarily, can prevent a lot of pain. Weighing Your Risk And Reward [24:40 - 26:35] - Despite several acquisition offers, Exabeam has remained a highly successful private company. When reviewing each offer, Nir weighs qualitative elements just as equally as the quantitative. Listen to learn how to analyze risk vs. reward, and consider team stamina, when thinking about exit opportunities.
Ofer Gayer is VP of Product at Hunters, a SOC Platform which aims to disrupt the SIEM category. His role includes overseeing all aspects of product vision, strategy, roadmap, and user experience, collaborating with leaders across the company to make the vision a reality. Ofer recently returned to Israel after spending 6 years in San Francisco. Prior to Hunters, Ofer managed a variety of cybersecurity product lines and teams at Exabeam and Imperva. Before transitioning into product, he was a security researcher at Incapsula and an IDF intelligence officer.
Named as one of the top 100 HR influencers of 2022 by HR Executive, Gianna Driver is currently the CHRO at Exabeam and has 15+ of experience scaling global, people, and talent functions.Gianna loves leading teams and helping them meet ambitious goals, and boasts a wide range of leadership experience (from board management to diversity, equity, inclusion, and belonging, to process creation). Gianna loves the energy that comes from creating structure out of chaos.In this episode, host Josh speaks with Gianna Driver about:Executive onboarding vs. employee onboarding;Scaling organizations quickly and effectively;Using data to continuously improve your onboarding program.This podcast is brought to you by Process Street, the people process platform.
I recently spoke with recovering SOAR founder JP Bourget, founder of BlueCycle, a SOC/MSSP Advisory Service. JP and his team have worked with more than 250 organizations, advising on SOC best practices, optimization, and improving security data pipelines and processes. As he's logged more than 20 years in cybersecurity, I wanted to chat with JP about observability trends in security, what he's hoping to see as we enter #hoteventsummer (RSA, Gartner Security and Risk, CriblCon, Black Hat, and DEFCON 30) with conferences shaping up to have huge attendance and lots to cover! The TL:DR: You can connect with JP in Cribl Slack, on Twitter, or at BlueCycle.net, and if you're a hacker AND a cyclist, you should check out Cycleoverride.org. You can hear the whole discussion in your podcast player, but I've excerpted some of the highlights below, mostly around how JP and co have delivered better security outcomes for MSSPs and enterprise SOC organizations using security data pipelines powered by Cribl. Cribl helps MSSPs scale operations. They can spend less time managing tools and data and more time detecting, analyzing, and remediating issues to better protect customers. Even though many security teams use the same technologies and tools, no two are the same in terms of the way they've configured and formatted the logs, meaning MSSPs have to reinvent the wheel every time they onboard a data source for a new tenant or customer. Cribl and Cribl Packs gives JP's team the ability to apply the same logic across all customers without writing, managing, and maintaining custom code and parsers just to get data into a SIEM. Splunk, QRadar, Sentinel, Exabeam, or a homegrown SIEM–doesn't matter, Cribl makes it easy to build and reuse data pipelines. Cribl helps enterprise SOCs and enterprise security teams. Like MSSPs, individual organizations also benefit from the streamlined data onboarding process. In addition to onboarding the data more easily, data formats are normalized and enriched with valuable context, so there's greater accuracy and less work to do in the SIEM or analytics system. In some cases, JP has seen customers reduce SIEM ingest cost by up to 60-65% by taking the approach of sending everything to cheap storage and sending only what they need to the SIEM. But wait…isn't ALL data security relevant? If we're talking about reducing the amount of data going into the SIEM, how does that jive with this notion of the more data you have in your security analytics platform, the more “secure” you are, or the more likely you are to effectively reduce risk? All data is security relevant, but not all data needs to go to your SIEM to get the assurance you need. It turns out, that reducing the amount of data doesn't impact the efficacy or change the risk profile for your organization. If you know your log sources, (or get some help from someone like JP) and, more importantly, what's required to feed alerting logic, you can make smart decisions about what should go into your SIEM and what should go to S3. Customers can send the data they need, enriched in the stream with additional context like IPs, geolocation, user ID, all normalized before it hits the SIEM, so you get much cleaner data, with a lower initial time investment to get data in. We see customers able to bring in additional data sources, but only the relevant fields, so they still get the correlation they need to feed detection rules and alerting. And there's an insurance policy–using Cribl's Replay feature, you can pull data in from S3 for deeper investigations over longer time horizons. Security analysts can focus on core competencies. In JP's view, the SOCs core competency is and should be handling and figuring out how to deal with alerts; SOCs Core competency is not data ingest. Similarly, for SOAR the goal is not to be writing integrations but to be focusing on complex investigations. “My mission in life is to build the cyber data pipelines to make it easy for the SOC operators to focus on investigating, responding and remediating to protect the business. Our team and Cribl facilitate the plumbing. Security analysts can focus on core competencies and do incident response--ultimately providing greater protection and insights for the business.” Note that with the challenges in recruiting, training, and retaining security talent, part of the problem is that we're asking them to do 5+ jobs. Context switching is hard. Focusing on core competencies makes it easy to onboard new analysts faster and helps them focus on a core area of expertise. You should be able to own your own data. We talked a bit about Cribl's vendor-agnostic vision for observability. JP got passionate again: “Here's the thing, you should be able to own your data and not have break the bank to retain that data. And secondly, you want to be able to ask questions in future even if you don't know the questions you want to ask today.” More organizations are moving to the cloud and deploying multiple SIEMs, but still need to maintain some sense of cost control or cost reduction. Most well-funded cloud SIEMs, have some strategy to ingest logs, but that strategy does not include the reduction or processes and tooling to only bring in what you need to pay only for what you need. Cribl gives teams control of their data to send it the relevant bits to the relevant destinations where it will be most efficient to analyze and economical to store. Thanks to JP and all of our customers who are helping us to build a great Cribl Community! If you're just getting started with Cribl, you can check out our sandboxes, a guided experience with demo data at sandbox.cribl.io. There's also a wealth of information, tips, tricks, and use case ideas on our blogs and Slack. We have user group meetings on the 2nd Tuesday of the month, and we just launched our Q&A forum curious.cribl.io. And of course, we'll be at RSA in booth 5469 June 6-10 in San Francisco. Hope to see you there!
This is the audio-only version of our twice weekly cyber security talk show, teissTalk. Join us twice a week for free by visiting www.teiss.co.uk/teisstalk On this episode, we focus on the following news story; Cyber-Criminals Exploit Invasion of Ukraine https://www.infosecurity-magazine.com/news/cyber-criminals-invasion-ukraine/ The panel discussion is titled “Maturing the CISO role” https://www.teiss.co.uk/teisstalk/maturing-the-ciso-role This episode is hosted by Geoff White https://www.linkedin.com/in/geoffwhitetech/ Our Guests are John Rouffas, Chief Information Security Officer, intelliflo https://www.linkedin.com/in/drjohnrouffas/ Matthew Bryant, Chief Information Security Officer, 118 118 Money https://www.linkedin.com/in/matthewbryant/ Stephen Moore, Vice President and Chief Security Strategist, Exabeam https://www.linkedin.com/in/stephenrmoore/
Gianna Driver is Chief Human Resources Officer at Exabeam who was a student in Stew's Total Leadership class 20 years ago. After spending five years running a global fair trade organization, she went on to build a highly successful career in human resources and recently started a new job at a company that fights cybercrime. Gianna manages the strategy and processes for building, investing in, and retaining top talent at Exabeam, enabling employees to do their best work. Prior to Exabeam, she was the Chief People Officer at BlueVine, a private fintech company based in Redwood City, CA. Before BlueVine, Gianna led HR and People functions in high-growth technology, gaming, consumer, and SaaS organizations including Playstudios, Aristocrat, Actian Corporation, Talend, and Balsam Brands. In this episode, Stew talks with Gianna about her experiences growing up in Texas, daughter of a Philipine woman who was a mail-order bride, and how that shaped her experiences as an undergraduate student at The Wharton School. Gianna describes how her early life led her to want to have an impact through her work on valuing the humanity in each and every one of us. She describes the opportunities and challenges on her path to pursuing that ambition in her current role and in her life beyond work. Here then is an invitation for you, a challenge, after you've had a chance to listen to this episode. Think about your own history and your particular demographic characteristics – age, race, sexual orientation, etc. – and consider what is it about your particular mix that is distinctly valuable in the world of work. What do you discover by taking a few minutes to think about who you are? Share your reactions and suggestions for future shows with Stew by writing to him at friedman@wharton.upenn.edu or via LinkedIn. See acast.com/privacy for privacy and opt-out information.
Join us in the BreakLine Arena for a conversation with Mike DeCesare, CEO and President of Exabeam, a category-defining cybersecurity company.Mike shared epic stories, including his first sales calls with Larry Ellison and Steve Jobs, the importance of pursuing a mission you believe in, the trends he expects to see in cyber over the next 3-5 years, and the things he pursues for fun (he gives a killer cooking tip toward the end). Regarding the importance of diversity, Mike says: “I have to practice what I preach. I truly believe that a diverse environment is a better environment."If you like what you've heard, please like, rate, subscribe, or review our show! We'd love to hear your thoughts. If you're interested in joining our community, please visit www.breakline.org.
The never-ending cybersecurity battles intensify as attackers & defenders have raised the stakes and integrated more advanced techniques, including the increasing use of artificial intelligence (AI). Mike DeCesare has been in the proverbial trenches, and recently joined Exabeam as President and CEO. In this far-ranging conversation, Mike and I discuss the evolving security landscape, Zero Trust, the assumption that all credentials are compromised, the impact of AI and more. Thanks again Mike, always enjoy getting my 'state of security' lesson from you. Show Notes LinkedIn Article YouTube Video
Today's guest is Nir Polak, Cofounder and CEO at Exabeam. Founders of tech solutions should sign design partners. Not beta testers. What we talked about: Design partners and how they're superior to beta testers Benefits of refining your product market fit early in your to market process Creating a heat map of scaling communications Finding investors Find this episode and more Founder Formula at Apple Podcasts, Spotify, or our website.
Welcome to episode #610 of Six Pixels Of Separation - The Mirum Podcast. Here it is: Six Pixels Of Separation - The Mirum Podcast - Episode #610 - Host: Mitch Joel. I came across Tim Matthews via LinkedIn. He had published an article titled, How to Hire Great Inbound Marketers: Six Key Personality Traits. From there, I discovered a well of fascinating content on how to nurture and hire great marketers and how to think differently about inbound marketing and content marketing that he had written. Tim was born in New York City and grew up in a nearby leafy suburb of New Jersey, before taking the long route to Silicon Valley through Tokyo. He has worked in high tech for twenty years and managed marketing teams at six companies. When not writing or poring over marketing texts, he golfs, crosswords, and tries to keep up with his wife on a standup paddleboard. He has published two books: The Professional Marketer and The SaaS Marketing Handbook. Currently, he is the Chief Marketing Officer at Exabeam, a security intelligence company. Enjoy the conversation... Running time: 46:04. Hello from beautiful Montreal. Subscribe over at iTunes. Please visit and leave comments on the blog - Six Pixels of Separation. Feel free to connect to me directly on Facebook here: Mitch Joel on Facebook. or you can connect on LinkedIn. ...or on twitter. Six Pixels of Separation the book is now available. CTRL ALT Delete is now available too! Here is my conversation with Tim Matthews. How to Hire Great Inbound Marketers: Six Key Personality Traits. The Professional Marketer. The SaaS Marketing Handbook. Follow Tim on Twitter. This week's music: David Usher 'St. Lawrence River'. Download the Podcast here: Six Pixels Of Separation - The Mirum Podcast - Episode #610 - Host: Mitch Joel. Tags: advertising advertising agency advertising podcast brand business blog business book business conversation business podcast content content marketing digital marketing digital marketing agency digital marketing blog digital marketing podcast disruption exabeam inbound marketer inbound marketing innovation j walter thompson jwt leadership book leadership podcast linkedin management podcast marketing marketing agency marketing blog marketing podcast mirum mirum agency mirum agency blog mirum blog mirum canada mirum in canada mitch joel mitchjoel non fiction book podcast security intelligence silicon valley six pixels of separation technology technology marketing the professional marketer the saas marketing handbook tim matthews wpp