POPULARITY
30 episodes with Socs
8 episodes with Socs
42 episodes with Socs
7 episodes with Socs
4 episodes with Socs
4 episodes with Socs
4 episodes with Socs
5 episodes with Socs
4 episodes with Socs
Stellar Cyber Revolutionizes SOC Cybersecurity Operations with Human-Augmented Autonomous Platform at Black Hat 2025 A Stellar Cyber Event Coverage of Black Hat USA 2025 Las VegasAn ITSPmagazine Brand Story with Subo Guha, Senior Vice President Product, Stellar Cyber____________________________Security operations centers face an unprecedented challenge: thousands of daily alerts overwhelming analyst teams while sophisticated threats demand immediate response. At Black Hat USA 2025 in Las Vegas, Stellar Cyber presented a revolutionary approach that fundamentally reimagines how SOCs operate in the age of AI-driven threats.Speaking with ITSPmagazine's Sean Martin, Subo Guha, Senior Vice President of Products at Stellar Cyber, outlined the company's vision for transforming security operations through their human-augmented autonomous SOC platform. Unlike traditional approaches that simply pile on more automation, Stellar Cyber recognizes that effective security requires intelligent collaboration between AI and human expertise.The platform's three-layer architecture ingests data from any source – network devices, applications, identities, and endpoints – while maintaining vendor neutrality through open EDR integration. Organizations can seamlessly work with CrowdStrike, SentinelOne, Sophos, or other preferred solutions without vendor lock-in. This flexibility proves crucial for enterprises navigating complex security ecosystems where different departments may have invested in various endpoint protection solutions.What sets Stellar Cyber apart is their autonomous SOC concept, which dramatically reduces alert volume from hundreds of thousands to manageable numbers within days rather than weeks. The platform's AI-driven auto-triage capability identifies true positives among thousands of false alarms, presenting analysts with prioritized "verdicts" that demand attention. This transformation addresses one of security operations' most persistent challenges: alert fatigue that leads to missed threats and burned-out analysts.The revolutionary AI Investigator copilot enables natural language interaction, allowing analysts to query the system conversationally. An analyst can simply ask, "Show me all impossible travel incidents between midnight and 4 AM," and receive actionable intelligence immediately. This democratization of security operations means junior analysts can perform at senior levels without extensive coding knowledge or years of experience navigating complex query languages.Identity threat detection and response (ITDR) emerged as another critical focus area during the Black Hat presentation. With identity becoming the new perimeter, Stellar Cyber integrated sophisticated user and entity behavior analytics (UEBA) directly into the platform. The system detects impossible travel scenarios, credential attacks, and lateral movement patterns that indicate compromise. For instance, when a user logs in from Portland at 11 PM and then appears in Moscow 30 minutes later, the platform immediately flags this physical impossibility.The identity protection extends beyond human users to encompass non-human identities, addressing the growing threat of automated attacks powered by large language models. Hackers now leverage generative AI to create credential attacks at unprecedented scale and sophistication, making robust identity security more critical than ever.Guha emphasized that AI augmentation doesn't displace security professionals but elevates them. By automating mundane tasks, analysts focus on strategic decision-making and complex threat hunting. MSSPs report dramatic efficiency gains, scaling operations without proportionally increasing headcount. Where previously a hundred thousand alerts might take weeks to process, requiring extensive junior analyst teams, the platform now delivers actionable insights within days with smaller, more focused teams.The platform's unified approach eliminates tool sprawl, providing CISOs with real-time visualization of their security posture. Executive reporting becomes instantaneous, with high-priority verdicts clearly displayed for rapid decision-making. This visualization capability transforms how security teams communicate with leadership, replacing lengthy reports with dynamic dashboards that convey risk and response status at a glance.Real-world deployments demonstrate significant operational improvements. Organizations report faster mean time to detection and response, reduced false positive rates, and improved analyst satisfaction. The platform's learning capabilities mean it becomes more intelligent over time, adapting to each organization's unique threat landscape and operational patterns.As organizations face increasingly sophisticated threats powered by generative AI, Stellar Cyber's human-augmented approach represents a paradigm shift. By combining AI intelligence with human intuition, the platform delivers faster threat detection, reduced false positives, and empowered security teams ready for tomorrow's challenges. The company's commitment to continuous innovation, evidenced by rapid feature releases between RSA and Black Hat, positions them at the forefront of next-generation security operations. Learn more about Stellar Cyber: https://itspm.ag/stellar-cyber--inc--357947Note: This story contains promotional content. Learn more.Guest: Subo Guha, Senior Vice President Product, Stellar Cyber | https://www.linkedin.com/in/suboguha/ResourcesLearn more and catch more stories from Stellar Cyber: https://www.itspmagazine.com/directory/stellarcyberLearn more and catch more stories from our Black Hat USA 2025 coverage: https://www.itspmagazine.com/bhusa25Learn more about ITSPmagazine Brand Story Podcasts: https://www.itspmagazine.com/purchase-programsNewsletter Archive: https://www.linkedin.com/newsletters/tune-into-the-latest-podcasts-7109347022809309184/Business Newsletter Signup: https://www.itspmagazine.com/itspmagazine-business-updates-sign-upAre you interested in telling your story?https://www.itspmagazine.com/telling-your-story
The nature of Security Operations is changing. As cloud environments grow in complexity and data volumes explode, traditional approaches to detection and response are proving insufficient. This episode features an in-depth conversation with Kyle Polley, who leads the AI security team at Perplexity, about a modern blueprint for the Security Operations Center (SOC).The discussion centers on a necessary architectural shift away from traditional SIEMs, which were not built for today's scale, toward a "data lake infrastructure built for detection and response". Kyle explains how this model provides the scalability needed to handle modern data loads and enables a more effective incident response process.A cornerstone of this new model is the use of centralized AI agents. The conversation explores how these agents can be tasked with performing in-depth alert investigations, helping to reduce analyst burnout and allowing security teams to focus on more proactive, high-impact work. This approach moves beyond simple automation to create a system where AI augments and enhances the capabilities of the human team.Guest Socials - Kyle's Linkedin Podcast Twitter - @CloudSecPod If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:-Cloud Security Podcast- Youtube- Cloud Security Newsletter - Cloud Security BootCampIf you are interested in AI Cybersecurity, you can check out our sister podcast - AI Cybersecurity PodcastQuestions asked:(00:00) Introduction to Kyle Polley & The Future of SOCs(01:03) The Core Argument: Why You Must Build Your SOC Before Compliance(03:34) Beyond the Certificate: The Difference Between Being Compliant vs. Secure(04:20) Today's #1 AI Threat: The Challenge of Prompt Injection(06:00) The Architectural Flaw: Handling Untrusted Data in AI Systems(08:20) The "Security Data Lake": Moving Beyond the Traditional SIEM(15:00) The Future is Now: A Centralized AI Agent for Automated Investigations(20:06) Will AI Take My Job? How AI Elevates, Not Replaces, the Security Analyst(25:20) Redefining "Shifting Left" with Personal AI Security Agents(31:00) Can AI Reason? How Modern AI Agents Intelligently Query Logs(37:05) Rethinking Incident Response Playbooks in the Age of AI(41:00) The MVP SOC: A Practical Roadmap for Small & Medium Companies(46:08) Final Questions: Maintaining Optimism, Woodworking, and Tex-Mex(50:08) Where to Connect with Kyle PolleyResources spoken about during the episode:Easy Agents: an open-source frameworkHow to give every department their own AI Agent
Got a question or comment? Message us here!On this episode of the #SOCBrief, we break down attacks on SonicWall firewalls. A wave of ransomware, possibly exploiting zero-day vulnerabilities, is compromising even fully patched systems. Learn how SOCs can respond fast and stay ahead.Support the showWatch full episodes at youtube.com/@aliascybersecurity.Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.
NATM network breached and attacked through 4G Raspberry Pi Easterly's appointment to West Point rescinded Report links Chinese companies to tools used by state-sponsored hackers Huge thanks to our sponsor, Dropzone AI Security teams everywhere are drowning in alerts. That's why companies like Zapier and CBTS turned to Dropzone AI—the leader in autonomous alert investigation. Their AI investigates everything, giving your analysts time back for real security work. No more 40-minute rabbit holes. If you're at BlackHat, find them in Startup City. Otherwise, check out their self-guided demo at dropzone.ai. This is how modern SOCs are scaling without burning out. Find the stories behind the headlines at CISOseries.com.
Link to episode page This week's Cyber Security Headlines – Week in Review is hosted by Rich Stroffolino with guest Derek Fisher, Director of the Cyber Defense and Information Assurance Program, Temple University – also check out Derek's substack. Thanks to our show sponsor, Dropzone AI Security teams everywhere are drowning in alerts. That's why companies like Zapier and CBTS turned to Dropzone AI—the leader in autonomous alert investigation. Their AI investigates everything, giving your analysts time back for real security work. No more 40-minute rabbit holes. If you're at BlackHat, find them in Startup City. Otherwise, check out their self-guided demo at dropzone.ai. This is how modern SOCs are scaling without burning out. All links and the video of this episode can be found on CISO Series.com
Oh No! Lenovo You sunk my battleship! Or did you? Russians unable to get a taste of their own medicine Huge thanks to our sponsor, Dropzone AI Security teams everywhere are drowning in alerts. That's why companies like Zapier and CBTS turned to Dropzone AI—the leader in autonomous alert investigation. Their AI investigates everything, giving your analysts time back for real security work. No more 40-minute rabbit holes. If you're at BlackHat, find them in Startup City. Otherwise, check out their self-guided demo at dropzone.ai. This is how modern SOCs are scaling without burning out. Find the stories behind the headlines at CISOseries.com.
In 2025, Asia's cybersecurity landscape is shaped by rapid digitalisation, AI adoption, and evolving regulatory frameworks. Regional authorities, such as Singapore's MAS and South Korea's National AI Committee, are intensifying enforcement and introducing robust regulations for data privacy, AI governance, and cyber risk management. Businesses face mounting threats from ransomware, advanced persistent threats, and supply chain vulnerabilities, driving demand for Cybersecurity-as-a-Service and managed SOCs. Industry reports highlight a widening gap in cyber resilience and stress the need for urgent action to address cyber inequity and enhance recovery capabilities.1. How will evolving AI, cloud security, and data privacy regulations across Asia-Pacific affect CISO's multi-cloud governance and compliance frameworks?2. What strategies can CISOs/organisations adopt to defend against increasingly sophisticated ransomware, supply chain attacks, and network-based intrusions?3. How do CISOs/CIOs secure hybrid and multi-cloud environments effectively, leveraging generative AI tools to automate identity and access management while reducing manual overhead?4. Some say quantum computing is still years away. That said, people are talking about post-quantum cryptography today. Can you share any best practice for implementing quantum-resistant encryption and network security protocols to mitigate emerging quantum computing threats?5. How can CISOs ensure robust security and compliance for AI-powered cloud applications and edge computing infrastructure under diverse data sovereignty laws? How should the CISO work with the CIO and the risk/compliance officers of the organization?6. Recapping what we've covered so far: our topic is Developing a Resilient Cybersecurity Roadmap. Can you offer some recommendations for CISOs and CIOs in developing their resilient cybersecurity roadmap?
In this episode of The New CISO, host Steve Moore speaks with Marius Poskus, Chief Information Security Officer at Glow Financial Services and creator of the Cyber Diaries podcast. Marius shares his journey from physical security into cybersecurity leadership—and how he did it without relying on traditional certifications.Marius reflects on how self-directed learning, mentorship, and a strong personal brand helped him pivot careers and thrive in the FinTech space. He explains why the security industry needs to stop glorifying certifications, how to break in through SOC roles, and what truly makes a candidate stand out in interviews. From coaching new talent to advising startups on go-to-market strategies, Marius emphasizes that attitude and aptitude matter far more than credentials.Key Topics Covered:Why Marius walked away from a career in physical security—and how that experience shaped his cyber pathThe critical difference between certification collecting and real-world skill developmentWhy most entry-level cybersecurity roles are in SOCs—and how to leverage thatHow sharing your learning journey online builds credibility and unlocks job opportunitiesThe two A's that matter most when hiring: attitude and aptitudeCommon mistakes startups make when targeting CISOs and building security toolsThe growing risks of “AI-washing” and what real AI innovation should look likeWhy mentorship only works when mentees are willing to put in the workHow to shift from security awareness “stick” tactics to culture-based collaborationWhat it means to build a personal brand that outlasts your job titleMarius' story proves that cybersecurity success doesn't come from certificates—it comes from curiosity, consistency, and community. Whether you're just starting your career or leading a security team, this episode will inspire you to focus on what really moves the needle.Marius Poskus Podcast - Cyber Diaries Podcast
As Black Hat USA 2025 approaches, the cybersecurity world is buzzing with innovation—and Dropzone AI is right at the center of it. With roots in Seattle and a mission to bring true intelligence into the security operations center (SOC), the Dropzone AI team is gearing up for a packed week in Las Vegas, from BSides to the AI Summit, and finally at Startup City (booth #6427).Founded by Edward Wu, former Head of AI/ML at ExtraHop Networks, Dropzone AI was built on a key realization: the last thing SOCs need is another flood of alerts. Instead, they need help processing and acting on them. That's where Dropzone comes in—offering an AI-powered security analyst that doesn't just detect threats, but investigates, correlates, and takes action.During a recent pre-event chat with ITSPmagazine's Sean Martin and Marco Ciappelli, Edward explained the core philosophy behind the platform. Unlike hype-driven claims of “fully autonomous SOCs,” Dropzone takes a practical, tiered approach to automation. Their agentic AI system performs full investigations, determines the nature of alerts (true vs. false positives), and recommends or executes containment actions depending on risk tolerance and policy.The tech has found particular traction with lean security teams, or those expanding toward 24/7 coverage without adding headcount. Rather than replacing humans, the platform augments them—freeing analysts from the drudgery of low-priority alert triage and giving them space to focus on strategic work. As Edward put it, “Nobody wants to be a tier-one analyst forever.” Dropzone helps make sure they don't have to be.The platform integrates across existing security stacks and data sources, drawing from threat intel, logs, and endpoint signals to build a full picture of every alert. Security teams retain full control, with human-in-the-loop decision-making remaining the standard in most use cases. However, for low-risk assets and off-hours scenarios, some customers are already authorizing autonomous action.With conversations at Black Hat expected to revolve around the reality of AI in production—not just the vision—Dropzone is entering the perfect arena. From demonstrating real-world impact to sharing insights on agentic design and trust boundaries, their presence will resonate with everyone from analysts to CISOs.Whether you're building out your SOC, questioning your MDR provider, or simply overwhelmed with alert fatigue, this may be your signal. Dropzone AI isn't selling buzzwords. They're delivering results. Visit them at Startup City, booth #6427, and see for yourself what the future of alert triage and SOC efficiency looks like—one investigation at a time. Note: This story contains promotional content. Learn more.Guests:Edward Wu, Founder/CEO at Dropzone AI On LinkedIn: https://www.linkedin.com/in/edwardxwu/DROPZONE AI: https://itspm.ag/dropzoneai-641Hosts:Sean Martin, Co-Founder at ITSPmagazine | Website: https://www.seanmartin.comMarco Ciappelli, Co-Founder at ITSPmagazine | Website: https://www.marcociappelli.com______________________ResourcesVisit the DROPZONE Website to learn more: https://itspm.ag/dropzoneai-641Learn more and catch more stories from Dropzone on ITSPmagazine: https://www.itspmagazine.com/directory/dropzoneaiLearn more about ITSPmagazine Brand Story Podcasts: https://www.itspmagazine.com/purchase-programsNewsletter Archive: https://www.linkedin.com/newsletters/tune-into-the-latest-podcasts-7109347022809309184/Business Newsletter Signup: https://www.itspmagazine.com/itspmagazine-business-updates-sign-upAre you interested in telling your story?https://www.itspmagazine.com/telling-your-story
Got a question or comment? Message us here!In this week's #SOCBrief, we break down why offboarding policies are ABSOLUTELY critical for security teams. Overlooked items from abandoned accounts to old VPN access can leave backdoors wide open. Learn how SOCs monitor, contain, and shut down lingering access, and why communication between HR, IT, and cybersecurity is essential.
In this episode, we welcome Vineet Ganju, VP of Wireless Connectivity at Synaptics, to the show to discuss Wi-Fi 7 and AI. Vineet talks about how Wi-Fi 7's low latency and high throughput enables applications like immersive AR/VR, factory automation, and next-generation smart home applications. We explore how AI is reshaping connectivity, from efficient network management and enhanced security to local troubleshooting that simplifies setup. We also discuss the integration of Wi-Fi, Bluetooth, Thread, and Zigbee into compact chipsets and the evolution of SoCs that unlock a new level of connectivity. Tune in to learn how Wi-Fi 7 and AI are fueling the future of connected experiences.For Wi-Fi AllianceFor Membership InfoGeneral Contact
David Greenwood, Product at Sekoia, joins host Charlie Osborne to discuss SOC leadership in the age of AI agents, including how they differ from traditional automation practices, best management practices, and more. This episode was brought to you by Sekoia. Leading the way in detection and response solutions for modern SOCs, Sekoia offers businesses and public organizations the best protection technologies against cyber threats. Learn more at https://sekoia.io.
Ever wondered what really goes on inside a Security Operations Center (SOC)? In this episode, host, Claire Quirion chats with Derek Halfyard from GoSecure about his journey from NSCC to leading threat hunts and helping clients stay safe around the clock. We break down what a SOC is, who works there, what roles like threat hunters and detection engineers actually do, and what it's really like to build a career in cybersecurity.Derek also opens up about the biggest challenges SOC professionals face, the stress of wondering if a threat has been missed, and the unmatched satisfaction of detecting a previously unknown threat. Whether you're curious about breaking into cyber security or want to understand the realities of life inside a SOC, this episode offers deep insights and career advice. From certifications to career pivots, this is real talk for anyone curious about joining the industry.
Un viaje de 20 min por la actualidad Linux:• Kernel 6.16-rc5 arregla el bajón de rendimiento.• Kernel 6.17 añade EDAC para Granite Rapids-D.• Parchea sudo YA: dos CVE críticos.• Wine-Staging 10.12 corrige un bug de 2014.• GNOME 49 Alpha desactiva X11; Builder se vuelve más pro.• KDE Plasma 6.5 suma funciones y menos cuelgues.• U-Boot 2025.07 trae corutinas, exFAT y más SoCs.Todo explicado en lenguaje fácil, enlaces en las notas.
In this expert-led session, we take you inside the world of the Security Operations Center (SOC) — the command center of modern cybersecurity. Learn how SOCs monitor, detect, and respond to threats in real time using tools like SIEM, threat intelligence, and automated response systems. We cover essential SOC functions including incident response, proactive threat hunting, and compliance alignment, while also diving into core roles such as SOC Analysts, Threat Hunters, and Incident Responders. You'll gain practical insights into SOC maturity models, workflow optimization, and how to use leading tools like Splunk, ELK, and QRadar.Perfect for aspiring SOC professionals or teams aiming to enhance their detection and response capabilities.
In this session, we break down the core principles of proactive threat hunting — a critical skill for identifying and stopping cyber threats before they cause damage. Learn how security teams use behavioral analysis, threat intelligence, and tools like SIEM and EDR to detect hidden threats and reduce dwell time. We cover the techniques and mindset required to hunt down threats lurking within systems, and show how a proactive approach dramatically improves an organization's ability to prevent breaches and respond effectively.You'll also get a glimpse into advanced threat hunting and DFIR training, including hands-on learning designed to prepare you for real-world challenges in cybersecurity.
Drawing from his experience building enterprise SOCs and teaching thousands of security professionals, John Hubbard, Cyber Defense Curriculum Lead at SANS Institute and host of the Blueprint podcast, tells Jack about how AI is revolutionizing security operations centers, including balancing AI automation with fundamental analyst skills. They also explore practical AI applications in alert contextualization, team performance analysis, and the future vision of natural language interfaces for complex security tasks. John emphasizes the importance of teaching both traditional methods and AI-enhanced approaches, ensuring security teams can leverage technology while maintaining critical thinking capabilities. He also discusses considerations around local versus cloud-based AI models and offers actionable advice for security professionals looking to future-proof their careers in an increasingly automated landscape. Topics discussed: How AI transforms alert contextualization by dynamically incorporating business context and asset information for better triage decisions. The educational challenge of teaching both foundational security methods and AI-enhanced approaches to maintain analyst skills. Practical applications of AI in SOC operations, including automated phishing triage and mass analysis of analyst performance data. The evolution toward natural language interfaces that could enable complex security tasks like packet analysis through conversational commands. Custom agent development versus relying on vendor-provided AI solutions, including the technical challenges and coding requirements involved. Future SOC architecture predictions featuring interconnected agents, MCP protocols, and the abstraction of traditional security analyst tasks. Local versus cloud-based AI model considerations, including data privacy concerns, computational requirements, and trust implications. The critical question of oversight in automated security operations and who monitors AI agents in increasingly autonomous systems. Performance analysis capabilities enabled by AI's ability to process written text and logs at scale for team improvement insights. Practical advice for security professionals to embrace discomfort, invite AI into problem-solving, and establish mentoring relationships for career growth. Listen to more episodes: Apple Spotify YouTube Website
Join G Mark Hardy and Carson Zimmerman, the author of '11 Strategies of a World-Class Cybersecurity Operations Center,' in this insightful episode of CISO Tradecraft. Carson shares his career journey, the evolution from the 10 to 11 strategies, and delves into the future needs of Security Operations Centers (SOCs). They discuss critical topics such as the importance of continuous improvement, AI's impact on SOCs, and the value of embracing neurodiversity in cybersecurity teams. Whether you're a seasoned cybersecurity leader or an aspiring professional, get actionable advice on how to enhance and revolutionize your SOC operations. 11 Strategies of a World Class Cybersecurity Operations Center https://www.mitre.org/sites/default/files/2022-04/11-strategies-of-a-world-class-cybersecurity-operations-center.pdf 14 Questions are all you need - https://www.first.org/resources/papers/conf2024/1445-14-Questions-Carson-Zimmerman.pdf Transcripts - https://docs.google.com/document/d/1WVJi9WkxOG7yedQYWSooiqRFjBERd9kV Chapters 00:00 Introduction and Guest Welcome 00:53 Background and Book Discussion 03:33 SOC Challenges and Stagnation 06:10 Managing SOC Alerts and Burnout 09:26 SOC Evolution and Neurodiversity 23:50 Career Progression in Cybersecurity 30:28 Impact of AI on SOC Operations 40:07 Final Thoughts and Conclusion
Click here to send us your ideas and feedback on Blueprint!In this episode of Blueprint, host John Hubbard sits down with James Spiteri from Elastic to explore the transformative power of AI on the SOC. They delve into how advanced AI technologies, such as agentic AI models, MCP protocol, and automation, are reshaping the SOC landscape. Discover how AI enhances SOC efficiency, reduces mundane tasks, and integrates context-aware capabilities. Learn about the real-world applications, from automation in cybersecurity operations to the challenges and promises of large language models. This discussion covers the ethical considerations, potential risks, and the promising future of SOCs powered by AI. Tune in to get inspired and see how AI might revolutionize your cyber defense strategies.Check out John's SOC Training Courses for SOC Analysts and Leaders: SEC450: Blue Team Fundamentals - Security Operations and Analysis LDR551: Building and Leader Security Operations Centers Follow and Connect with John: LinkedIn
In this episode of the Semiconductor Insiders video series, Dan is joined by Chouki Aktouf, CEO and Founder of Defacto Technologies. Dan explores the challenges of building complex SoCs with Chouki, who describes challenges around managing complexity at the front end of the process while staying within PPA requirements and … Read More
Chris and Elecia talk about Murderbot, LLMs (AI), bikes, control algorithms, and fancy math. The website with the ecology jobs is wildlabs.net from 501: inside the Armpit of Giraffe with Meredith Palmer and Akiba.. The algorithm Elecia mentioned was from Patent US7370713B1. The Control Bootcamp YouTube series is a great introduction to control systems beyond PIDs There is also a book from the same folks (with matlab and some python code): Data-Driven Science and Engineering: Machine Learning, Dynamical Systems, and Control. Finding bad AI interactions is too easy. Copilot PR mess that was discussed. Lawyers letting ChatGPT hallucinate precedents. Fake (hallucinated) citations in a high-profile report on children's health. Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Congratulations to the giveaway winners!
Erik Bloch, security operations expert and longtime infosec leader, joins the show to talk about the real problems plaguing SOCs and why the industry keeps missing the mark!George K and George A talk to Erik about:- The massive disconnect between what vendors think SOCs do vs. reality - spoiler alert: most founders have never worked in the trenches- Why we're still fighting the same problems from 20 years ago - false positives aren't even 10% of the actual work, so why do we keep obsessing over them?- The real burnout formula: high responsibility + low control + endless busywork that has nothing to do with catching bad guys- Business alignment that actually works: Stop talking about theoretical $48 bazillion losses and start tying security outcomes to actual business growthWhether you're a vendor or an executive leader, there's gold -- and data! -- in this episode. The "AI will solve everything" narrative is misleading, hear what actually works in security operations!------------
Quingentésima sexagésima séptima Noche de Llob@s, hoy con todo este menú: Sun of the Dying, Argion, Unexpectance, Expropiazion, MorphiuM, VÓMITO, Yeska, The Broken Horizon, IMPUREZA, BIG MEMBER, Lemmy, Official Motörhead, BEHEMOTH!, Kissin' Dynamite, Ashes of Ares, INCITE_Heavymetal, Fairyland Official, El Drogas, Ravenblood, @State of crime & science - SOCS y The Who
Today, we're diving into the critical role of network-on-chip (NoC) design in modern system-on-chip (SoC) architectures. Designing efficient interconnects has become a major challenge as SoCs grow more complex, especially with the increasing integration of AI workloads. NoCs now account for a significant portion of silicon area, making it essential to get them right. Michal Siwinski, Chief Marketing Officer at Arteris, will join us in discussing how their FlexNoC tool is revolutionizing NoC design through automation. We'll explore why this is crucial for today's chips, how it addresses the growing demands of AI, and what the future holds for NoC technology.
Elen Fourcade une coach quantique, nous dévoile comment elle accompagne les femmes ayant traversé des épreuves majeures (burnout, maladies, deuils, addictions) pour rétablir l'harmonie avec leur corps et surmonter les blocages émotionnels. À travers son parcours personnel marqué par un combat contre le cancer, Elen nous révèle comment cette maladie est un puissant message du corps, une invitation à se reconnecter avec soi-même et à grandir intérieurement. Ce podcast vous plonge dans l'univers fascinant de la conscience quantique et des transformations profondes. Découvrez comment l'énergie, la méditation, et les "sauts quantiques" peuvent vous guider vers un nouveau niveau de bien-être et de succès personnel. ✨La maladie comme message : comprendre que la maladie n'est pas une fatalité mais une porte vers la guérison. ✨Reconnexion au corps : l'importance de retrouver l'écoute de soi et d'être en phase avec son énergie. ✨Sauts quantiques : comment des changements énergétiques peuvent propulser votre évolution personnelle. ✨Coaching comme guérison : comment l'accompagnement peut être un outil thérapeutique puissant. ✨Retraites transformantes : plongez dans des séjours qui permettent d'explorer votre identité quantique et de briser les chaînes des anciennes identités limitantes. Si tu veux comprendre comment libérer ton potentiel caché et faire un pas vers une vie plus alignée, cet épisode est fait pour toi ! Retrouve Elen sur les réseaux ici : Linkedin : linkedin.com/in/elenfourcadeguzzo Instagram : www.instagram.com/elenfourcade_lifecoach Pour suivre Gaël sur les réseaux sociaux, c'est ici : Linkedin : https://bit.ly/linkedingael Chapitre 00:00 Introduction à la transformation intérieure 03:01 Le corps comme messager sacré 06:05 Reconnexion au corps et à l'énergie 08:54 Parcours personnel et développement professionnel 11:46 Socs quantiques et évolution personnelle 14:54 Création d'un business et accompagnement 18:01 Organisation de retraites et expériences pratiques 26:23 Connexion Énergétique et Projet 29:20 Travail avec les Femmes et Évolution Personnelle 32:30 Retraites Spirituelles et Appels Intérieurs 34:20 Confiance et Guidance dans la Vie 36:10 Lâcher Prise et Auto-Limitation 39:10 L'Héritage et le Message Personnel 41:10 Recommandation d'Invité et Réseautage 42:35 Message de Clôture et Reconnexion à Soi
Komathi Sundaram spoke with us about her enthusiasm for tests and test automation. We talked about the different joys of testing vs. development, setting up CI servers, and different kinds of tests including unit, hardware-in-the-loop, and simulation. It may sound dry but we had a lot of fun. Komathi's site is TheKomSea.com which hosts her blog as well as contact info. She will be speaking on automated hardware in the loop test processes at the Embedded Online Conference. Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Oh, and don't forget to enter Nordic Semiconductor's giveaway contest! Just fill out the entrance form, and you're in the running. Good luck!
Today on the Social-Engineer Podcast: The Security Awareness Series, Chris is joined by Travis Farral. Travis has been working in information security since the 90s at places such as Nokia, ExxonMobil, and XTO Energy. He is currently VP & CISO at Archaea Energy, a bp owned, renewable natural gas company based in Houston, Texas. He has spoken at events around world on topics such as Cyber Threat Intelligence, MITRE ATT&CK, and Incident Response. Notable activities during his career include everything from programming logic controllers, building and leading SOCs, driving forklifts, standing up cybersecurity teams, developing threat intelligence programs, and handling responses to incidents, among many other things over the last few decades. [April 21, 2025] 00:00 - Intro 00:18 - Intro Links: - Social-Engineer.com - http://www.social-engineer.com/ - Managed Voice Phishing - https://www.social-engineer.com/services/vishing-service/ - Managed Email Phishing - https://www.social-engineer.com/services/se-phishing-service/ - Adversarial Simulations - https://www.social-engineer.com/services/social-engineering-penetration-test/ - Social-Engineer channel on SLACK - https://social-engineering-hq.slack.com/ssb - CLUTCH - http://www.pro-rock.com/ - innocentlivesfoundation.org - http://www.innocentlivesfoundation.org/ 02:08 - Travis Farral Intro 02:58 - A Different Path than Today 05:25 - Healthy Hacking 08:08 - Anything Can Be Weaponized 10:54 - Questionable Behavior 14:31 - Smash That Report Button!!! 18:58 - Improving Our Odds 21:00 - You Have to Keep It Simple 22:25 - Letters to a Young CISO 24:20 - Find Travis Farral online - LinkedIn: linkedin.com/in/travisfarral 25:01 - Mentors - Shawn Edwards - Jay Leek 27:02 - Book Recommendations - R. E. Lee: A Biography - Douglas Southall Freeman 29:34 - Wrap Up & Outro - www.social-engineer.com - www.innocentlivesfoundation.org
Dan is joined by Marc Evans, director of business development and technology at Andes. Marc has over twenty years of experience in the use of CPU, DSP, and Specialized IP in SoCs from his prior positions at Lattice Semiconductor, Ceva, and Tensilica. During his early career, Marc was a processor architect, making significant contributions… Read More
At the end of this week's show, Elecia reads a Winnie the Pooh poem as Cookie Monster death metal. Before that, Chris and Elecia chat about mental health, journaling, personal projects, and listener questions. Please sign up for the Nordic Giveaway! You can also sign up for the Embedded newsletter. Maybe now with job postings? Elecia's journaling notebook is this one on JetPens (which is where she gets her nice pens and some of her stickers and washi tape). From discussing some listener messages, we mentioned: Matt Keeter's talk on debuggability in production where you don't have access to the system that is faulting (video and slides) Letter boards (in the Adirondacks), see those in action here Wokwi simulator is a great place to get more embedded experience without buying all the kits. Christopher has said that there will not, definitely not, under any circumstances, be a whole death metal album of Winnie the Pooh poems. Elecia is practicing anyway. Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Oh, and don't forget to enter Nordic Semiconductor's giveaway contest! Just fill out the entrance form, and you're in the running. Good luck!
In this videocast, KuppingerCole Analysts' Senior Analyst Warwick Ashford is joined by Prakash Sinha, Senior Director and Technology Evangelist at Radware, to explore how security teams can drive Mean Time To Resolution (MTTR) close to zero. As AI-powered attacks increase in sophistication and frequency, security operations centers (SOCs) must evolve by leveraging automation and AI-driven incident response. Prakash shares insights on how AI can enhance threat detection, automate remediation, and reduce analyst workloads while maintaining governance and accountability. Discover practical steps for implementing AI-assisted security and the key success factors for modernizing SOCs in the face of an ever-changing threat landscape.
How did China surpass Japan as the world's leading auto exporter? Is Japan poised for victory in the AI Chip War? Why are Data Centers being built near Nuclear Power Plants?SHOW NOTESPoland's adjusted income to overtake Japan's by 2026Rapidus teams up with Singapore's Quest Global to produce AI chipsBattery materials plant in Finland starts construction; jv with China's EaspringU.S. blacklists over 50 Chinese companies in bid to curb Beijing's AI, chip capabilitiesSoftBank strengthens AI strategy by acquiring data center semiconductor company Ampere Computing for approximately 970 billion yen in cashOpenAI close to finalizing $40 billion SoftBank-led fundingMicrosoft cancels up to 2GW of data center projects, says TD CowenDeepSeek-V3 now runs at 20 tokens per second on Mac Studio, and that's a nightmare for OpenAIChina's SiCarrier emerges as challenger to ASML, other chip tool titansASML will open Beijing facility despite US sanctions on ChinaToyota delays electric vehicle battery plant due to weak demandChina EV giant BYD soars after 5-minute charging platform unveiledHonda and Subaru team up with semiconductor companies to develop proprietary SoCs for AI autonomous driving
Continuing its global expansion plan, Integrity360 has acquired leading cyber security specialist Holiseum headquartered in Paris, France. The terms of the transaction were not disclosed. The acquisition will enable Integrity360 to accelerate its growth in France and continental Europe, and significantly provide a new and exciting services practice focused on Operational Technology ("OT") and Internet of Things ("IoT") technologies which complement Integrity360's existing service practices. Those include cyber risk and assurance, cyber security testing, incident response, infrastructure, Microsoft cyber, payments compliance, and a highly comprehensive range of cyber security managed services including managed detection and response ("MDR") solutions. Holiseum will continue to operate from its existing three facilities in France but with the benefit of the full resources and capability of the wider Integrity360 business. Holiseum, founded in 2018, is a highly respected and well-established cybersecurity consultancy that specialises in critical and industrial infrastructure. It serves approx. 80 customers throughout France and selected international locations from facilities in Paris and Nimes including organisations operating in the energy, infrastructure, manufacturing, transport and financial sectors. In particular, Holiseum is an expert in OT technology and has helped many global corporate and infrastructure organisations secure and evolve their OT environment and associated IT estates. Holiseum's reputation is underpinned by several security accreditations from ANSSI - the National Cybersecurity Agency of France - including PASSI (cybersecurity audit services) and PACS (cybersecurity support and consulting) - where Holiseum is one of the first three certified organisations in France. Holiseum's portfolio of services include audit, training, investigation and a full suite of OT consulting solutions. Securing critical infrastructures is a high priority for many governments and corporate organisations across the globe due to the alarming rise in attacks on industrial and energy infrastructure. Leading industry analyst Gartner has commented that such attacks could result in the weaponisation of OT environments to seriously harm human life. Despite the tightening of the regulatory environment with the introduction of cyber security frameworks including NIS2 (Network and Information Security 2) and DORA (Digital Operational Resilience Act) the challenge of continuously securing critical infrastructure remains acute. Holiseum will form a major new practice within Integrity360 dedicated to the mission of aiding, protecting and supporting both government and industrial infrastructure. The existing Holiseum team of 32 will be rapidly expanded in France and across all other Integrity360 markets in support of this mission. In addition, Holiseum's headquarters in Paris will form a new regional hub for the group from which it will deliver the full suite of Integrity360 services, and during 2025 an additional Paris based SOC (Security Operations Centre) will be launched to join the existing network of six SOCs across EMEA (Dublin, Stockholm, Naples, Sofia, Madrid and Cape Town). The SOC teams deliver a wide-ranging set of managed services for customers including EDR, XDR and MDR (Endpoint Detection and Response, Extended Detection and Response, and Managed Detection and Response). Integrity360's innovative range of services have been recognised on multiple occasions by Gartner, namely as a Representative Vendor in the Gartner market guide for Managed Detection and Response services. The addition of Holiseum brings group revenues to over €160m and a dedicated cybersecurity team of over 700 employees. Further innovation and demand for its services across the EMEA region will expand group revenues in 2025 across all territories. Ian Brown, Executive Chairman at Integrity360 commented: "We are very excited to be welcoming the team from Hol...
Professor Cindy Harnett spoke to us about new and different sensors and actuators, primarily designed for soft robotics and fabricated with relatively low cost materials. Cindy is a professor of electrical and computer engineering at the University of Louisville where she runs the Harnett Lab. The papers we discussed are here. You can find a longer list of Cindy's papers on Google Scholar. The video of the SESAME actuator is especially interesting. Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Oh, and don't forget to enter Nordic Semiconductor's giveaway contest! Just fill out the entrance form, and you're in the running. Good luck!
Suresh Vasudevan, CEO of Sysdig, discusses the evolving challenges of cloud security incident response and the need for new approaches to mitigate organizational risk.Topics Include:Cybersecurity regulations mandate incident response reporting.Challenges of cloud breach detection and response.Complex cloud attack patterns: reconnaissance, lateral movement, exploit.Rapid exploitation - minutes vs. days for on-prem.Importance of runtime, identity, and control plane monitoring.Limitations of EDR and SIEM tools for cloud.Coordinated incident response across security, DevOps, executives.Criticality of pre-defined incident response plans.Increased CISO personal liability risk and mitigation.Documenting security team's diligence to demonstrate due care.Establishing strong partnerships with legal and audit teams.Covering defensive steps in internal communications.Sysdig's cloud-native security approach and Falco project.Balancing prevention, detection, and response capabilities.Integrating security tooling with customer workflows and SOCs.Providing 24/7 monitoring and rapid response services.Correlating workload, identity, and control plane activities.Detecting unusual reconnaissance and lateral movement behaviors.Daisy-chaining events to identify potential compromise chains.Tracking historical identity activity patterns for anomaly detection.Aligning security with business impact assessment and reporting.Adapting SOC team skills for cloud-native environments.Resource and disruption cost concerns for cloud agents.Importance of "do no harm" philosophy for response.Enhancing existing security data sources with cloud context.Challenges of post-incident forensics vs. real-time response.Bridging security, DevOps, and executive domains.Establishing pre-approved incident response stakeholder roles.Maintaining documentation to demonstrate proper investigation.Evolving CISO role and personal liability considerations.Proactive management of cyber risk at board level.Developing strong general counsel and audit relationships.Transparency in internal communications to avoid discovery risks.Security teams as business partners, not just technicians.Sysdig's cloud security expertise and open-source contributions.Participants:· Suresh Vasudevan – CEO, SysdigSee how Amazon Web Services gives you the freedom to migrate, innovate, and scale your software company at https://aws.amazon/isv/
Elecia and Chris talk with each other about the state of Chris' mind, what makes an embedded developer stand out, “LEGO block” based design, unit tests, and astronomy. Whew! Elecia was recently on the Changelog podcast, talking about the world of embedded systems. Chris has been working with Micropython (we talked with Damien George about Micropython on episode 456). He's using a Pyboard to start, but is looking to move on to this board from Sparkfun. Wikipedia has a nice reference on what the pulse-per-second signal is all about. Elecia talked about her experience using CFFI to drive unit tests. She also talked about some facts from Information is Beautiful. Chris' telescope is the ZWO Seestar S50. There's also a smaller Seestar S30 now which has a wider field-of-view. Title reference (Chris and Elecia both thoroughly enjoyed The Good Place, the TV show this is taken from.) Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Oh, and don't forget to enter Nordic Semiconductor's giveaway contest! Just fill out the entrance form, and you're in the running. Good luck! Here's one of the astrophotos Chris has taken: The Horsehead and Flame nebulae in Orion taken from a Seestar S50
With cyber threats growing in sophistication and scale, organisations must rethink their strategies to safeguard digital assets and operational continuity. Security Operations Centers (SOCs) stand at the forefront of this effort, acting as centralised hubs where cybersecurity professionals monitor, manage, and mitigate threats. The rise in cyber threats – estimated to have grown by 25% annually over the past half-decade – has amplified the importance of SOCs. In this podcast hosted by Merle Maigre, Head of Cybersecurity at e-Governance Academy, Margus Vaino and Martin Paas from Telia discuss the evolution, challenges, and opportunities surrounding SOCs – from the point of view of a major telecommunications player. Acknowledging the rising importance of SOCs is only the beginning: the increasing complexity of cyber threats, and the essential steps required to build and sustain effective cybersecurity infrastructures, are all part of the roadmap to effective cyber defence.
The cast & creatives from the Tony Award winning musical “The Outsiders” join us to perform a song and discuss the beloved story that defined a generation, reimagined as a groundbreaking new musical. In Tulsa, Oklahoma, 1967, Ponyboy Curtis, his best friend Johnny Cade, and their greaser family of ‘Outsiders' battle with their affluent rivals, the Socs. “The Outsiders” navigates the complexities of self-discovery as the Greasers dream about who they want to become in a world that may never accept them. With a dynamic original score, “The Outsiders” is a story of friendship, family, belonging, and the realization that there is still “lots of good in the world.” Visit http://youtube.com/TalksAtGoogle/ to watch the video.
HAPPY FRIDAY DIVAS! we're coming in hot with a bonus episode to celebrate our dear, dear friend John Patrick Collins-- Riding high from his Broadway debut in the smash hit “The Outsiders”. Naturally, the Ladies were there to cheer him on, and then sat down to talk all things Greasers, Socs, and more. We love you Johnny boy, and we're beyond excited to have you back on the pod.Divas, check out his earlier episode in Season 1 for more info on his original play, “It's Not What It Looks Like”."The Ladies Who Brunch" New Episodes Every WednesdayInstagram/Tik Tok: @theladieswhobrunchpod@jakewaford@sammyschechter
Guest: Amine Besson, Tech Lead on Detection Engineering, Behemoth Cyberdefence Topics: What is your best advice on detection engineering to organizations who don't want to engineer anything in security? What is the state of art when it comes to SOC ? Who is doing well? What on Earth is a fusion center? Why classic “tiered SOCs” fall flat when dealing with modern threats? Let's focus on a correct definition of detection as code. Can you provide yours? Detection x response engineering - is there a thing called “response engineering”? Should there be? What are your lessons learned to fuse intel, detections, and hunting ops? What is this SIEMless yet SOARful detection architecture? What's next with OpenTIDE 2.0? Resources: Guide your SOC Leaders to More Engineering Wisdom for Detection (Part 9) and other parts linked there Hack.lu 2023: TIDeMEC : A Detection Engineering Platform Homegrown At The EC video OpenTIDE · GitLab OpenTIDE 1.0 Release blog SpectreOps blog series ‘on detection' Does your SOC have NOC DNA? presentation Kill SOC Toil, Do SOC Eng blog (tame version) The original ASO paper (2021, still epic!) Behind the Scenes with Red Canary's Detection Engineering Team The DFIR Report – Real Intrusions by Real Attackers, The Truth Behind the Intrusion Site Reliability Engineering (SRE) | Google Cloud
In this episode of the mnemonic security podcast, Robby is joined by Scott Piper from Wiz and Håkon Sørum from O3 Cyber to talk cloud security. They cover the evolution of cloud security products since Amazon's release of S3 and EC2 in 2006 and how the market has matured into the CNAPP we know today. They chime in on most of the buzzwords associated with CNAPP, including Cloud Security Posture Management (CSPM), Cloud Workload Protection Platform (CWPP), Cloud Infrastructure Entitlement Management (CIEM), and Cloud Detection and Response (CDR), as well as other key areas of CNAPP such as vulnerability scanning, "shift-left" security, cloud data security, and compliance. They explain the definition and challenges of "cloud-native attacks" and misconfigurations and discuss whether third-party SOCs can add context and enhance detection capabilities.
Nikolaus Correll spoke with us about robots, teaching robotics, and writing books about robots. Nikolaus is a Professor of Computer Science at the University of Colorado, see his lab website (or his Wikipedia page). We discussed Nikolaus' Introduction to Robotics with Webots Specialization Coursera course (or YouTube Playlist). These go along with his Introduction to Autonomous Robots (which can be compiled from source from github). Masters of Computer Science online via University of Colorado and Georgia Tech. While the Arcbotics Sparki is no longer in production, Nikolaus also mentioned the Amazon Racer. Transcript Nordic Semiconductor has been the driving force for Bluetooth Low Energy MCUs and wireless SoCs since the early 2010s, and they offer solutions for low-power Wi-Fi and global Cellular IoT as well. If you plan on developing robust and battery-operated applications, check out their hardware, software, tools, and services. On academy.nordicsemi.com, you'll find Bluetooth, Wi-Fi, and cellular IoT courses, and the Nordic DevZone community covers technical questions: devzone.nordicsemi.com. Oh, and don't forget to enter Nordic Semiconductor's giveaway contest! Just fill out the entrance form, and you're in the running. Good luck!
In this episode of Out of the Woods: The Threat Hunting Podcast, Scott Poley sits down with Brian Hill, a cybersecurity leader with a rich background in law enforcement, military service, and corporate security. Brian shares his journey from major crimes detective and forensics expert to building and managing Security Operations Centers (SOCs) at organizations like Arctic Wolf and Black Cloak. The discussion highlights challenges in scaling SOCs, the importance of balancing specialized expertise with cross-functional training, and unique threats faced by high-profile individuals, such as SIM swapping and personal device vulnerabilities. Brian also explores broader trends like artificial intelligence and deepfake technology, emphasizing the need for education and proactive measures to stay ahead of evolving cyber threats. *Connect with Brian Hill: https://www.linkedin.com/in/brian-hill-776b50100/ ---- Stay in Touch! Twitter: https://twitter.com/Intel471Inc LinkedIn: https://www.linkedin.com/company/intel-471/ YouTube: https://www.youtube.com/channel/UCIL4ElcM6oLd3n36hM4_wkg Discord: https://discord.gg/DR4mcW4zBr Facebook: https://www.facebook.com/Intel471Inc/
Guests Caleb Connolly | Pablo Correa Gómez Panelist Richard Littauer Show Notes In this episode of Sustain, host Richard Littauer is joined by guests Pablo Correa Gómez and Caleb Connolly to explore the development and sustainability of postmarketOS, an open-source Linux distribution designed to extend the life of mobile devices. The team dives into the project's mission, governance, and the community-driven nature of its work. They discuss the challenges related to funding, primarily through grants and Open Collective donations, and the significance of upstreaming Linux kernel support to collaborate with other communities like Alpine Linux. The conversation also highlights the growth of the postmarketOS community, encouraging contributions from both technical and non-technical supporters, and the importance of comprehensive documentation. Additionally, issues of privacy, telemetry, and user support are examined, alongside the steps towards making postmarketOS more professional and economically sustainable. Press download now to hear more! [00:01:30] Pablo explains postmarketOS and its mission to empower people to have full control over their devices and promote sustainability. [00:02:12] Caleb talks about the governance of postmarketOS that started with a few contributors working on a package repository on top of Alpine Linux and overtime more maintainers were added. [00:03:59] There's a discussion on the structure of the team, how the community around hardware components forms sub-communities bases on common SOCs, and the focus on improving tooling and the ecosystem rather than building a product for end users. [00:06:29] Richard discusses the massive, refurbished phone market and asks about how postmarketOS fits into this ecosystem. Caleb shares their experience working on the OnePlus 6 phone and explains the technical process of making the device work on upstream Linux and the challenges of hardware enablement. [00:10:05] Pablo explains that the project is largely funded by volunteer work and Caleb describes the challenges in deciding which devices to prioritize for hardware enablement and how all hardware work so far has been done by volunteers. [00:14:09] On the importance of upstreaming, Pablo explains that postmarketOS works hard to contribute back to the Linux ecosystem rather that maintaining device-specific patches and postmarketOS is downstream to Alpine Linux but contributes much of its work upstream to maintain sustainability. [00:20:09] Richard asks about how the project builds shared context and onboards new developers and Pablo and Caleb explain how the project relies on its wiki page to provide extensive documentation and how the pmbootstrap tool makes it easier for new contributors to get started with porting new devices to postmarketOS. [00:25:01] Richard asks about telemetry and how the team tracks their impact. [00:25:39] Pablo talks about how they receive community feedback through events like FOSDEM and have seen an increase in donations, social media engagement, and community members. [00:28:39] Caleb reflects on the pros and cons of collecting telemetry, which could help guide development but may also create unwanted challenges by focusing too heavily on specific devices. [00:31:30] What are Pablo and Caleb most excited about for the next year? Pablo is excited about professionalizing the project, starting to pay contributors, and scaling the project's growth sustainably, and Caleb jokes about looking forward to the “pre-market OS.” Quotes [00:12:00] “We are trying to grow organically, bit by bit, and be able to pay people to do core things where volunteer work doesn't reach.” [00:15:06] “In the environment we live in, where you have X amount of code per update, it is totally unsustainable.” [00:16:18] “As a distro, we predominately put together the pieces that other people give us.” [00:19:13] “Downstream patches allow to experiment, but long term are a burden. That's the same for every project.” [00:19:22] “The sustainability goes beyond reducing waste and also goes into the social ecosystem and how we maintain projects.” [00:30:33] “We know we are not ready for end users, but we need to build the structure and economic support.” Spotlight [00:32:32] Richard's spotlight is DOSBox. [00:33:03] Pablo's spotlight is FOSDEM and the FOSDEM team. [00:33:57] Caleb's spotlight is processing.org. Links SustainOSS (https://sustainoss.org/) podcast@sustainoss.org (mailto:podcast@sustainoss.org) richard@sustainoss.org (mailto:richard@sustainoss.org) SustainOSS Discourse (https://discourse.sustainoss.org/) SustainOSS Mastodon (https://mastodon.social/tags/sustainoss) Open Collective-SustainOSS (Contribute) (https://opencollective.com/sustainoss) Richard Littauer Socials (https://www.burntfen.com/2023-05-30/socials) Caleb Connolly Website (https://connolly.tech/) Caleb Connolly-treehouse (https://social.treehouse.systems/@cas) Pablo Correa Gómez Website (https://postmarketos.org/core-contributors/#pablo-correa-gomez-pabloyoyoista) Pablo Correa Gómez LinkedIn (https://www.linkedin.com/in/pablo-correa-gomez/) postmarketOS (https://postmarketos.org/) postmarketOS (Open Collective Contribute) (https://opencollective.com/postmarketos) Gnome Shell & Mutter (https://blogs.gnome.org/shell-dev/2022/09/09/gnome-shell-on-mobile-an-update/) postmarketOS Devices (https://wiki.postmarketos.org/wiki/Devices) Sustain Podcast-Episode 195: FOSSY 2023 with Denver Gingerich (https://podcast.sustainoss.org/195) Software Freedom Conservancy (https://sfconservancy.org/) FOSSY 2025:July 31-August 1 (https://2025.fossy.us/) linaro (https://www.linaro.org/) postmarketOS Wiki (https://wiki.postmarketos.org/wiki/Devices) pmbootstrap (https://wiki.postmarketos.org/wiki/Pmbootstrap) compost.party (https://compost.party/) pmbootstrap v3 by Caleb Connolly (https://connolly.tech/posts/2024_06_15-pmbootstrap-v3/) DOSBox (https://www.dosbox.com/) FOSDEM 2025 (https://fosdem.org/2025/) Processing (https://processing.org/) Credits Produced by Richard Littauer (https://www.burntfen.com/) Edited by Paul M. Bahr at Peachtree Sound (https://www.peachtreesound.com/) Show notes by DeAnn Bahr Peachtree Sound (https://www.peachtreesound.com/) Special Guests: Caleb Connolly and Pablo Correa Gomez.
Qualcomm takes the wheel
In this episode, we talk with Dr. Elizabeth Kiracofe, a dermatologist in the Chicago area who has worked closely for many years with the Skin of Color Society (SOCS)—the world's leading professional dermatologic organization dedicated to advancing health equity and promoting diversity and inclusion in dermatology. Dr. Kiracofe provides an insightful overview of SOCS, introduces their latest initiative and volunteer opportunity, "My Best Winter Skin", and discusses ways for students to get involved with SOCS. She also highlights the importance of building meaningful connections and relationships in dermatology, whether with patients, colleagues, or mentors. We hope you enjoy! Join The Skin of Color Society - here! Learn more about the "My Best Winter Skin" initiative - here! Recommended research article: A model in dermatology for long-distance mentoring (PMID: 23267719) --- Dr. Kiracofe: @drkiracofemd SOCS: @skinofcolorsociety DIGA: @derminterest Today's Host, Austin: @austin_black --- For questions, comments, or future episode suggestions, please reach out to us via email at derminterestpod@gmail.com --- Music: District Four by Kevin MacLeod Link: https://incompetech.filmmusic.io/song/3662-district-four License: https://filmmusic.io/standard-license
How does the tone from the top influence fraud investigations, organizational culture, security training, and technology upgrades? Scot Walker, PCI, Manish Mehta, and John Rodriguez join this episode of the SM Highlights podcast to talk through how proactive relationship-building and partnerships can drive tactical and strategic success. Additional Resources Join the ASIS International Investigations Community here: https://community.asisonline.org/subjectareahome?CommunityKey=e3a5949e-d103-40a3-80f9-38f8476100b1 Get resources from the Society for Human Resource Management (SHRM) on investigations here: https://www.shrm.org/topics-tools/tools/how-to-guides/how-to-conduct-investigation To learn more about security operations centers (SOCs), check out Security Management's coverage from September: https://www.asisonline.org/security-management-magazine/articles/2024/09/soc/ Read Manish Mehta's take on modernizing SOCs in his article: https://www.asisonline.org/security-management-magazine/articles/2024/09/soc/modernizing-socs/ More interested in security culture and how it affects leadership? Read more here: https://www.asisonline.org/security-management-magazine/articles/2024/10/culture/ Hear more from John Rodriguez about how security leaders can leverage and influence culture in his article: https://www.asisonline.org/security-management-magazine/articles/2024/10/culture/culture-security-differentiator/
Unlocking SOC Excellence: Master the SOC Capability Maturity Model Join host G Mark Hardy in this compelling episode of CISO Tradecraft as he explores the revolutionary SOC Capability Maturity Model (SOC CMM) authored by Rob van Os. This episode is a must-watch for CISOs, aspiring CISOs, and cybersecurity professionals aiming to optimize their Security Operations Center (SOC). Learn how to measure, evaluate, and enhance your SOC's maturity across key domains including Business, People, Process, Technology, and Services. Gain insights into leveraging radar charts for visualizing SOC capabilities and hear case studies such as a mid-sized financial company's remarkable improvements. Discover why understanding your SOC's strengths and weaknesses and conducting risk-based improvement planning are crucial. Don't miss out—elevate your cyber resilience today, subscribe, and share with your network to set your SOC on the path to excellence! References: SOC-CMM - https://www.soc-cmm.com/products/soc-cmm/ Robert van Os - https://www.linkedin.com/in/socadvisor/ Transcripts: https://docs.google.com/document/d/1Fk6_t9FMyYXDF-7EfgpX_ZjLc0iPAgfN Chapters 00:12 Introduction to CISO Tradecraft and SOCs 01:20 Understanding SOC CMM: A Game-Changing Tool 02:29 Evaluating SOC Maturity and Capability 06:04 Benefits and Implementation of SOC CMM 07:56 Understanding SOC Assessments 08:55 Deep Dive into SOC CMM Domains 12:42 Benefits and Flexibility of SOC CMM 14:40 Real-World Application and Conclusion
Lenovo Innovation World 2024 was held in Berlin on September 4th—5th. During this event, the company announced a slew of Copilot+ PCs powered by the new Intel Core Ultra 400v, AMD Ryzen AI 300, and Qualcomm Snapdragon X Plus (8-core) SoCs. In this episode, I talk to Olivier Blanchard, Research Director, Futurum Research, about the various SoCs, their strengths and weaknesses, the need for OEMs to position them well, specifically what Lenovo should do to maintain its formidable market leadership, and finally, key takeaways from the event. Also, check out the reviews of these Copilot+ PCs powered by Snapdragon XElite SOC Lenovo Slim7x - https://bit.ly/3WK9W4n Samsung Galaxy Book4 Edge - https://bit.ly/3XJSGLN
In this week's Top 5 Threat Hunting Headlines, Scott and Tom discuss top cybersecurity threats, including Kaspersky's Tusk InfoStealer campaign, a cloud extortion campaign exploiting AWS environments, APT41's advanced tactics against a Taiwanese research institute, and the Banshee InfoStealer targeting macOS. They also explore the impact of AI on cybersecurity, emphasizing the need for SOCs to evolve with new talent and strategies to address emerging threats. The episode underscores the importance of staying vigilant and adapting to the rapidly changing threat landscape. Top 5 Threat Hunting Headlines - 19 Aug 2024 1. Secure List | Tusk Campaign Uses Infostealers and Clippers for Financial Gain https://securelist.com/tusk-infostealers-campaign/113367/ 2. Unit 42 | Leaked Environment Variables Allow Large-Scale Extortion Operation of Cloud Environments https://unit42.paloaltonetworks.com/large-scale-cloud-extortion-operation/ 3. Cisco Talos Blog | APT41 Likely Compromised Taiwanese Government-Affiliated Research Institute with ShadowPad and Cobalt Strike https://blog.talosintelligence.com/chinese-hacking-group-apt41-compromised-taiwanese-government-affiliated-research-institute-with-shadowpad-and-cobaltstrike-2/?&web_view=true 4. Elastic Security Labs | Beyond the Wail: Deconstructing the BANSHEE Infostealer https://www.elastic.co/security-labs/beyond-the-wail 5. Help Net Security | 74% of IT Professionals Worry That AI Tools Will Replace Them https://www.helpnetsecurity.com/2024/08/15/it-professionals-ai-worry/?web_view=true ----- Follow Us! Twitter: https://twitter.com/CyborgSecInc LinkedIn: https://www.linkedin.com/company/cyborg-security/ YouTube: https://www.youtube.com/cyborgsecurity Discord: https://discord.gg/DR4mcW4zBr TikTok: https://www.tiktok.com/@cyborgsecinc
Chapter 1:Summary of Book The outsiders"The Outsiders" is a coming-of-age novel by S.E. Hinton, first published in 1967. The story is set in a small town in the United States in the 1960s and revolves around the intense conflict between two groups: the Greasers and the Socs (short for Socials). The Greasers are from the lower socio-economic class, often characterized by their long, greased hair, while the Socs are from the wealthier class and have a much more privileged upbringing.The novel is narrated by Ponyboy Curtis, a 14-year-old Greaser with a gift for storytelling. Ponyboy lives with his two older brothers, Sodapop and Darry, who are taking care of him after their parents died in a car accident. Despite tough circumstances, the brothers share a close bond.The plot kicks off when Ponyboy and his friend Johnny Cade, another Greaser, are attacked by a group of Socs. The confrontation ends in tragedy when Johnny kills one of the Socs, Bob Sheldon, in self-defense. Fearing the consequences, Ponyboy and Johnny flee and hide out in an abandoned church with the help of their friend and fellow Greaser, Dallas Winston.As they hide from the police, Ponyboy and Johnny bond and discuss deeper topics, such as life, their families, and their future. However, their hideout eventually catches fire while a group of schoolchildren is visiting. Ponyboy and Johnny heroically save the children but Johnny is seriously injured during the rescue.The event garners media attention, and the Greasers and Socs become even more entrenched in their conflict. Meanwhile, Johnny's condition worsens, and he dies in the hospital. Distraught, Dallas reacts impulsively and meets a tragic end after a confrontation with the police.The novel culminates with Ponyboy reflecting on the events and writing his school assignment about them, concluding with the realization that despite class differences, pain and suffering are universal—echoing his reading of Robert Frost's poem "Nothing Gold Can Stay," and the recurrent theme that life's precious moments are fleeting."The Outsiders" is a poignant exploration of friendship, societal expectations, family, and identity, appealing to young readers with its candid portrayal of teenage struggles in the face of socio-economic divides.Chapter 2:The Theme of Book The outsiders"The Outsiders," written by S.E. Hinton and published in 1967, is a novel about teenage gangs and the conflicts between them. Set in a small town in the 1960s, it focuses on the struggles between two rival groups, the Greasers and the Socs, who are differentiated by their socioeconomic statuses.Key Plot Points:1. Introduction to Conflict:The story opens by introducing Ponyboy Curtis, a 14-year-old Greaser, who is jumped by a group of Socs as he's walking home from a movie theater. This sets the scene for the ongoing rivalry and social conflict.2. The Drive-In Movie:Ponyboy, along with his brothers Darrel (Darry) and Sodapop, and friends Johnny and Two-Bit, meet Cherry Valance and Marcia at a drive-in movie. Despite being Socs, Cherry and Ponyboy develop a mutual understanding and discuss their differences and similarities, bridging the gap between their social classes momentarily.3. Johnny Kills Bob:The conflict escalates when Johnny, in self-defense, kills Bob Sheldon (a Soc) after he and his friends try to drown Ponyboy in a park. Fearful of the consequences, Johnny and Ponyboy flee to a church hideout in a nearby town with the help of their friend Dallas (Dally) Winston. 4. The Church Fire:While in hiding, a fire breaks out in the church Johnny and Ponyboy are in, and they heroically save a group of children trapped inside. Both get injured, and their act of bravery receives media coverage, altering the public's perception of the Greasers.5. The Rumble:After returning...
© 2020-2025 Ivy Podcast Discovery LLC
