Dark Rhino Security Podcast

#SecurityConfidential #DarkRhinoSecurity  Dr. Joseph J. Burt-Miller Jr talked with host Manoj Tandon on this episode of Security Confidential. Dr. Joseph is a Veteran, Father, Husband, and GRC-Focused Cybersecurity Professional among many other things. Dr. Joseph J Burt-Miller Jr. is a product of Mt. Vernon, NY. He is an Air Force Veteran and a Capella University graduate with a myriad of experience within IT, cybersecurity, cloud-based applications, and biometric identity management for the United States government.    To learn more about Dr. Joseph J. Burt-Miller Jr visit https://www.linkedin.com/in/drjjbmj/  To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com

#SecurityConfidential #DarkRhinoSecurity  Articles mentioned:  https://www.kaspersky.com/resource-center/threats/ransomware-attacks-and-types  https://www.backblaze.com/blog/complete-guide-ransomware/  https://www.tomsguide.com/us/ransomware-what-to-do-next,news-25107.html    To learn more about Ransomware, listen to our podcast video with Ransomware expert Dennis Underwood here  https://www.youtube.com/watch?v=DJoVdcMGzE0    To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com

#SecurityConfidential #DarkRhinoSecurity Brian Stoner joins us today on Security Confidential. Brian has a long history with cybersecurity OEMs starting with CA where I first met him. Brian has been with McAfee, Fireeye, Cylance, and is now with Stellar Cyber. Brian has been in the business of helping companies build their channels.   00:00 Introduction  02:04 What are the elements of a successful cybersecurity channel program? 06:10 Is there an inherent conflict with having a salesperson be managing a partner?   08:12 Where do the programs have mismatched expectations between the OEM and reseller?  13:20 Is the pure Var model the way forward? Are clients in cybersecurity not locking more for a total solution for defense in depth vs a pure technology play.  16:11 What market sectors in cybersecurity do you see doing well in the coming year?  20:17 Explain what is XDR?  31:28 How have you been able to avoid the pitfalls of storage and compute power as it relates to the cloud?

For individuals to get hacked is very common. Getting hacked is regardless of an individual's demographic. Even well-protected personalities like Donald Trump have been hacked. The sad reality is much could have been done by the individual to prevent it. Dark Rhino Security shares some very simple and basic information security knowledge for individuals to take control of their online accounts.  Research from the video:  https://www.washingtonpost.com/world/...  https://www.nytimes.com/2021/09/13/te...  To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com

Manoj Tandon and Tyler Smith talk about Incident Response in this episode of Dark Rhino Security's Security Confidential

Confidence Staveley joins host Manoj Tandon in this week's episode of Security Confidential. Confidence joins us from Lagos, Nigeria, where she talks to us about her career in Cyber and how she is helping young women break the stereotypes. She is a Cyber Security Professional, Author, and Entrepreneur. She is the founder and executive director of CyberSafe and NoGoFallMaga. Confidence was also the winner of the Cyber Security Woman of the Year 2021 award. 00:00 Introduction 01:25 How Confidence started in Cyber 06:07 Cyber Security in Nigeria 10:24 Cyber Security Woman of the Year 15:56 CyberSafe Foundation 17:46 Biggest Challenges 19:58 Women in the role of Cyber 24:42 Stereotypes for Women 31:28 Cybersafe for businesses 35:55 CyberSafe success stories 42:43 Cyber advice from Confidence 46:33 Closing

#SecurityConfidential #DarkRhinoSecurity Brandon Keath joins host Manoj Tandon on this week's episode of Security Confidential. Apart from being a Cyber Security officer, Brandon is also the President of PA Hackers and faculty at the University of Cumberlands and Harrisburg University. Brandon shares with us a bit about his gaming background along with his thoughts and suggestions for people wanting to start a career in Cyber.    00:00 Introduction  06:00 There’s no better teacher than failure  08:25 Vulnerabilities in the Gaming industry  12:18 Cyber background  19:44 How to look at Risk?  28:15 The cost-benefit analysis  39:00 Quantum computing  40:00 Getting rid of Passwords  45:00 Cyber insurance  51:00 TheHackingLab.com   To learn more about Brandon visit https://www.linkedin.com/in/brandon-keath/  You can check out The Hacking Lab at https://thehackinglab.com/ and https://www.youtube.com/channel/UC6vzWXOOw-hV8iuOYATPm4A  To learn more

Dennis Underwood joins host Manoj Tandon in this episode of Security Confidential. Dennis shares about his military background and how he turned to cyber to help shape his career. He is an Veteran, Father, Cryptographer, Threat Hunting Expert, and Ransomware Expert. Among his 10 years of combat experience, Dennis also has over 20 years experience being an Entrepreneur.     00:00 Introduction  01:00 Military Background  10:50 A Career in Cyber  11:50 Ransomware  16:13 Executive perspective  21:46 The Cloud and How it affects you  25:30 Speed bump Security  27:07 Rate of Encryption   31:30 Cyber Crucible  39:00 Chaos Monkeys  42:40 B-Sides PGH  45:22 Outro   To learn more about Dennis visit https://www.linkedin.com/in/dennis-underwood/  Be sure to check out https://www.cybercrucible.com/  To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com

Mia Landsem joins host Manoj Tandon in this episode of Security Confidential. From Norway, Mia discusses how a series of unfortunate events led into an astonishing Career choice. Mia has used her skills in cybersecurity to help many people. She has focused her attention on image abuse which led to a nomination in 2021 as Cybersecurity Women of The Year. She is a best selling author, has numerous TV appearances, lectured at over 300 schools, and has helped train law enforcement on pursuing criminals posting pictures of minors. 00:00 Introduction  01:16 How Mia got into Cybersecurity  03:17 Making The Olympic Team  04:27 Learnings from sports training applied to cybersecurity  07:20 Advice on Cyberbullying  09:30 Law enforcement response to Cyberbullying   11:00 The Law and illicit pictures of minors  16:54 Using Cyber knowledge to stop Image Abuse  22:21 Changing the Laws on Image Abuse  24:14 Working with the Police   29:51 Cybersecurity Woman of the Year &nbs

Laura Tich, founder of SheHacks_KE and Cybersecurity Women of The Year Nominee joins host Manoj Tandon on this episode of Security Confidential. Laura along with SheHacks_KE has helped over 400 people on their Cybersecurity Career journey. She discusses: 00:00 Introduction 01:30 What led to the nomination of Cybersecurity women of the Year? 03:27 Why focus on Information Security 05:40 High tech environment in Kenya 08:20 The work of SheHacks_KE 10:44 Cybersecurity threats Kenyan business face 13:30 Cybersecurity awareness in Kenya 15:16 Personal security challenges 17:14 The people impact of SheHacks_KE 18:37 Ransomware impacts in Kenya 22:00 Providing defense in depth to organizations in Kenya 26:15 Supporting SheHacks_KE

Sean Sweeney is a frequent author and speaker on cybersecurity. In this episode of Security Confidential Sean talks about cloud security. He has a deep background in cloud security. Sean currently leads the Field CISO and Cloud Security Advisor group within Oracle North America Cloud Engineering.  In his prior role Sean was with Microsoft where he was the Global Chief Security Advisor. Sean is a previous Chief Information Security Officer at the University of Pittsburgh, and Litigation Support Applications Manager for the U.S. Department of Justice. Sean began his career as a Database Administrator for ExxonMobil and the U.S. Department of the Interior. 00:09 Sean Sweeney’s Background  01:38 From DB Admin to CISO  05:00 Helping Dave Hickton prosecute cyber criminals  06:52 The future of cybersecurity  07:20 SAS, PAS, IAS-Your responsibilities in cloud cybersecurity  13:33 If IP is exfiltrated from the cloud app, whose responsible?  14:30 What gets popped in the cloud environ

#SecurityConfidential #DarkRhinoSecurity Strategist and best-selling author Michele Wucker coined the term “gray rhino” for obvious, probable, impactful risks, which we are surprisingly likely but not condemned to neglect. The metaphor has moved markets, shaped financial policies, and made headlines around the world. It became a frame for the ignored warnings that led to the COVID-19 pandemic and a lyric in a hit BTS single about depression. Michele’s 2019 TED Talk has attracted 2.5 million views. She is the author of four books including the global bestseller THE GRAY RHINO: How to Recognize and Act on the Obvious Dangers We Ignore; and the new book YOU ARE WHAT YOU RISK: The New Art and Science of Navigating an Uncertain World. A former media and think tank executive who began her career writing about emerging market finance, Michele is founder of the Chicago-based strategic advisory firm, Gray Rhino & Company. She speaks regularly to high-level audiences on risk management, the global economy, and deci

Naomi Buckwalter joins Security Confidential as a guest on this episode. Naomi has over twenty years of experience in Cybersecurity, two degrees from Villanova, and has worked at great companies like Vanguard. She brings her wealth of knowledge on Cybersecurity and discusses all the foundational elements of a great cybersecurity program from hiring the right people, Cybersecurity's effects on everyday life, shifting left in Cybersecurity to enhance it, using Cybersecurity as a revenue generator, all the way to quantifying risk and explaining it to the C-Level. There is something in this discussion for everyone interested in Cybersecurity. 00:00 Introduction  01:18 The demand gap in Cybersecurity for personnel  12:06 Cybersecurity bleeding into everyday life   19:11 Gatekeeper and created hindrances in Cybersecurity  19:45 Crafting a defense in depth architecture  23:00 The importance of explaining of the why in Cybersecurity to people  25:00 Christian Espinosa The Smartest Person

#SecurityConfidential #DarkRhinoSecurity  Charles Herring, CTO of witfoo, joins this episode of Security Confidential. Charles started his career in Information Security in 2002 with the US Navy, serving as the Network Security Officer at the US Naval Postgraduate School. Charles has been a contributing product reviewer for InfoWorld Magazine and spent 7 years running Herring Consulting a firm dedicated to process orchestration. Charles is dedicated to maturing the craft of Infosec. 00:00 Introduction  02:12 Getting a start in Cybersecurity and transition to civilian life   13:22 7 unstable conversations in Cybersecurity  14:40 Establishing a unit of work-increasing deterrence  20:04 Law Enforcement success with cyber crimes-Sharing Information  24:34 How to vet the quality of Threat Intelligence  26:47 Dealing with the Unknown-Unknowns-Zero Day Attack  33:26 1st unstable conversation-understanding all the data from the toolsets  36:36 2nd unstable conversation-man

Manoj Tandon, one of the founders of Dark Rhino Security, appeared on Pittsburgh Technology Council's TechVibe Radio on ESPN 970. This is a complete repost of the show which is wholly owned and operated by the Pittsburgh Technology Council. The Mythbusting in Cybersecurity starts at time marker 15:55. Please subscribe and leave your comments.

#SecurityConfidential #DarkRhinoSecurity Fredrik Oedegaardstuen joins Dark Rhino's Security Confidential to discuss Open Source software in cybersecurity. Fredrik the is the CEO of Shuffle, an automation platform. He has been a software engineer and has extensive experience in SOC operations in an MSSP environment. Fred discusses many topics ranging from monetizing open source software, myths with open source, architecture and design, silver bullets in cybersecurity, and provides cautionary advice. 02:34 Why Tokyo  04:13 Open source and cybersecurity  06:37 Monetizing Open Source Software  12:17 Myth of Open Source tools being not that secure  13:29 Shuffle-The security automation platform  18:40 Architecture of Shuffle inspired from the NSA  26:21 Integration of disparate systems  32:26 Tools and Silver Bullets in Cybersecurity  34:09 Does the role of the analyst change with Shuffle?   40:04 Cautionary advice on automation Frikkylikeme is Fredrik's Twitter Handle

Hans Vargas Silva joins this episode of Dark Rhino Security's Security Confidential Podcast and Videocast. Hans is a leader in cybersecurity leader. He has extensive experience in the field. Hans has worked with Sallie Mae and is currently with Marathon Petroleum. He has a great academic background with degrees and certificates from Purdue, MIT, and Harvard. He provides his thoughts and experiences on protecting critical infrastructure from cyber intrusions, compliance and cybersecurity, giving back to the community and much more.   01:13 How Hans got into Cybersecurity  04:00 How education shapes a career in Cybersecurity  08:56 Critical Infrastructure and Cybersecurity  19:40 Compliance is a low bar for Cybersecurity  23:57 Incomplete deployments of Cybersecurity solutions   24:49 How to communicate cyber risk  29:58 The dilemma of regulators  34:44 Sharing security information with the Federal Gov’t  39:20 Contributions to infosec from academia  42:25 Givin

Amelia Jarboe appears on this episode of Security Confidential. Amelia is a Cybersecurity Controls Engineer. She has held many positions in the field of cybersecurity. She is a graduate of The Ohio State University. In addition, to her work as a cybersecurity controls engineer she is on the Steering Committee for Machine Learning and is speaking at the ISSA Central Ohio Infosec Summit. 00:00 Introduction  01:10 How Amelia got into Cybersecurity  03:57 A passion for protecting people with Cybersecurity  06:47 OSU's Cybersecurity Program  07:40 Imposter Syndrome in Cybersecurity  12:25 Compliance and Cybersecurity  15:20 Continually verifying and validating the controls in place  16:17 Top metrics in Cybersecurity  17:47 A technique to convince decision makers about cyber spend  21:25 Controls to begin a Cybersecurity program with-Spikes and Gaps  26:38 Guidance on frameworks in Cybersecurity  30:20 Cybersecurity is an everyone problem  32:27 Individua

Ilya Bodner joins us on Security Confidential. Ilya is the found and CEO of Bold Penguin a highly successful technology company serving major insurance companies. Ilya has created a great company and achieved great success. He has received much recognition including business executive of the year and Columbus Business First 40 under 40 Class of 2019. In this episode Ilya discusses: 01:34 Journey from Russia to the CEO of Bold Penguin 05:00 Partner/Co-Founder Relationships 09:03 Three legs of the stool for business success 14:25 Lessons from working with VCs 17:40 How to land your first customer 23:26 Origins of the name Bold Penguin 26:00 Why pick insurance as the prime sector for a tech startup? 28:53 Competing with insurance companies on their own products 32:14 Is cybersecurity a business problem or an IT problem? 35:47 Making cybersecurity accessible to SMBs 36:37 Should cyber insurance be tied to effectivity of implemented controls? 39:40 What does a startup enthusiast do next? 41:25 Career opportunitie

Samara R. Williams