A podcast all about the world of Security, Privacy, Compliance, and Regulatory issues that arise in today's workplace. Co-hosts Bryan Brake, Brian Boettcher, and Amanda Berlin teach concepts that aspiring Information Security Professionals need to know, or refresh the memories of the seasoned veterans.
http://www.brakeingsecurity.com
recommended podcasts
2019-024-Tonya_Janca-mentorship-WoSec_organizations_what-makes-a-good-mentor
Tanya Janca (@shehackspurple) DevOps Tools for free/cheap. They are all on github right, so they are all free? Python, Docker, k8s, Jenkins Licensing can be a problem ...
2019-023-Tanya Janca, Dev Slop, DevOps tools for free or cheap
Announcements: InfoSec Campout Conference (Eventbrite, social contract, etc): https://www.infoseccampout.com All Day Devops (https://www.alldaydevops.com) free talks online... Next conference starts 06 November 2019 ------ Tanya Janca...
2019-022-Chris Sanders-Rural_Tech_Fund-embracing_the_ATT&CK_Matrix
ANNOUNCEMENTS: INFOSEC CAMPOUT TICKETS ARE STILL ON SALE. Go to https://www.infoseccampout.com for Eventbrite link and more information. Part 2 of our Discussion with Chris Sanders (@chrissanders88) Topics discussed: Companies dropping...
2019-021-Chris Sanders discusses a cognitive crisis, mental models, and dependence on tools
https://chrissanders.org/2019/05/infosec-mental-models/ I’ve argued for some time that information security is in a growing state of cognitive crisis… Demand outweighs supply Because so many organizations need experience, they are...
2019-020-email_security_controls-windows_scheduler
Bryan got phished (almost) - story time! https://isc.sans.edu/forums/diary/Do+you+block+new+domain+names/17564/ Through OpenDNS https://learn-umbrella.cisco.com/product-videos/newly-seen-domains-in-cisco-umbrella Available January...
2019-019-Securing your RDP and ElasticSearch, InfoSec Campout news
https://static1.squarespace.com/static/556340ece4b0869396f21099/t/5cc9ff79c830253749527277/1556742010186/Red+Team+Practice+Lead.pdf https://www.reddit.com/r/netsec/comments/bonwil/prevent_a_worm_by_updating_remote_desktop/ ...
2019-018-Lesson's I learned, github breach, ransoming github repos
Things I learned this week: https://www.securusglobal.com/community/2013/12/20/dumping-windows-credentials/ https://www.helpnetsecurity.com/2019/04/29/docker-hub-breach/ ...
2019-017-K8s Security, Kamus, interview with Omer Levi Hevroni
K8s security with Omer Levi Hevroni (@omerlh) service tickets - Super-Dev Omer’s requirements for storing secrets: Gitops enabled Kubernetes Native Secure “One-way encryption” Omer’s slides and...
2019-016-Conference announcement, and password spray defense
Agenda: Announce the conference CFP: up soon CFW: up soon Campers: Friday night/Saturday night Like “toorcamp”, but if it sucks, you can drive home… :D Limiting tickets, looking for sponsors To support the...
2019-015-Kevin_johnson-incident_response_aftermath
Announcements: https://www.workshopcon.com/ SpecterOps (red Team operations) and Tim Tomes (PWAPT) Bsides Nashville https://blog.secureideas.com/2019/04/we-take-security-seriously-and-other-trite-statements.html...