A podcast about the world of Cybersecurity, Privacy, Compliance, and Regulatory issues that arise in today's workplace. Co-hosts Bryan Brake, Brian Boettcher, and Amanda Berlin teach concepts that aspiring Information Security professionals need to know, or refresh the memories of seasoned veterans.
http://www.brakeingsecurity.com
Gesamtlänge aller Episoden: 16 days 13 hours 58 minutes
recommended podcasts
2016-015-Dr. Hend Ezzeddine, and changing organizational security behavior
Direct Link: iTunes Link: Dr. Ezzeddine's slides from Bsides Austin (referenced during the interview): You open the flash animation, click click click, answer 10 security questions that your 5 year old could answer, get your certificate of...
2016-014-User_Training,_Motivations,_and_Speaking_the_Language
Direct Link: iTunes: Fresh back from my vacation, Mr. Boettcher and I got to discussing things that have weighed on our minds, and I had a story from my travels that fit in perfectly with our discussion. What does our industry (Infosec...
2016-013-Michael Gough, the ISSM reference model, and the 5 P's
Direct Link: iTunes: We discuss a model that Michael Gough used while he was at HP. The Information Security and Service Management (ISSM) Reference model can be used to help companies align their IS and IT goals with the businesses goals......
2016-012-Ben Caudill on App Logic Flaws, and Responsible Disclosure
Direct Link: Itunes: iTunes: Ever bought "-1" of an item on a retail site? Or was able to bypass key areas of an application and get it bypass authentication, or you were able to bypass a paywall on a site? Application logic flaws are often...
2016-011-Hector Monsegur, deserialization, and bug bounties
Download Here: iTunes Direct Link: Hector Monsegur has had a colorful history. A reformed black hat who went by the name 'Sabu' when he was involved in the hacker collectives "Lulzsec" and "Anonymous", he turned state's evidence for the FBI,...
2016-010-DNS_Reconnaissance
DNS... we take it for granted... it's just there. And we only know it's broken when your boss can't get to Facebook. This week, we discuss the Domain Naming System (DNS). We start with a bit of history, talking about the origins of DNS, some...
2016-009-Brian Engle, Information Sharing, and R-CISC
We've reached peak "Br[i|y]an" this week when we invited our friend Brian Engle on to discuss what his organization does. Brian is the Executive Director of the Retail Cyber Intelligence Sharing Center. "Created by retailers in response to the...
2016-008-Mainframe Security
This week's super-sized episode is brought to us thanks to previous guest Cheryl Biswas. You might remember her from our "Shadow IT" (http:/brakeingsecurity.com/2015-048-the-rise-of-the-shadow-it) podcast a few months ago. She reached out to...
2016-007-FingerprinTLS profiling application with Lee Brotherston
We first heard about FingerprinTLS from our friend Lee Brotherston at DerbyCon last September. Very intrigued by how he was able to fingerprint client applications being used, we finally were able to get him on to discuss this. We do a bit of...
2016-006-Moxie_vs_Mechanism-Dependence_On_Tools
This week starts with an apology to Michael Gough about comments I (Bryan) mangled on the "Anti-Virus... What is it good for?" podcast. Then we get into the meat of our topic... a person's "Moxie" vs. a mechanism Moxie: noun "force of...