The State of Cybersecurity Readiness for the Next Big Emergency - ESW #407
Segment 1: Fastly Interview
In this week's interview segment, we talk to Marshall Erwin about the state of cybersecurity, particularly when it comes to third party risk management, and whether we're ready for the next big SolarWinds or Crowdstrike incident. These big incidents have inspired executive orders, the Secure by Design initiative, and even a memo from JPMorgan Chase's CISO.
We will discuss where Marshall feels like we should be pushing harder, where we've made some progress, and what to do about incentives. How do you convince a software supplier or service provider to prioritize security over features?
This segment is sponsored by Fastly. Visit https://securityweekly.com/fastly to learn more about them!
Segment 2: Weekly Enterprise News
In this week's enterprise security news,
1. Agents replacing analysis is highly misunderstood
2. only one funding round
3. Orca acquires Opus to automate remediation
4. OneDrive is updating to make BYOD worse?
5. Companies are starting to regret replacing workers with AI
6. Is venture capital hanging on by a thread (made of AI)?
7. Potential disruption in the traditional vuln mgmt space!
8. MCP is already looking like a dumpster fire from a security perspective
9. malicious NPM packages
10. and, IS ALCHEMY REAL?
Segment 3: RSAC Conference 2025 Interviews
Interview 1: Pluralsight
Emerging technologies like AI and deepfakes have significantly complicated the threat landscape of today. As AI becomes more integrated into our lives, everyone - not just cybersecurity professionals - needs to develop security literacy skills to keep themselves, their organizations, and their loved ones safe. Luckily, there are countermeasures to spot and identify AI and deepfake-related threats in the wild. In this segment, Pluralsight's Director of Security and IT Ops Curriculum, Bri Frost, discusses how AI has changed the cybersecurity industry, how to spot AI and deepfakes in the wild, and the skills you should know to defend against these emerging threats.
Pluralsight's AI Skills Report: https://www.pluralsight.com/resource-center/ai-skills-report-2025-ungated
This segment is sponsored by Pluralsight. Visit https://securityweekly.com/pluralsightrsac to learn the skills you need to defend against the latest cyber threats!
Interview 2: Radware
Adversaries are rewriting the cybersecurity rules. Shifts in the threat landscape are being fueled by attackers with political and ideological agendas, more sophisticated attack tools, new coalitions of hacktivists, and the democratization of AI. Radware CTO David Aviv will discuss how companies must adapt their cyber defenses and lead in an evolving era of asymmetric warfare and AI-driven attacks.
This segment is sponsored by Radware. Visit https://securityweekly.com/radwarersac to learn more about them!
00:00 Introduction & Chocolate Chip Day Fun
02:30 Co-Host Catch-Up & Upcoming Travel
05:00 Fastly Interview: State of Cybersecurity Readiness
07:30 Lessons from Major Breaches: SolarWinds, CrowdStrike, Colonial Pipeline
13:00 Fragility of Infrastructure & Supply Chain Risks
18:00 Resilience Exercises: ROI and Real-World Value
21:00 Executive Orders & Cybersecurity Regulations
26:00 Software Supply Chain: Still a Major Risk
32:00 Incentives for Security vs. Features Debate
34:30 Enterprise Security News Rundown
40:00 Orca Acquires Opus: Automation in Risk-Based VM
46:00 RunZero vs. Legacy Vulnerability Scanners
55:00 The Future of Exposure Management
01:00:00 Changing of the Guard: Leadership Transitions in Security
01:07:00 Interview Fraud & AI in Job Applications
01:18:00 How to Spot AI Use in Interviews
01:22:00 CrowdStrike, Klarna & AI Layoff Trends
01:29:00 Alchemy is Real? Gold from Lead Experiment
01:32:00 3D Printing & Right-to-Repair Trends
01:35:00 Closing Thoughts & What’s Next on ESW
01:38:20 RSAC Executive Interview w/ Bri Frost from PluralSight
01:54:00 RSAC Executive Interview w/ David Aviv from Radware
Visit https://www.securityweekly.com/esw for all the latest episodes!
Show Notes: https://securityweekly.com/esw-407
Видео The State of Cybersecurity Readiness for the Next Big Emergency - ESW #407 канала Security Weekly - A CRA Resource
In this week's interview segment, we talk to Marshall Erwin about the state of cybersecurity, particularly when it comes to third party risk management, and whether we're ready for the next big SolarWinds or Crowdstrike incident. These big incidents have inspired executive orders, the Secure by Design initiative, and even a memo from JPMorgan Chase's CISO.
We will discuss where Marshall feels like we should be pushing harder, where we've made some progress, and what to do about incentives. How do you convince a software supplier or service provider to prioritize security over features?
This segment is sponsored by Fastly. Visit https://securityweekly.com/fastly to learn more about them!
Segment 2: Weekly Enterprise News
In this week's enterprise security news,
1. Agents replacing analysis is highly misunderstood
2. only one funding round
3. Orca acquires Opus to automate remediation
4. OneDrive is updating to make BYOD worse?
5. Companies are starting to regret replacing workers with AI
6. Is venture capital hanging on by a thread (made of AI)?
7. Potential disruption in the traditional vuln mgmt space!
8. MCP is already looking like a dumpster fire from a security perspective
9. malicious NPM packages
10. and, IS ALCHEMY REAL?
Segment 3: RSAC Conference 2025 Interviews
Interview 1: Pluralsight
Emerging technologies like AI and deepfakes have significantly complicated the threat landscape of today. As AI becomes more integrated into our lives, everyone - not just cybersecurity professionals - needs to develop security literacy skills to keep themselves, their organizations, and their loved ones safe. Luckily, there are countermeasures to spot and identify AI and deepfake-related threats in the wild. In this segment, Pluralsight's Director of Security and IT Ops Curriculum, Bri Frost, discusses how AI has changed the cybersecurity industry, how to spot AI and deepfakes in the wild, and the skills you should know to defend against these emerging threats.
Pluralsight's AI Skills Report: https://www.pluralsight.com/resource-center/ai-skills-report-2025-ungated
This segment is sponsored by Pluralsight. Visit https://securityweekly.com/pluralsightrsac to learn the skills you need to defend against the latest cyber threats!
Interview 2: Radware
Adversaries are rewriting the cybersecurity rules. Shifts in the threat landscape are being fueled by attackers with political and ideological agendas, more sophisticated attack tools, new coalitions of hacktivists, and the democratization of AI. Radware CTO David Aviv will discuss how companies must adapt their cyber defenses and lead in an evolving era of asymmetric warfare and AI-driven attacks.
This segment is sponsored by Radware. Visit https://securityweekly.com/radwarersac to learn more about them!
00:00 Introduction & Chocolate Chip Day Fun
02:30 Co-Host Catch-Up & Upcoming Travel
05:00 Fastly Interview: State of Cybersecurity Readiness
07:30 Lessons from Major Breaches: SolarWinds, CrowdStrike, Colonial Pipeline
13:00 Fragility of Infrastructure & Supply Chain Risks
18:00 Resilience Exercises: ROI and Real-World Value
21:00 Executive Orders & Cybersecurity Regulations
26:00 Software Supply Chain: Still a Major Risk
32:00 Incentives for Security vs. Features Debate
34:30 Enterprise Security News Rundown
40:00 Orca Acquires Opus: Automation in Risk-Based VM
46:00 RunZero vs. Legacy Vulnerability Scanners
55:00 The Future of Exposure Management
01:00:00 Changing of the Guard: Leadership Transitions in Security
01:07:00 Interview Fraud & AI in Job Applications
01:18:00 How to Spot AI Use in Interviews
01:22:00 CrowdStrike, Klarna & AI Layoff Trends
01:29:00 Alchemy is Real? Gold from Lead Experiment
01:32:00 3D Printing & Right-to-Repair Trends
01:35:00 Closing Thoughts & What’s Next on ESW
01:38:20 RSAC Executive Interview w/ Bri Frost from PluralSight
01:54:00 RSAC Executive Interview w/ David Aviv from Radware
Visit https://www.securityweekly.com/esw for all the latest episodes!
Show Notes: https://securityweekly.com/esw-407
Видео The State of Cybersecurity Readiness for the Next Big Emergency - ESW #407 канала Security Weekly - A CRA Resource
solarwinds breach crowdstrike outage colonial pipeline ransomware ai cybersecurity threats software supply chain security runzero vulnerability scanner orca opus acquisition cybersecurity executive order 14028 cybersecurity leadership trends ai in interviews ai deepfake detection rsac 2025 pluralsight ai training radware ai defense ai sock automation malware detection ai ai job application fraud agentic ai ai incident response rsac ai coverage
Комментарии отсутствуют
Информация о видео
19 мая 2025 г. 19:33:27
02:12:42
Другие видео канала
