Tenable Network Security Podcast Episode 176 - "Effective Vulnerability Management, Securing Your Own Critical Infrastructure"

by Paul Asadoorian
July 11, 2013

Welcome to the Tenable Network Security Podcast Episode 176

Announcements

Discussion & Highlighted Plugins

Brian Honan

Special Guest: Brian Honan on Effective Vulnerability Management

Brian Honan was our special guest this week to discuss effective vulnerability management.

Brian will also be giving a webinar on July 16th on this topic. Specifically: "How to develop and implement an effective vulnerability management program as part of a wider security strategy. A best practice guide on how to identify your most critical assets, protect your data, and reduce the breach to detection gap."

Vulnerabilities in Security Controls

  • This week, Tenable released plugins to detect vulnerabilities in Mod Security, an extension to Apache for applying security rules. How do we best weigh the risk between security and adding on more software to apply security controls?

Enterprise Security: Securing Virtualization, Networking, and Storage

  • Tenable's research team recently released new compliance checks for NetApp storage devices. Coupled with previously-released checks for VMware and Cisco switches, we now provide the ability for organizations to keep your infrastructure in line with your security policies. Do you find that most organizations are working to secure their own critical infrastructure? It seems that some are struggling just to keep servers and applications secure, and the infrastructure is taking a back burner.

New & Notable Plugins

Nessus

Passive Vulnerability Scanner

Tenable Compliance Checks

Security News Stories

  1. Cryptocat 'encrypted' group chats may have been crackable for 7 months
  2. Hacker Holes in Server Management System Allow 'Almost-Physical' Access | Threat Level | Wired.com
  3. introducing zarp | forelsket & security
  4. Top 10 Proactive Web Application Security Measures | WhiteHat Security Blog
  5. INVASION of the UNDEAD ANDROIDS: Hackers can pwn 'nearly all' devices
  6. Microsoft Offloads Heap of Critical Fixes in 'Ugly' Patch Tuesday