New "Geeking Out" Interview Series
In case you didn't know, I have been hosting a series of "Geeking Out..." interviews, with a couple of my friends in the industry. What I want to do with the series is conduct focused interviews with practitoners who are out there dealing with the tough problems in our field; I'll ask them what works and what doesn't and why, and we'll all get a chance to learn and have an interesting conversation.
The series is being done as a webinar and audio will be available after the webinar. Since it's a webinar, there's an opportunity for listeners to ask questions. We'll almost certainly never be able to answer all your questions on the air due to time constraints, so I'll occasionally do blog postings with some of your questions. I can't guarantee I'll answer every question.
The "Geeking Out..." series began with Ron Dilley, and will continue with a second session with Ron on April 3rd in which we'll be talking about detection algorithms and the problem of defining "normal" network activity. After that, I'll be interviewing on...
June 4 - Joel Yonts and geeking out with Joel about his malware response process, how he built his analysis team, what tools they use, and other related topics.
August 22 - Alex Hutton and I will do a session about metrics and measurements for security and talking about the infrastructure he's built for the bank where he works and what kind of actionable data he passes to whom, and why.
October 17 - Gary McGraw and I will geek out about the problem of measuring a topic that's still "squishy" for the last session in the series. Gary's the brains behind some innovative programs in software quality and security - a topic we might consider difficult to measure - and we'll be digging into that angle to see if there are any nuggets we can use for security practices as well.
My sincere apologies for managing to not attend my own webinar Feb. 19. I was calling in from a hotel in Germany and checked everything beforehand and it all looked OK - but when the time came to log into the webinar and give my moderator's PIN, the hotel's phone interpreted one of the PIN codes as the signal to hang up! So I was running around trying to get a direct connection, but it all took too long and Allan was able to step in for me and did a great job. I hope you can attend... I'm extremely enthusiastic about the program we'll be presenting!
mjr.
Related Articles
Taking IBM QRadar SIEM One Step Further Using Tenable.ad
September 30, 2021If you can't continuously monitor Active Directory, it's impossible to achieve full visibility into your evolving attack surface. Here's how combining Tenable.ad with IBM QRadar can help. It's no sec...
PVS App for Splunk
August 22, 2014<p>Splunk Enterprise analyzes everything from customer clickstreams and transactions to network activity and call records, turning your machine data into valuable insights. The <a href="http://apps.splunk.com/app/1844/">Tenable™ PVS app for Splunk</a> increases the security threat intelligence of Splunk by sending it critical security-relevant information.</p>
Detecting Errata Security's Port 22 Internet-Wide Scan
September 18, 2013<p>The security researchers at Errata Security performed an Internet-wide port 22 scan to gather SSH daemon banner information. The scan happened on September 12th from 71.6.151.167 with a tool named masscan. If you run a SIM, a network IDS or any type of passive network monitoring, this is a really easy and safe "known" to go and see if your monitoring is configured correctly. It is the proverbial “shooting fish in a barrel” example where you can show that your network security monitoring is in fact working.</p>
Tenable and Thales Collaborate to Provide Cyber Defense Simulations to Better Secure Operational Technology Environments
April 18, 2024The heart of the Welsh Valleys is home to the Thales Ebbw Vale campus, a world-class facility jointly funded by the Welsh government as part of its regeneration program for the region. At the core of the facility is the Cyber Range, a simulation and virtualization platform for training, testing, exercising and R&D. Tenable has joined the lineup of solutions used to run real world simulations in this controlled environment.
Oracle April 2024 Critical Patch Update Addresses 239 CVEs
April 17, 2024Oracle addresses 239 CVEs in its second quarterly update of 2024 with 441 patches, including 38 critical updates.
Strengthening the Nessus Software Supply Chain with SLSA
April 16, 2024You know Tenable as a cybersecurity industry leader whose world-class exposure management products are trusted by our approximately 43,000 customers, including about 60% of the Fortune 500. But sometimes we like to give you a peek behind the curtain to share how we protect our own house against cyberattacks – and that’s what this blog is about. Today we’re sharing our experience adopting the supply-chain security framework SLSA, with the hopes that the lessons we learned will be helpful to you.
- Event Monitoring
- Log Analysis
- Security Interviews