BrakeSec Education Podcast Bryan Brake, Amanda Berlin, and Brian Boettcher
-
- News
-
A podcast about the world of Cybersecurity, Privacy, Compliance, and Regulatory issues that arise in today's workplace. Co-hosts Bryan Brake, Brian Boettcher, and Amanda Berlin teach concepts that aspiring Information Security professionals need to know, or refresh the memories of seasoned veterans.
-
p2-accidentalCISO, building trust in new places, securing SaaS products
Full Youtube VOD: https://www.youtube.com/watch?v=uX7odQTBkyQ
Questions and topics:
Let’s talk about Mindful Business Podcast
What’s the topics you cover?
Topic #1: discuss your experiences when you were a new leader.
What worked? What didn't? What would you have done differently?
Do you emulate your manager's style? What have been your go-to management resources?
What is a good piece of advice that you’ve been given or that you impart to others that relates to leadership?
Topic #2: building/Operating SaaS products (we can discuss securing them, what functions should be table stakes (data structures, logging, etc)
Topic #3: What are bare minimums for building ‘secure’ Saas products in your particular field? And how do you balance security with a positive user experience (i. e. getting customers to buy into MFA/OAUTH, OTA updates
Topic #4: Do many SaaS products get over-integrated? Is the need for integration override best practices in security?
Additional information / pertinent LInks (Would you like to know more?):
Twitter/Mastodon:
https://twitter.com/AccidentalCISO
https://infosec.exchange/@accidentalciso
The Mindful Business Security Show:
https://www.mindfulsmbshow.com/
https://twitter.com/mindfulsmbshow
Show points of Contact:
Amanda Berlin: @infosystir @hackershealth
Brian Boettcher: @boettcherpwned
Bryan Brake: https://linkedin.com/in/brakeb
Brakesec Website: https://www.brakeingsecurity.com
Youtube channel: https://youtube.com/@brakeseced
Twitch Channel: https://twitch.tv/brakesec -
AccidentalCISO on BrakeSecEd, talking Leadership, SaaS development, and Appsec
Disclaimer: The views, information, or opinions expressed on this program are solely the views of the individuals involved and by no means represent absolute facts. Opinions expressed by the host and guests can change at any time based on new information, and do not represent views of past, present, or future employers.
Recorded: 28 Jan 2024
Youtube VOD: https://youtube.com/live/uX7odQTBkyQ
Questions and topics:
Let’s talk about Mindful Business Podcast
What’s the topics you cover?
Topic #1: discuss your experiences when you were a new leader.
What worked? What didn't? What would you have done differently?
Do you emulate your manager's style? What have been your go-to management resources?
What is a good piece of advice that you’ve been given or that you impart to others that relates to leadership?
Topic #2: building/Operating SaaS products (we can discuss securing them, what functions should be table stakes (data structures, logging, etc)
Topic #3: What are bare minimums for building ‘secure’ Saas products in your particular field? And how do you balance security with a positive user experience (i. e. getting customers to buy into MFA/OAUTH, OTA updates
Topic #4: Do many SaaS products get over-integrated? Is the need for integration override best practices in security?
Additional information / pertinent LInks (Would you like to know more?):
Twitter/Mastodon:
https://twitter.com/AccidentalCISO
https://infosec.exchange/@accidentalciso
The Mindful Business Security Show:
https://www.mindfulsmbshow.com/
https://twitter.com/mindfulsmbshow
Show points of Contact:
Amanda Berlin: @infosystir @hackershealth
Brian Boettcher: @boettcherpwned
Bryan Brake: https://linkedin.com/in/brakeb
Brakesec Website: https://www.brakeingsecurity.com
Youtube channel: https://youtube.com/@brakeseced
Twitch Channel: https://twitch.tv/brakesec -
1st show of 2024! Our 10th Anniversary...
It's our 10th anniversary and the first show of our 2024 season!
Amanda was on "7 minute security"
https://7minsec.com/projects/podcast
Check out the complete VOD at https://youtu.be/vbmEtkxhAMg
Explicit language warning
www.brakeingsecurity.com
https://twitch.tv/brakesec
https://bit.ly/brakesecyt
-
Brakesec Call to Action 2023
Youtube Video: https://youtu.be/IUDPlQaQg8M
https://forms.gle/rf145MoN7cskwMjf8
is the link to the survey. Your information (should you choose to identify yourself) will not be shared outside of the BrakeSec Team.
Thank all of you for listening and for your input.
RSS feed for the audio podcast is at https://www.brakeingsecurity.com/rss
website: https://www.brakeingsecurity.com -
How to get more headcount, BLUFFs Vulnerability, and Ranty Clause debuts!
Show Topic Summary:
Ms. Berlin proposes a question of how to gather more headcount with metrics, we discuss the BLUFFS bluetooth vulnerability, and “Ranty Claus” talks about CISA’s remarks of putting the onus on device product makers to remove choice for customers and implement secure defaults.
#youtube VOD: https://www.youtube.com/watch?v=emcAzTx9z0c
Questions and topics:
https://cyberscoop.com/cisa-goldstein-secure-by-design/
https://hackaday.com/2023/12/02/update-on-the-bluffs-bluetooth-vulnerability/
Additional information / pertinent LInks (Would you like to know more?):
https://cyberscoop.com/jen-easterly-secure-by-design/
https://www.cisa.gov/resources-tools/resources/stop-passing-buck-cybersecurity
Examples of companies forcing changes https://www.bleepingcomputer.com/news/microsoft/microsoft-will-roll-out-mfa-enforcing-policies-for-admin-portal-access/
https://github.com/aya-rs/aya - eBPF implementation in Rust
https://ossfortress.io/
https://www.darkreading.com/endpoint-security/critical-logofail-bugs-secure-boot-bypass-millions-pcs
Show points of Contact:
Amanda Berlin: @infosystir @hackershealth
Brian Boettcher: @boettcherpwned
Bryan Brake: @bryanbrake on Mastodon.social, https://linkedin.com/in/brakeb
Brakesec Website: https://www.brakeingsecurity.com
Twitter: @brakesec
Youtube channel: https://youtube.com/c/BDSPodcast
Twitch Channel: https://twitch.tv/brakesec -
25Oct - okta breached (again), Energy company hit by supply chain attack, and you can help hire the best people
Subscribe on Twitch using Amazon Prime and watch us live: https://twitch.tv/brakesec
Check out our VODs on Youtube: https://www.youtube.com/@BrakeSecEd
Join the BrakeSecEd discord: https://discord.gg/brakesec
News:
https://www.darkreading.com/remote-workforce/1password-latest-victim-okta-customer-service-breach
https://www.documentcloud.org/documents/24075435-bhi-notice
https://www.bleepingcomputer.com/news/security/us-energy-firm-shares-how-akira-ransomware-hacked-its-systems/
https://www.bleepingcomputer.com/news/security/ransomware-isnt-going-away-the-problem-is-only-getting-worse/
https://www.shacknews.com/article/137505/ransomware-group-capcom-2020-arrested
https://www.bleepingcomputer.com/news/security/flipper-zero-can-now-spam-android-windows-users-with-bluetooth-alerts/
https://www.nasdaq.com/articles/three-cybersecurity-sectors-that-resist-economic-downturns
Customer Reviews
Empowering, insightful and actionable! 🙌
Whether you’re well established as an innovator in infosec, or just getting started in the industry - this is a must-listen podcast for you! Bryan and the BDS team do an incredible job leading conversations that cover a huge breadth of topics related to the ins and outs of navigating the shifting landscape of data security - with leaders who’ve actually experienced success themselves. Highly recommend listening and subscribing!
Spelling
Braking*
Good team!
Topics are practical and varied. I also appreciate the fact that they are all involved in the security community which adds weight to their discussions.