Securonix SIEMple Talks
Securonix SIEMple Talks
Podcast Description
Join Augusto Barros, VP of Product Marketing at Securonix and former Gartner analyst, for insightful conversations with cybersecurity leaders. SIEMple Talks explores the ever-evolving landscape of threat detection, investigation, and response (TDIR) with a focus on SIEM solutions. Gain unique perspectives from Securonix customers, partners, and industry experts on navigating today's security challenges.
Podcast Insights
Content Themes
The podcast delves into pressing cybersecurity topics such as threat detection, the role of Managed Security Service Providers (MSSPs), and communication strategies within the field. Previous episodes have touched on innovative events like the Ski and Snowboard Cybersecurity Conference and discussed the importance of tailored cybersecurity approaches rather than generic best practices.
Join Augusto Barros, VP of Product Marketing at Securonix and former Gartner analyst, for insightful conversations with cybersecurity leaders. SIEMple Talks explores the ever-evolving landscape of threat detection, investigation, and response (TDIR) with a focus on SIEM solutions. Gain unique perspectives from Securonix customers, partners, and industry experts on navigating today’s security challenges.
What happens when your company's cyber defenses face a deepfake attack impersonating leadership? Bill Shearstone, Director of Information Security in the energy sector, shares the eye-opening results from a penetration test where his team used AI-generated deepfake technology to trick an employee into resetting credentials. Despite technical limitations and the employee's ”gut feeling that something wasn't right,” the attack succeeded – revealing crucial lessons about human psychology in security.
Drawing from both his extensive commercial experience and previous work at the NSA during the global war on terrorism, Shearstone offers practical insights on how organizations should approach penetration testing. Rather than repeatedly testing external defenses, he advocates starting tests with internal access to thoroughly evaluate detection capabilities, incident response procedures, and lateral movement controls. This approach uncovered a critical finding: security tools detected suspicious activity but failed to provide the complete picture of what was happening.
Shearstone emphasizes why cybersecurity's strength lies in continuous improvement and incident response preparation: ”If I look at an attack coming in and I'm able to contain it without impacting business operations tremendously, to me that's just as good as preventing an attack.” His pragmatic approach acknowledges that perfect prevention is impossible, making effective detection and response capabilities equally crucial for organizational resilience.
Disclaimer
This podcast’s information is provided for general reference and was obtained from publicly accessible sources. The Podcast Collaborative neither produces nor verifies the content, accuracy, or suitability of this podcast. Views and opinions belong solely to the podcast creators and guests.
For a complete disclaimer, please see our Full Disclaimer on the archive page. The Podcast Collaborative bears no responsibility for the podcast’s themes, language, or overall content. Listener discretion is advised. Read our Terms of Use and Privacy Policy for more details.