Sign up to save your podcasts
Or
Share Cybersecurity's Love Affair with Distractions - Fred Wilmot, Dani Woolf - ESW #370
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Cybersecurity's Love Affair with Distractions - Fred Wilmot, Dani Woolf - ESW #370
Remember 20 years ago? When we were certain SIEMs would grant our cybersecurity teams superpowers? Or 10 years ago, when we were sure that NGAV would put an end to malware as we knew it? Or 15 years ago, when we were sure that application control would put an end to malware as we knew it? Or 18 years ago, when NAC would put an end to unauthorized network access?
Why do we keep thinking that the next vendor offering is going to solve all our problems? In this interview, we talk with Fred Wilmot about the hard work of building effective processes and resilient architectures that will actually yield reductions in risk and detection/response capabilities that actually work.
We'll discuss shifts in thinking that can move us past the latest distractions, and keep security teams focused on work that moves the needle. Fred may also mention his past transgressions against the industry and what he's doing to "wipe out the red from his ledger".
There's plenty of content out there detailing how vendors fall short:
- scummy, aggressive sales tactics
- overuse of jargon and buzzwords
- sneaky sales tactics
- dumping on competitors
- products that fall far short of claims
- ambulance chasing
So what should they doing? In this episode, we chat with Dani Wolff, about how marketers can adopt the skills and mindsets of security researchers to improve GTM strategies, without resorting to awful tactics. Drawing from extensive experience in qualitative interviews and collaborations with enterprise security executives and researchers, Dani will uncover how the innate curiosity and analytical prowess of researchers can dismantle unhealthy habits within vendor organizations.
We'll also discuss Dani's various projects, including the WTF Did I Just Read podcast, CyberNest, and CyberSynapse. Dani will explain how these are all designed to address the gap between vendors and buyers in the cybersecurity industry.
This week, in the enterprise security news,
- over half a billion in funding, as everyone gets their pre-Blackhat announcements out!
- Mimecast picks up Code42
- Will Cato Networks IPO?
- Canarytokens update
- We still have some crowdstrike fallout to discuss
- CISO responses to SEC rules
- Making things secure without security tools
- tips for going SOCLess
- denial of service robots
All that and more, on this episode of Enterprise Security Weekly.
Visit https://www.securityweekly.com/esw for all the latest episodes!
Show Notes: https://securityweekly.com/esw-370
View all episodes
By Security Weekly Productions
4.9
1414 ratings
Remember 20 years ago? When we were certain SIEMs would grant our cybersecurity teams superpowers? Or 10 years ago, when we were sure that NGAV would put an end to malware as we knew it? Or 15 years ago, when we were sure that application control would put an end to malware as we knew it? Or 18 years ago, when NAC would put an end to unauthorized network access?
Why do we keep thinking that the next vendor offering is going to solve all our problems? In this interview, we talk with Fred Wilmot about the hard work of building effective processes and resilient architectures that will actually yield reductions in risk and detection/response capabilities that actually work.
We'll discuss shifts in thinking that can move us past the latest distractions, and keep security teams focused on work that moves the needle. Fred may also mention his past transgressions against the industry and what he's doing to "wipe out the red from his ledger".
There's plenty of content out there detailing how vendors fall short:
- scummy, aggressive sales tactics
- overuse of jargon and buzzwords
- sneaky sales tactics
- dumping on competitors
- products that fall far short of claims
- ambulance chasing
So what should they doing? In this episode, we chat with Dani Wolff, about how marketers can adopt the skills and mindsets of security researchers to improve GTM strategies, without resorting to awful tactics. Drawing from extensive experience in qualitative interviews and collaborations with enterprise security executives and researchers, Dani will uncover how the innate curiosity and analytical prowess of researchers can dismantle unhealthy habits within vendor organizations.
We'll also discuss Dani's various projects, including the WTF Did I Just Read podcast, CyberNest, and CyberSynapse. Dani will explain how these are all designed to address the gap between vendors and buyers in the cybersecurity industry.
This week, in the enterprise security news,
- over half a billion in funding, as everyone gets their pre-Blackhat announcements out!
- Mimecast picks up Code42
- Will Cato Networks IPO?
- Canarytokens update
- We still have some crowdstrike fallout to discuss
- CISO responses to SEC rules
- Making things secure without security tools
- tips for going SOCLess
- denial of service robots
All that and more, on this episode of Enterprise Security Weekly.
Visit https://www.securityweekly.com/esw for all the latest episodes!
Show Notes: https://securityweekly.com/esw-370
More shows like Enterprise Security Weekly (Audio)
View all
Security Now (Audio)
1,966 Listeners
Risky Business
360 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
628 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
368 Listeners
CyberWire Daily
1,012 Listeners
Business Security Weekly (Audio)
3 Listeners
Smashing Security
313 Listeners
Click Here
386 Listeners
Darknet Diaries
7,842 Listeners
Cybersecurity Today
164 Listeners
CISO Series Podcast
187 Listeners
Hacking Humans
311 Listeners
Defense in Depth
78 Listeners
Cyber Security Headlines
119 Listeners
Risky Bulletin
33 Listeners