We dive into why Asia-Pacific matters more in cybersecurity - both now and in the future, through the lens of us attending the 2025 AVAR conference.

Windows 10 support is ending, will you still be able to use your computer, run your business, or do your work?

How to handle responsible disclosure, or really what to avoid with a case study about University of Oregon, and what they could've done better.

Blackhat halls were filled with promise of AI saving - basically everything. Here, we dive into something closer to the reality of what is possible now, and security trends will be possible by next Blackhat.

When bad stuff happens in the cloud, finger pointing is not uncommon. This is preventable, but it takes a clear understanding of who is responsible for what, and a healthy dose of teamwork. In this episode of Reining in the Cloud Merike Kaeo joins us to discuss shared responsibility. Is the cloud provider responsible for your security? Are you? Maybe both?

Merike boasts an impressive background. In the late 1990s Merike created Cisco’s first security initiative. She also wrote “Designing Network Security” for Cisco Press Fundamentals. In 2007 Merike was part of a high-powered international security team involved in mitigating a massive cyberattack against Estonia by the Russians. Merike has severed as CTOs and CISOs, Was a member of the ICANN board of Directors, and is currently the Chief Network Security Architect for Double Shot Security.

The Payment Card Industry Data Security Standard 4.0 (PCI DSS 4.0) is barreling down on us.

Michal Tutko, a Qualified Security Assessor (QSA) talked with us about new requirements of PCI DSS 4.0.

Anyone who touches payment card data is required to be certified. The QSA is the one who attests to a company’s compliance. What the QSA says goes.Changes to the standard not only matter to companies handing cardholder data, but one change in particular opens a door to companies selling cutting edge technologies. This has never been permitted before. There are also implications for pen testers who may need to test against newer technologies.

Due to the amount of important information concerning the subject, this is a 2 part podcast.

With the increasing number of cyber threats and data breaches, organizations are strengthening the security stack to protect sensitive information and assets. We welcome Mike Spanbauer, CTO of Juniper Networks, to share insights into the different components of a viable security stack and how they work together to provide comprehensive security. Additionally, we dive into the latest trends in security solutions, cloud technology implementation, and how to optimize a security stack that is aligned with your organization's specific needs. Take a deep dive with us into the world of solution-focused approach for enterprises and security professionals looking to bring out the best in their people and security technology.

The world has shifted to remote work. Video conferencing platforms like Zoom have become essential tools for staying connected with colleagues and friends. However, as Zoom's usage has exploded, so too have concerns about the security of the platform.

In this discussion, Jonathan Poon, Head of Threat and Vulnerability Management at Zoom, shares insights into some measures Zoom takes to keep users' data secure. In addition to new technologies, and increased global presence, we discuss the importance of a well-supported and motivated security team.

Easily deployable yet vastly underutilized, Content Disarm and Reconstruction (CDR) technology moves beyond standard malware solutions. Assuming all incoming files are malicious, CDR scans to remove violating data while rebuilding healthy files minus any known and unknown security risks.

This month Reining in the Cloud welcomes George Prichichi, Director of Product Management at OPSWAT, and renowned expert in scalable security solutions to discuss this budding technology. Highlighting OPSWAT's Deep CDR product, we discuss disarming malicious files layer by layer, reconstructing without risk, and how zero-trust applies in CDR execution.

Listen in on Reining in the Cloud as we explore how CDR addresses the ubiquitous malware detection and security gap.

This month on Reigning in the Cloud, we look at the exciting events unfolding for SecureIQLab and the cyber security landscape. Joined by a very special guest, David Ellis, VP of Sales and Corporate relations of SecureIQLab, we highlight the benefits of testing security products and what's in store for SecureIQLab’s 2022 CyberRisk Validation projects.

David’s deep bench knowledge in cyber security and product testing offers insight into the next phase of testing for SecureIQLab. David has an analytical background and previous experience at security vendors and test labs. He currently serves as an Anti-Malware Testing Standards Organization (AMTSO) board member, providing knowledge to progress the testing field. David knows his security. Objectively a cyber security specialist and avid martial arts enthusiast, David knows all about bridging and guarding against risk before engaging in the final takedown of real threats.

Join us as we as we highlight SecureIQLab innovations in security product validation and next steps for vendors and enterprises ready to bridge the cloud security gap.