#SecurityConfidential #DarkRhinoSecurity 

Nat Shere is currently a cybersecurity consultant, specializing in ethical hacking and secure coding. He has also worked as a product security engineer, where he worked directly with developers to integrate security into the development lifecycle. He has a Master's in Computer Security and has taught undergraduate-level courses in both math and computer science.

00:00 Introduction 

01:20 Penetration testing 

05:50 Walking through Risk Analysis  

08:07 SQL injections  

09:50 3rd Party Risk. What does it mean? 

11:30 How to protect yourself when using open sourced code 

15:33 Google, Amazon, and Microsoft 

16:30 Being on the Cloud and in the Cloud 

18:40 Communicating to the executives 

20:10 Cybersecurity as a Revenue Service 

25:55 MFA issues and vulnerability  

29:52 Smart Phones 

37:56 Penetration tests on Mobile Devices 

41:37 More about Nat  

To learn more about Nat Shere visit  https://www.linkedin.com/in/nathaniel-shere 

Links to Nat's blogs as mentioned in the video: 

https://www.craftcompliance.com/post/7-steps-to-website-security-worth-bragging-about 

https://www.craftcompliance.com/post/penetration-testing-the-what-the-why-the-how 

https://www.craftcompliance.com/post/getting-the-most-out-of-penetration-testing 

To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com 

SOCIAL MEDIA: Stay connected with us on our social media pages where we'll give you snippets, alerts for new podcasts, and even behind the scenes of our studio!  

Instagram: https://www.instagram.com/securityconfidential/ 

Facebook: https://m.facebook.com/Dark-Rhino-Security-Inc-105978998396396/ 

Twitter: https://twitter.com/darkrhinosec 

LinkedIn: https://www.linkedin.com/company/dark-rhino-security

#SecurityConfidential #darkrhinosecurity  

Brian Haugli joins host Manoj Tandon on this week's episode of Security Confidential. Brian is a Managing Partner and Chief Executive Officer at SideChannel. Brian has been driving security programs for two decades and brings a true practitioner’s approach to the industry. He has led programs for the DoD, Pentagon, Intelligence Community, Fortune 500, and many others. Brian is a renowned speaker and expert on NIST guidance, threat intelligence implementations, and strategic organizational initiatives. He is also a contributing author for the latest book from Wiley, “Cybersecurity Risk Management: Mastering the Fundamentals Using the NIST Cybersecurity Framework“. Lastly, he is a professor at Boston College, in the Woods College of Advancing Studies, Master’s Program in Cybersecurity.  

00:00 Introduction 

01:50 How do you see the threat landscape changing in cybersecurity? 

05:00 Do you think the mid-market understands that cybersecurity is not an IT problem but a business problem? 

08:30 Why are SMBs such hot targets? 

12:35 Insurance brokers typically do not understand cybersecurity postures, they deal in applications. How can an SMB leverage the broker to get an underwriter to understand their posture? 

20:50 Is it possible for you the client to get in front of the carrier? 

23:42 How does a company access its security posture? 

27:00 How do these businesses go about this practically?  

33:20 News from Brian  

Brian and Cynthia’s Book https://www.amazon.com/Cybersecurity-Risk-Management-Mastering-Fundamentals/dp/1119816289 

To learn more about Brian visit https://www.linkedin.com/in/brianhaugli/   

To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com 

SOCIAL MEDIA: Stay connected with us on our social media pages where we'll give you snippets, alerts for new podcasts, and even behind the scenes of our studio!  

Instagram: https://www.instagram.com/securityconfidential/ 

Facebook: https://m.facebook.com/Dark-Rhino-Security-Inc-105978998396396/ 

Twitter: https://twitter.com/darkrhinosec

LinkedIn: https://www.linkedin.com/company/dark-rhino-security

Youtube: https://www.youtube.com/channel/UCs6R-jX06_TDlFrnv-uyy0w/videos

#SecurityConfidential #DarkRhinoSecurity 

Tim Chase joins host Manoj Tandon on this episode of Security Confidential. Tim Chase is a Field CISO, Professional Speaker, Author, Ethical Hacker, Certified Application Security Engineer, etc. He is also a LinkedIn Learning Instructor who writes training modules about DevOps and DevSecOp. Tim is an expert at resolving challenging security incidents with a short turnaround time. He is a graduate of Tennessee Tech and the University of Phoenix.  

00:00 Introduction

01:13 The problem of Ransomware, how do you see it evolving over in the near future?

05:17 Third-Party Risk

06:21 Applications built on open source code and how to ensure their security?

11:45 What do you see as the Top 3 root causes of security incidents?

14:40 DeProvisioning

22:22 Step-by-step on how to build a cybersecurity program for SMB

32:05 How to make Cybersecurity logical when coaching a young cybersecurity team. What foundational elements do you emphasize?

37:30 Companies use Cybersecurity as a revenue

40:48 Outro

To learn more about Tim Chase visit https://www.linkedin.com/in/timchase2/ 

To see Tim's Course on DevOps and DevSecOps visit https://www.linkedin.com/learning/devops-foundations-devsecops/welcome?autoplay=true

To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com

#SecurityConfidential #DarkRhinoSecurity

 Dr. Joseph J. Burt-Miller Jr talked with host Manoj Tandon on this episode of Security Confidential. Dr. Joseph is a Veteran, Father, Husband, and GRC-Focused Cybersecurity Professional among many other things. Dr. Joseph J Burt-Miller Jr. is a product of Mt. Vernon, NY. He is an Air Force Veteran and a Capella University graduate with a myriad of experience within IT, cybersecurity, cloud-based applications, and biometric identity management for the United States government.  

00:00 Introduction 

01:35 Background 

04:30 How he started in cyber 

08:11 Memorable moments  

09:15 Is North Korea Competent? 

10:40 Failures and Successes 

20:30 Our National Grid 

30:00 Should the Government provide the Cyber security Umbrella for Smaller companies? 

32:00 Russia’s Cyberattack of 2014 

40:10 Could Russia’s Strategy against Ukraine work against the U.S? 

48:20 What should the U.S do to help our grid?

58:22 Connecting with Dr. Joseph J Burt-Miller Jr.

To learn more about Dr. Joseph J. Burt-Miller Jr visit https://www.linkedin.com/in/drjjbmj/ 

To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com

#SecurityConfidential #DarkRhinoSecurity

Brian Stoner joins us today on Security Confidential. Brian has a long history with cybersecurity OEMs starting with CA where I first met him. Brian has been with McAfee, Fireeye, Cylance, and is now with Stellar Cyber. Brian has been in the business of helping companies build their channels.  

00:00 Introduction 

02:04 What are the elements of a successful cybersecurity channel program?

06:10 Is there an inherent conflict with having a salesperson be managing a partner?  

08:12 Where do the programs have mismatched expectations between the OEM and reseller? 

13:20 Is the pure Var model the way forward? Are clients in cybersecurity not locking more for a total solution for defense in depth vs a pure technology play. 

16:11 What market sectors in cybersecurity do you see doing well in the coming year? 

20:17 Explain what is XDR? 

31:28 How have you been able to avoid the pitfalls of storage and computing power as it relates to the cloud? 

39:52 Thoughts on AI 

41:00 Events and Contacting Brian 

 To learn more about Brian visit https://www.linkedin.com/in/brian-stoner-146a56/

To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com

For individuals to get hacked is very common. Getting hacked is regardless of an individual's demographic. Even well-protected personalities like Donald Trump have been hacked. The sad reality is much could have been done by the individual to prevent it. Dark Rhino Security shares some very simple and basic information security knowledge for individuals to take control of their online accounts. 

Research from the video: 

https://www.washingtonpost.com/world/... 

https://www.nytimes.com/2021/09/13/te... 

To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com

Manoj Tandon and Tyler Smith talk about Incident Response in this episode of Dark Rhino Security's Security Confidential

#SecurityConfidential #DarkRhinoSecurity

Confidence Staveley joins host Manoj Tandon in this week's episode of Security Confidential. Confidence joins us from Lagos, Nigeria, where she talks to us about her career in Cyber and how she is helping young women break the stereotypes. She is a Cyber Security Professional, Author, and Entrepreneur. She is the founder and executive director of CyberSafe and NoGoFallMaga. Confidence was also the winner of the Cyber Security Woman of the Year 2021 award.

00:00 Introduction

01:25 How Confidence started in Cyber

06:07 Cyber Security in Nigeria

10:24 Cyber Security Woman of the Year

15:56 CyberSafe Foundation

17:46 Biggest Challenges

19:58 Women in the role of Cyber

24:42 Stereotypes for Women

31:28 Cybersafe for businesses

35:55 CyberSafe success stories

42:43 Cyber advice from Confidence

46:33 Closing

#SecurityConfidential #DarkRhinoSecurity

Brandon Keath joins host Manoj Tandon on this week's episode of Security Confidential. Apart from being a Cyber Security officer, Brandon is also the President of PA Hackers and faculty at the University of Cumberlands and Harrisburg University. Brandon shares with us a bit about his gaming background along with his thoughts and suggestions for people wanting to start a career in Cyber.   

00:00 Introduction 

06:00 There’s no better teacher than failure 

08:25 Vulnerabilities in the Gaming industry 

12:18 Cyber background 

19:44 How to look at Risk? 

28:15 The cost-benefit analysis 

39:00 Quantum computing 

40:00 Getting rid of Passwords 

45:00 Cyber insurance 

51:00 TheHackingLab.com  

To learn more about Brandon visit https://www.linkedin.com/in/brandon-keath/ 

You can check out The Hacking Lab at https://thehackinglab.com/ and https://www.youtube.com/channel/UC6vzWXOOw-hV8iuOYATPm4A 

To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com

Dennis Underwood joins host Manoj Tandon in this episode of Security Confidential. Dennis shares about his military background and how he turned to cyber to help shape his career. He is an Veteran, Father, Cryptographer, Threat Hunting Expert, and Ransomware Expert. Among his 10 years of combat experience, Dennis also has over 20 years experience being an Entrepreneur.    

00:00 Introduction 

01:00 Military Background 

10:50 A Career in Cyber 

11:50 Ransomware 

16:13 Executive perspective 

21:46 The Cloud and How it affects you 

25:30 Speed bump Security 

27:07 Rate of Encryption  

31:30 Cyber Crucible 

39:00 Chaos Monkeys 

42:40 B-Sides PGH 

45:22 Outro  

To learn more about Dennis visit https://www.linkedin.com/in/dennis-underwood/ 

Be sure to check out https://www.cybercrucible.com/ 

To learn more about Dark Rhino Security visit https://www.darkrhinosecurity.com