In this episode of the podcast, host Paul Roberts welcomes Tanya Janca of She Hacks Purple back into the studio. Tanya talks about her newly released book: Alice and Bob Learn Secure Coding, published by Wiley and the larger problem of how to promote the teaching of secure coding practices to developers.

The post Episode 260: The Art of Teaching Secure Coding with Tanya Janca appeared first on The Security Ledger with Paul F. Roberts.

In this Spotlight episode, host Paul Roberts speaks with David Kellerman, the Field CTO at Cymulate, about the growing demand for security validation technology, like Cymulate's, as organizations struggle to assess the utility and effectiveness of their security investments.

The post Security Validation: A Deep Dive with Cymulate’s David Kellerman appeared first on The Security Ledger with Paul F. Roberts.

Host Paul Roberts interviews Sophos CISO Ross McKerchar about the company's recent report, Pacific Rim, detailing its multi-year battle to beat back a sophisticated Chinese hacking campaign.

The post Pacific Rim: Sophos’ 6 Year Battle To Beat Back China State Hackers appeared first on The Security Ledger with Paul F. Roberts.

Lawrence Gentilello, the co-founder and CEO of Optery talks about the growing scandal around breaches at data brokers that have exposed the sensitive data on hundreds of millions of Americans to cyber criminals and how firms like Optery are helping people fight back.

The post Episode 258: Broken Brokers – Optery’s Fight To Claw Back Your Personal Data appeared first on The Security Ledger with Paul F. Roberts.

• Report Finds Lack of Talent, Tools Frustrates Cyber Investigations
• A Digital Lock Maker Tried To Squash A DEF CON Talk. It Happened Anyway. Here’s Why.
• Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk

Chris Walcutt, the CSO at DirectDefense talks about the rapidly changing threat landscape that critical infrastructure owners and operators inhabit, and how savvy firms are managing OT cyber risks.

The post Spotlight Podcast: OT Is Under Attack. Now What? appeared first on The Security Ledger with Paul F. Roberts.

• Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk
• Citing Attacks On Small Utilities, Dragos Launches Community Defense Program
• FBI: Iranian APT Targets Israeli-Made PLCs Used In Critical Industries

In this Spotlight Podcast, host Paul Roberts talks with Chris Walcutt, the CSO of DirectDefense about the rising cyber threats facing operational technology (OT) and how organizations that manage OT - including critical infrastructure owners can best manage increased cyber risks to OT environments.

The post Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk appeared first on The Security Ledger with Paul F. Roberts.

• Spotlight Podcast: OT Is Under Attack. Now What?
• Report Finds Lack of Talent, Tools Frustrates Cyber Investigations
• Citing Attacks On Small Utilities, Dragos Launches Community Defense Program

Host Paul Roberts speaks with Jim Broome, the CTO and President of DirectDefense about the evolution of cybersecurity threats and how technologies like AI are reshaping the cybersecurity landscape and the work of defenders and Managed Security Service Providers (MSSPs).

The post Spotlight Podcast: How AI Is Reshaping The Cyber Threat Landscape appeared first on The Security Ledger with Paul F. Roberts.

• Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk
• Episode 256: Recursive Pollution? Data Feudalism? Gary McGraw On LLM Insecurity
• Report Finds Lack of Talent, Tools Frustrates Cyber Investigations

In this episode of The Security Ledger Podcast (#257) Paul speaks with Dennis Kengo Oka, a senior principal automotive security strategist at the firm Synopsys about the growing cyber risks to automobiles as connected vehicle features proliferate in the absence of strong cybersecurity protections.

The post Episode 257: Securing Software on Wheels with Dennis Kengo Oka of Synopsys appeared first on The Security Ledger with Paul F. Roberts.

• Episode 257: Securing Software on Wheels with
• Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk
• Report Finds Lack of Talent, Tools Frustrates Cyber Investigations

Paul speaks with Gary McGraw of the Berryville Institute of Machine Learning (BIML), about the risks facing large language model machine learning and artificial intelligence, and how organizations looking to leverage artificial intelligence and LLMs can insulate themselves from those risks.

The post Episode 256: Recursive Pollution? Data Feudalism? Gary McGraw On LLM Insecurity appeared first on The Security Ledger with Paul F. Roberts.

• Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk
• Spotlight Podcast: How AI Is Reshaping The Cyber Threat Landscape
• Report Finds Lack of Talent, Tools Frustrates Cyber Investigations

In this episode of The Security Ledger Podcast (#255) host Paul Roberts interviews Niels Provos of Lacework about his mission to use EDM to teach people about cybersecurity.

The post Episode 255: EDM, Meet CDM – Cyber Dance Music with Niels Provos appeared first on The Security Ledger with Paul F. Roberts.

• Report Finds Lack of Talent, Tools Frustrates Cyber Investigations
• Spotlight Podcast: CSO Chris Walcutt on Managing 3rd Party OT Risk
• Episode 258: Broken Brokers – Optery’s Fight To Claw Back Your Personal Data