Sign up to save your podcasts
Or
Share What is old is new again: default deny on the endpoint - Colby DeRodeff, Danny Jenkins - ESW #402
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
What is old is new again: default deny on the endpoint - Colby DeRodeff, Danny Jenkins - ESW #402
Default deny is an old, and very recognizable term in security. Most folks that have been in the industry for a long time will associate the concept with firewall rules. The old network firewalls, positioned between the public Internet and private data centers, however, were relatively uncomplicated and static. Most businesses had a few hundred firewall rules at most.
The idea of implementing default deny principles elsewhere were attempted, but without much success. Internal networks (NAC), and endpoints (application control 1.0) were too dynamic for the default deny approach to be feasible. Vendors built solutions, and enterprises tried to implement them, but most gave up.
Default deny is still an ideal approach to protecting assets and data against attacks - what it needed was a better approach. An approach that could be implemented at scale, with less overhead. This is what we’ll be talking to Threatlocker’s CEO and co-founder, Danny Jenkins, about on this episode. They seemed to have cracked the code here and are eager to share how they did it.
This segment is sponsored by ThreatLocker. Visit https://www.securityweekly.com/threatlocker to learn more about them!
We wanted security data? We got it! Now, what the heck do we DO with all of it?
The core challenge of security operations, incident response, and even compliance is still a data management and analysis problem. Which is why we’re seeing companies like Abstract Security pop up to address some of these challenges.
Abstract just released a comprehensive eBook on security data strategy, linked below, and you don’t even need to give up an email address to read it! In this interview, we’ll talk through some of the highlights:
- Challenges
- Myths
- Pillars of a data security strategy
- Understanding the tools available
Segment Resources
- A Leader’s Guide to Security Data Strategy eBook
In the enterprise security news,
- new startup funding
- what happened to the cybersecurity skills shortage?
- tools for playing with local GenAI models
- CVE assignment drama
- a SIEM-agnostic approach to detection engineering
- pitch for charity
- a lost dog that doesn’t want to be found
All that and more, on this episode of Enterprise Security Weekly.
Visit https://www.securityweekly.com/esw for all the latest episodes!
Show Notes: https://securityweekly.com/esw-402
View all episodes
By Security Weekly Productions
4.9
1414 ratings
Default deny is an old, and very recognizable term in security. Most folks that have been in the industry for a long time will associate the concept with firewall rules. The old network firewalls, positioned between the public Internet and private data centers, however, were relatively uncomplicated and static. Most businesses had a few hundred firewall rules at most.
The idea of implementing default deny principles elsewhere were attempted, but without much success. Internal networks (NAC), and endpoints (application control 1.0) were too dynamic for the default deny approach to be feasible. Vendors built solutions, and enterprises tried to implement them, but most gave up.
Default deny is still an ideal approach to protecting assets and data against attacks - what it needed was a better approach. An approach that could be implemented at scale, with less overhead. This is what we’ll be talking to Threatlocker’s CEO and co-founder, Danny Jenkins, about on this episode. They seemed to have cracked the code here and are eager to share how they did it.
This segment is sponsored by ThreatLocker. Visit https://www.securityweekly.com/threatlocker to learn more about them!
We wanted security data? We got it! Now, what the heck do we DO with all of it?
The core challenge of security operations, incident response, and even compliance is still a data management and analysis problem. Which is why we’re seeing companies like Abstract Security pop up to address some of these challenges.
Abstract just released a comprehensive eBook on security data strategy, linked below, and you don’t even need to give up an email address to read it! In this interview, we’ll talk through some of the highlights:
- Challenges
- Myths
- Pillars of a data security strategy
- Understanding the tools available
Segment Resources
- A Leader’s Guide to Security Data Strategy eBook
In the enterprise security news,
- new startup funding
- what happened to the cybersecurity skills shortage?
- tools for playing with local GenAI models
- CVE assignment drama
- a SIEM-agnostic approach to detection engineering
- pitch for charity
- a lost dog that doesn’t want to be found
All that and more, on this episode of Enterprise Security Weekly.
Visit https://www.securityweekly.com/esw for all the latest episodes!
Show Notes: https://securityweekly.com/esw-402
More shows like Enterprise Security Weekly (Audio)
View all
Security Now (Audio)
1,966 Listeners
Risky Business
360 Listeners
SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)
628 Listeners
Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec
368 Listeners
CyberWire Daily
1,012 Listeners
Business Security Weekly (Audio)
3 Listeners
Smashing Security
313 Listeners
Click Here
386 Listeners
Darknet Diaries
7,842 Listeners
Cybersecurity Today
164 Listeners
CISO Series Podcast
187 Listeners
Hacking Humans
311 Listeners
Defense in Depth
78 Listeners
Cyber Security Headlines
119 Listeners
Risky Bulletin
33 Listeners