Formerly known as Wikibon
Book a Briefing

The SecurityANGLE

with Shelly Kramer

About the podcast

Unlock cybersecurity insights with The SecurityANGLE podcast — a deep dive into the latest digital defense trends with Shelly Kramer.

Each episode brings you the latest and most relevant news, along with insightful discussions on various aspects of cybersecurity. From exploring cutting-edge security management strategies to delving into the newest technologies, we’ve got it all covered. Our series isn’t just about keeping you informed; it’s a platform to explore what major vendors are doing in the cybersecurity landscape and how their solutions are shaping the industry.

We’re committed to bringing a rich variety of topics to the table each week. Plus, don’t miss out on our special episodes featuring guests who are experts in their fields.

episodes

6 Cloud Security Trends We’re Watching in 2024

In this episode of the SecurityANGLE, our series focused on all things cybersecurity, I’m joined by Jo Peterson, engineer, analyst, and member of theCUBE Collective community, to share insights on the top 6 cloud security trends we are tracking in 2024.

YouTube Playlist

This episode of the SecurityANGLE features analysts Shelly Kramer and Jo Peterson recapping major announcements coming out of AWS re:Invent 2024. The security solutions offered by AWS include: AWS Identity and Access Management (IAM). AWS’s IAM solution is a scalable service that allows users to manage user identities and permissions. IAM includes features like user management, access control policies, and MFA. Amazon GuardDuty. Amazon GuardDuty is a threat detection service that monitors AWS accounts and workloads for suspicious activities and logins. GuardDuty uses machine learning techniques, anomaly detection, and integrated threat intelligence to identify abnormal activity. AWS CloudTrail. AWS CloudTrail allows users to monitor and record account activity across all AWS accounts. CloudTrail can help improve overall security posture and provide audit functionality for proof of compliance. AWS Config. AWS Config allows users to monitor and record AWS resource configurations, set rule sets, and receive notifications when those rule sets are broken. Amazon Inspector. Amazon Inspector is an automated vulnerability management service that scans Amazon EC2 instances for software vulnerabilities and unintended network exposure. Key security announcements coming out of AWS re:Invent also include: The release of AWS Security Incident Response, a scalable service that helps users prepare for, respond to, and recover from security incidents. The expansion of Amazon GuardDuty threat detection capabilities to include new AI/ML capabilities that correlate security signals to identify active attack sequences in the AWS environment. One key highlight here is that when users enable AMazon GuardDuty in their accounts in a specific AWS region, Extended Threat Detection is enabled by default, with no additional cost associated with that. AWS Declarative Policies. Declarative Policies allow customers who operate in heavily regulated environments to set VPC Block Public Access to true and reset easily so that no users, service-linked roles, or future APIs can facilitate public access in AWS. AWS Verified Access, which provides secure access to corporate applications and resources without a VPN. This allows for the establishment of uniform, context-aware access policies across an organization's application and resources, evaluating each request in real-time and ensuring access is only granted to users who meet specific identity and device security requirements. This is zero trust network access and we are here for it! Amazon OpenSearch Service integrated with Amazon Security Lake is a new way to in-place query and analyze logs in Security Lake that minimizes then need to duplicate data, reducing the operational overhead of managing custom data pipelines. As anyone who regularly attends AWS re:Invent knows, there is so much information and so many updates shared that it's a bit like drinking from a firehose. The news and updates from AWS on the security front are tremendously exciting and represent some big wins for customers and channel partners alike.
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS4xOTEzQzhBQzU3MDNDNjcz

Recapping AWS reInvent 2024 Security Announcements | SecurityANGLE

11.9K views

In this episode of the SecurityANGLE, Shelly Kramer, principal analyst at theCUBE Research, and guest host and fellow analyst Jo Peterson, tackle the topic of zero trust. They explore why adopting a zero-trust approach to security is table stakes today and share insights on how to get started. Check out the latest from theCUBE, including upcoming tech events https://www.thecube.net/ Some benefits of adopting a zero-trust approach are enhanced security, improved visibility and the ability to adapt to modern environments. Benefits aside, there are some challenges when it comes to adopting a zero-trust security approach, including the complexity of the security architecture needed, managing the organizational culture shift required and the cost considerations to maintaining a zero-trust infrastructure. Follow theCUBE's wall-to-wall coverage as the roving news desk for SiliconANGLE reports live from tech's top events https://siliconangle.com/category/cube-event-coverage/ Zero trust is not solely a technical solution, but rather a process built on top of strong IT capabilities such as asset management, identity management and authentication. While it can seem challenging to get started, network segmentation, or the act of partitioning your network into smaller networks to restrict access levels and isolate hosts and services that contain sensitive data, is one place where many organizations begin the process. Visit theCUBE Research for the latest in tech news https://thecuberesearch.com/ It is not unusual to see companies begin with Zero-Trust Network Access as one of the first actionable steps in their strategy. ZTNA is a security service that allows remote users to securely access an organization’s applications, data and services. During the course of this discussion, we explore the nuances of ZTNA and the myriad benefits it can deliver. Many roads lead to ZTNA with each architecture having its own strengths, weaknesses and trade-offs. Catch up on the last episodes of the SecurityANGLE https://www.youtube.com/playlist?list=PLenh213llmcY5rmBToKb51z4uQFMgiTj- We explore one of the most common architectures, which is the software-defined perimeter, or SDP. There are about 45 vendors in this category, and we laser in on four as part of today’s episode. Those four vendors are Twingate and its cloud-based ZTNA solution, Nord Security’s NordLayer, Akamai’s Enterprise Application access (its ZTNA solution,) and Cloudflare’s ZTNA solution, Cloudflare Access. If you’re thinking about getting started on your zero-trust journey, join us for this informative conversation. #SecurityANGLE #theCUBEResearch #ZeroTrust #security #infrastructure
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS5BRjJDODk5REM0NjkzMUIy

Why Adopting a Zero Trust Approach to Security is Table Stakes Today and How to Get Started

3.1K views

In this episode of the SecurityANGLE, fellow analyst Jo Peterson and I tackle the topic of zero trust, exploring why adopting a zero trust approach to security is table stakes today, and sharing insights on how to get started. Some benefits to adopting a zero trust approach are enhanced security, improved visibility, and the ability to adapt to modern environments. Benefits aside, there are some challenges when it comes to adopting a zero trust security approach, which include the complexity of the security architecture needed, managing the organizational culture shift required, and cost considerations to maintaining a zero trust infrastructure. Zero trust is not solely a technical solution, but rather a process built on top of strong IT capabilities such as asset management, identity management, and authentication. While it can seem challenging to get started, network segmentation or the act of partitioning your network into smaller networks to restrict access levels and isolate hosts and services that contain sensitive data, is one place where many organizations begin the process. It is not unusual to see companies begin with Zero Trust Network Access (also called ZTNA), as one of the first actionable steps in their strategy. ZTNA is a security service that allows remote users to securely access an organization’s applications, data and services. During the course of this discussion, we explore the nuances of ZTNA and the myriad benefits it can deliver. Many roads lead to ZTNA; each architecture has its own strengths, weaknesses, and trade-offs. We explored one of the most common architectures, which is the software-defined perimeter (SDP). There are about 45 vendors in this category, and we lasered in on four as part of today’s episode. Those four vendors are Twingate and its cloud-based ZTNA solution, Nord Security’s NordLayer, Akamai’s Enterprise Application access, its ZTNA solution, and Cloudflare’s ZTNA solution, Cloudflare Access. If you’re thinking about getting started on your zero trust journey, join us for this informative conversation.
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS40QTA3NTU2RkM1QzlCMzYx

Adopting a Zero Trust Approach to Security is Table Stakes - How to Get Started | SecurityANGLE

3.9K views

In this episode of the SecurityANGLE, our cybersecurity-focused series, I’m joined by Matt Radolec, VP of Incident Response, Cloud Operations, & SE EU at Varonis, for a conversation about navigating the security risks posed by generative AI and thoughts on how organizations can adopt AI but also manage to mitigate risk at the same time. Varonis hosted one of its Data First Forum events a few weeks ago, which featured over 1,100 registrants and CISOs sharing lessons and insights on all things generative AI. It was interesting to see that while 67% of organizations reported increasing their investments in generative AI, only about one-fifth of organizations shared they feel their organizations are prepared for the risk that comes along with gen AI, which tracks with our research on this topic as well. And that is precisely why Matt and I wanted to discuss navigating security risks posed by generative AI in this episode, since it's obviously a very hot topic. In this discussion, we explored: - Some of the key risks CISOs are worried about associated with deploying gen AI tools. - The challenges and concerns especially from a security standpoint, that the Varonis team is hearing from CISOs as it relates to generative AI. - How business leaders are determining business use cases that provide the greatest potential for organizations and the role of IT teams in that process. - What a solid game plan looks like for deploying and maintaining copilots safely. - Thoughts on practices for securing gen AI tools like copilot We closed the show with some tips and tricks that Radolec recommends for safely deploying gen AI to your enterprise security tech stack. Hope you’ll join us for what was a fantastic discussion.
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS45RjNFMDhGQ0Q2RkFCQTc1

Navigating the Security Risks Posed by Gen AI with Varonis' Matt Radolec | SecurityANGLE

515 views

This episode of the SecurityANGLE features host Shelly Kramer, managing director and principal analyst at theCUBE Research, and Jo Peterson, analyst, engineer, and member of theCUBE Collective community of independent analysts and Teradata CISO Billy Spears for a conversation exploring data warehouse security strategies. Today, the average size of a modern data warehouse is over 100 terabytes. For comparison purposes, Walmart achieved the first 1 terabyte data warehouse in 1991.  Data warehouses store data from a variety of sources, including customer information, product information, employee-related personnel information, sales records, and invoices. They are designed to support decision-making through data collection, consolidation, analytics, and research. We’ve seen the data warehouse evolve into variations: data lakehouse, data cube, data silo, and even a data swamp. And what all of these repositories have in common besides data is the need for security, which is exactly why we're excited to have Billy Spears as our guest today. Billy is on the CNBC Tech Executive Council, he's a venture advisor for Avenir, a product advisory board member for Palo Alto Networks, a cybersecurity board advisor for Cyvatar — and all this advisory work is work he does in addition to his role as CISO at Teradata. Our conversation today covered: - Security concerns that arise when building a data warehouse - Best practices for data warehouse security - The impact of concepts like applying the principle of least privilege and Zero Trust Network Access - How utilizing AI can help as it relates to security and access control in a data warehouse environment. - Balancing the risk while also utilizing cost-effective ways to protect different categories of data in accordance with the varying degrees of protection required by each.
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS42MTI4Njc2QjM1RjU1MjlG

Exploring Data Warehouse Security Strategies with Teradata’s Billy Spears | SecurityANGLE

1.1K views

Shelly Kramer, managing director and principal analyst at theCUBE Research is joined by fellow analyst and frequent co-host Jo Peterson on the SecurityANGLE podcast for a conversation about deception technology, a strategy designed to attract cybercriminals away from an enterprise’s true assess and divert them to a decoy or trap, is gaining traction today. The deception tech decoy mimics legitimate servers, applications, and data so that the criminal is tricked into believing that they have infiltrated and gained access to the enterprise's most important assets when, in reality, they have not. The strategy is employed to minimize damage and protect an organization's true assets. By populating the network with decoys, the onus is on adversaries to carry out an attack nearly perfectly flawlessly, without falling for any of the decoys and traps laid for them. Once a security team is alerted to their presence, they can analyze the behavior of the cyber attackers and use that intelligence to thwart their efforts. We explored some of the vendors providing deception tech solutions, which include: Acalvio, Fortinet, Zscaler, Smokescreen, SentinelOne, Rapid7, Morphisec, and Cynet Systems. There are myriad benefits to incorporating deception technology solutions into your security tech stack, so hang around for the conversation and learn more.
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS5CMEQ2Mjk5NTc3NDZFRUNB

Deception Technology: Changing the Game for Cybercriminals | SecurityANGLE

4.4K views

In this episode of the SecurityANGLE, Shelly Kramer, managing director and principal analyst at theCUBE Research, is joined by Sam Hector, global strategy leader at IBM Security, for a deep dive into one of Kramer’s favorite annual reports, the 19th annual “IBM Cost of a Data Breach Report.” Check out the latest from theCUBE, including upcoming tech events https://www.thecube.net/ This year’s report is based on insights from 604 organizations impacted by data breaches between March 2023 and February 2024. The research is conducted each year by the Ponemon Institute and sponsored, analyzed and published by IBM. Follow theCUBE's wall-to-wall coverage as the roving news desk for SiliconANGLE reports live from tech's top events https://siliconangle.com/category/cube-event-coverage/ Some of the things the report covers include: • The average cost of a data breach • The most common factors leading to a breach • The most common attack vectors • The mean time it takes organizations to identify and contain a breach • Costs by geo and industry • The impact of involvement of law enforcement post-ransomware attack • The use of AI and automation in prevention and detection On the good news front, the IBM report shares that the time to identify and contain a data breach appears to have been significantly reduced to 258 days, 26 days less than the year prior and a 7-year low. Another bit of very good news is that it appears internal security teams (and/or managed security services providers) are getting exponentially better at detecting their own breaches as opposed to discovery by a third party and/or notification by a threat actor. Kramer and Hector do a walkthrough of the report and discuss what's happening in the industry as it relates to cybersecurity, the challenges customers face and the technology solutions they are relying on to help mitigate those challenges. Visit theCUBE Research for the latest in tech news https://thecuberesearch.com/ Catch up on all episodes of the SecurityANGLE https://www.youtube.com/playlist?list=PLenh213llmcY5rmBToKb51z4uQFMgiTj- #SecurityANGLE #theCUBE #IBMCostOfADataBreachReport #theCUBEResearch #IBMSecurity #IBM #cybersecurity
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS4zRDBDOEZDOUM0MDY5NEEz

IBM Security's Sam Hector Unpacking IBM's ‘Cost of a Data Breach Report’ | SecurityANGLE

6.1K views

In this episode of the SecurityANGLE our conversation revolves around cyber resiliency and how embracing a proactive security approach can not only help address gaps in visibility, but also ensure organizations the business resilience they seek, as well as help them keep up with the rapid pace of innovation that is our reality today. Check out the latest from theCUBE, including upcoming tech events https://www.thecube.net/ My guest today is Tom Parker, the CTO of NetSPI. Tom is the former founder of Hubble Technology, a cyber asset surface management technology company acquired by NetSPI this past June to expand its proactive security approach. Follow theCUBE's wall-to-wall coverage as the roving news desk for SiliconANGLE reports live from tech's top events https://siliconangle.com/category/cube-event-coverage/ The main focus of our conversation in this episode centers on what’s happening in the industry and what we’re seeing from customers as it relates to their challenges and pain points. One thing we know for certain is that a lack of visibility is a significant challenge, as is the understanding that the attack surface – both internal and external — is at the root of many of these issues. Visit theCUBE Research for the latest in tech news https://thecuberesearch.com/ It's a challenging time for businesses from a security standpoint. The attack surfaces are rapidly expanding, teams are challenged by a dearth of highly skilled talent, threat actors are getting more sophisticated, in many ways enabled by AI and the data breaches, they keep coming. Kramer highlights some of the concerns she sees from customers in the market as well as from theCUBE’s research, and Parker shares what he and his team are seeing and hearing from customers about the security challenges they have and how they are addressing those. We also explore cyber-attack surface management and how NetSPI's Hubble acquisition has added value to the NetSPI portfolio, along with the importance of gaining full visibility into internal and external attack surfaces and the challenges organizations face in doing that. Bottom line: If business resilience is the goal, it's safe to say that you can't have a reactive approach to security. Proactive security leads to an improved state of business resilience by providing a more holistic, accurate understanding of an organization's risk profile. There is still a long way to go in enabling businesses to have the agility they need to achieve a state of cyber resilience as they keep up with evolving tech. Rather than siloed solutions that only address one part of the problem, organizations need a complete picture of their threat environments through a more proactive security approach. So yes, absolutely, visibility matters! Catch up on the last episodes of the SecurityANGLE https://www.youtube.com/playlist?list=PLenh213llmcY5rmBToKb51z4uQFMgiTj- #SecurityANGLE #theCUBEResearch #NetSPI, #CyberResilience #ProactiveSecurityApproach
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS41QUZGQTY5OTE4QTREQUU4

Achieving a State of Cyber Resiliency is All About a Proactive Approach | SecurityANGLE

6K views

Load More... Subscribe

Cutting Edge Research, Analysis, Insights + Media

Studio Locations

Silicon Valley
989 Commercial St.
Palo Alto, CA 94303

Boston Metro
5 Mount Royal Ave.
Marlborough, MA 01752

Research Areas

Podcasts

Solutions

Engage

Stay Connected

Linkedin Youtube Spotify

theCUBE Research weekly

Stay ahead of the curve with the exclusive insights by our team straight to your inbox each week.

By submitting this form, you are consenting to receive marketing emails from: . You can revoke your consent to receive emails at any time by using the SafeUnsubscribe® link, found at the bottom of every email. Emails are serviced by Constant Contact

© 2024 SiliconANGLE Media, Inc. All rights reserved. theCUBE Research is a division of SiliconANGLE Media, Inc.

Book A Briefing

Fill out the form , and our team will be in touch shortly.

Skip to content