Listen Now

Chloe Messdaghi, VP of Strategy at Point3, advocate and activist joins the show to explain common misconceptions about the hacking community and how we can do better to combat those stigmas. She also unpacks the diversity challenges specifically in the infosec industry.

Recovering CISO and Director of (TL)2 Security Thom Langford joins the show to debate Tripwire’s Paul Edon on facial recognition vs. security.

Tripwire’s Brent Holder and Stephen Wood discuss recent study findings that provide a snapshot of what organizations are doing (and not doing) to secure their cloud.

The MITRE ATT&CK framework now includes sub-techniques that get more granular about specific adversary behaviors. Jen Burns, a lead engineer at MITRE and the cloud lead for ATT&CK, joins the show to discuss these updates and how the security community can make the most of them.

Tripwire's GM of Industrial Cybersecurity Kristen Poulos discusses the risks that come with the increasing number of connected devices operating on the plant floor and throughout facilities. She shares how IT can partner with OT to protect the safety, productivity, and quality of operations.

Tripwire's GM of Industrial Cybersecurity Kristen Poulos discusses the risks that come with the increasing number of connected devices operating on the plant floor and throughout facilities. She shares how IT can partner with OT to protect the safety, productivity, and quality of operations.

Tony Sager, Senior Vice President and Chief Evangelist at CIS (Center for Internet Security) joins us to discuss the best approaches to the changing security landscape in the wake of COVID-19. Tony is a lifelong defender, with more than 44 years of experience. He spent most of his career at the NSA and now leads the development of the CIS Controls, a worldwide consensus project to find and support technical best practices in cybersecurity.

Tripwire Principal Security Researcher Craig Young discusses vulnerabilities in MQTT, a lightweight messaging protocol increasingly used with the rise of IoT. His research found improper implementation and use of MQTT can put everything from locks and alarm systems to critical infrastructure at risk.

Mark Houpt has to stay on top of a vast range of compliance and security issues as the CISO at managed services and co-location data service provider Databank. He shares how he works with all organizations of all sorts to help them address a myriad of emerging regulations, standards and security issues across all industries and sectors.

It’s still getting harder and harder for organizations to staff their security teams. Anthony Israel-Davis and Onyeka Jones discuss the strain organizations are feeling and how they can find some relief.

Principal Security Researcher Travis Smith explains MITRE ATT&CK, a knowledge base of adversary tactics and techniques based on real-world observations. Travis is a contributor to the ATT&CK framework.

Originator of the phrase “The cloud is just someone else’s computer,” Graham Cluley stops by the Tripwire podcast to discuss the importance of keeping cybersecurity awareness fresh in the minds of the non-security community.

What does “attack surface” even mean today, and what will it look like tomorrow? Tripwire CTO David Meltzer breaks down the inside baseball terminology around cyber threats and what the modern attack surface looks like, how we got here, and where security professionals need to focus their attention.