The State of Cybersecurity Readiness for the Next Big Emergency - David Aviv, Bri Frost, Marshall Erwin - ESW #407
这篇文章讨论了网络安全现状、第三方风险管理和未来潜在的安全威胁。同时涵盖了企业安全新闻中的技术挑战、AI在安全中的应用以及RSAC 2025会议上关于新兴威胁和防御策略的讨论。 2025-5-19 09:0:0 Author: sites.libsyn.com(查看原文) 阅读量:13 收藏

May 19, 2025

Segment 1: Fastly Interview

In this week's interview segment, we talk to Marshall Erwin about the state of cybersecurity, particularly when it comes to third party risk management, and whether we're ready for the next big SolarWinds or Crowdstrike incident. These big incidents have inspired executive orders, the Secure by Design initiative, and even a memo from JPMorgan Chase's CISO.

We will discuss where Marshall feels like we should be pushing harder, where we've made some progress, and what to do about incentives. How do you convince a software supplier or service provider to prioritize security over features?

This segment is sponsored by Fastly. Visit https://securityweekly.com/fastly to learn more about them!

Segment 2: Weekly Enterprise News

In this week's enterprise security news,

  1. Agents replacing analysis is highly misunderstood
  2. only one funding round
  3. Orca acquires Opus to automate remediation
  4. OneDrive is updating to make BYOD worse?
  5. Companies are starting to regret replacing workers with AI
  6. Is venture capital hanging on by a thread (made of AI)?
  7. Potential disruption in the traditional vuln mgmt space!
  8. MCP is already looking like a dumpster fire from a security perspective
  9. malicious NPM packages
  10. and, IS ALCHEMY REAL?

Segment 3: RSAC Conference 2025 Interviews

Interview 1: Pluralsight

Emerging technologies like AI and deepfakes have significantly complicated the threat landscape of today. As AI becomes more integrated into our lives, everyone - not just cybersecurity professionals - needs to develop security literacy skills to keep themselves, their organizations, and their loved ones safe. Luckily, there are countermeasures to spot and identify AI and deepfake-related threats in the wild. In this segment, Pluralsight's Director of Security and IT Ops Curriculum, Bri Frost, discusses how AI has changed the cybersecurity industry, how to spot AI and deepfakes in the wild, and the skills you should know to defend against these emerging threats.

Pluralsight's AI Skills Report

This segment is sponsored by Pluralsight. Visit https://securityweekly.com/pluralsightrsac to learn the skills you need to defend against the latest cyber threats!

Interview 2: Radware

Adversaries are rewriting the cybersecurity rules. Shifts in the threat landscape are being fueled by attackers with political and ideological agendas, more sophisticated attack tools, new coalitions of hacktivists, and the democratization of AI. Radware CTO David Aviv will discuss how companies must adapt their cyber defenses and lead in an evolving era of asymmetric warfare and AI-driven attacks.

This segment is sponsored by Radware. Visit https://securityweekly.com/radwarersac to learn more about them!

Visit https://www.securityweekly.com/esw for all the latest episodes!

Show Notes: https://securityweekly.com/esw-407


文章来源: http://sites.libsyn.com/18678/the-state-of-cybersecurity-readiness-for-the-next-big-emergency-david-aviv-bri-frost-marshall-erwin-esw-407
如有侵权请联系:admin#unsafe.sh