Their Stories

Their Story At Hacker Summer Camp | Las Vegas 2019 | Sean Dillon (zerosum0x0) and Nate Caroe (The_Naterz), RiskSense

A Their Story interview with Sean Martin

Guests: Sean Dillon, Sr. Security Rǝsearcher and Nate Caroe, Security Analyst | RiskSense

Since the publication of a podcast I put out not too long ago where I explored the realities behind the BlueKeep RDP vulnerability, I was determined to find a time to connect with the leading research, Sean Dillon (aka zerosum) to get his perspective and an update on his research surrounding this vulnerability. Little did I know that we would not only be fortunate enough to connect with Sean to discuss BlueKeep during Black Hat in Las Vegas, but we would also get a chance to bring in Nate Caroe, who was also working on vulnerability research and open-source tool development to help identify and test these vulnerabilities.

This conversation gets even better as we dig deeper into BlueKeep than I thought we would/could—plus we got to discuss some other research and tool development on which this duo are working.

This is a great story that pulls back a few layers of technology. I hope you enjoy it and find it useful as well.

Their Story At Hacker Summer Camp | Las Vegas 2019 | Stina Ehrensvard, Yubico

A Their Story interview with Marco Ciappelli & Sean Martin

Guest: Stina Ehrensvard, Founder and CEO, Yubico

Once upon a time, there was an idea. It was a good one. It was so good that it became a flawless product and an extremely successful company overnight.

And they lived successfully and happily ever after.

— The End

Do you want to hear this story, watch the movie, and even wear their t-shirt? Of course not. It is a bad story and most importantly, it’s not true.

The story of the latest “overnight success” took years to bring together. It happens to be the same overnight success that’s jumped countless hurdles and pushed through some really tough “because we’ve always done it this way” industry roadblocks.

Their Story At Hacker Summer Camp | Las Vegas 2019 | Mario Vuksan, ReversingLabs

A Their Story interview with Marco Ciappelli & Sean Martin

Guest: Mario Vuksan, Founder and CEO, ReversingLabs

This is a story that started about ten years ago; however, in some ways it goes back a bit further than that—and perhaps we will never catch up with the present.

Is a story about a different approach to cybersecurity that has, at its core, a profound desire to understand how technology works and evolves; that places security center-stage in every discipline related—not only to computer science—but to all activities connected to the well-being and progressive development of our society.

Their Story At Hacker Summer Camp | Las Vegas 2019 | Ashish Gupta, Bugcrowd

A Their Story interview with Marco Ciappelli & Sean Martin

Guests: Ashish Gupta, President and CEO, Bugcrowd

I received a DM on Twitter, saying: “I just wanted to thank you for allowing me to research on your platform, I just bought a car with the money that I earned.” 

The message was from someone in India, so I sent a note back: “You know, next time I'm in India, I'd love to get it a ride in the car and a cup of tea with you.”

Two days later, I get a message while I'm thinking, “Did I offend the person? Why did it take so long to reply?” But the note said: “Sorry for the delay, I had to ask my mother because, you see, I bought the car for her, [she] gave everything for me to learn how to be a researcher. So I had to ask if she would be able to give you a ride.”

This is just an anecdote that is part of a much bigger story shared with us by Ashish Gupta, Bugcrowd’s CEO, and an overall great guy.

Their Story At Hacker Summer Camp | Las Vegas 2019 | Karim Hijazi and Elizabeth Wharton, Prevailion

A Their Story conversation with Sean Martin and Marco Ciappelli

Guests: Karim Hijazi and Elizabeth Wharton, Prevailion

During Hacker Summer Camp 2019 in Las Vegas, Sean Martin and Marco Ciappelli spent some time with Karim Hijazi and Elizabeth Wharton to discuss the challenges associated with managing third-party business partnerships, with a focus on identifying the indicators of compromise as a means to evaluate the risk a partner brings to the table.

Their Story Chats At Infosecurity Europe | London 2019 | David Baker, Bugcrowd And Pete Beck, IOActive

A Their Story interview with Sean Martin and Marco Ciappelli

Guests: David Baker, Bugcrowd | Pete Beck, IOactive
Hosts: Sean Martin | Marco Ciappelli

During the Infosecurity Europe event in London, Bugcrowd and IOactive announced a new partnership that's designed to provide the brush and the roller and everything between — bringing the right security researcher talent to the right projects at the right time.

David Baker from Bugcrowd and Pete Beck from IOactive join Marco and me from the Olympia show floor to tell us more about the partnership and the direct benefits it can have for their customers. As usual, we like to peel back the onion a bit and, in doing so, we uncover a few indirect benefits the partnership has on Bugcrowd's and IOactive's business that then translate into additional benefits for their combined customer base.

Their Story Chats At Infosecurity Europe | London 2019 | Aftab Afzal, CEO, CyberCyte

A Their Story interview with Sean Martin and Marco Ciappelli

Guest: Aftab Afzak | CEO, CyberCyte
Hosts: Sean Martin | Marco Ciappelli

In this podcast from Infosecurity Europe, we like to look at the operational aspects of cybersecurity where Aftab gives us a view into what The Circle of Zero Trust is and how integrated network protections, access control, and biometrics, work together to build that circle — and how that fits into a variety of operational scenarios.

It’s an educational and thought-provoking conversation as we cross over from technology to cybersecurity, privacy, and society. We hope you enjoy it.

Their Story Chats At Infosecurity Europe | London 2019 | Charles Lawson And Jeff Sizemore, Egnyte

A Their Story interview with Sean Martin and Marco Ciappelli

Guests: Charles Lawson | Jeff Sizemore
Hosts: Sean Martin | Marco Ciappelli

In this podcast from Infosecurity Europe, Charles Lawson and Jeff Sizemore take us deep into the worlds of construction and healthcare (and beyond) to explore how these organizations have transformed their business to where they can securely store and share sensitive documents and information as a means to protect patient privacy, provide better health services, streamline projects, manage their already-slim margins, and avoid paying penalties due to errors or delays.

Both industries have gone—and continue to go through—a ton of digital transformation. Where have they succeeded? Where do they need additional improvements? We discuss this and a ton of other things relevant to most industries that rely on data and information to run their business.

Powering Strategic Integrated Risk Management through Natural Language Processing and Content Mapping Engines

By Max Aulakh

In this Their Story article, Max Aulakh, CEO of Ignyte Assurance Platform, discusses how they help clients navigate the complex process of compliance management using innovative new technology and natural language processing. They can also assist with cyber risk management, vendor management and business continuity management. Ignyte is leading the industry in a shift from just a singular focus on Governance, Risk and Compliance (GRC) to a more holistic approach called Integrated Risk Management (IRM).

Their Story Chats At RSA Conference San Francisco 2019 | Keenan Skelly of Circadence

A Their Story interview with John Dasher​​​​​​​

In this podcast from RSA Conference, ITSPmagazine’s John Dasher is joined by Keenan Skelly, Circadence VP of Global Partnerships & Security Evangelist, for a fascinating conversation on cybersecurity learning, training and assessment through their Ares and Orion products — as well as women in cybersecurity and how as an industry we need to better engage and develop this important resource.

Their Story Chats At RSA Conference San Francisco 2019 | Shauna Park, Director at DataLocker

A Their Story interview with John Dasher​​​​​​​

In this podcast from RSA Conference, ITSPmagazine’s John Dasher is joined by Shauna Park, DataLocker’s Director of Channel Sales, to discuss their solution set, and walk through how industries such as healthcare, financial services and even Hollywood are taking advantage of encrypted storage. We’ll even get a sneak peek into how use cases involving the cloud will come to be supported.

Their Story Chats At RSA Conference San Francisco 2019 | Mike Vanoverbeke, SecureData

A Their Story interview with John Dasher​​​​​​​

In this podcast from RSA Conference, ITSPmagazine’s John Dasher is joined by Mike Vanoverbeke, SecureData’s Director of Product Management, to talk about portable secure storage and how it fits in with today’s modern business.

Their Story Chats At RSA Conference San Francisco 2019 | Cathy Allen, CEO of Santa Fe Group

A Their Story interview with John Dasher​​​​​​​

In this podcast from RSA Conference, ITSPmagazine’s John Dasher is joined by Cathy Allen of the Santa Fe Group to discuss how third-party risk has evolved with and around the growth in malicious hacking, the changing makeup and thinking across boards of directors, the importance of diversity (including the relationship between AI and diversity), and how well-thought-out tools assist with risk assessments.

Their Story Chats At RSA Conference San Francisco 2019 | Mickey Bresman, CEO at Semperis

A Their Story interview with John Dasher​​​​​​​

In this podcast from RSA Conference, ITSPmagazine’s John Dasher is joined by Mickey Bresman, CEO at Semperis, to discuss the difficulty that normal Active Directory upgrades, restores and backups, let alone full-blown disaster recovery, can cause – and how Semperis has a solution that promises to change all of that.

Their Story Chats At RSA Conference San Francisco 2019 | Larry Link And Shreyans Mehta, Cequence Security

A Their Story interview with John Dasher​​​​​​​

In this podcast from RSA Conference, ITSPmagazine’s John Dasher is joined by Larry Link & Shreyans Mehta from Cequence, a silicon valley startup who is applying real-time network analysis, machine learning, threat intelligence, and behavioral analytics to accurately detect and mitigate bot attacks without affecting legitimate user traffic. Listen in to hear more!

Their Story Chats At RSA Conference San Francisco 2019 | Eoin Keary And Rahim Jina, Edgescan

A Their Story interview with Sean Martin

During RSA Conference 2019 in San Francisco, Sean Martin stops by the Edgescan booth to chat with the company’s co-founders, Eoin Keary and Rahim Jina. The conversation was driven mainly by their latest vulnerability stats report which was just released.

Their Story Chats At RSA Conference San Francisco 2019 | George Wrenn, CEO Of CyberSaint

A Their Story interview with John Dasher​​​​​​​

ITSPmagazine’s John Dasher sat down at RSA Conference with George Wrenn, CEO and Founder of CyberSaint. Imagine if you were told that your organization must demonstrably adopt a cybersecurity framework and show compliance in order to secure new business or, perhaps more frustratingly, retain a contract you’ve already won. Listen in to hear more!

Their Story Chats At RSA Conference San Francisco 2019 | Samantha Madrid of Juniper Networks

A Their Story interview with John Dasher​​​​​​​

ITSPmagazine’s John Dasher sat down at RSA Conference with Samantha Madrid of Juniper Networks to chat about leveraging the infrastructure you already have to protect you from unknown threats. Sound far-fetched? Hear how Juniper is applying insight gleaned through behavior intelligence to areas such as wireless network usage.

Their Story Chats At RSA Conference San Francisco 2019 | Colin Bastable, CEO Of Lucy Security

A Their Story interview with John Dasher​​​​​​​

ITSPmagazine’s John Dasher sat down at RSA Conference with Colin Bastable, CEO of Lucy Security to talk about how the bad guys plan and set up infrastructure to carry out their attacks, and how transparency with employee behavior and their progress with respect to awareness training is vital.

When You Invest In The Community, The Community Gets Stronger | A Dialogue With Casey Ellis and Jason Haddix From Bugcrowd

A Their Story interview with Sean Martin and Marco Ciappelli

During our conversation, Bugcrowd’s Casey Ellis and Jason Haddix share some of their recent news with us — including their Buggy Awards, v2 of their Traffic Control capabilities, and their new partnership with Secure Code Warrior, designed to help educate and train engineers as part of the ongoing development lifecycle, shifting the InfoSec training left in the SDLC.