New Cyber Frontier

NCF-283 Hacking to make Secure Software

January 10, 2022

Today’s show is about the secure development of software, known as DevSecOpps, as our guest calls it. We look at how to secure software from the perspective of someone trying to break it. Our Guest Ted Harrington has a background as a “Hacker” but has now turned from the dark side of the force to use his skills to help develop secure software. Ted has published a book called “Hackable.” After having the same conversation for years, Ted says the same ten categories kept coming to the top, and in his view, people were handling it the wrong way. We have a heated discussion on the divide between what our guest describes as “The way it has always been” and what he calls “The best approach.” Finally, he addresses the classic challenge of how security by design practices fit into a business. I think you will enjoy this new look at secure software development, where hackers and developers support each other by working together.

Visit our sponsors:

NCF-SR17 Looking Forward - Cybersecurity Trends in 2022

January 3, 2022

Today, we have an exciting episode, the second part of our "Year in Review," where we look forward to what to expect in 2022. We bring back our panel from the first show, representing our user listener engagement selected panel. All four of our hosts join to discuss with our forum and provide some insights of their own. You may be surprised to hear the common themes our guest brings up for 2022, but you will not be able to deny that they will impact us in the coming year. As post-pandemic uncertainty grips us, each guest gives their perspective for its impact as we move into the coming year. We hope you have gained a lot of value from New Cyber Frontier over the last year and invite you to reach out to us to be a guest or sponsor a show.

Visit our sponsors:

NCF-SR16 2021 Year in Review – Securing Critical Infrastructure

December 29, 2021

Today's special "Year in Review" episode brings back our guests from the top-performing shows of 2021 in a roundtable format. This is the first of two parts to this series, where we recap the highlights of what was the most impactful for the year 2021. All four of our hosts join to discuss with our panel and provide some insights of their own. The overwhelming theme that has emerged is the transition to focus on security for critical infrastructure; our guests selected by listener engagement seem to be converging on very similar points. We wish everyone a great holiday season as we recap the highlights of 2021. Standby for next week as we will have the second part of this panel where they discuss what to expect moving into 2022.

Visit our sponsors:

NCF-282 Cybersecurity Communication and Leadership

December 13, 2021

In this segment of the NCF, Dr. Murray discusses with Bob Zinga. The latter is the Director of Information Security at Directly and an Information Warfare Officer for the United States Navy Reserve in San Francisco. Bob and Shawn discuss the similarities and differences related to the security culture between both roles. In addition, Bob explains how a security leader needs to communicate to multiple audiences on the commercial side and how that can impact how security is perceived. To be successful, you need to speak the language of business and influence a culture of security.

Visit our sponsors:

NCF-281 Miniature Sensors Control Cybersecurity

December 6, 2021

Today's podcast, our Control Systems Cybersecurity Expert, Joseph M. Weiss, an international authority on cybersecurity, control systems, and system security, will be talking about Control system cyber security is about keeping lights on, water flowing, etc. It is more than a matter of preserving network accessibility. We get in-depth about how a cyber incident impacts control systems, critical infrastructure reliability, availability, and safety. Our expert explores how industrial, manufacturing, transportation, and others rely on Operational Technology (OT) Internet protocol-based (IP) networks to bring significant productivity improvements but with such progress gains new threats to the given system. Enjoy today's show!

Visit our sponsors:

NCF-280 Setting up Diversity in Cyber Security

November 29, 2021

Today’s Guest, a key founder of Women’s Society of Cyberjutsu, is a cyber security researcher with a highly technical background in network forensic analysis. They set the stage with an exciting discussion on tracking cyber threats and risks unique to the exposure created by the pandemic. Answering questions like, what did we learn, and what is new in the post-pandemic environment? What things changed and which will never be the same again? Hear as they discuss the new post-pandemic landscape. Also, our Guest brought up a fascinating discussion on a new topic, which she called “Confirmation bias.” Many of us have experienced this but may not have a definition. This recent evolution in the digital world where we cannot validate data authenticity or accuracy. Whether news, records, or statistics, we are on our own to determine whether to believe what we read. As we wrap up, the discussion turns to some upcoming efforts supporting diversity in the industry from organizations like Cyber Jutsu. Finally, hear how our Guest recommends that companies make their job posting sound more appealing to a dispersed audience.

Visit our sponsors:

NCF-279 Is your Personality the best fit for your chosen Career?

November 15, 2021

Personality is a large part of a successful cyber workforce. Today, we look at some questions that people often ask: How do you determine what you will be good at in cybersecurity? Which training should I take? Will I enjoy the workload in my chosen career? An ex-marine corp officer, Jason Shockey, has made a career determining personalities and how they fit with a job. Our discussion covers where we start with our education, what certifications to pursue, and how to choose your experience and training to be most effective. Today's show has something for the employer and human resources within companies, explaining recommendations for personality needs for a job opening based on criteria testing. Hear our guest method and 12 evaluation criteria for testing cybersecurity jobs and people for the best fit. This is a show you will not want to miss.

Visit our sponsors:

NCF-278 Making Cybersecurity More Inclusive

November 8, 2021

In this segment of the NCF, Dr. Murray has a conversation with Chloe Messdhagi, the VP of Strategy at Point 3 Security, Cofounder of Women of Security (WOS), Cofounder of Hacking is not a crime and Founder of "We are Hackers." Chloe describes the unique niche market of vetting IT and cyber security professionals' skill sets with their talent screening and gamification platform. Before managers and HR personnel hire IT professionals, they should see demonstrated skills from viable candidates. Point 3 Security provides a capability for this growing need. The discussion transitions to three organizations that Chloe has started or partnered with to help women and other non-binary groups collaborate as professionals.

Visit our sponsors:

NCF-277 Marketing of Cyber Security Products

November 1, 2021

Our guest Kerry Matre from Mandiant Security supports marketing cybersecurity products. It is interesting to hear her path from application development and Security Intelligence to support marketing and business development. She brings the primary question to clients: why are we doing this, and how will people interact? Our guest says she often finds that many tools the organization purchased already are not fully implemented. The use of statistics such as configuration confidence is a very insightful measure, as she explains. What does it take to be using your tools effectively? This conversation also has some great discussions on AI versus human analysis, where we are producing viable solutions using AI. Finally, it was interesting to hear Kerry's take on the analyst industry in a few years. This show provides some great incite about the direction of the intelligence industry.

Visit our sponsors: