Links: Microsoft Azure Cloud Vulnerability Exposed Thousands of Databases : https://www.darkreading.com/cloud/microsoft-azure-cloud-vulnerability-exposed-thousands-of-databases Google, Amazon, Microsoft Share New Security Efforts After White House Summit : https://www.darkreading.com/operations/google-amazon-microsoft-share-new-security-efforts-post-white-house-summit New Data-Driven Study Reveals 40% of SaaS Data Access is Unmanaged, Creating Significant Insider and External Threats to Global O...
Sep 02, 2021•9 min•Ep. 27
Links: How to Make Your Next Third-Party Risk Conversation Less Awkward : https://www.darkreading.com/vulnerabilities-threats/how-to-make-your-next-third-party-risk-conversation-less-awkward 5 Vexing Cloud Security Issues : https://www.itprotoday.com/hybrid-cloud/5-vexing-cloud-security-issues Attackers Increasingly Target Linux in the Cloud : https://www.darkreading.com/threat-intelligence/attackers-increasingly-target-linux-in-the-cloud Top 5 Best Practices for Cloud Security : https://www.inf...
Aug 26, 2021•10 min•Ep. 26
Links: AWS Cancels re:Inforce Security Conference in Houston Due to COVID-19 : https://www.crn.com/news/cloud/aws-cancels-re-inforce-security-conference-in-houston-due-to-covid-19 Cloud-native security benefits and use cases : https://searchcloudsecurity.techtarget.com/tip/cloud-native-security-benefits-and-use-cases The state of cloud security: IaC becomes priority one : https://techbeacon.com/security/state-cloud-security-iac-becomes-priority-one Takeaways from Gartner’s 2021 Hype Cycle for Cl...
Aug 19, 2021•10 min•Ep. 25
Links: Cloud Security Basics CIOs and CTOs Should Know : https://www.informationweek.com/cloud/cloud-security-basics-cios-and-ctos-should-know/a/d-id/1341578? Spring 2021 PCI DSS report now available with nine services added in scope : https://aws.amazon.com/blogs/security/spring-2021-pci-dss-report-now-available-with-nine-services-added-in-scope/ Top 5 Benefits of Cloud Infrastructure Security : https://www.kratikal.com/blog/top-5-benefits-of-cloud-infrastructure-security/ The three most import...
Aug 12, 2021•10 min•Ep. 24
Links: 4 Factors that Should Be Part of Your Cybersecurity Strategy : https://www.csoonline.com/article/3625254/4-factors-that-should-be-part-of-your-cybersecurity-strategy.html Software Bill of Materials’—not just good for security, good for business : https://thehill.com/opinion/cybersecurity/564787-software-bill-of-materials-not-just-good-for-security-good-for-business Third Party Security Failure Caused 1 TB Data Breach at Saudi Aramco; Hackers Play Puzzle Games With Oil Giant : https://www....
Aug 05, 2021•10 min•Ep. 23
Links: What does it Take to Secure Containers? : https://www.darkreading.com/cloud/what-does-it-take-to-secure-containers- Critical ICS vulnerabilities can be exploited through leading cloud-management platforms : https://threatpost.com/industrial-networks-exposed-cloud-operational-tech/168024/ Kaseya Obtains Universal Decryptor for REvil Ransomware : https://threatpost.com/kaseya-universal-decryptor-revil-ransomware/168070/ Kubernetes Cloud Clusters Face Cyberattacks via Argo Workflows : https:...
Jul 29, 2021•9 min•Ep. 22
Links: How to Bridge On-Premises and Cloud Identity : https://www.darkreading.com/vulnerabilities—threats/how-to-bridge-on-premises-and-cloud-identity-/a/d-id/1341512 How AWS is helping EU customers navigate the new normal for data protection : https://aws.amazon.com/blogs/security/how-aws-is-helping-eu-customers-navigate-the-new-normal-for-data-protection/ Cloud security should never be a developer issue : https://www.securitymagazine.com/articles/95641-cloud-security-should-never-be-a-develope...
Jul 22, 2021•9 min•Ep. 21
Links: Fake Amazon cloud service AWS InfiniDash quickly goes viral : https://siliconangle.com/2021/07/05/fake-amazon-cloud-service-aws-infinidash-quickly-goes-viral/ 7 Unconventional Pieces of Password Wisdom : https://www.darkreading.com/application-security/7-unconventional-pieces-of-password-wisdom/d/d-id/1341400 Pentagon Cancels Disputed JEDI Cloud Contract With Microsoft : https://www.usnews.com/news/business/articles/2021-07-06/pentagon-cancels-disputed-jedi-cloud-contract-with-microsoft S...
Jul 15, 2021•9 min•Ep. 20
Links: Cyber insurance isn’t helping with cybersecurity, and it might be making the ransomware crisis worse, say researchers : https://www.zdnet.com/article/ransomware-has-become-an-existential-threat-that-means-cyber-insurance-is-about-to-change/ House lawmakers introduce bill to increase American awareness of cyber threats : https://thehill.com/policy/cybersecurity/560077-house-lawmakers-introduce-bill-to-increase-american-awareness-of-cyber 5 Mistakes that Impact a Security Team’s Success : h...
Jul 08, 2021•9 min•Ep. 19
Links: Cybersecurity industry reacts as antivirus pioneer John McAfee found dead : https://www.csoonline.com/article/3623188/cybersecurity-industry-reacts-as-antivirus-pioneer-john-mcafee-found-dead.html Storms & Silver Linings: Avoiding the Dangers of Cloud Migration : https://beta.darkreading.com/cloud/storms-silver-linings-avoiding-the-dangers-of-cloud-migration 7 ways technical debt increases security risk : https://www.csoonline.com/article/3621754/7-ways-technical-debt-increases-securi...
Jul 01, 2021•10 min•Ep. 18
Transcript Jesse: Welcome to Meanwhile in Security where I, your host Jesse Trucks, guides you to better security in the cloud. Announcer: If your mean time to WTF for a security alert is more than a minute, it’s time to look at Lacework . Lacework will help you get your security act together for everything from compliance service configurations to container app relationships, all without the need for PhDs in AWS to write the rules. If you’re building a secure business on AWS with compliance req...
Jun 24, 2021•9 min•Ep. 17
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Jun 17, 2021•10 min•Ep. 16
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Jun 10, 2021•9 min•Ep. 15
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Jun 03, 2021•9 min•Ep. 14
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
May 27, 2021•10 min•Ep. 13
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
May 20, 2021•8 min•Ep. 12
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
May 13, 2021•10 min•Ep. 11
Cloud security is a minefield of news that assumes the word "Security" is lurking somewhere in your job description. It doesn't have to be this way. Weekly cloud security news for people with other jobs to do. Cloud Security For Humans.
May 11, 2021•30 sec
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
May 06, 2021•9 min•Ep. 10
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Apr 29, 2021•9 min•Ep. 9
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Apr 22, 2021•12 min•Ep. 8
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Apr 15, 2021•11 min•Ep. 7
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Apr 08, 2021•10 min•Ep. 6
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Apr 01, 2021•11 min•Ep. 5
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Mar 25, 2021•12 min•Ep. 4
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Mar 18, 2021•11 min•Ep. 3
Jesse Trucks is the Minister of Magic at Splunk, where he consults on security and compliance program designs and develops Splunk architectures for security use cases, among other things. He brings more than 20 years of experience in tech to this role, having previously worked as director of security and compliance at Peak Hosting, a staff member at freenode, a cybersecurity engineer at Oak Ridge National Laboratory, and a systems engineer at D.E. Shaw Research, among several other positions. Of...
Mar 11, 2021•12 min•Ep. 2
Links: https://simonsinek.com/product/start-with-why/ https://www.ted.com/talks/simon_sinek_how_great_leaders_inspire_action?language=en Transcript Jesse: Welcome to Meanwhile in Security where I, your host Jesse Trucks, guides you to better security in the cloud. Announcer: Are you building cloud applications with a distributed team? Check out Teleport , an open-source identity-aware access proxy for cloud resources. Teleport provides secure access for anything running somewhere behind NAT SSH ...
Mar 04, 2021•14 min•Ep. 1
Ever noticed how security tends to be one of those things that isn't particularly welcoming to folks who don't already have the word "security" somewhere in their job title? Introducing our fix to that: Meanwhile in Security. Featuring Jesse Trucks.
Feb 18, 2021•2 min
