Imperva Data Security Podcast
By Rob Rachwald, Imperva
To listen to an audio podcast, mouse over the title and click Play. Open iTunes to download and subscribe to podcasts.
Podcast Description
Technical and business-focused discussions about information security with emphasis on application and data security, compliance, and breaking news
| Name | Description | Released | Price | ||
|---|---|---|---|---|---|
|
1 |
Interview with Jeremiah Grossman about Web Application Security Survey | Jeremiah Grossmann discusses why this survey was needed, gaps within application security, and the steps that many are taking to do things correctly. | 4/25/10 | Free | View In iTunes |
|
2 |
Interview with Dr. Larry Ponemon on an April 2010 Web Application Security Survey | Dr. Larry Ponemon discusses why this survey was needed, gaps within application security, and the steps that many are taking to do things correctly. | 4/25/10 | Free | View In iTunes |
|
3 |
Interview with Terry Ray on the State of Data Security in Asia | Terry discusses how different APAC regions approach application and database security, current events such as the recent Google attacks in China, and how the Asian community is applying countermeasures to protect applications and databases. | 4/11/10 | Free | View In iTunes |
|
4 |
Portuguese interview with Marcelo Roberto Ribeiro CTO of Catho Online Brazil on Data Security | This interview covers perspectives on application and database security from a company in Brazil that derives the bulk of its revenue through Web-based solutions. | 3/21/10 | Free | View In iTunes |
|
5 |
Interview with Eldad Chai about Adaptive Reputation-based Defense - ThreatRadar | Eldad talks about Imperva's ThreatRadar solution. He outlines what it is, how it's used, and what customers can expect to gain from it. He uses specific threat examples such as automated attacks and business logic attacks and discusses responses. | 3/2/10 | Free | View In iTunes |
|
6 |
Interview with Amichai Shulman about the Evolution of WAF | This discussion focuses on the evoluion of WAF from the late 1990s through its future. Amichai discusses what makes a WAF necessary, and how they will need to change to address Industralized Hackers. | 3/1/10 | Free | View In iTunes |
|
7 |
Interview with Juan Walker of the Educational Media Foundation | Juan and I discuss how his non-profit raido station uses DB activity monitoring to protect sensative data and demonstrate PCI compliance. EMF broadcasting has a detailed data security posture with multiple layers to ensure privacy of donation records. | 1/31/10 | Free | View In iTunes |
|
8 |
Interview with Dr. Gary McGraw CTO of Cigital | Gary and I discuss the current state of software security. We talk about SDLC, BSIMM, incident prevention and incident detection, and leveraging Web Application Firewalls, or WAF | 1/3/10 | Free | View In iTunes |
|
9 |
Portuguese interview with Rafael Koike of Telsinc Brazil on application and database security in Brazil | As Brazil becomes one of the top economies in the world it is faced with compliance and security issues that are very common the world around - including Web application and database security. Trends in data security specific to Brazil are discussed. | 11/22/09 | Free | View In iTunes |
|
10 |
Interview with Dana Tamir - Data Discovery and Assessment | Dana talks about the Imperva SecureSphere DAS (Discovery and Assessment Server) solution. She outlines why this technology is critical to an effective data security strategy, they theory and technical details of how it works, as well as several use cases. | 11/11/09 | Free | View In iTunes |
|
11 |
Interview with Lars Ewe - CTO Cenzic - VA, WAF the Future of Data Security | Lars and Brian talk about why Imperva and Cenzic are partners, as well as the broader picture of VA and WAF coming together. Lars also talks abou the need for VA as a service and shares thoughts on what the future has in store for data security. | 11/8/09 | Free | View In iTunes |
|
12 |
Interview with Seth Kulakow CISO of the State of Colorado and his Deputy Travis Schack on State-level Data Security | Information security at the state-level is unique. The State of Colorado’s CISO, his Deputy, and I discuss the consolidation of IT security resources, and building security into the business process to include product and service procurement. | 10/25/09 | Free | View In iTunes |
|
13 |
WAF and DAM for Security, Compliance, and Beyond - Interview with TechSoup Global | Richard Collins from TechSoup Global talks about using WAF and DAM for data protection, server security, PCI, and meeting partner security requirements. He also talks about using WAF to bridge the security gap between operations and development. | 10/12/09 | Free | View In iTunes |
|
14 |
Direct Database SQL Injection attacks and mitigation with Amichai Shulman - Imperva CTO & Co-founder | Amichai Shulman - CTO & Co-founder of Imperva talks about Direct Database SQL Injection attacks that can be through direct database connections or routed through applications and take advantage of flaws in stored procedures. | 9/27/09 | Free | View In iTunes |
|
15 |
PCI by the Numbers - Ponemon Institute Survey Results Explored | Dr. Larry Ponemon of the Ponemon Institute talks about his latest PCI DSS survey. He shares statistics, perspectives, and leanings from this telling study that looks at how real companies are managing PCI – what’s working and what’s not. | 9/22/09 | Free | View In iTunes |
|
16 |
Insider threat attacks and mitigation with Amichai Shulman - Imperva CTO & Co-founder | Amichai Shulman - CTO & Co-founder of Imperva talks about insider threats, abuse from privileged users, and risk mitigation. | 9/15/09 | Free | View In iTunes |
|
17 |
Insider Threats an Interview with the Former Deputy Director of the National Security Agency - NSA | Bill Crowell talks about insider threats. He explores the ways government and non-government organizations approach this problem. He also goes into detail about cyber crime, threat mitigation, and security for applications and databases. | 9/13/09 | Free | View In iTunes |
|
18 |
Web App Security within Cloud, SaaS, and Virtualized Enviornments - Chris Richter of Savvis interviewed | Chris Richter of Savvis talks about leveraging WAF within cloud computing, SaaS, and virtualized enviornments. He shares some stories from the trenches, tells us why application security is critical, and talks about the cloud's future. | 8/23/09 | Free | View In iTunes |
|
19 |
Protecting Web Portals with Imperva SecureSphere WAF at Telefonica O2 Germany with Daniel Stricharz | Daniel Stricharz talks about using the Imperva SecureSphere Web Application Firewall (WAF) to protect Telefonica O2 Germany's Web portals. He talks about drivers: gov. regulations, protecting data & being able to address application layer attacks. | 8/9/09 | Free | View In iTunes |
|
20 |
Database Activity Monitoring for State Healthcare Program | Mr. Lilley of HP talks about choosing, deploying, and using DAM solutions for a state-wide healthcare program. He shares his experiences with Imperva SecureSphere, why Imperva was chosen, and some of the value already achieved. | 7/26/09 | Free | View In iTunes |
|
21 |
SQL Injection attacks and mitigation with Amichai Shulman - Imperva CTO & Co-founder | Amichai Shulman - CTO & Co-founder of Imperva talks about SQL Injection - the grandfather of web application attacks. He talks about how these attacks are conducted, the problems with signature-only solutions, and how to mitigate them. | 7/12/09 | Free | View In iTunes |
|
22 |
GLBA co-author, Paul Reymann talks about GLBA, compliance and security within the financial industry | Paul Reymann - CEO of the Reymann Group & co-author of GLBA talks about the financial industry, and how security and compliance have changed. He also touches on financial modernization, the convergence of NIST and ISO, and the risk management continuum. | 6/28/09 | Free | View In iTunes |
|
23 |
Aviram Jenik, CEO of BeyondSecurity, Talks about bringing together WAF, Assessment, and Black Box Testing | On this episode of the Imperva Security Podcast Aviram Jenik, CEO of BeyondSecurity is interviewed. Aviram discusses why Imperva and BeyondSecurity have partnered, & the value of assessment, black box testing, and WAF collectively bring to security. | 6/21/09 | Free | View In iTunes |
|
24 |
Mark Weatherford CISO for the State of California Talks about Security Challenges at a State Level | On this episode of the Imperva Security Podcast Mark Weatherford, CISO for the State of California is interviewed. He discusses challenges within state government. He shares his thoughts on cross-agency coordination, and the need for data security. | 6/14/09 | Free | View In iTunes |
|
25 |
Jeremiah Grossman of Whitehat Security Talks about Bringing Together WAF and VA for Risk Mitigation | On this episode of the Imperva Security Podcast Jeremiah Grossman of Whitehat Security is interviewed. Jeremiah discusses why Imperva and Whitehat have partnered to offer a blended approach to Web application security through WAF plus VA. | 6/7/09 | Free | View In iTunes |
|
26 |
Convergence of Risk and Security – Andreas Wuchner, advisory board member - Microsoft, Oracle, Symantec and Cisco, is intervi | Andreas discusses risk and security converging - who owns risk management, where is the value, how important are technical solutions and automation, and shares perspectives on cloud computing, outsourcing, and trust based models | 5/31/09 | Free | View In iTunes |
|
27 |
Chad Lorenc of Agilent talks about how WAF and DAM can go beyond traditional firewalling and monitoring | On this episode of the Imperva Security Podcast Chad Lorenc of Agilent is interviewed. Chad discusses how the Imperva SecureSphere solutions helped Agilent discover and monitor critical assets and provides a strategic resource for application security. | 5/24/09 | Free | View In iTunes |
|
28 |
Microsoft IIS WebDAV Remote Authentication Bypass: Interview with Amichai Shulman – CTO and Co-founder of Imperva | Amichai talks about Microsoft Security Advisory #971492 that was released on 5.17.09. He goes into detail about the vulnerability, why servers are still vulnerable even though this is a well known exploit, and how attacks can be mitigated with WAF. | 5/20/09 | Free | View In iTunes |
|
29 |
Holistic Investigations - Lawrence Dietz, military and commercial information security and intelligence expert, is interviewed | Larry talks about holistic investigations - the bringing together of various investigatory disciplines from traditional to IT. He shares many fascinating case studies and details how this type of investigation can be leveraged most effectively. | 5/17/09 | Free | View In iTunes |
|
30 |
Red Teams and Control Systems – an Interview with Ray Parks from Sandia National Labs | Ray discusses various red teams - Behavioral, Operational, Analytical, Research Gaining and Hypothesis Testing. In particular, he focuses on red teams that evaluate the security for control system environments. He also share his views on NERC. | 5/10/09 | Free | View In iTunes |
|
31 |
WAF - An Interview with Marc Appelbaum from Vonage about Web Application Firewalls | Marc discusses the importance of application security at Vonage. He details several projects that are aimed at protecting Vonage, its partners and its customers. He shares his views on application security as it relates to vulnerability scanning and WAF. | 5/3/09 | Free | View In iTunes |
|
32 |
Getting Started with Web Application Security an Interview with Joe White, Imperva Customer and Web Application Security Practi | The 2nd in a series of podcast interviews where Joe White and Brian Contos discuss various topics related to application and data security. Joe talks about getting started in Web Application Security. He discusses several useful tools and resources. | 4/26/09 | Free | View In iTunes |
|
33 |
GRC & ITGRC an Interview with Dave Anderson – Director of Marketing for SAP | Dave discusses GRC and ITGRC. He covers the differences, early adopters and what solutions currently exist. He dives into gaps that need to be addressed and what he sees as the future for GRC. | 4/19/09 | Free | View In iTunes |
|
34 |
Interview with Amichai Shulman, Co-founder and CTO of Imperva: CSRF | Amichai talks about CSRF (Cross-Site Request Forgery). He gives a detailed background on the attack, how it works, and why we aren’t hearing a lot about it. He also discusses mitigation techniques. | 4/12/09 | Free | View In iTunes |
|
35 |
Interview with Martin McKeay – Host of the Network Security Blog and Podcast Series, and QSA | Martin talks about the recent Webcast from Homeland Security titled “Do the Payment card Industry Data Standards Reduce Cyber Crime.” He also shares with us his perspectives on the changing security industry, blogging, and podcasting. | 4/6/09 | Free | View In iTunes |
|
36 |
Interview with Jim Manico – Web Application Architect, Security Engineer, and Producer/Host of the OWASP Podcast Series: OWA | On this episode of the Imperva Security Podcast Jim Manico is interviewed. Jim tells us how he got into the application security space, gives us some background on OWASP, and shares some of his perspectives on application security. | 4/2/09 | Free | View In iTunes |
|
37 |
Interview with Raffy Marty – Chief Security Strategist for Splunk and Security Author: Security Visualization | On this episode of the Imperva Security Podcast Raffy Marty is interviewed. Raffy discusses the importance of visualization when analyzing network, security, application and database information. He shares several use cases and insights. | 3/30/09 | Free | View In iTunes |
|
38 |
Interview with Joe White – Imperva Customer and Web Application Security Practitioner: The State of Web Application Security | On this episode of the Imperva Security Podcast Joe White is interviewed. This is the first in a series of podcast interview where Joe White and Brian Contos will discuss various topics related to application and data security. | 3/29/09 | Free | View In iTunes |
|
39 |
Interview with Branden Williams, QSA with VeriSign | Imperva and its partner VeriSign conducted a Webcast around PCI, QSAs, and several use cases where PCI was addressed well, and where companies just missed the mark. Branden discusses real-life stories from a QSA's perspective. | 3/16/09 | Free | View In iTunes |
|
40 |
Interview with Amichai Shulman, Co-founder and CTO of Imperva: Clickjacking | Amichai talks about ClickJacking. He gives a detailed background on the attack, how it works, some high profile examples, as well as mitigation techniques to protect both applications and users. | 3/11/09 | Free | View In iTunes |
|
41 |
Interview with Nick Selby, Leader of the 451 Group's Enterprise Security Practice | On this episode of the Imperva Security Podcast Nick Selby is interviewed. Nick talks about cyber black markets, trends in compliance, security moving towards business risk analysis and the network & data security industry. | 3/10/09 | Free | View In iTunes |
|
42 |
Interview with Dr. Ulf Lindqvist, Program Director in the Computer Science Laboratory at SRI International | On this episode of the Imperva Security Podcast Dr. Ulf Lindqvist is interviewed. Ulf talks about the DATES project, NERC, the Smart Grid, the electric industry and data security. | 2/26/09 | Free | View In iTunes |
|
43 |
Interview with Joe Weiss, Industry Expert on Control Systems and Electronic Security | On this episode of the Imperva Security Podcast Joe Weiss is interviewed. Joe talks about NERC, the electric industry and cyber security. | 2/24/09 | Free | View In iTunes |
|
44 |
Interview with Dr. Anton Chuvakin, Security Author & Director of PCI Compliance Solutions for Qualys | Anton talks about PCI. He shares his views on the value of PCI, application and database security. | 2/23/09 | Free | View In iTunes |
|
45 |
Interview with Amichai Shulman, Co-founder and CTO of Imperva | Amichai talks about Drive-by-Downloading. He gives a detailed background on the attack, how it works, some high profile examples, as well as mitigation techniques to protect both applications and users. | 2/11/09 | Free | View In iTunes |
|
46 |
Interview with Gretchen Hellman, VP of Marketing & Product Management Vormetric | Gretchen talks about the Heartland Data Breach, and shares her perspectives on compliance. She also discusses data security and explains how there is not technological panacea – data security comes through defense in depth. | 2/10/09 | Free | View In iTunes |
|
47 |
Interview with John P. Pironti, President of IP Architects and Interop Chairperson | John discusses the relationship between security operations and business risk management. He also shares his views on regulatory compliance and the changing landscape for network and data security professionals. | 2/9/09 | Free | View In iTunes |
|
48 |
Interview with Richard Stiennon, Founder of IT-Harvest and Former Gartner Analyst | On this episode of the Imperva Security Podcast Richard Stiennon is interviewed. Richard talks about beginning authorship of a new book and his perspectives on data security including a very interesting story about WWI and efficiency experts. | 2/5/09 | Free | View In iTunes |
| Total: 48 Episodes |
Customer Reviews
Great Podcast
Excellent work, we need more indepth security podcasts like this!!!!
Keep Them Coming!
Great content and great interviewees. Keep them coming; our DBAs and Security Gurus love this stuff.
Tech review
Poor audio procuction. You need to work on inproving your audio quality. The audio levels varried a great deal. It sounds like your interview with Lars was via a phone. You should use Skype.
Listeners also subscribed to
- Security Insider - Podcast Edition
- Townsend Security
- View In iTunes
- Beyond The Perimeter
- Amrit Williams
- View In iTunes
- The App Security Advisor
- Kris L. Drent
- View In iTunes
