Pwned: The Information Security Podcast-logo

Pwned: The Information Security Podcast

Technology Podcasts >

Pwned is a weekly information security and cybersecurity podcast addressing real-world security challenges.

Pwned is a weekly information security and cybersecurity podcast addressing real-world security challenges.
More Information

Location:

United States

Description:

Pwned is a weekly information security and cybersecurity podcast addressing real-world security challenges.

Language:

English

Contact:

8009175719


Episodes

The Difference Between Red Teaming and Penetration Testing

2/11/2019
More
Show Notes: https://www.nuharborsecurity.com/red-teaming-vs-penetration-testing/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/

Duration:00:08:05

Without Wax: The Quest for Perfection

2/4/2019
More
Show Notes: https://justinfimlaid.com/without-wax:-the-quest-for-perfection/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ I had an English Teacher in High School that was big on Etymology. If you aren't familiar with Etymology, its history of how certain words came to be. What I like about Etymology is the stories behind certain words. This teacher was one the few teachers I...

Duration:00:06:46

Quickstart – Building a Security Program with the NIST Cybersecurity Framework

1/28/2019
More
Show Notes: https://justinfimlaid.com/quickstart-building-a-security-program-with-the-nist-cybersecurity-framework/h Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ Hey Everyone - I'm starting to feel a little bad that the Government has been shutdown for so long. I've hit the NIST site at least 10-15 over the last couple weeks looking for a reference only to be met by a we're...

Duration:00:12:24

The Best Security Technology You Probably Aren’t Using

1/21/2019
More
Show Notes: https://justinfimlaid.com/the-best-security-technology-you-probably-arent-using Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ With all the breaches in the news as of late there’s been a lot of chatter about the shifting threat landscape. I saw a post on social earlier in the week that got me thinking; if the threat landscape is shifting - why is it that and how...

Duration:00:07:57

Benefits of a Security Certification & Equifax Security Breach

1/14/2019
More
Show Notes: https://justinfimlaid.com/benefits-of-a-security-certification-&-equifax-security-breach/h Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ A lot of companies or agency executives are looking for a security certification or some kind of assurance they can sleep well at night. Truth of the matter is no security firm would assert that their clients are bullet proof...

Duration:00:07:40

5 Security Predictions for 2019

1/7/2019
More
Show Notes: https://justinfimlaid.com/5-security-predictions-for-2019/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ Most companies put together a "top predictions" for FY19. Most are garbage. There's a couple I think are decent but they are few. Here's my top 5 predictions for FY19. People will realize that SOAR (Security Orchestration and Automation Response) is not the...

Duration:00:07:49

Implementing an ISO 27001 ISMS

12/31/2018
More
Happy Holidays! ISO 27001 Implementations can be harder than you think. This is a quick how-to walkthrough to get you jump started implementing your ISO 27001 ISMS. Show Notes: https://justinfimlaid.com/implementing-an-iso-27001-isms/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/

Duration:00:14:51

4 Questions to Determine Which PCI SAQ is Right for Your Organization

12/24/2018
More
There is a ton of information in this episode - all questions are listed on the NuHarbor Security website. Show Notes: https://www.nuharborsecurity.com/4-questions-to-determine-which-pci-dss-self-assessment-questionnaire-saq-to-complete/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/

Duration:00:08:24

9 Considerations to Make When Selecting a Cybersecurity Insurance Policy

12/17/2018
More
Show Notes: https://www.nuharborsecurity.com/9-considerations-find-right-cybersecurity-insurance-policy-organization/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/

Duration:00:13:27

1 Thing I’ve Learned About Successful Security Leaders

12/10/2018
More
Show Notes: https://justinfimlaid.com/1-thing-i've-learned-about-successful-security-leaders/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ I traveled to 7 cities this week. It was a little intense to say the least. Luckily I had some awesome company with me which made the trip a little easier. While in Austin I was listening to the cover band the Spazmatics and I was talking...

Duration:00:06:13

5 Considerations When Outsourcing Security

12/3/2018
More
5 Considerations to make when choosing to outsource your security program Show Notes: https://justinfimlaid.com/5-considerations-when-outsourcing-security/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ 5 Considerations When Outsourcing Security I bumped into a couple folks struggling to find security talent and are looking to outsource part of their security program. The...

Duration:00:05:32

What is Doxxing?

11/26/2018
More
Intelligence gathering is normal security work. Intelligence gathering for the purposes of revealing someone's identity when they intend to keep it private is called Doxxing, or "Doc dropping". Show Notes: https://justinfimlaid.com/what-is-doxxing/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/

Duration:00:08:35

A Lannister Always Pays His Security Tech Debts

11/19/2018
More
The Debt has Interest and the Interest MUST be Paid! Show Notes: https://justinfimlaid.com/a-lannister-always-pays-his-security-tech-debts Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/

Duration:00:14:14

The Regular Type of Security Vendor

11/12/2018
More
Every industry has a regular type. Show Notes: https://justinfimlaid.com/3-parts-of-your-vendor-security-assessment-program/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/

Duration:00:05:49

3 Parts of your Vendor Security Assessment Program

11/5/2018
More
3 Parts of your Vendor Security Assessment Program Show Notes: https://justinfimlaid.com/3-parts-of-your-vendor-security-assessment-program/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ 3 Parts of your Vendor (Third Party) Security Management Program Over the last few months that we've had a lot of questions about this topic. So to break it down I would actually break apart...

Duration:00:11:25

Security Awareness – Make it Personal!

10/22/2018
More
Some times you need to shift your approach. Show Notes: https://justinfimlaid.com/security-awareness-make-it-personal/ Sponsor: https://www.nuharborsecurity.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ Security Awareness is about getting your users to self select to right security behavior when no one else is looking. As security professionals disseminating security awareness to our organizations is part of...

Duration:00:12:36

Do you ISO 27001?

10/15/2018
More
ISO 27001 isn't a security benchmark. Show Notes: https://justinfimlaid.com/do-you-iso-27001/ Sponsor: https://www.nuharborsecurity.com and https://iso27001certifications.com Contact Me: https://justinfimlaid.com/contact-me/ Twitter: @justinfimlaid LinkedIn: https://www.linkedin.com/in/jfimlaid/ ISO 27001 Background ISO 27001 is increasing in popularity mostly stemming from the exposure created by assessing the security posture of vendors and vendors trying to prove they are good data...

Duration:00:14:59

What a pain in the GDPR!

10/9/2018
More
This episode is sponsored by NuHarbor Security. What is GDPR? The General Data Protection Regulation was passed in 2016 and went into affect as of May 2018. I saw many organizations scrambling to achieve compliance the months preceding and following this past May. This new regulation Brought some additional changes Beyond the 1995 EU data protection directive. This regulation flipped a lot of organizations on their head, and for some security professionals inherited GDPR compliance...

Duration:00:09:56

Your MSSP is Dead! Long Live your MSSP!

10/8/2018
More
MSSP is dead. Long live MSSP! There was once a time when we had to go to an arcade to play video games. However, technologies like the Xbox and PlayStation have made it possible to access those same video games from the comfort of our own home. The managed security service provider industry referred to as an MSSP, is experiencing a similar technology shift today. I spent some time last week visiting with a large organization in New York City. The question is, how many organizations do you...

Duration:00:08:38