logo
episode-header-image
May 2024
35m 1s

PP016: Tabletop Security Exercises: D&D ...

Packet Pushers
About this episode
Tabletop security exercises can help organizations game out their response to a security incident. From the technical and business considerations to legal and PR implications, a tabletop exercise, like Dungeons and Dragons, lets you play-test attack and defense scenarios. Johna Till Johnson, CEO of Nemertes consulting firm and co-host of the Heavy Strategy podcast, joins... Read more »
Up next
Jul 14
PP117: Automating Firewall Rule Changes – A Real-World Case Study
Drew talks with Joao Soares, Lead IT Security Consultant, about a project Joao undertook to automate firewall rule changes. Firewall changes can be fraught in any environment, but Joao also had to contend with working in the highly-regulated energy sector. They walk through how t ... Show More
1 h
Jun 30
PP116: News Roundup—FortiBleed Reveals Password Cracking Is Alive and Kicking, Accenture Goes All-In on OT, and More
Looks like it’s going to be a long, hot cybersec summer. The latest news roundup covers how Microsoft 365 Copilot got turned into a data exfiltration tool, why the FortiBleed attack is about much more than compromised firewalls, and how North Korea exploited a single npm maintain ... Show More
50m 17s
Jun 23
PP115: Palo Alto Networks: Reality of 109 to 1: Securing Machine Identities and AI Agents (Sponsored)
Machine identities now outnumber human identities in the enterprise 109 to 1 — and most of them are running without the governance controls you’d never skip for a human employee. Service accounts, API keys, tokens, workload credentials, and a fast-growing population of autonomous ... Show More
39m 19s
Recommended Episodes
Oct 2019
The profession of Penetration Testing with John Strand
In this episode of HACKED, Ben talks with the owner of Penetration Testing firm, Black Hills Information Security about the business and profession of pen testing and their incident response card game 
30m 35s
Dec 2019
Peak, Plateau or Plummet? Cyber Trends That Are Here To Stay… and Fading Away
Kevin Beaumont, a thought leader in the cybersecurity industry on incident detection and response, joins Ann to talk about the security trends that are peaking, plateauing, and plummeting. They trade insights on how organizations can examine the dynamics of an attack and effectiv ... Show More
21m 49s
Nov 2024
War Room Best Practices
In this episode of Threat Vector, David Moulton, Director of Thought Leadership at Unit 42, is joined by cybersecurity experts Kyle Wilhoit, Director of Threat Research, and Michal Goldstein, Director of Security Architecture and Research at Palo Alto Networks. Together, they exp ... Show More
35m 17s
Aug 2023
The Human Resource - Training for Security Awareness
<p>Dave Hatter from Intrust IT joins Pandy to discuss the risks and liabilties of not training your team on security awareness. Dave shares real world experiences of how companies have paid the price for not training to prevent such incidents and what businesses like yours can do ... Show More
19m 28s
Oct 2024
Security Posture
In the latest episode of Life of a CISO, Dr. Eric Cole emphasizes the importance of continually evolving cybersecurity practices and re-examining fundamental principles. Unlike static industries like accounting or legal, cybersecurity is in constant flux, requiring companies to s ... Show More
30m 11s
Jun 2025
The Human Firewall: People-First Cybersecurity
Dr. Aleise McGowan, Chief Information Security Officer of BlackGirlsHack and a 20-year cybersecurity veteran, joins Ann on this week's episode of Afternoon Cyber Tea. Aleise shares how a career-defining hack early on shifted her trajectory from developer to defender, and why she ... Show More
33m 3s
Jan 2024
Building community in OT.
An analysis of cyberattacks against Danish energy infrastructure. US government outlines threats posed by Chinese-manufactured drones. Vulnerability in Bosch thermostats. OIG says CISA needs to improve collaboration with the water sector. Guests Mark Stacey of Dragos and Charles ... Show More
40m 17s
Oct 2022
An IT security professional walks into an OT bar.
An assessment of port and terminal cybersecurity in the US. Tata Power discloses a cyberattack. The White House issues statements on cybersecurity. India’s power company collaborates on energy sector cybersecurity. Guests Special Agent in Charge, Tom Sobocinski, and Supervisory S ... Show More
34m 16s
Oct 2024
Balancing Security with Usability in Cybersecurity
In this episode of Threat Vector, host David Moulton talks with guest speaker Brian Wrozek, Forrester Principal Analyst in Security & Risk, about the complexities of aligning security strategies across global teams. Brian draws on his extensive experience in cybersecurity, operat ... Show More
41m 41s