Formerly known as Wikibon
Search
Close this search box.
Book a Briefing

The SecurityANGLE

with Shelly Kramer

About the podcast

Unlock cybersecurity insights with The SecurityANGLE podcast — a deep dive into the latest digital defense trends with Shelly Kramer.

Each episode brings you the latest and most relevant news, along with insightful discussions on various aspects of cybersecurity. From exploring cutting-edge security management strategies to delving into the newest technologies, we’ve got it all covered. Our series isn’t just about keeping you informed; it’s a platform to explore what major vendors are doing in the cybersecurity landscape and how their solutions are shaping the industry.

We’re committed to bringing a rich variety of topics to the table each week. Plus, don’t miss out on our special episodes featuring guests who are experts in their fields.

episodes

Zscaler ThreatLabz 2024 Ransomware Report Highlights with Brett Stone-Gross

Zscaler ThreatLabz 2024 Ransomware Report is out in advance of Black Hat this week, and the findings are both alarming and enlightening. This comprehensive analysis of the ransomware landscape from April 2023 to April 2024 reveals several key trends that organizations and security professionals need to be aware of.

SMBs and Cyber Risk Management: How to Up the Cyber Protection Game

In this episode of the SecurityANGLE, I’m joined by Jo Peterson, a fellow analyst, engineer, and member of the CUBE Community. Our guest today is Bob Carver, a well-known cybersecurity expert with deep expertise in cyber risk management, policy, threat intelligence, analytics, and more. Our conversation revolved around SMBs and cyber risk management and how SMBs can up their respective games when working to mitigate risk, develop cybersecurity policies, and train their teams to embrace a security-focused culture. Before we dive in, here are some cybersecurity stats our audience might be surprised by — and the reason we’re having a conversation about SMBs and cyber risk management: Image source: Last Pass Watch the full episode — SMBs and Cyber Risk Management: How to Up the Cyber Protection Game Our discussion with Bob explored: Find and follow us on social here: Shelly Kramer on LinkedIn | Twitter/X Jo Peterson on LinkedIn

6 Cloud Security Trends We’re Watching in 2024

In this episode of the SecurityANGLE, our series focused on all things cybersecurity, I’m joined by Jo Peterson, engineer, analyst, and member of theCUBE Collective community, to share insights on the top 6 cloud security trends we are tracking in 2024.

YouTube Playlist

In this episode of the SecurityANGLE, fellow analyst Jo Peterson and I tackle the topic of zero trust, exploring why adopting a zero trust approach to security is table stakes today, and sharing insights on how to get started. Some benefits to adopting a zero trust approach are enhanced security, improved visibility, and the ability to adapt to modern environments. Benefits aside, there are some challenges when it comes to adopting a zero trust security approach, which include the complexity of the security architecture needed, managing the organizational culture shift required, and cost considerations to maintaining a zero trust infrastructure. Zero trust is not solely a technical solution, but rather a process built on top of strong IT capabilities such as asset management, identity management, and authentication. While it can seem challenging to get started, network segmentation or the act of partitioning your network into smaller networks to restrict access levels and isolate hosts and services that contain sensitive data, is one place where many organizations begin the process. It is not unusual to see companies begin with Zero Trust Network Access (also called ZTNA), as one of the first actionable steps in their strategy. ZTNA is a security service that allows remote users to securely access an organization’s applications, data and services. During the course of this discussion, we explore the nuances of ZTNA and the myriad benefits it can deliver. Many roads lead to ZTNA; each architecture has its own strengths, weaknesses, and trade-offs. We explored one of the most common architectures, which is the software-defined perimeter (SDP). There are about 45 vendors in this category, and we lasered in on four as part of today’s episode. Those four vendors are Twingate and its cloud-based ZTNA solution, Nord Security’s NordLayer, Akamai’s Enterprise Application access, its ZTNA solution, and Cloudflare’s ZTNA solution, Cloudflare Access. If you’re thinking about getting started on your zero trust journey, join us for this informative conversation.
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS40QTA3NTU2RkM1QzlCMzYx

Adopting a Zero Trust Approach to Security is Table Stakes - How to Get Started | SecurityANGLE

36 views

In this episode of the SecurityANGLE, our cybersecurity-focused series, I’m joined by Matt Radolec, VP of Incident Response, Cloud Operations, & SE EU at Varonis, for a conversation about navigating the security risks posed by generative AI and thoughts on how organizations can adopt AI but also manage to mitigate risk at the same time. Varonis hosted one of its Data First Forum events a few weeks ago, which featured over 1,100 registrants and CISOs sharing lessons and insights on all things generative AI. It was interesting to see that while 67% of organizations reported increasing their investments in generative AI, only about one-fifth of organizations shared they feel their organizations are prepared for the risk that comes along with gen AI, which tracks with our research on this topic as well. And that is precisely why Matt and I wanted to discuss navigating security risks posed by generative AI in this episode, since it's obviously a very hot topic. In this discussion, we explored: - Some of the key risks CISOs are worried about associated with deploying gen AI tools. - The challenges and concerns especially from a security standpoint, that the Varonis team is hearing from CISOs as it relates to generative AI. - How business leaders are determining business use cases that provide the greatest potential for organizations and the role of IT teams in that process. - What a solid game plan looks like for deploying and maintaining copilots safely. - Thoughts on practices for securing gen AI tools like copilot We closed the show with some tips and tricks that Radolec recommends for safely deploying gen AI to your enterprise security tech stack. Hope you’ll join us for what was a fantastic discussion.
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS45RjNFMDhGQ0Q2RkFCQTc1

Navigating the Security Risks Posed by Gen AI with Varonis' Matt Radolec | SecurityANGLE

491 views

This episode of the SecurityANGLE features host Shelly Kramer, managing director and principal analyst at theCUBE Research, and Jo Peterson, analyst, engineer, and member of theCUBE Collective community of independent analysts and Teradata CISO Billy Spears for a conversation exploring data warehouse security strategies. Today, the average size of a modern data warehouse is over 100 terabytes. For comparison purposes, Walmart achieved the first 1 terabyte data warehouse in 1991.  Data warehouses store data from a variety of sources, including customer information, product information, employee-related personnel information, sales records, and invoices. They are designed to support decision-making through data collection, consolidation, analytics, and research. We’ve seen the data warehouse evolve into variations: data lakehouse, data cube, data silo, and even a data swamp. And what all of these repositories have in common besides data is the need for security, which is exactly why we're excited to have Billy Spears as our guest today. Billy is on the CNBC Tech Executive Council, he's a venture advisor for Avenir, a product advisory board member for Palo Alto Networks, a cybersecurity board advisor for Cyvatar — and all this advisory work is work he does in addition to his role as CISO at Teradata. Our conversation today covered: - Security concerns that arise when building a data warehouse - Best practices for data warehouse security - The impact of concepts like applying the principle of least privilege and Zero Trust Network Access - How utilizing AI can help as it relates to security and access control in a data warehouse environment. - Balancing the risk while also utilizing cost-effective ways to protect different categories of data in accordance with the varying degrees of protection required by each.
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS42MTI4Njc2QjM1RjU1MjlG

Exploring Data Warehouse Security Strategies with Teradata’s Billy Spears | SecurityANGLE

1.1K views

Shelly Kramer, managing director and principal analyst at theCUBE Research is joined by fellow analyst and frequent co-host Jo Peterson on the SecurityANGLE podcast for a conversation about deception technology, a strategy designed to attract cybercriminals away from an enterprise’s true assess and divert them to a decoy or trap, is gaining traction today. The deception tech decoy mimics legitimate servers, applications, and data so that the criminal is tricked into believing that they have infiltrated and gained access to the enterprise's most important assets when, in reality, they have not. The strategy is employed to minimize damage and protect an organization's true assets. By populating the network with decoys, the onus is on adversaries to carry out an attack nearly perfectly flawlessly, without falling for any of the decoys and traps laid for them. Once a security team is alerted to their presence, they can analyze the behavior of the cyber attackers and use that intelligence to thwart their efforts. We explored some of the vendors providing deception tech solutions, which include: Acalvio, Fortinet, Zscaler, Smokescreen, SentinelOne, Rapid7, Morphisec, and Cynet Systems. There are myriad benefits to incorporating deception technology solutions into your security tech stack, so hang around for the conversation and learn more.
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS5CMEQ2Mjk5NTc3NDZFRUNB

Deception Technology: Changing the Game for Cybercriminals | SecurityANGLE

4.3K views

In this episode of the SecurityANGLE, Shelly Kramer, managing director and principal analyst at theCUBE Research, is joined by Sam Hector, global strategy leader at IBM Security, for a deep dive into one of Kramer’s favorite annual reports, the 19th annual “IBM Cost of a Data Breach Report.” Check out the latest from theCUBE, including upcoming tech events https://www.thecube.net/ This year’s report is based on insights from 604 organizations impacted by data breaches between March 2023 and February 2024. The research is conducted each year by the Ponemon Institute and sponsored, analyzed and published by IBM. Follow theCUBE's wall-to-wall coverage as the roving news desk for SiliconANGLE reports live from tech's top events https://siliconangle.com/category/cube-event-coverage/ Some of the things the report covers include: • The average cost of a data breach • The most common factors leading to a breach • The most common attack vectors • The mean time it takes organizations to identify and contain a breach • Costs by geo and industry • The impact of involvement of law enforcement post-ransomware attack • The use of AI and automation in prevention and detection On the good news front, the IBM report shares that the time to identify and contain a data breach appears to have been significantly reduced to 258 days, 26 days less than the year prior and a 7-year low. Another bit of very good news is that it appears internal security teams (and/or managed security services providers) are getting exponentially better at detecting their own breaches as opposed to discovery by a third party and/or notification by a threat actor. Kramer and Hector do a walkthrough of the report and discuss what's happening in the industry as it relates to cybersecurity, the challenges customers face and the technology solutions they are relying on to help mitigate those challenges. Visit theCUBE Research for the latest in tech news https://thecuberesearch.com/ Catch up on all episodes of the SecurityANGLE https://www.youtube.com/playlist?list=PLenh213llmcY5rmBToKb51z4uQFMgiTj- #SecurityANGLE #theCUBE #IBMCostOfADataBreachReport #theCUBEResearch #IBMSecurity #IBM #cybersecurity
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS4zRDBDOEZDOUM0MDY5NEEz

IBM Security's Sam Hector Unpacking IBM's ‘Cost of a Data Breach Report’ | SecurityANGLE

6.1K views

In this episode of the SecurityANGLE our conversation revolves around cyber resiliency and how embracing a proactive security approach can not only help address gaps in visibility, but also ensure organizations the business resilience they seek, as well as help them keep up with the rapid pace of innovation that is our reality today. Check out the latest from theCUBE, including upcoming tech events https://www.thecube.net/ My guest today is Tom Parker, the CTO of NetSPI. Tom is the former founder of Hubble Technology, a cyber asset surface management technology company acquired by NetSPI this past June to expand its proactive security approach. Follow theCUBE's wall-to-wall coverage as the roving news desk for SiliconANGLE reports live from tech's top events https://siliconangle.com/category/cube-event-coverage/ The main focus of our conversation in this episode centers on what’s happening in the industry and what we’re seeing from customers as it relates to their challenges and pain points. One thing we know for certain is that a lack of visibility is a significant challenge, as is the understanding that the attack surface – both internal and external — is at the root of many of these issues. Visit theCUBE Research for the latest in tech news https://thecuberesearch.com/ It's a challenging time for businesses from a security standpoint. The attack surfaces are rapidly expanding, teams are challenged by a dearth of highly skilled talent, threat actors are getting more sophisticated, in many ways enabled by AI and the data breaches, they keep coming. Kramer highlights some of the concerns she sees from customers in the market as well as from theCUBE’s research, and Parker shares what he and his team are seeing and hearing from customers about the security challenges they have and how they are addressing those. We also explore cyber-attack surface management and how NetSPI's Hubble acquisition has added value to the NetSPI portfolio, along with the importance of gaining full visibility into internal and external attack surfaces and the challenges organizations face in doing that. Bottom line: If business resilience is the goal, it's safe to say that you can't have a reactive approach to security. Proactive security leads to an improved state of business resilience by providing a more holistic, accurate understanding of an organization's risk profile. There is still a long way to go in enabling businesses to have the agility they need to achieve a state of cyber resilience as they keep up with evolving tech. Rather than siloed solutions that only address one part of the problem, organizations need a complete picture of their threat environments through a more proactive security approach. So yes, absolutely, visibility matters! Catch up on the last episodes of the SecurityANGLE https://www.youtube.com/playlist?list=PLenh213llmcY5rmBToKb51z4uQFMgiTj- #SecurityANGLE #theCUBEResearch #NetSPI, #CyberResilience #ProactiveSecurityApproach
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS41QUZGQTY5OTE4QTREQUU4

Achieving a State of Cyber Resiliency is All About a Proactive Approach | SecurityANGLE

5.9K views

In this episode of the SecurityANGLE, Shelly Kramer, managing director and principal analyst at theCUBE Research, and Jo Peterson, analyst at the CUBE Collective, provide a comprehensive breakdown of key takeaways from Black Hat 2024. They discuss the latest trends and challenges in the cybersecurity landscape, with a particular focus on insights from Ivanti's State of Cybersecurity 2024 Report. Check out the latest from theCUBE, including upcoming tech events https://www.thecube.net/ The episode highlights the increasing alignment between CIOs and CISOs, the rise in cybersecurity budgets and the growing recognition of cybersecurity as a strategic business risk. AI and generative AI were major topics at the event, with a shift from hype to practical applications in threat detection and proactive security. Follow theCUBE's wall-to-wall coverage as the roving news desk for SiliconANGLE reports live from tech's top events https://siliconangle.com/category/cube-event-coverage/ Additionally, Kramer and Peterson explore the critical focus on supply chain security and review some of the most intriguing vendor briefings and product launches, particularly in cloud security, identity threat protection and AI-driven innovations. Visit theCUBE Research for the latest in tech news https://thecuberesearch.com/ Catch up on the last episodes of the SecurityANGLE https://www.youtube.com/playlist?list=PLenh213llmcY5rmBToKb51z4uQFMgiTj- #SecurityANGLE #theCUBE #theCUBEResearch #BHUSA #Ivanti #cybersecurity #AI
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS43NDhFRTgwOTRERTU4Rjg3

Black Hat 2024 Key Takeways, State of Cybersecurity 2024, Vendors to Watch | SecurityANGLE

1.1K views

In this episode of the SecurityANGLE, Shelly Kramer, managing director and principal analyst at theCUBE Research, is joined by fellow analyst and co-host Jo Peterson for a conversation with Stephenie Southard, SVP and CISO of BCU (aka Baxter Credit Union), a state-chartered, federally insured credit union headquartered in the Chicago suburbs. Check out the latest from theCUBE, including upcoming tech events https://www.thecube.net/ The conversation centers on the security risks that credit unions face, and how these compare to the security risks of other banks and financial institutions, as well as the top challenges credit union CISOs face and insights on how to combat those challenges. Follow theCUBE's wall-to-wall coverage as the roving news desk for SiliconANGLE reports live from tech's top events https://siliconangle.com/category/cube-event-coverage/ Southard shares insights on building strong teams in light of the cyber skills shortage that's an industry-wide problem, along with thoughts on why business leaders and CISOs should double down on finding and attracting talented women in the field for their teams/organizations and why that will prove beneficial to them. Visit theCUBE Research for the latest in tech news https://thecuberesearch.com/ Catch up on the last episodes of the SecurityANGLE https://www.youtube.com/playlist?list=PLenh213llmcY5rmBToKb51z4uQFMgiTj- #SecurityANGLE #theCUBEResearch #BCU #security #CreditUnions #CISOs #WIT
YouTube Video UExlbmgyMTNsbG1jWTVybUJUb0tiNTF6NHVRRk1naVRqLS5DMkU4NTY1QUFGQTYwMDE3

Credit Unions and Cybersecurity: Insights from BCU's Stephenie Southard | SecurityANGLE

6.5K views

Load More... Subscribe

Cutting Edge Research, Analysis, Insights + Media

Studio Locations

Silicon Valley
989 Commercial St.
Palo Alto, CA 94303

Boston Metro
5 Mount Royal Ave.
Marlborough, MA 01752

Research Areas

Podcasts

Solutions

Engage

Stay Connected

Linkedin Youtube Spotify

theCUBE Research weekly

Stay ahead of the curve with the exclusive insights by our team straight to your inbox each week.

By submitting this form, you are consenting to receive marketing emails from: theCUBEResearch, info@siliconangle.com. You can revoke your consent to receive emails at any time by using the SafeUnsubscribe® link, found at the bottom of every email. Emails are serviced by Constant Contact

© 2024 SiliconANGLE Media, Inc. All rights reserved. theCUBE Research is a division of SiliconANGLE Media, Inc.

Book A Briefing

Fill out the form , and our team will be in touch shortly.
Skip to content