securitytraining

In this special Veteran's Day episode I talk with LinkedIn Top Voices of 2020 honoree, AJ Yawn, about Amazon Web Services security.  AJ is a US Army veteran and also the Co-Founder and CEO of a brand new company called ByteChek.

AJ walks us through his five quick tips for AWS security for small businesses.

1. Protect Your Root Account
2. Identity Access Management (IAM) Report
3. Download Trusted Advisor Report
4. Enable AWS Cloud Trail Across All Regions
5. Automate Something Using Cloud Trail

We also had a chance to talk about the ever elusive thing called the Shared Responsibility Model.

Finally stick around until the end were we took a few minutes and touched based on the state of Diversity, Equality and Inclusion at the end of 2020.

As an added bonus here is a link to AJ's article that we talked about in the podcast.  

How To Effectively Setup AWS CloudTrail in 5 Steps

In this special live stream podcast recording event I spoke with Tim O'Connor. Tim is the manager of Knowledge Services for Cadre Information Security. The topic of this podcast is 'How to Build a Successful Security Awareness (SA) Program.

 Talking points include:

•  What is the first step in building a successful program?
• The concept of a security champion when you don't have a dedicated SA team
• What are some common misconceptions about SA programs?
• Diagramming out a social engineering attack

 This episode is sponsored by Cadre Information Security. Cadre is a security solutions provider that focuses on network data security designs for businesses.  The company is based out of Cincinnati, Ohio.

In this episode I speak with Martin Cannard about Privilege Access Management for Small and Medium Business. Martin is the Vice President of Product Strategy for STEALTHbits Technologies.

 Here are some of the questions that we tackled in this session:

 What is Privileged Access Management and why do you need it?

• Why is PAM so 'scary'?
• What the biggest problems that you are seeing in the PAM space?
• What is wrong with a typical PAM boilerplate?

 This episode is sponsored by STEALTHbits and, as always, proceeds from this sponsorship will go toward At Risk students in West Michigan.

In this episode I talk with Sean Deuby about Microsoft Active Directory and why AD security still matters.

Topics included:

• The Circle of 'AD' Life
• AD in the Age of Ransomware (e.g. tools at script kiddie's disposal)
• Ransomware - Risk and Recover
• Krazy Mimikatz Stories

This podcast was sponsored by Semperis. Semperis offers great Microsoft Active Directory services including Directory Service Protector and Active Directory Forest Recovery.

Part of the proceeds from the sponsorship will go towards helping 'At Risk' students in West Michigan.

In this episode of #realtalk with Aaron Bregg, I catch up with Gabriel Friedlander of Wizer.  Wizer is a great security awareness training solution. 

Discussion Topics:

• How did you get started? (personal background, company background, etc.)
• How are the topics selected? (hot topics or just ‘common sense’ approach?
• What is your process to creating videos?
• What are the biggest challenges in Security Awareness training right now?
• What do you wish big companies would do better at?
• What are your favorite video feedback story?
• What do you think the future of Security Awareness looks like?

Links:

Wizer website