Security Architecture Podcast – Détails, épisodes et analyse

The podcast features an insightful interview with Frederic from Gleams, a French startup specializing in advanced malware detection and investigation using artificial intelligence. Frederic discusses the company's role in protecting file flows, the differences between malware and viruses, common vectors of attack, challenges of static and dynamic detection, deployment options including air gap environments, and the company's focus on delivering effective threat detection and analysis. Frederic: https://www.linkedin.com/in/fr%C3%A9d%C3%A9ric-grelot-3243052a/ Frédéric Grelot began his career at CNES in Toulouse, spending three years in the Spacecraft's Embedded Computers department. There, he worked on designing a hardened computer chip for satellites and handled its validation from VHDL to integration in a satellite model and simulated space environment. In 2012, he joined the cyberdefense teams of the French Ministry of Armed Forces, specializing in reverse-engineering of computer systems and programs for seven years. In 2016-2017, Grelot initiated Artificial Intelligence work at DGA, identifying defense sectors where AI could be applied and helped establish a dedicated AI team. From 2017 to 2019, he led a team of 25 reverse-engineering analysts and continued enhancing his knowledge in Artificial Intelligence and Big Data. In 2019, Grelot co-founded GLIMPS, a company specializing in code analysis and malware detection using AI, and served as Scientist Lead. He contributed significantly to the company's outreach and communication. In 2023, he moved to Toronto, Canada, to open GLIMPS's first international office, engaging actively with the local tech and cybersecurity communities. Known for his distinctive profile, he also participated in various conferences and appeared on the national Radio Canada network. Grelot is committed to ecological sustainability, incorporating this perspective into his entrepreneurial endeavors. Glimps: GLIMPS is a cybersecurity company established in 2019 by four experts with a background in reverse-engineering. It offers innovative cybersecurity solutions leveraging a proprietary technology capable of automatically reading and understanding computer code. This technology is designed to enhance the detection and automation of binary analysis and threat identification, providing a significant boost to existing defense lines against increasingly sophisticated cyber threats. GLIMPS's solutions, which include GLIMPS Malware, are available in both SaaS and On-premise formats, catering to a broad spectrum of French and international companies and governmental bodies. The firm has achieved recognition within the cybersecurity community, evidenced by prices such as the European Cyber Week award, twice in a row. At the core of GLIMPS's offerings is its Deep Engine, a specialized AI engine based on Deep Learning. This engine excels in deep file analysis, enabling quick detection and characterization of advanced cyber threats. By conceptualizing code, GLIMPS's technology can identify all forms of malware, providing a comprehensive and scientifically validated approach to cybersecurity. This platform processes over one million files daily and serves more than a hundred customers, demonstrating its effectiveness and the trust it has garnered within the industry. GLIMPS also emphasizes collaboration within the French ecosystem, aiming to integrate its solutions where beneficial. The company's growth is underscored by its successful fundraising efforts, which include a €6 million round in 2021, and its continuous search for new talent to join its expanding team​.

Our guest for the show is Ganesh Pa. Ganeshi is Founder & CEO of Uptycs, He was previously Chief Architect, Carrier Products & Strategy for Akamai Technologies, a leading provider of content delivery network services. Prior to Akamai, Ganesh was Founder & VP Systems Architecture of Verivue. Prior to Verivue, he was Principal Architect for NetDevices Whitepaper: https://www.uptycs.com/resources/white-papers/cloud-security-fundamentals Demo link:

https://www.uptycs.com/request-demo About Uptycs Uptycs, the first unified CNAPP and XDR platform, reduces risk by prioritizing your responses to threats, vulnerabilities, misconfigurations, sensitive data exposure, and compliance mandates across clouds, containers, servers, and workspaces—all from a single UI and data model. Only Uptycs gives you the ability to tie together threat activity as it traverses on-prem and cloud boundaries. The result is a cloud security early warning system that identifies and stops threat actors before they can access critical data and services in the cloud. Take control of your security data, get the correlated insights you care about most, faster, and take decisive action. https://www.linkedin.com/in/ganesh-pai/ Ganesh Pai, Founder and CEO at Uptycs Ganesh Pai is Founder & CEO of Uptycs. He was previously Chief Architect, Carrier Products & Strategy for Akamai Technologies, a leading provider of content delivery network services. Prior to Akamai, Ganesh was Founder & VP Systems Architecture of Verivue. Prior to Verivue, he was Principal Architect for NetDevices. Prior to NetDevices, Ganesh served as Engineering Manager and Software Architect for Sonus Networks. He is a Boston-based entrepreneur and technologist and has been awarded multiple U.S. patents. Ganesh received a BE degree in electronics and communication engineering from Mangalore University and a MS in computer science from Temple University.

Our guest for the show is Zuly Gonzalez. Zuly is Director of Product Management at Skyhigh Security where she leads Remote Browser Isolation, Firewall-as-a-Service, and Digital Experience Monitoring as part of the Skyhigh Security Service Edge (SSE) platform.

Season 4  KickOff episode with Chase

https://www.youtube.com/watch?v=YWB05cb7XRQ

Demo:

https://www.skyhighsecurity.com/en-us/forms/demo-request-form.html

Whitepaper:

https://www.skyhighsecurity.com/en-us/cybersecurity-defined/what-is-browser-isolation.html

About Zuly:

https://www.linkedin.com/in/zulygonzalez/

Zuly Gonzalez is Director of Product Management at Skyhigh Security where she leads Remote Browser Isolation, Firewall-as-a-Service, and Digital Experience Monitoring as part of the Skyhigh Security Service Edge (SSE) platform.

Prior to joining Skyhigh Security, Zuly was the CEO and Co-founder of Light Point Security (acquired by McAfee in March 2020), which pioneered the concept of remote browser isolation. Before founding Light Point Security, Zuly spent over a decade at the National Security Agency (NSA) in various technical and management roles where she focused on protecting national security interests. While at the NSA, Zuly briefed the Director of the NSA and the House Permanent Select Committee on Intelligence (HPSCI) on matters of national security.

Zuly holds a BS in Computer Engineering from the University of Puerto Rico – Mayaguez, and an MS in Electrical and Computer Engineering from Johns Hopkins University.

About Skyhigh Security:

Skyhigh Security protects organizations with cloud-native security solutions that are both data-aware and simple to use. Its market-leading Security Service Edge (SSE) Portfolio goes beyond data access and focuses on data use, allowing organizations to collaborate from any device and from anywhere without sacrificing security. For more information, visit www.skyhighsecurity.com.

Our guest for the show is Jack Britton. Jack is the Director of Sales Engineering for Talon Cybersecurity. Jack is a Marine Veteran and Cybersecurity professional with over 15 years of experience. He has led as a National Practice Director at a $1.5 Billion VAR/Consulting company

Season 4  KickOff episode with Chase  https://www.youtube.com/watch?v=YWB05cb7XRQ&feature=youtu.be

Demo: https://talon-sec.com/talon-learn-more/

Whitepaper: https://talon-sec.com/resources/whitepapers/white-paper-an-enterprise-browser-for-the-digital-business/

About Jack:

 https://www.linkedin.com/in/jackrbritton/

Jack Britton is the Director of Sales Engineering for Talon Cybersecurity.  Jack is a Marine Veteran and Cybersecurity professional with over 15 years of experience.  He has led as a National Practice Director at a $1.5 Billion VAR/Consulting company.  There he led Offensive Security, Digital Forensic and Incident Response, Executive Digital Protection Services, and Managed Security Evaluation Services.  He is an RSA Scholar and has earned both B.S and Masters in Science in Cybersecurity at the University of Maryland Global Campus.  Jack volunteers to support Global Humanitarian Aid needs and he is an advisor with the National Child Protection Task Force.

About Talon:

Talon is enabling and securing the distributed workforce by creating the first browser-based workspace that was designed with built-in security for the modern and hybrid workforce, working from anywhere and on any device.  Talon simplifies the company's security stack, with rapid end-to-end deployment which allows a robust endpoint-agnostic security posture.

Our guest for the show is Mike Schuricht , Mike is the VP of Product Management at Forcepoint. Prior to that, he was the SVP of Product Management at Bitglass. He has a background in the development of innovative enterprise security products, with expertise in configuration management and user-interface design.

Season 4  KickOff episode with Chase  https://www.youtube.com/watch?v=YWB05cb7XRQ&feature=youtu.be 

Demo:  https://www.forcepoint.com/videos/forcepoint-remote-browser-isolation-rbi-demo-performance-and-security

Whitepaper:  https://www.forcepoint.com/product/forcepoint-one

About Mike:

 Mike Schuricht is the VP of Product Management at Forcepoint. Prior to that, he was the SVP of Product Management at Bitglass. He has a background in the development of innovative enterprise security products, with expertise in configuration management and user-interface design. Mike joined Bitglass from Palo Alto Networks where he was responsible for security management and user-interface strategy for both Panorama and PAN-OS. Prior to joining Palo Alto Networks, Mike held technical marketing and engineering roles at Mentor Graphics for the Advanced Mixed-Signal product line. Mike holds an MS and BS in Computer Engineering from University of California, Santa Barbara.

About Forcepoint:

 Forcepoint is the global cybersecurity leader for user and data protection. Forcepoint’s behavior-based solutions adapt to risk in real-time and are delivered through a converged security platform that protects network users and cloud access, prevents confidential data from leaving the corporate network, and eliminates breaches caused by insiders. Based in Austin, Texas, Forcepoint creates safe, trusted environments for thousands of enterprise and government customers and their employees in more than 150 countries.

Join us for a Season 4 kickoff Episode, This season we are transitioning to a more end user-centric security topic Browser Isolation. This security concept is an old concept and goes back to 1995 when CITRIX was first introduced. However, since then many things have changed and the fact we are using browsers for almost anything at work including gaming and video consumption brings the need for defense-in-depth and zero trust

We invite you to join us and watch the kickoff episode!
There are about 1.7 billion websites on the internet, and 4.5 billion people interact with these websites daily. An unprecedented number of 500,000 new websites are created daily following websitesetup.org stats. This noise serves as a great disguise for the adversaries. While the bad actors adopt automation and DevOps in line with the rest of the market, they can spin up new phishing websites with high similarity to the original website. Other attack vectors that gain popularity are infecting legitimate websites with malware or utilizing formjacking and other OWASP Top 10 weaknesses. That being said, it's challenging to be reactive to protect people when we know the adversaries are always one step ahead. This is where the Isolation or air-gaping approach for the websites could be a helpful mechanism in protecting the end-user.

The season will examine a few approaches and solution architectures by vendors:

-Remote Browser Isolaiton
-Secure Enterprise Browser
-Browse Plugin based Security

We believe that this topic is fascinating and has so many great solutions on the market. You will have the opportunity to familiarize yourself with many great options to protect the end-user and also a variety of attacks such as: 

-Malicious documents and files download
-Drive-by downloads
-Redirect attacks
-Zero-day exploits
-Cross-site scripting
-A load of malicious Java scripts
-Malvertising 
-Cookie stuffing and session fixation

Here are some of the questions we plan to ask the participants,

-What's the name of the offering/product addressing the browser isolation?
-Describe your overall architecture at a high level?
-What is the user experience compared to browsing, especially with SPA (Single Page Application)?
-Please describe how you integrate with IAM/SSO providers?
-How would your technology work with existing SWG or ZTNA vendors? Does it replace or complement it?
-Is the isolation done for all URLs/APPS or only for the risky ones? 
-Can I use the solution to isolate internal web-based resources and how can you support legacy web applications that run only on old versions of Internet Explorer?
-Please describe how users can work and edit documents via browser?
-How does your solution address BYOD Devices? How about Mobile devices?
-How do your products work with browser extensions such as Lastpass, Webex, etc.?
-How can the organization get visibility or a report of attacks prevented by the technology?

Cloud computing has been around for more than a decade, but only in the last eight years has it started to get real momentum while having small and large companies undergoing digital transformation. It's especially accelerated between 2019 and 2021. Also, COVID forced people to work from home and motivated companies to move their computing and services to IaaS providers and rapidly adopt SaaS solutions.

We had the pleasure to have Nicolas St-Pierre with us, he is a Field CTO at Lacework walking us thru their solution.

About Nick

https://www.linkedin.com/in/nickstpierre/

Nicolas is Field CTO at Lacework and is responsible for providing technical leadership in Cloud Security to our customers, partners, and product groups. He has over 20 years of expertise in security products and virtual platform deployments with global Tier-1 Communication Service Providers and large enterprises worldwide in a CTO and Field CTO capacity. Author of multiple patents in the field of Telecommunications, 5G, Digital Advertising, Security, and Analytics, Nicolas continues to provide Cloud Security insights and leadership from the Greater Toronto Area where he resides.

About Lacework: Lacework is a data-driven cloud security company. It’s the only company to deliver end-to-end visibility and automated insight into risk across multi-cloud environments so organizations of all shapes and sizes can innovate with speed and safety. Lacework sees security not as a blocker, but as an enabler for innovation — and automation as the path to transformative business outcomes.

Link to the website

 https://www.lacework.com/schedule-demo/

We are airing our eighth and final episode in Season 3, this season is dedicated to application security, our guest for the show is Daniel Krivelevich Co-Founder and CTO of Cider Security

To promote our work and support the podcast, please review us here  https://www.podchaser.com/podcasts/security-architecture-podcast-1313281

Season 3  KickOff episode with Tanya Janca

Season 3 kickoff Episode - Application Security - Tanya Janca - YouTube

Demo:

https://www.cidersecurity.io/demo/

WhitePaper:

https://www.cidersecurity.io/top-10-cicd-security-risks/

Daniel BIO:

https://www.linkedin.com/in/daniel-krivelevich/

Cyber Security expert and problem solver, 15+ years of enterprise security experience with a strong orientation to Application & Cloud Security. Held several positions in 8200, after which spent several years hopping between defensive and offensive security positions.  After having led Application Security and Cloud Security with Sygnia for four years, working with 100+ enterprises on optimizing Cyber resilience,  Daniel Co-Founded Cider Security as the company’s CTO.

About Cider:

Cider Security is a first-of-its-kind AppSec Operating System that provides Security and Engineering teams a single, consistent method to orchestrate and implement end-to-end CI/CD security through a single, unified platform. The company takes a holistic approach to the security of the engineering processes and systems, from code to deployment. It establishes a comprehensive Technical DNA of the engineering environment, giving Security teams the transparency and visibility needed to optimize AppSec and achieve full resilience. Founded in late 2020 by cybersecurity industry veterans, Guy Flechter and Daniel Krivelevich, Cider Security's mission is to solve the most commonly encountered challenges CISOs and security engineers face today. For more information, visit www.cidersecurity.io/.

We are airing our sixth episode in Season 3, this season is dedicated to application security, our guest for the show is Kieran Miller is the Chief Architect at Garantir, before joining Garantir, Kieran spent more than 10 years working in cybersecurity, including 8 years with Leidos, a major defense contractor, and several years with Gemalto.

To promote our work and support the podcast, please review us here  https://www.podchaser.com/podcasts/security-architecture-podcast-1313281

Season 3  KickOff episode with Tanya Janca

Season 3 kickoff Episode - Application Security - Tanya Janca - YouTube

Demo: 

https://garantir.io/contact/

WhitePaper:

https://garantir.io/wp-content/uploads/2021/04/Garantir-Deploying-A-Fast-Secure-Code-Signing-System.pdf

Kieran:

https://www.linkedin.com/in/kieran-miller-0776136/

Kieran Miller is the Chief Architect at Garantir, a cybersecurity company based in San Diego, California. Before joining Garantir, Kieran spent more than 10 years working in cybersecurity, including 8 years with Leidos, a major defense contractor, and several years with Gemalto, which was later acquired by Thales, followed by multiple years as a senior security consultant. With over a decade of cybersecurity experience, Kieran has expertise in multiple dimensions of enterprise security, from data security and identity access management to secure software development.

Garantir overview:

Garantir is a cybersecurity company that provides advanced cryptographic solutions to the enterprise. The Garantir team has worked on the security needs of businesses of all sizes, from startups to Fortune 500 companies. At the core of Garantir’s philosophy is the belief that securing business infrastructure and data should not hinder performance or interrupt day-to-day operations. With GaraSign, Garantir’s flagship product, private keys remain secured at all times, while a client-side hashing architecture ensures high performance for all cryptographic operations, including code signing, SSH, S/MIME, document signing, TLS, secure backup, and more.

This Season is dedicated to Application security, our guest for the show is James Brotsos Developer Advocate and Product Manager, James leads all strategic and product integrations for Checkmarx

To promote our work and support the podcast, please review us here  https://www.podchaser.com/podcasts/security-architecture-podcast-1313281

Season 3  KickOff episode with Tanya Janca

Season 3 kickoff Episode - Application Security - Tanya Janca - YouTube

Demo/POC:  

https://checkmarx.com/product/software-security-platform/

Whitepaper: 

https://checkmarx.com/resources/ebooks-and-whitepapers

Checmarx: Checkmarx is constantly pushing the boundaries of Application Security Testing to make security seamless and simple for the world’s developers while giving CISOs the confidence and control they need. As the AppSec testing leader, we provide the industry’s most comprehensive solutions, giving development and security teams unparalleled accuracy, coverage, visibility, and guidance to reduce risk across all components of modern software—including proprietary code, open-source, APIs, and infrastructure as code. Over 1,600 customers, including half of the Fortune 50, trust our security technology, expert research, and global services to securely optimize development at speed and scale.

James Brotsos | Product Manager – Developer Experience | 

https://www.linkedin.com/in/jbrotsos/

Developer Advocate and Product Manager, James leads all strategic and product integrations for Checkmarx – a leader in Application Security Testing Solutions.  He comes with fifteen years of software engineering experience in network protocol and kernel development. In his spare time, he volunteers mentoring Computer Science high school students in the Bay Area. He is an active “maker”, and his main hobby is following IoT technology and trends.