Episode 13: Creating Trust & Awareness

Episode 13 December 31, 2019 00:31:56
Episode 13: Creating Trust & Awareness
SilverLining IL
Episode 13: Creating Trust & Awareness
/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Attendees

Guest: Vladi Sandler

Guest title: Cloud Security team leader

Company: cymotive.com

Abstract

Gaining trust and developing awareness with customers is one of the hardest challenges for providers. It is almost an art. In this episode we talk with Vladi Sandler from Cymotive about creating healthy relationships with customers and how a mixture of personal awareness and technical proficiency are crucial in the customer-provider relationships.

Timing:

0:25 introducing our guest

03:30 Introducing Cymotive  

5:55 Cymotive challenges with their market targets

10:10 relevant Security teams for protecting automotive 

11:50 The concepts of car security

13:55 Challenges when creating trust - The people angle

17:48 Challenges when creating trust - The process angle

22:00 Challenges when creating trust - The technology angle

27:50 Summary and final words

Other Episodes

Episode 24

August 19, 2020 00:37:14
Episode Cover

Episode 24: Putting The Sec Into DevOps

Attendees Guest: Dima Revelis Guest title: Senior Devops engineer Company: MoonActive Abstract DevsecOps is accelerating fast as the new buzzword for modern information security practices. In this episode we use the expertise of Dima Revelis in order to dive deep into understanding DevOps practices, what is CI/ CD pipeline and which security tools are relevant for all of those new practices. Timing: 0:00 - Introducing our guest 2:50 - What is devops 7:50 - What is deployment pipeline 14:20 - What is CI and which security testing can be implemented 17:20 - What is CD and which security consideration  18:40 - Dive deeper into security testing - QA, code review, static & dynamic   analysis 20:45 - So much automation, do we still need manual testing?  22:30 - Additional security aspects: using Jenkins, authentication and authorization, secret management 26:40 - Availability considerations and disaster recovery 33:30 - Summary and final words ...

Listen

Episode 4

July 09, 2019 00:39:27
Episode Cover

Episode 4: Kubernetes On Steroids

Attendees Guest: Demi Ben Ari Guest title: CTO Company: Panorays Abstract K8 is rapidly becoming the leading orchestration tool and infrastructure for many companies applications. K8 bring tremendous advantages, provide operations with flexibility and enabling multi cloud deployments. But with all that good there are also challenges. In this podcast we talk with Demi Ben Ari, Founder and R&D at Panorays, A saas company that deployed K8 as infrastructure for fleet of scanners and crawlers. Demi will share his experience with the platform and steps he took in order to utilize most benefits from K8. ...

Listen

Episode 35

February 24, 2021 00:33:05
Episode Cover

Episode 35: Compliance Automation and Zero Trust Containers

Sponsored By:   ‍‍ Attendees Guest: Malgorzata (Gosia) SteinderGuest title: CTO of Hybrid Cloud Research. IBM researchTopic: Compliance automation and zero trust containers   Abstract Continuous monitoring, containers, zero trust, confidential computing - those are all examples of technologies that will be the main focus in the upcoming years. In this episode, we hosted Malgorzata (Gosia) Steinder, CTO of Hybrid Cloud Research at IBM, who provided her vision on how all those technologies mentioned above, should be integrated into highly secure applications deployments.   Links:  NIST OSCAL standard: https://pages.nist.gov/OSCAL/ Automated compliance Open Source tool  by IBM  https://github.com/IBM/compliance-trestle Security monitoring open source tool by IBM:  https://www.ibm.com/blogs/research/2020/01/sysflow/ workload identity: https://developer.ibm.com/solutions/security/articles/protecting-data-using-secret-management-trusted-service-identity/     ...

Listen