Episode 30:  The challenges of CISO in a security company

Episode 30 December 08, 2020 00:29:55
Episode 30:  The challenges of CISO in a security company
SilverLining IL
Episode 30:  The challenges of CISO in a security company
/

Hosted By

Moshe Ferber Ariel Munafo

Show Notes

Attendees

Guest: Eitan Satmary

Guest Title: CISO 

Company: Tufin

Abstract

Being a CISO is challenging, being a CISO at a security vendor is even more challenging. In this episode we host Eitan Satmary, CISO for Tufin, to talk about the good and bad of being a CISO in a cyber security vendor. We will talk about CISO's ability to influence innovation and product roadmap in the company and how the transition from on-prem offering to SaaS offering changed the company's security posture.

Timing:

0:00 introducing our guest

4:20 CISO in a security company:  influence the innovation team

10:30 the relationship between CISO and the sales department

12:30 the company journey of adding cloud capabilities

15:00 CISO’s first steps

20:11 Risk management considerations for SaaS companies

25:00  Summary and final thoughts

Other Episodes

Episode 50

May 11, 2022 00:24:30
Episode Cover

SilverLining Episode 50: Building security workflow at scale

Guest: Ravid Circus Guest title: Co-Founder, Seemplicity Language: English   Abstract As organizations develop more software, and in faster cycles, greater responsibility is laid on security teams who have a full-stack responsibility for infrastructure, applications, IT services and many other aspects in the business. In this episode we spoke with Ravid Circus co-founder and CPO at Seemplicity to understand how security teams can efficiently scale their risk reduction efforts and interact with their counterparts productively by using digital workflows  for security operations. ...

Listen

Episode 1

November 04, 2018 00:37:41
Episode Cover

Episode 1: Security Challenges With The Growing World Of Serverless Functions

Attendees Guest: Ory Segal, Puresec Guest title:  CTO & Co-Founder at PureSec Company:  Puresec is the global leader in serverless architectures security.   Serverless functions are one the most interesting things that is happening in architecture of application development. With Serverless, application developers can stop worry about the underlying infrastructure and scalability of the application, but they must address other risks at application level. In this podcast we are interviewing Puresec CTO, Ory Segal , co-author of the top 12 risks to serverless applications   Timing 0:00 – 2:35 – intro 2:35 – 8:05 - what are Serverless functions 8:05- 12:20 - how Serverless is different (security wise) 12:20 -  19:40 - Serverless risks & threats 19:40 -  24:00 - common mistakes and misconfiguration with Serverless 24:00 – 29:30 - Serverless effect on people, process and technology 29:30 – 37:00 – Summary and conclusions ...

Listen

Episode 42

October 06, 2021 00:19:48
Episode Cover

SilverLining Episode 42: How to mature devsecops operations

Guest: Hemi Gur-Ary  Guest Title: Co-Founder & CEO at VATA Abstract:  Various organizations around the world are struggling to build & mature their devsecops operations. DSOM (Devsecops Maturity Model) is an OWASP project designed to help organizations plan and prioritize their devsecops strategies. In this episode, Hemi Gur-Ary, co-founder at VATA and senior devsecops consultant, shares his insights about DSOM and how organizations can use it for reshaping their devsecops practices.   ...

Listen