Security Management Strategies for the CIOVideo Library
-
Discover Web app vulnerabilities using OWASP's ZAP tool
Video: Keith Barker of CBT Nuggets offers a OWASP Zed Attack Proxy tutorial. Learn how to find and nullify Web application vulnerabilities using ZAP.
-
How Adobe turns developers into security 'ninjas'
Video: Adobe CSO Brad Arkin explains how his firm fosters secure software development by inspiring developers to become security 'ninjas.'
-
Kandek: Plug-ins threaten Web browser security
Video: Qualys CTO Wolfgang Kandek said plug-ins now affect Web browser security more than the browsers themselves.
-
Dexter tutorial: How to use the Android analysis tool
Video: Keith Barker of CBT Nuggets demos Dexter, the Android static analysis tool that examines and securely deploys Android applications.
-
NSA shares lessons learned from SE Android pilot
Video: The NSA's Troy Lange discusses SE Android and how he hopes it will play a role in fostering improved Android platform security for enterprises.
-
Adobe's Arkin on vulnerability disclosure and Group-IB
Video: Adobe software security chief Brad Arkin details the software giant's policy on vulnerability disclosure and Group-IB's Reader sandbox claims.
-
Update on Cisco network security product strategy
Video: Cisco SVP Chris Young details the vendor's 2013 network security product strategy, specifically combining more features into its line of ASA firewalls.
-
Holding software vendors accountable with VBSIMM
Video: Gary McGraw explains how JPMorgan Chase and others use the VBSIMM security model to vet software purchased from third-party vendors.
-
After 15 years, Snort IDS tool still going strong
Video: Snort creator Martin Roesch discusses new Snort features like JavaScript normalization and rule modeling, and looks ahead to Snort's future.
-
Schneier: Cyberwar rhetoric puts freedom at risk
Video: Bruce Schneier explains why ongoing China cyberwar rhetoric evokes the wrong responses and may damage personal privacy, and ultimately freedom.
-
IPv6 co-inventor offers IPv6 rollout security advice
IPv6 co-inventor Robert Hinden outlines IPv6 implementation security risks and a critical IPv6 security tip for working with network security vendors.
-
Assess threats, malware with the Mandiant Redline tool
Video: Keith Barker of CBT Nuggets shows how to use the Mandiant Redline memory analysis tool to conduct threat assessments, defeat rootkits.
-
Cyrptoseal CEO on protecting data when traveling
Video: Cryptoseal CEO Ryan Lackey details the threats associated with international data protection, from cloned hard drives to evil maid attacks.
-
Qualys CTO: Advanced malware hides in 'network noise'
Video: Wolfgang Kandek, CTO at Qualys, discusses the need for advanced malware detection as true enterprise threats are being lost in "network noise."
-
FIDO Alliance: The future of online authentication?
Video: PayPal CISO Michael Barrett discusses the FIDO Alliance launch and how the open standard for online authentication might help replace weak passwords.
-
Sourcefire CEO: Firms must assume they've been breached
Video: Sourcefire interim CEO Martin Roesch discusses the need for new tactics amid rampant cybersecurity breaches, plus APTs, big data and CISO priorities.
-
Schneier: There is no privacy on the Internet
Video: Bruce Schneier provides three examples to prove there is no privacy on the Internet. Is government regulation needed?
-
Gary McGraw on evolution of BSIMM maturity framework
Video: McGraw discusses the past and future of the BSIMM maturity framework for software security, and how vendors like Adobe and Microsoft measure up.
-
Laying the groundwork for BYOD at the NSA, someday
Video: Troy Lange discusses the issues thwarting BYOD at the NSA, and talks about promising mobile security technologies like hardware root of trust.
-
The three biggest mobile app security problems
Video: Cigital's Gary McGraw discusses the top mobile app security issues, and why it's time to apply trustworthy computing concepts to mobile devices.