Ron gives us a brief history of Tenable and TVM for the
Ron answers "How do you make network security obtainable and
We discuss TVM as a fundamental principle to many other
security program items
Ron tells us what the modern definition of "policy" is
We discuss some hurdles and challenges of TVM programs in an
We note that security scanning can always break stuff - so how
do you get around that?
Ron tells us why TVM is so much more than scanning
Michael asks "Why are so many companies stuck in a Prince song
We attempt to tackle - compliance, risk, and managing to a
Ron answers the question - "Are we getting any better?"
Ron Gula ( @RonGula ) - CEO and CTO at Tenable
Ron co-founded Tenable Network Security, Inc. in 2002 and serves as
its Chief Executive Officer and Chief Technology Officer. Mr. Gula
served as the President of Tenable Network Security, Inc. He served
as the Chief Technology Officer of Network Security Wizards which
was acquired by Enterasys Networks. Mr. Gula served as Vice
President of IDS Products and worked with many top financial,
government, security service providers and commercial companies to
help deploy and monitor large IDS installations. Mr. Gula served as
Director of Risk Mitigation for US Internetworking and was
responsible for intrusion detection and vulnerability detection for
one of the first application service providers. Mr. Gula worked at
BBN and GTE Internetworking where he conducted security assessments
as a consultant, helped to develop one of the first commercial
network honeypots and helped develop security policies for large
carrier-class networks. Mr. Gula began his career in information
security while working at the National Security Agency conducting
penetration tests of government networks and performing advanced
vulnerability research. He was the original author of the Dragon
IDS. Mr. Gula has a BS from Clarkson University and a MSEE from
University of Southern Illinois.
Take a step outside the echo chamber - gain some perspective and context.
Welcome to Cybersecurity: An immature industry where we mandate impossible-to-remember complex passwords that change every 30 days - and call that security. It's an industry where everyone is an expert, but no one's actually solved anything... weird right?
This show is focused on the many aspects of cybersecurity - from professional to leadership, technical to abstract. We look to entertain you while filling your brain with expertise and knowledge from all corners of our industry and beyond. You can expect security experts, policy professionals, and people from outside our own "security bubble" because frankly, our echo chamber needs some perspective.
Join us, subscribe, and share in the conversation.
Follow us on Twitter: @DtSR_Podcast
Check out Rafal's @Medium blog at https://medium.com/@BlogWh1t3Rabbit