Dr. Chase Cunningham

DrZeroTrust

Unlock the future of cybersecurity with the "Dr. Zero Trust Podcast" on all podcasting platforms! Join me as we delve into Zero Trust Security, redefining how we protect data and networks. Explore frameworks, threat prevention, identity management, exclusive interviews, and emerging tech. Whether you're a pro or just curious, trust me– this podcast is where those who value honesty and real insights go for their cybersecurity insights! Tune in on Spotify, Google, or ITunes now. #DrZeroTrustPodcast #Cybersecurity #ZeroTrust

Autor

Dr. Chase Cunningham

Categoría

Technology

Web del podcast

www.patreon.com

Último episodio

6 de jul. de 2026

¿Dónde escuchar?

Podcasts en la app Replaio Radio Muy pronto

Los podcasts llegarán muy pronto a la app. Instálala ahora y sé el primero en descubrir una forma totalmente nueva de vivir los podcasts

Descárgala en Google Play Instálala gratis Android 5 M+ de descargas · valoración de 4,8 iOS muy pronto

Episodios

Cyber news and Zero Trust insights for 12/21/2022 22.12.2022

Okta has an issue with their source code and a Github breach.  Does that matter, and if so why?  Is the FDA asking for more funding a real issue, and are they secure enough to be mandating legislation?  1password published an interesting analysis on the state of access for 2022, what can we learn from that?  What about this ChatGPT thing, how can it be useful and is it a threat?  And the most egre...

Cyber Certifications - The Self Licking Ice Cream Cone of Misery 08.12.2022

Why are certs hurting the industry?  Are they really?  How much does it cost to get an entry certification?  Why so much?  Is the process for certifications fair for everyone?  Should companies have a fellowship track for non-manager technologists?  How do we get past this problem?  Is HR in the way of fixing the cyber security hiring crisis?  How hard is it to fix the problem with management and...

Cyber news and Zero Trust insights for 11/30/2022 01.12.2022

Do buyers always configure vendor security solutions correctly?  Is there a magic button to push and then your organization is secure?  Do vendors have no risks or avenues of compromise?  How bad is the MSQL database security that is out there right now (think millions).  The DoD released it's strategy for Zero Trust, what should we take away from that?  Amazon is offering a security data lake rec...

What happens when two former analysts have a real conversation? 28.11.2022

A former Forrester analyst and a former Gartner analyst talk about the market and a variety of topics.  Is it a good idea for layoffs to be taking place right now in cyber as the economy takes a dive?  How will that affect our collective security?  What should you know about analyst reports like the Wave or the Magic Quadrant?  Does security product bloat actually hurt operational capabilities?  S...

Cyber news and Zero Trust insights for 11/17/2022 17.11.2022

Zscaler has come up with their own certification for Zero Trust.  Is that a good thing?  What else is up with Medibank and how bad is the security for the Australian government that is pushing the formation of these new "hack back" teams?  Is that even a thing?  China is using universities to plunder research and intellectual innovations from America, so what?  Why isn't that more of a problem?  D...

Cyber news and Zero Trust insights for 11/9/2022 10.11.2022

A noted Russian "leader" openly admits to tampering with elections, does that close the book on whether or not that has happened?  An article on the Hill says that "ignorance" is the issue for legislators regarding cyber.  Is it "ignorance" or willful ignoring of the problem?  With the midterm elections going on surely I can't find potentially insecure and misconfigured election related systems?  ...

Cyber news and Zero Trust insights for 11/2/2022 03.11.2022

Banks have paid out a massive multi-billion dollar plus to ransomware operations, but where does all that money go?  Is crypto entirely to blame?  Dropbox had a compromise issue, but luckily it's never happened before?  Right?  And it's good that it wasn't related to any companies intellectual property.  Oh wait.  And then let's talk about Chegg.  They get the award for continued cyber negligence...

Cyber news and Zero Trust insights for 10/27/2022 27.10.2022

A major insurance provider for an millions of people is dealing with a compromise, surely they have buttoned up the easy stuff?  Right?  Wanna bet.  Can I find a misconfigured SSH server that pipes me directly into an adversary nations internal networks?  Maybe.  More problems with TikTok as it gets reported in Forbes that the company was working to access American citizens personal location data...

Cyber news and Zero Trust insights for 10/19/2022 19.10.2022

How long does it take to find possible vulnerable assets online, about 21 minutes.  Yeah.  Is the OPM data breach "settlement" even worth it?  Surely I can't find admin usernames and passwords with 1234 on the internet, right?  Certainly not for a state or local system, right?  Is data security up to par after a breach?  Why aren't states and local governments willing to work through the paperwork...

Cyber news and Zero Trust insights for 10/12/2022 13.10.2022

Dell has setup a Zero Trust Center of Excellence, that's pretty cool.  Real investment into strategic technology alignment sounds like a good idea to me.  Disinformation around the hurricane Ian fiasco.  How can we defend democracy when folks buy into this stuff?  Are you using Reddit to gain insight into your customer experience, you should be.  How secure is the organization that is forcing me t...

Cyber news and Zero Trust insights for 9/28/2022 29.09.2022

How many VPN's are out there that might have a configuration issue?  Are there any major companies that might be piping threats into their networks (the answer is probably).  Has Uber fixed the low hanging fruit from it's recent issue?  More ICS and SCADA vulnerable systems aren't out there, right?  Research from ZScaler on the use and adoption of the VPN is interesting, has the tide shifted with...

Thoughts and Perspectives on the Twitter Whistleblower 19.09.2022

Why are security leaders going "scorched earth" when they leave employers?  How can an organization better be prepared to deliver on their promises?  Does ethics apply in technology (it sure should)?  What's the right and wrong way to go about blowing the whistle when the need is there?  Does money paid out call into question the motives for speaking out?  Is it better to go out with a bang or jus...

Cyber news and Zero Trust insights for 9/14/2022 15.09.2022

What a wake up call this week when working with SMB's on their cyber security strategy and the reality of the space.  Do SMB's use outsourced security, and is that smart?  Does that hurt their overall awareness?  Why aren't things getting patched the way they should even when we have been notified by CISA and others of "critical vulnerabilities"?  Does the upcoming legislation around semi-conducto...

Cyber news and Zero Trust insights for 9/7/2022 07.09.2022

Is the news media collaborating to manipulate our collective consciousness?  How would that happen?  Is local news "more true" than national news?  What about OPSEC for the war in Ukraine?  Could an organization cause a kinetic attack based on pictures that came from soldiers sharing via social media?  How does politics play into the space around cyber and disinformation?  Some hard hitting questi...

Security for Apps and Low or No Code Systems 01.09.2022

How can you secure no code or low code applications?  Is devsecops a real thing?  Does anyone actually do this?  How should organizations look at the risks from these types of "factory made" apps?  Why is the 8200 unit such a big thing in the Israeli cyber scene?  What types of pricing make sense for security applications that you might not own?  How should the market approach the future of applic...

Cyber news and Zero Trust insights for 8/24/2022 25.08.2022

An article from Recorded Future points out new legislation in North Carolina and Florida that bars state backed organizations from paying ransomware attacks.  Surely that means they have their stuff on lock and have no misconfigured assets, right?  Google has an AI and privacy program that seem to be intersecting and could impact all of us, and Apple is dealing with those issues as well.  How do w...

Selling Zero Trust at enterprise scale. 22.08.2022

Do enterprises really buy Zero Trust?  How should they think about a strategic approach to a problem.  What about rip and replace?  Are there no-go's when it comes to working to help an enterprise adopt ZT?  Where do they budget for these endeavors?  Is this only a big business problem?  Those questions and more on this episode.

Cyber news and Zero Trust insights for 8/17/2022 18.08.2022

Okta's Zero Trust study.  What does it say about the market and the growth of ZT?  More cyber insurance shenanigans, why does this keep coming up?  Should we really use this "service"?  Water treatment plant is hacked in the UK, but is it really a clear case of compromise?  What happens if you try and send someone shit in a box (literally) and the service is hacked?  Is that a PII violation, or HI...

How to sell into the channel the right way. 16.08.2022

Truths about selling into the channel market with a real expert.  How should your organization go about selling to a channel?  Is the market different?  How can you use those partners smarter?  Do you have to sell twice?  What shouldn't you do to leverage that channel?  How can you optimize your channel approach and force multiply your sales efforts?  Those points and more on this episode!

Cyber news and Zero Trust insights for 8/10/2022 11.08.2022

How hard is it to find "internal use only" files with a simple crafted search?  How about spreadsheets with passwords and admin logins?  What should we think about this whole Trello thing?  What happened when I got phished (yup, they got me).  Was it even a problem?  Is the national emergency alert system really vulnerable?  How big does the Zero Trust market get in the next 9 years?  Those points...

Cyber news and Zero Trust insights for 8/3/2022 04.08.2022

Are there potential ways to attack a nuclear site via online misconfigurations?  What about water as a vital national resource, can you attack a water supply system?  Or a dam?  Are containers inherently secure, and does that matter when they are part of a cluster?  PE firms keep buying up the security market players, is there an anti-trust issue there?  Is your threat intelligence service pulling...

Cyber news and Zero Trust insights for 7/27/2022 28.07.2022

Can I find privacy violations with Shodan ?  What companies are using hackable unpatched scada systems that are misconfigured?  Can we find osint on a company that has government contracts but is not secure ?  Why is phishing training still a multi-billion dollar business when a variety of reports indicate that the numbers for that "defense" don't justify that expense?  Is the government really as...

Applying Zero Trust to Cloud Workloads and Kubernetes. 18.07.2022

More ideas and thoughts around applying Zero Trust to cloud workloads and kubernetes.   How should we think about the inherent vulnerabilities in these application development environments?  How can you secure something that only exists for minutes at a time?  Can you use open source solutions to approach the problems in this space?  Do developers really need to be security engineers, and should s...

Cyber news and Zero Trust insights for 7/6/2022 07.07.2022

Marriott got hacked again, say what?  Does it mean anything?  What about their fines, didn't that teach them something?  Can I find vulnerable government assets that are misconfigured and make 30 grand in bug bounties in half an hour?  What about cloud resources that the DoD uses?  A billion records are stolen in China, what's up with that?  Those questions and more on this episode!

What's up with the WAF market? 05.07.2022

What's up with the WAF market?  Talking about how we should and shouldn't use a WAF with an expert.  Is the WAF the best way to address the problems we face?  Where is this market going?  What about the evolution of the WAF and it's place in history?  And some hard questions with data to challenge why we might need to move to a new approach.

Escucha el podcast DrZeroTrust en Replaio

Radio y podcasts en una sola app - gratis y sin registro. Instálala hoy y no te pierdas el estreno

Descárgala en Google Play

Replaio no es editor de podcasts; los nombres de los programas, las portadas y el audio pertenecen a sus autores y se distribuyen a través de canales RSS públicos