Check out our newest course in our academy: Practical TLS!
In episode 66 of the We Hack Purple Podcast Host Tanya Janca sits down with one of her colleagues from IANs Research, Wolfgang Goerlich! We talked about his work and AMAZING team at Cisco (Hi Wendy and Dave!), how they were originally part of Duo Security, and that they missed their chance for a fun rebrand of Duo + Cisco = Disco! Besides all the silly jokes, we talked about what security looks like beyond just vulnerabilities and trying to keep the bad guys out. We zeroed in on legitimate users that misuse systems, and dug into how Threat modelling and diversity could be used to prevent situations such as the infamous apple AirTags misuse. We talked about including privacy as part of threat modelling, Cara Bloom’s Mitre Privacy Framework, ‘least data collection’, as well as using nudge economics to promote positive security and privacy culture change. This conversation was AWESOME.
Plus, Wolfgang has a podcast (Securing Sexuality), a conference (Detroit, 2023), and a book coming out! If you ‘colour outside the lines’, you definitely want to check out everything Wolf does! Subscribe his newsletter, we know we did!
Wolf’s Bio:
J. Wolfgang Goerlich is an Advisory CISO for Cisco Secure. Prior to this role, he led IT and IT security in the healthcare and financial services verticals. Wolfgang has held VP positions at several consulting firms, leading security advisory and assessment practices. He is an active part of the security community. Wolfgang regularly advises on the topics of security architecture and design, identity and access management, zero trust, and resilience.
Social media:
https://mastodon.social/@jwgoerlich@infosec.exchange
https://twitter.com/jwgoerlich
https://www.linkedin.com/in/jwgoerlich/
Websites:
Personal – https://jwgoerlich.com/
Conference and podcast – https://www.securingsexuality.com/
Very special thanks to our sponsor: The Diana Initiative!
The Diana Initiative Is: A diversity-driven conference committed to helping all underrepresented people in Information Security. This year the theme is “Lead the Change.”
The Diana Initiative is seeking sponsors for their annual event happening Monday August 7, 2023 in Las Vegas – https://www.dianainitiative.org/sponsor/ for more information
The Diana Initiative Call For Presentations opens on March 1, if you have a topic you want to share submit at tdi. https://tdi.mobi/CFP
Join We Hack Purple!
Join us in the We Hack Purple Community: A fun and safe place to learn and share your knowledge with other professionals in the field. Check out the courses in our online academy! Subscribe to our newsletter for even more free knowledge! You can find us, in audio format, on Podcast Addict, Apple Podcast, Overcast, Pod, Amazon Music, Spotify, and more!
Shownotes
23/02/2023 12:00 am
