[BreachExchange] Social Engineering and Security Rants – The Right Security

Destry Winant destry at riskbasedsecurity.com
Wed Mar 10 10:28:25 EST 2021


https://www.riskbasedsecurity.com/2021/03/10/social-engineering-and-security-rants-the-right-security/

Jayson Street, VP of Infosec at SphereNY, joins Jake Kouns, CEO and
CISO at Risk Based Security to talk about COVID’s effect on social
engineering, security conferences, the security industry and mental
health.

Jayson is the author of “Dissecting the hack: The F0rb1dd3n Network”
and is the creator of the website, Dissecting the Hack. He has spoken
at DEFCON, DerbyCon, UCON and at numerous other conferences and
colleges on a variety of Information Security subjects.

The security industry has undergone some radical changes due to the
pandemic with conferences being put on the side line and disrupting
workflows. But COVID-19 has also had a serious impact on how threat
actors adapt their social engineering practices. What new methods are
they employing and how can organizations better prepare themselves?

Show Notes

0:00 – Speaker introductions
3:48 – Definition of social engineering
5:40 – Social engineering and pentesting
7:40 – Impact of COVID on social engineering practices
12:15 – Jayson’s proudest onsite assessment
17:55 – What’s unsettled about conducting onsite assessment
23:26 – Tips on physical security for companies getting back to the office
25:50 – Today’s perspective on Jayson’s RVASec 2014 talk “The Hacker
in the Funhouse Mirror”
29:20 – A look ahead at Jayson’s 2021 & 2022 RVASec talks
32:15 – Handling life without conferences
35:14 – Value of virtual security conferences
38:28 – Cool new security tools

FURTHER READING

Coded season 3, episode 3 – “Tomorrow Unlocked”
RVASec 2014 – Jayson E. Street – “The Hacker in the Funhouse Mirror”
Dissecting the Hack

The Right Security

This is the latest in our video series The Right Security, in which we
talk with leaders and veterans in the security industry, tackling the
biggest issues impacting organizations today.

Check out The Right Security series on YouTube, and subscribe to the
Risk Based Security channel to see new episodes in your feed.


More information about the BreachExchange mailing list