Kenna Security

2020's global Covid-19 pandemic has yet again thrust the concept of Zero Trust architectures into the security mainstream. Researcher, Builder, Hacker, Traveler, and Kenna's head of Security and Compliance, Jerry Gamblin discusses Zero Trust and the realities of the work required to truly adopt the architecture, probably bursting a few bubbles along the way.

Building Zero Trust is Hard

We get a tour of CVE.ICU, a new open-source vulnerability analysis and graphing tool created by Jerry Gamblin.

We get a tour of CVE.ICU, a new open-source vulnerability analysis and graphing tool created by Jerry Gamblin.


Vulnerability Analysis and Visualization Using CVE(dot)ICU

CVE(dot)ICU Walkthrough 

We discuss why the promise of automating cybersecurity has yet to be fully realized.

We discuss why the promise of automating cybersecurity has yet to be fully realized.


Why Hasn't Cybersecurity Been Automated?

CVE data is often misinterpreted. Jerry Gamblin discusses why that is and what to look for to get the most out of CVE data.

CVE data is often misinterpreted. Jerry Gamblin discusses why that is and what to look for to get the most out of CVE data.


What To Look For In CVEs

We hop on the line with the Cyentia Institute to discuss our latest joint research, Prioritization to Prediction, Volume 8:&nbsp;Measuring&nbsp;and Minimizing Exploitability. The new report reveals that exploitability for an organization can, in fact, be measured&nbsp;and reveals the best strategies to minimize it.

We hop on the line with the Cyentia Institute to discuss our latest joint research, Prioritization to Prediction, Volume 8: Measuring and Minimizing Exploitability. The new report reveals that exploitability for an organization can, in fact, be measured and reveals the best strategies to minimize it.


Measuring and Minimizing Exploitability w/ Cyentia Institute

Our new research report reveals that exploitability for an organization can, in fact, be measured and reveals the best strategies to minimize it.


We catch up on the latest developments of the Exploit Prediction Scoring System aka EPSS with co-creators Sasha Romanosky and Jay Jacobs.


Exploit Prediction Scoring System - Now With Live Data

Exploit Prediction Scoring System

We tackle a hotly contested debate as old as cybersecurity itself: does releasing exploit code do more harm than good?

Establishing Defender Advantage w/ Cyentia Institute

The Team

Research

Cybersecurity shouldn’t be a black box. Security Science aims to demystify cybersecurity with education combined with a dose of entertainment. We will tap a mix of experts to tackle the gamut of security topics - from the (mis)use of AI to deep analysis of specific vulnerabilities - grounding out each episode with measurable outcomes or joking around when there is a lack thereof. New episodes every other Wednesday.

Building Zero Trust is Hard

DESCRIPTION

Today's Host

Dan Mellinger

Recent Episodes

Building Zero Trust is Hard

DESCRIPTION

Today's Host

Dan Mellinger

Related Resources

Recent Episodes

Vulnerability Analysis and Visualization Using CVE(dot)ICU

Why Hasn't Cybersecurity Been Automated?

What To Look For In CVEs

Measuring and Minimizing Exploitability w/ Cyentia Institute

Exploit Prediction Scoring System - Now With Live Data

Establishing Defender Advantage w/ Cyentia Institute