The Southern Fried Security Podcast
Join Andy Willingham, Martin Fisher,Steve Ragan, Yvette Johnson, and Joseph Sokoly as they discuss information security, news, and interview interesting people. Get in the discussion at www.southernfriedsecurity.com.

Martin, Martin, and Rich close out 2011 with huge thank you's to our listeners and with some exciting things coming up in 2012.

Thanks so much to all of you who help make this podcast so much fun!

Direct download: Souther_Fried_Network_Security_Christmas_Special.mp3
Category:podcasts -- posted at: 7:20pm EST

The guys are all together to talk about the Upbeat and Downbeat infosec stories of 2011 as well as provide prognostications for what is to come in 2012.

Oh - and we create some instant memes featuring Wilfred Brimley and the crazy guy from Ancient Aliens.

See www.southernfriedsecurity.com for full show notes and links!

Direct download: SFS_Podcast_-_Episode_66.mp3
Category:podcasts -- posted at: 8:54pm EST

Not the normal episode...  This time we feature a great interview with Bob Rudis (@hrbrmstr) where we discuss information security and risk analysis....oh, and why French-Vietnamese fusion cuisine might be a good business investment..

Direct download: SFS_Podcast_-_Episode_65.mp3
Category:podcasts -- posted at: 7:59pm EST

Andy, Steve, and Joseph enjoy a week of recording with Martin around...but that'll come back to bite'em.

Direct download: SFS_Podcast_-_Episode_64.mp3
Category:podcasts -- posted at: 8:31pm EST

Episode 63 - We Welcome Our Alien Overlords

Well, it was too good to be true, we didn't have the whole crew

together, but Martin, Andy, and Joseph hit a couple of topics tonight

anyway:

First was the continuing story of the virus that has hit the U.S.

drone fleet. We also posit the theory that the virus was put there by

aliens. Just saying.

http://arstechnica.com/business/news/2011/10/exclusive-computer-virus-hits-drone-fleet.ars

Then, two articles that we kind of rolled together, discussing first

the role of compliance in a company's outside contractors:

http://www.darkreading.com/compliance/167901112/security/news/231900432/compliance-outside-corporate-walls.html

Then we discussed the article from George Hulme and Eric Cowperthwaite

talking about budget and the role of the CSO.

http://www.csoonline.com/article/691048/hey-csos-suck-it-up-and-accept-budget-cuts

And don't forget, BSidesDFW and BSidesATL are coming up quick! If

you're in the area of either, don't forget to sign up!

Direct download: SFS_Podcast_-_Episode_63.mp3
Category:podcasts -- posted at: 9:25pm EST

Episode 62 - Leaders & Experts

This week, for two weeks in a row, the whole gang is back. We hit two

articles that provoked a lot of thought amongst us, so without further

ado:

Security 101: Security in 140 Characters or Less

http://isc.sans.edu/diary.html?storyid=11725&rss

Are you an IT security leader - really?

http://www.networkworld.com/news/2011/100311-are-you-an-it-security-251503.htm

Join us next week, as we continue to put right what once went wrong,

and hope each time that our next leap will be the leap home.

Direct download: SFS_Podcast_-_Episode_62.mp3
Category:podcasts -- posted at: 9:08pm EST

All four of the boys are together after an unplanned hiatus where Andy was on vacation, Steve went on Covert Ops to Romania, Joseph had to get a restraining order for those pesky girls, and Martin had to deal with the magic smoke leaving most of his podcasting gear.

The boys talk about whether SIEM is dead or not (hint: it doesn't want to get on the cart!) and about DigiNotar.

See y'all next episode!

Direct download: SFS_Podcast_-_Episode_61.mp3
Category:podcasts -- posted at: 9:13pm EST

This evening, it was just Martin and Joseph covering some of the big
news of the past week: Diginotar and Sony.

Signal to Noise

Diginotar, a Certificate Authority from Holland was breached over this
past week, and the fallout just seems to keep growing:

http://www.thetechherald.com/article.php/201136/7580/DigiNotar-security-incident-goes-from-bad-to-worse?utm_source=twitterfeed&utm_medium=twitter
http://www.f-secure.com/weblog/archives/00002231.html

Back in the spotlight again is Sony, but for good (we hope) reasons
this time, as they've announced their new CISO:
http://www.1up.com/news/sony-hires-dhs-official-chief-information-security-officer

Also, as we said on the podcast, for people with a high signal to
noise ratio on Twitter, try starting with these folks.

@CSOonline @mikkohypponen @uscert_gov @HDMoore @rwestervelt @WeldPond
@riskybusiness

Direct download: SFS_Podcast_-_Episode_60.mp3
Category:podcasts -- posted at: 8:35pm EST

The full crew is here tonight as we discuss a little news and have an interesting talk with Josh Corman about his recent talk at DefCon.  Full show notes can be found at http://www.southernfriedsecurity.com.

Direct download: SFS_Podcast_-_Episode_59.mp3
Category:podcasts -- posted at: 9:12pm EST

Martin, Andy, and the Web Lackey get together to talk briefly about BlackHat/DefCon/BsidesLV and the "big news" put out by Mcafee on "Shady RAT".

We also share a super interview done with Andy Ellis (@csoandy) on building teams and the hiring process.

Direct download: SFS_Podcast_-_Episode_58.mp3
Category:podcasts -- posted at: 7:32pm EST