Tenable Network Security Podcast - Episode 7
Welcome to the Tenable Network Security Podcast - Episode 7
Announcements
- New blog post going up today on the experiences at Cyberdawn, a cyber exercise that puts hackers against defenders in a realistic environment.
- Attention Security Center customers! A new version of Security Center, 3.4.5, has been released and is available for download in the customer support portal (Security Center customers can find the release notes the discussion portal). It includes such improvements as web application scanning support.
- Paul Asadoorian was interviewed on Securabit Episode 40 and discusses all things Nessus and some of the features in our enterprise products such as Security Center and the Passive Vulnerability Scanner (PVS)
- Paul Asadoorian spoke at the Louisville Infosec conference on web application security on October 7, 2009
- As always be sure to check out our blog at http://blog.tenablesecurity.com
Interview: John Bos - Cybrex, LLC
Stories
- Critical Flaw In Adobe Reader (0Day) - Adobe continues to present exploitable vulnerabilities on the client.
- The Importance Of Vulnerability Management - This article references a whitepaper from Dark Reading Room on vulnerability management. It should be clear that Tenable's Nessus vulnerability scanner contains more functionality than remotely assessing vulnerabilities and "exploiting" them. You can also use Nessus to perform patch and configuration audits, as outlined in the blog post "Top 3 Things You Should Know About Nessus"
- Lessons Learned: Vulnerability and Expectations Management - This is a great story, okay maybe not great if you are using a certain Anti-Virus vendors products, on how Nessus helped someone determine that patched systems were indeed still vulnerable.
- Updated FDCC Policies Available - If you are using Nessus, or working to ensure FDCC compliance in your organization, please note there are new policies available based on recent changes to the FDCC standards.
Tenable Events
- Oct 15 - Ron Gula will be participating at the 2009 San Francisco CISO Executive Summit
- October 26-27 - Tenable will be at the Techno Forensics conference in githersburg, MD
- October 26-30 - 5th Annual IT Security Automation Conference in Baltimore, MD
- November 6-7 Dojocon
Related Articles
Tenable Network Security Podcast Episode 198 - "PCI Discussion Featuring Jeffrey Man"
February 13, 2014<p></p>
Cybersecurity Snapshot: Apply Zero Trust to Critical Infrastructure’s OT/ICS, CSA Advises, as Five Eyes Spotlight Tech Startups’ Security
November 1, 2024Should critical infrastructure orgs boost OT/ICS systems’ security with zero trust? Absolutely, the CSA says. Meanwhile, the Five Eyes countries offer cyber advice to tech startups. Plus, a survey finds “shadow AI” weakening data governance. And get the latest on MFA methods, CISO trends and Uncle Sam’s AI strategy.
FY 2024 State and Local Cybersecurity Grant Program Adds CISA KEV as a Performance Measure
October 31, 2024The CISA Known Exploited Vulnerabilities (KEV) catalog and enhanced logging guidelines are among the new measurement tools added for the 2024 State and Local Cybersecurity Grant Program.
Cybersecurity Snapshot: New Guides Offer Best Practices for Preventing Shadow AI and for Deploying Secure Software Updates
October 25, 2024Looking for help with shadow AI? Want to boost your software updates’ safety? New publications offer valuable tips. Plus, learn why GenAI and data security have become top drivers of cyber strategies. And get the latest on the top “no-nos” for software security; the EU’s new cyber law; and CISOs’ communications with boards.
- Podcast