Breakpoint Security Podcast
Breakpoint-'Exploring the depths of Defensive Security'. The defensive side of Security is a world in itself with teams achieving amazing feats that involve excellent engineering practices and smart optimisation for scale. This is not talked about enough in the industry. Join me in the br3akp0int podcast as we reflect on the methods and approaches these smart teams use to solve practical challenges in information security and innovate their way into the future. Who is this meant for? : This podcast is for anyone in InfoSec willing to know more about advances in security techniques. This includes security researchers or professionals, product owners, compliance or cloud, AI/ML, threat intel, SecOps automation, Security Leaders, development teams, pentesters and security practitioners. A bit about me: I am a technical security enthusiast and have been dabbling my hands at both offensive and defensive security. I am passionate about growing security communities and have spoken and trained at various security conferences.
Breakpoint Security Podcast
Proactive Threat Prevention with Threat Intelligence | Avkash Kathiriya | Full Ep.
TOPIC: Proactive Threat Prevention with Threat Intelligence
In this episode, we discuss the challenges of Threat Intelligence in the modern Threat landscape and how security teams can conduct Threat Intelligence to Proactively Stop Advanced Attacks.
Guest: Avkash Kathiriya, Sr. VP - Research and Innovation at Cyware Labs
Avkash is the VP of Research at a US-based Cyber security product startup. Avkash is an astute cybersecurity professional with more than 13 years of experience in core security technology domains including Cyber Defense, Security Orchestration and Automation, Cyber Resiliency, Threat Hunting, and Threat Intelligence. Apart from leading the research and innovation at Cyware, Avkash is also a globally well-known speaker at various security conferences in India and abroad. He is also a visiting faculty member at IIIT, Sri City, and a Cyber Threat Intelligence Committee member at OASIS, a global non-profit consortium that works on the development, convergence, and adoption of open standards for cybersecurity.
Glossary
We might be frequently using some common terminologies in our conversation, the way they're used in the industry, so those new to this can refer to the quick glossary given below before you start
- CTI: Cyber Threat Intel
- TTPs: tactics, techniques, and procedures
- APT: advanced persistent threats- in which an attacker gains access and stays without being detected for long time.
- SIEM: Security Info Event Management
- SOC: Security Operations Center
- IoC: Indicators of Compromise
- IoA: Indicators of Attack
Recommended reading/viewing, Paper(in this topic) for practitioners
- https://github.com/hslatman/awesome-threat-intelligence
- https://oasis-open.github.io/cti-documentation/stix/intro.html
- https://cyware.com/educational-guides/cyber-threat-intelligence
- https://cyware.com/blog/4-steps-to-expand-threat-intelligence-sharing-in-2023-f786
- https://www.youtube.com/watch?v=I9pjBrN1dUA
I would love to hear your suggestions and feedbacks, please DM me. If you liked this episode, please share with others in the community. It always means a lot!
If you’re interested in a security challenge that you’re facing or would like to hear from a specific speaker/team, let me know. Buzz me on Twitter or LinkedIn; checkout my handles below:
- Twitter: @NeeluTripathy
- LinkedIn: neelutripathy
