31 episodes

In this bi-weekly podcast, Bob & Jay delve into the dark art of security data science and talk with security practitioners who are pioneering the data-driven security movement. They cover everything from introductory analysis & visualization to cutting edge topics in security data science.

Data Driven Security Jay Jacobs & Bob Rudis

    • Technology

In this bi-weekly podcast, Bob & Jay delve into the dark art of security data science and talk with security practitioners who are pioneering the data-driven security movement. They cover everything from introductory analysis & visualization to cutting edge topics in security data science.

    Data Driven Security - Episode 30

    Data Driven Security - Episode 30

    Episode 30

    In this episode, Jay and Bob talk about the 2016 Verizon Data Breach Investigations Report (DBIR). But rather than talk about the insights and data analysis they focus in on the data visualizations. They are joined by Lane Harrison from Worcester Polytechnic Institute (WPI) and Ana Antanasoff and Gabrial Bassett from Verizon's Security Research Team.

    Verizon DBIR: http://www.verizonenterprise.com/verizon-insights-lab/dbir/2016/

    • 58 min
    Data Driven Security - Episode 29

    Data Driven Security - Episode 29

    Episode 29

    In this episode, Jay and Bob talk about power laws and their application in cyber security. First, they talk with Marshall Kuypers, a PhD candidate in Management Science and Engineering at Stanford University and discuss power laws in general. Second, they sit down with Michael Roytman, Data Scientist and Kenna Security to talk about power laws in cyber security.

    Power laws: https://en.wikipedia.org/wiki/Power_law
    Probability Distributions: https://en.wikipedia.org/wiki/Probability_distribution

    • 45 min
    Data Driven Security - Episode 28

    Data Driven Security - Episode 28

    Episode 28

    In this episode, Jay sat down with Doug Hubbard and Richard Seiersen to talk about their upcoming book "How to Measure Anything in Cybersecurity Risk". Bob talks about the rOpenSci unconference and the two talk about 2 recent publications.

    rOpenSci: https://ropensci.org/
    rNOAA: https://github.com/ropensci/rnoaa
    When-ish is my Bus (pdf): http://faculty.washington.edu/jhullman/busUncertaintyVis.pdf
    Dell Secureworks Underground Hacker Marketplace Report: https://www.secureworks.com/resources/rp-2016-underground-hacker-marketplace-report
    How to Measure Anything in Cybersecurity Risk: http://www.wiley.com/WileyCDA/WileyTitle/productCd-1119085292.html

    • 56 min
    Data Driven Security - Episode 27

    Data Driven Security - Episode 27

    Episode 27

    In this post-RSA conference episode, Jay participated with StoryCorps along with Wade Baker and the two reflected on their time working together on the Verizon Data Breach Investigations Report.

    https://storycorps.org/

    • 34 min
    Data Driven Security - Episode 26

    Data Driven Security - Episode 26

    Episode 26

    In this episode, Bob sits down with co-workers on the data science team at Rapid 7. They explore the future of security data science, Heisenberg and Project Sonar.

    Keep on top of Heisenberg developments at http://community.rapid7.com/. Find out more about Project Sonar at http://sonar.labs.rapid7.com/ and http://scans.io/. Get tools to work with both at http://github.com/rapid7.

    • 46 min
    Data Driven Security - Episode 25

    Data Driven Security - Episode 25

    Episode 25

    In this episode, Bob & Jay talk amongst themselves. First they cover some recent work from Jay looking at Peer-to-Peer traffic and then they transition into conferences in 2016 with some element of being Data-Driven.

    FloCon 2016 (you just missed it!)
    January 9–12, 2017 in San Diego, CA
    http://www.cert.org/flocon/

    ShmooCon 2016
    http://shmoocon.org/
    January 15-17, 2016 in Washington, D.C.

    2016 Cyber Risk Insights Conference
    http://www.advisenltd.com/events/conferences/09/02/2016-cyber-risk-insights-conference-london/
    February 9, 2016 in London

    Network and Distributed System Security (NDSS) Symposium
    February 21-24, 2016 in San Diego, California

    RSA Conference 2016
    http://www.rsaconference.com/events/us16
    February 29 - March 4, 2016 in San Francisco, CA

    1st IEEE European Sumposium on Security & Privacy
    http://www.ieee-security.org/TC/EuroSP2016/
    March 21-24, 2016 in Saarbrücken, GERMANY

    37th IEEE Symposium on Security & Privacy
    http://www.ieee-security.org/TC/EuroSP2016/
    May 23-25, 2016 in San Jose, CA

    11th Annual Cyber and Information Security Research (CISR) Conference
    http://www.cisr.ornl.gov/cisrc16/
    April 5-7, 2016 in Oak Ridge, TN

    15th Annual Workshop on the Economics of Information Security (WEIS)
    http://weis2016.econinfosec.org/
    June 13-14, 2016 in Berkeley, CA USA

    International Conference On Cyber Situational Awareness, Data Analytics And Assessment (CyberSA 2016)
    http://c-mric.org/csa2016
    June 13-14, 2016 in London

    25th USENIX Security Symposium
    https://www.usenix.org/conference/usenixsecurity16
    August 10–12, 2016, in Austin, TX.

    SIRAcon
    http://societyinforisk.org/
    October-ish 2016 (TBA)

    The Fifth International Conference on Informatics and Applications (ICIA2016)
    http://sdiwc.net/conferences/fifth-international-conference-informatics-applications/
    November 14-16, 2016 in Takamatsu, Japan

    2015 Annual Computer Security Applications Conference
    http://www.acsac.org/2015/
    December 5-9, 2016 in Los Angeles, CA


    Data-Driven Security Blog: http://dds.ec/blog

    Data-Driven Security (The book that started it all): http://dds.ec/amzn

    • 29 min

Top Podcasts In Technology

Listeners Also Subscribed To