Colorado = Security Podcast

In this episode: Randall Frietzsche, new CISO at Denver Health, is our feature guest this week. News from: Equifax, Amazon, Optiv, Webroot, Convercent, Ping Identity, SecureSet, Swimlane and more! Full show notes here: https://www.colorado-security.com/news/2017/9/5/32-911-show-notes Who's tracking Equifax's credit score? The biggest breach in history happened this week, and it likely impacted you. And: Denver's going to put up a fight to and land Amazon's home away from home, Optiv adds two big names to their board, Webroot names a new CEO, Convercent is trying to make Denver a more ethical place, Ping Identity is touring, SecureSet gives us the skinny on NICE, and Swimlane's blog is worth a read.  Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Randall Frietzsche, CISO and Privacy Officer at Denver Health, was our guest this week. Randall shared with us how he tackled getting integrated into a new company, advice for other new CISOs, where he sees the industry going, and his view on the Colorado security scene.  Local security news: Colorado = Security store! Buy things now. Equifax mega-breach Alleged Equifax hackers demand $2.6 million Bitcoin ransom — or else... The Competition to Host Amazon's Second American Headquarters Is On Optiv adds two big name board members Mike Potts Named as Webroot CEO; Dick Williams to Retire Convercent Hosts Second Annual Ethics & Compliance Event, CONVERGE17 - 10/3-5 Ping Identity Announces Identify 2017 Customer Conference Series SecureSet Blog: New NICE Framework Creates Consistency for Employers and Agencies Swimlane blog: Realizing an Information Security Risk Management Framework Job Openings: WOW! - Senior Security Engineer ProLogis - Senior Security Analyst Vertafore - Application and Product Security Manager Ping Identity - IT Systems Administrator Proofpoint - Senior Sales Engineer Tenable - Regional Sales Manager - West SecureSet - Careers Services Manager Pearson - Cloud Security Architect Security Wolfe - Cybersecurity Consultant OpusBank - Sr Information Security Program Manager Upcoming Events: This Week and Next: ISSA September Chapter Meetings (Deon Mahafee) - 9/12-13 CTA - Insights Series with Forrester Research - 9/13 ISSA COS - September Chapter Meetings - 9/13-14 ISSA - Women in Security SIG - 9/14 SecureSet - Career Conversations: Hilary Constable on Utilizing Your Network- 9/14 CCSK Training - 9/16 ISSA COS - Mini Seminar - 9/16 SANS/LogRhythm - SEC511: Continuous Monitoring and Security Operations - 9/18-23 OWASP - September Chapter meeting - 9/20 Corus360 Security Symposium - 9/21 ISC(2) - Denver Meeting - John R. Nye, CynergisTek, Inc. - 9/21 DenverSec - North Meetup - 9/21 Cybertech Girls - 9/23 Other Notable Upcoming Events: SecureWorld Denver - 11/1-2 NCC - Governor's Cyber Symposium - 11/1-3 CTA - APEX Awards - 11/8 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: Brian Martin (aka Jericho) is our feature guest this week. News from: NCC, Western Union, Galvanize, InteliSecure, root9B, Ping Identity, Convercent, DigitalGlobe, Vertafore, SecureSet and more! Full details: https://www.colorado-security.com/news/2017/8/27/31-94-show-notes Exposed sensitive info on every player in the league? That's 30 second in the box Summer must really be over, because news came fast and furious this week. Ed Rios is out at NCC, Western Union's moving their HQ, Galvanize is laying off employees, Boulder schools gets scammed and beefs up security, a security company makes Denver's Fast 50 list, news in the root9B soap opera, Ping Identity is the king of Open Banking?, Convercent has a good quarter, and a whole lot more news.  Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Brian Martin (nom de plume - Jericho) is one of the most famous and infamous security community members in Colorado. In this interview Brian tells us his background (hint: it involved some illegal stuff), his hobbies (hint: they have nothing to do with computers) and where he sees the industry going. You can check out my previous interview with Jericho here. Here is the Techdirt link he mentioned, for those who want to support them. And click here if you want to support the animal rescue he tells us about. Local security news: Colorado = Security store! Buy things now. How a Colorado company’s satellite images are helping Hurricane Harvey relief and recovery Major League Lacrosse Exposes Personal Information Of Every Player Panasonic Automotive Systems working on smart highway with CDOT Western Union's headquarters moving Galvanize, Denver-based tech educator, begins layoffs Boulder schools add safeguards after scammer steals $850,000 Denver Business Journal's 2017 Fast 50 finalists revealed - InteliSecure Included root9B asset sale delayed until 9/28 Ping is king for Open Banking’s UK framework Convercent Posts Record Results Second Quarter 2017 Ed Rios leaving as CEO of NCC WIS meeting in September (tell all your gal pals) Upcoming CCSK training Job Openings: Cognizant - EndPoint Security Architect DigitalGlobe - Information System Security Site Reliability Engineer WellDyne - Director Information Technology Security / CISO Vertafore - Application and Product Security Manager Accenture - Cloud Security Senior Manager InteliSecure - Cyber Security Intelligence Expert Bureau of Reclamation - Information Systems Security Officer (ISSO) SecureWorks - Security Sales Engineer (SLED) - Denver - Cybersecurity Services - SecureWorks Ping Identity - IT Systems Administrator Upcoming Events: This Week and Next: DenverSec - South Meetup - 9/4 ISSA September Chapter Meetings (Deon Mahafee) - 9/12-13 CTA - Insights Series with Forrester Research - 9/13 ISSA - Women in Security SIG - 9/14 SecureSet - Career Conversations: Hilary Constable on Utilizing Your Network- 9/14 CCSK Training - 9/16 Other Notable Upcoming Events: SecureWorld Denver - 11/1-2 NCC - Governor's Cyber Symposium - 11/1-3 CTA - APEX Awards - 11/8 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: Chris Martinez, CISO of DigitalGlobe, is our featured guest this week. News from: Sling TV, EasyMile, root9B, Webroot, InteliSecure, CableLabs, Red Canary, Ping Identity and more. Full show notes: https://www.colorado-security.com/news/2017/8/24/30-828-show-notes A french robot shuttle company's headquarters is coming to Denver? Oui oui After last week's fireworks, we are back to a bit more normal news week. More details about root9B's upcoming asset auction, Webroot keeps growing, InteliSecure gets a pentesting certification, thought leadership by CableLabs, Red Canary and Ping Identity, and a lot more. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Chris Martinez, CISO of DigitalGlobe, sat down with Alex this week to discuss some exciting happenings there. DigitalGlobe is in the process of moving their entire operations into the cloud which includes over 70 petabytes of mapping data. Chris also discusses his thoughts on hiring and retention along with his career path.  Local security news: Colorado = Security store! Buy things now. Sling TV CEO left for Pandora French autonomous shuttle maker (EasyMile) names Denver its new U.S. headquarters Identity thieves hijack cellphone accounts to go after virtual currency root9B is in trouble; faces auction of its assets Webroot announced significant growth in fiscal year 2017 InteliSecure earns CREST certification CableLabs paper - A Vision for Secure IoT Red Canary blog: Detecting Ransomware: Behind the Scenes of an Attack Ping blog: What is Web Access Management (WAM)? CSA Meeting Survey Cybertech Girls 2017 Job Openings: DigitalGlobe - Information System Security Engineer DigitalGlobe - Information System Security Site Reliability Engineer TeleTech - CISO KPMG - Manager, Cyber Security Services Deloitte - Cyber Risk & Compliance Manager Coalfire - Client Engagement Director - Cloud and Technology Services OppenheimerFunds - Cyber Security Manager Identity and Access First Western - Risk Analyst LogRhythm - Senior Security Analyst, GRC Lockheed Martin - Penetration tester (mid career) MacAulay-Brown, Inc. - Intercept Coordinator Crocs - IT Network Security Analyst (mail to: nroyter@ascentsg.com) Upcoming Events: This Week and Next: CTA - Sip and Connect - 8/29 SecureSet - Hacking 101: Girl Develop It! Workshop - 8/30 Colorado Springs ISSA - 7th Annual Cyber Security Training & Technology Forum - 8/30 - 8/31 NCC - First Responder Cyber Exercise - 8/31 DenverSec - South Meetup - 9/4 Other Notable Upcoming Events: SecureWorld Denver - 11/1-2 NCC - Governor's Cyber Symposium - 11/1-3 CTA - APEX Awards - 11/8 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: Patrick Walsh, CEO of IronCore Labs is our feature guest. Plus bad news from root9B and DirectDefense, and good news from InteliSecure, Optiv, Target, Oracle, Denver Startup Week, and WebRoot. Full show notes: https://www.colorado-security.com/news/2017/8/18/29-821-show-notes Will root9B be around for next quarter's Cybersecurity 500 list? "Welcome to the world’s largest pay-for-play data exfiltration botnet." That's what Colorado's own DirectDefense said about Carbon Black this week. And root9B, the public security company in Colorado Springs that's topped the Cybersecurity 500 list for the last 6 quarters, is in dire straits. Creditors are planning to auction their assets on August 31st. More routine stories include: Three Colorado security companies made the Inc 5000, Target brings next-day delivery to Denver, Gail Coury and ISSA COS get recognized, there WILL be a Cybersecurity Panel at Denver Startup Week, WebRoot makes an acquisition, and a chance for you to help out students at Red Rocks Community College. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Patrick Walsh is the founder and CEO of Boulder-based IronCorp Labs. They just made it through the TechStars program and tells tales of the experience. Patrick has had a great career, and shares his learnings along the way. Local security news: Colorado = Security store! Buy things now. International oil firm BP begins hiring for new 200-person Denver office - Hiring for a security architect (click here) Target expands next-day delivery to Denver Inc 5000 - 113 Colorado companies (Including DirectDefense, InteliSecure and Optiv) root9B assets to be auctioned Colorado Based DirectDefense Incorrectly Asserts Architectural Flaw in Cb Response | Carbon Black Snowmass Village hit by $60k phishing attack Gail Coury named to ISSA Honor Roll + COS ISSA wins chapter of the year Cybersecurity founders panel at DSW Webroot acquires Oregon security firm to fix the security industry's weakest link: humans Red Rocks CyberLab looking for hardware and you can help! Job Openings: MarkWest Energy - Enterprise Security Architect Frontier Airlines - Sr Network Security Engineer Assured Information Security, Inc - Advising Computer Engineer Kaiser Permanente - Analyst Cyber Risk Defense CU Denver - Instructor in Information Systems Navigant: Senior Consultant - Information Security and Forensics, Legal Technology Solutions - Remote Locations Westech - Robotic Network Security Engineer Deloitte - Senior Data Protection Security Analyst Upcoming Events: This Week and Next: CTA - CTA 101 - 8/22 CSA - August chapter meeting - 8/23 SecureSet - Securing Your Digital Health Company - 8/23 SecureSet - Cybersecurity Hackathon - 8/25 CTA - Sip and Connect - 8/29 SecureSet - Hacking 101: Girl Develop It! Workshop - 8/30 Colorado Springs ISSA - 7th Annual Cyber Security Training & Technology Forum - 8/30 - 8/31 NCC - First Responder Cyber Exercise - 8/31 Other Notable Upcoming Events: SecureWorld Denver - 11/1-2 NCC - Governor's Cyber Symposium - 11/1-3 CTA - APEX Awards - 11/8 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: David Willson, lawyer from Titan Info Security Group joined us. Plus news from Galvanize, Red Lion, Ping Identity, Coalfire, InteliSecure, and more. Full details available here: https://www.colorado-security.com/news/2017/8/13/28-814-show-notes "Alexa, teach me to code" Denver-based Galvanize is going to be taking the lead on teaching developers how to program for Alexa. Colorado is the most internet business friendly state in the country. Red Lion is moving their HQ to town. What exactly is an IDaaS? SOC2 changes are coming. And 10 things to avoid in your DLP rollout.  Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: David Willson, practicing lawyer at Titan Info Security Group, sat down with Robb this week to discuss what it's like being a lawyer doing security work, his service to our country, the legal landscape around security, and hacking back. You can reach David at: david@titaninfosecuritygroup.com.  Local security news: Colorado = Security store! Buy things now. Colorado #1 easiest for internet businesses Galvanize teaming with Amazon to train developers on Alexa National hotel chain (Red Lion) moving its corporate headquarters to Denver Colorado's a cybersecurity center Ping Blog: What is Identity as a Service (IDaaS)? Coalfire Blog: SOC2 Changes are Coming (and you can have a voice) InteliSecure Blog: Top 10 DLP Pitfalls Job Openings: Check out all the local security company job openings! Dish Network - Identity Management Admin Charter Communications - Sr. Manager, Security Operations Center Charter Communications Security Job Fair Upcoming Events: This Week and Next: ISSA - Financial Services SIG - 8/16 SecureSet - Cybersecurity Career Trends - Shawn Owen, CEO of SALT Lending - 8/17 NCC - Cybersecurity oversight training - 8/17 DenverSec - North Meetup - 8/17 ISSA COS - Mini Seminar - 8/19 CTA - CTA 101 - 8/22 CSA - August chapter meeting - 8/23 SecureSet - Securing Your Digital Health Company - 8/23 SecureSet - Cybersecurity Hackathon - 8/25 Other Notable Upcoming Events: 7th Annual Cyber Security Training & Technology Forum - 8/30-31 SecureWorld Denver - 11/1-2 NCC - Governor's Cyber Symposium - 11/1-3 CTA - APEX Awards - 11/8 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: Chris Nickerson, founder of Lares and BSides, is our feature guest. Plus news from Telsa, SparkFun, eFolder, Fortrust, Optiv, CyberGRX, Red Canary, and a lot more.  Yes, we do know where you can buy a Colorado = Security thong The founder of SparkFun has created a robot that's got your back. It's not a very cute robot unfortunately. Also this week, the Colorado = Security podcast is selling out (we hope), we learn that DIA booked an IR training, Telsa is charging up Littleton, eFolder is folding into a competitor, Fortrust is swallowed by a Mountain, Optiv sees its way to a Gartner top 10, Red Canary sings a dirge for perimeter security, and a lot more bad puns. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Chris Nickerson, founder of Lares and BSides, is our feature guest this week. Alex sat with Chris to learn about Chris's background, hear some of the stories of the early security community in Colorado, and what it's like building a conference and a security consulting company.  Local security news: Colorado = Security store! Buy things now. Denver International Airport held large-scale emergency response training Castle Rock to startups: We want you Tesla opens a showroom and service center in the heart of Littleton SparkFun founder uses robot to crack open safe live at security event Def Con eFolder merging with California company (Axcient) Fortrust being bought by Iron Mountain Optiv Security Ranked Top 10 Global Security Consulting Provider by Revenue by Gartner CyberGRX Expands Senior Leadership Team with Key Executive Appointments Red Canary Blog: Security Mistake - Focusing on the perimeter Apex Awards - CISO of the year award is up now! Job Openings: Google - Security Operations Engineer, Google Cloud (Apigee) Denovo Ventures LLC - Director of Information Security SecureWorks - Managed Security Services Consultant IHS Markit - Enterprise Risk Management, Senior Manager Trustech - Senior Network Security Engineer Cognizant - Associate Director, Corporate Security GRC Ball Aerospace, Information Security - Cyber Security Specialist (entry level) Ball Aerospace, Information Security - Cyber Security Operations Lead Welltok - Business Security Liason Ping Identity - Security Compliance / GRC Analyst & Jr Product Security Engineer Upcoming Events: This Week and Next: DenverSec - Meetup - 8/7 ISSA Denver - August Meetings - 8/8-9 SecureSet - Expert Series - Clark Hobbie, Miranda and Open Source - 8/10 SecureSet - Colorado Springs Open Hours - 8/11 ISSA - Financial Services SIG - 8/16 SecureSet - Cybersecurity Career Trends - Shawn Owen, CEO of SALT Lending - 8/17 NCC - Cybersecurity oversight training - 8/17 DenverSec - North Meetup - 8/17 Other Notable Upcoming Events: 7th Annual Cyber Security Training & Technology Forum - 8/30-31 SecureWorld Denver - 11/1-2 NCC - Governor's Cyber Symposium - 11/1-3 CTA - APEX Awards - 11/8 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: Steven Drew (CEO) and Jeremy Wittkop (CTO) from Intelisecure are this week's feature interview. News from CH2M, Coalfire, Swimlane, ProtectWise (and Ixia), Ping Identity, Intelisecure and root9B. https://www.colorado-security.com/news/2017/7/27/26-731-show-notes Alright, which of you is the CISO of the year? Only a couple of weeks left in nominations for the inaugural Apex Awards Colorado CISO of the year. We are confident that one of you lovely listeners has the perfect candidate. No more waiting, nominate them now! In addition to our feature interview with Intelisecure, we delve into the topics you need to know. Just which European city has a new direct flight from Denver? What is an Ixia, and why is ProtectWise partnering with it? How did Ping Identity win yet another award? Why am I asking so many questions? Does anyone read this stuff anyway? Free beer to the first person to tell me you read this and claim the beer. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Robb sat down with two leaders of Greenwood Village based Intelisecure - CEO Steven Drew, and CTO Jeremy Wittkop. Steven, who has only been at Intelisecure for about a year, talked about the road which lead him to leading one of Denver's biggest security companies. And Jeremy, who was an early employee, tells the story of joining when the company was tiny (and named BEW Global) and riding the growth over the years. Our conversation ranges from Critical Asset Protection, perimeter based security, and a lot more. Enjoy learning more about one of Colorado's best security companies. Local security news: DIA keeps adding international flights - New London flight is the latest Denver Startup Week 2017: Registration opens CH2M in talks to be acquired Coalfire Blog: 5 AWS certifications explained Swimlane partnered in EY's new Cybersecurity Center ProtectWise and Ixia Announce Integration Partnership Ping Identity wins 2017 CODiE award Intelisecure - Open enrollment of its 2018 critical data protection benchmark survey Apex Awards - CISO of the year award is up now! Job Openings: Coalfire - Director, Technical Services NCC -  Cybersecurity Strategic Planning Program Manager (COS) Booz Allen - Multi-Intelligence Collaboration Specialist, Junior Radware - Cloud Regional Sales Manager - Cyber Security AT&T - Cybersecurity Consultant 3 - Payment Card Industry Accenture - Federal – Cyber Hunter (Remote) ++ General Dynamics - Cybersecurity Software Development Lead Ping Identity - Security Compliance / GRC Analyst & Jr Product Security Engineer Upcoming Events: This Week and Next: CTA - Tech Tour - 7/31-8/4 CTA - Tech Tour Colorado Springs / Community Lunch & Panel - 7/31 DenverSec - Meetup - 8/7 ISSA Denver - August Meetings - 8/8-9 SecureSet - Expert Series - Clark Hobbie, Miranda and Open Source - 8/10 Other Notable Upcoming Events: 7th Annual Cyber Security Training & Technology Forum - 8/30-31 NCC - Governor's Cyber Symposium - 11/1-3 CTA - APEX Awards - 11/8 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: Coalfire's Bryce Bearchell tells the story of paying ransom to save a company. News from Ping Identity, SecureSet, Automox, Red Canary, ProtectWise and more. For full show notes: https://www.colorado-security.com/news/2017/7/21/25-724-show-notes The pizza is mediocre, but that honey? Mmmm After more than 40 years, the Beau Jo's on Colorado Blvd is closing. This leaves us wondering, are there any other places with such mediocre food that are so popular? (White Castle maybe?) This week we learned that Comcast is launching an IoT network in Denver, the City's auditors find security issues with the 311 phone system, SecureSet's Alex Kreilin is famous, Automox officially comes out of stealth, and a whole lot more. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: In early June we covered a fascinating blog post by Coalfire: The Anatomy of Paying a Ransom. The story so interested us that we reached out to contacts at Coalfire to meet the author. Bryce Bearchell is the security consultant who worked this incident and wrote the blog. In this week's interview Bryce gives us more context about his role at Coalfire, the company that was hit by this attack, how they recovered, and lessons for the rest of us, so we don't suffer the same fate. Local security news: Beau Jo's on Colorado is closing after 40+ years Comcast to launch 'internet of things' network in Denver Denver auditor finds possible security issues with city's 311 system Ping named Applied Materials supplier of the year SecureSet Accelerator's Alex Kreilin Profiled in Denver Business Journal Automox launches in Boulder Red Canary Threat Hunting resources ProtectWise Research: Winnti Evolution - Going Open Source Apex Awards - CISO of the year award is up now! Job Openings: Arrow Electronics - Principal Security Architect Amazon - Sr. Security Engineer LogRhythm - Senior Security Research Engineer job Xcel Energy - Senior Analyst, Threat Intelligence TIAA - Sr Director, IT Audit National Renewable Energy Laboratory (NREL) - Cloud Computing Site Reliability Engineer OppenheimerFunds - Security Engineer Frontier Airlines - Sr Network Security Engineer RIM Technologies - Data Security Specialist Ping Identity - Security Compliance / GRC Analyst Upcoming Events: This Week and Next: NCC - Air Force Association's CyberPatriot CyberCamp - 7/24-28 SecureSet - Capture the flag - 7/28 ISSA COS - CISSP Exam Prep - 7/29 CTA - Tech Tour - 7/31-8/4 CTA - Tech Tour Colorado Springs / Community Lunch & Panel - 7/31 Other Notable Upcoming Events: 7th Annual Cyber Security Training & Technology Forum - 8/30-31 NCC - Governor's Cyber Symposium - 11/1-3 CTA - APEX Awards - 11/8 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: Feature interview with Genevieve Southwick - aka Bana Sidhe (pronounced Banshee) - Denver's wrangler of security conferences. Also news from Palo Alto Networks, Secure64, Swimlane and Automox. Full show notes: https://www.colorado-security.com/news/2017/7/15/24-717-show-notes Girl Scouts - selling cookies, camping and... hacking computers? The weather isn't the only thing heating up in Colorado. Tons of new meetings posted this week, and a lot of great news. Funding for a Denver home automation company, a new CISO of the year award is posted, new cybersecurity rules for investment advisors and broker-dealers in Colorado, a new board member for Secure64, Swimlane win's an award, and a local company explains the CVE system. And my favorite... Palo Alto networks is working with the Girl Scouts to create cybersecurity badges. What a great world we live in. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Genevieve Southwick is one of the most colorful and fun characters in the Colorado security community. Known online as Bana Sidhe (pronounced Banshee), Gen has been responsible for helping organize Denver BSides, Las Vegas BSides, and a number of other security conferences over the last decade. In this conversation we learn how Gen's career at the Renaissance Faire turned into a security career. BSides - Proving Grounds. Denver City Sec.  Local security news: Why go into the office? Denver area embraces telecommuting Josh.ai - Denver home automation startup raises 8m Apex Awards - CISO of the year award is up now! Colorado Division of Securities Adopts Final Cybersecurity Rule Palo Alto and Girl Scout team up on security badges Cyber Security Expert Dan Massey Joins the Secure64 Executive Team Swimlane named "breakout vendor" by Forrester Automox Blog - CVE System Explained Job Openings: Gates - Director of Information Risk & Security Connect for Health Colorado - Security Analyst ProtectWise - Malware Analyst, Threat  Researcher Coalfire - Sr Security Consultant, Penetration Tester Red Canary - Security Operations Center Analyst Webroot - Advanced Malware Threat Research Engineer Ping Identity - GRC Analyst Upcoming Events: This Week and Next: OWASP - July meeting - 7/19 NCC - Cyber Center Charrette 2017 - 7/19-21 DenverSec - Meetup - 7/20 ISC2 Denver - CISSP - ISSEP Presentation - 7/20 ISSA COS - Mini Seminar - 7/22 NCC - Air Force Association's CyberPatriot CyberCamp - 7/24-28 SecureSet - Capture the flag - 7/28 ISSA COS - CISSP Exam Prep - 7/29 Other Notable Upcoming Events: 7th Annual Cyber Security Training & Technology Forum - 8/30-31 NCC - Governor's Cyber Symposium - 11/1-3 CTA - APEX Awards - 11/8 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: LogRhythm CISO James Carder is our featured interview. News from Secure64, LogRhythm, Ping Identity, Vector8 and Managed Methods. Full show notes here: https://www.colorado-security.com/news/2017/7/8/23-710-show-notes 100,000 Cosplay-ers can't be wrong We hope you've recovered from a week of cosplay, fireworks and flag waving, and you're ready to get back to the real world. The news never stops here in Colorado. Besides Comic Con, we got news that a local college placed in a national cybersecurity competition, Secure64 looks to secure DNS for major carriers, LogRhythm and Ping Identity win prizes, and blogs from Vector8 and Managed Methods. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: James Carder has had an interesting career on his way to Denver. From Air Force, to Raytheon, IBM, Mandiant, the Mayo Clinic, and finally LogRhythm here in Colorado, James has had a great career. He sat down with Alex to share with you all. Local security news: Denver Comic Con draws 115,000, packs a $10 million economic punch Colorado robotics team takes world championship, eyes next opponent Red Rocks CC wins 2nd in Community College Innovation Challenge Secure64 & Mavenir Team Up to Bring NFV-ready IMS to Carriers LogRhythm Clinches the 2017 Frost & Sullivan Asia-Pacific Enterprise Security Product Line Strategy Leadership Award Ping Identity named in 2017 KuppingerCole Leadership Compass on CIAM Managed Methods blog:  Schools Using Google Need a Lesson in Cloud Security Vector8 blog: The Five Dimensions of Hunting Robb & Alex featured on this week's Cybersecurity Interviews podcast Job Openings: Ping Identity - GRC Analyst Trust Company of America - Sr. Manager, Information Technology Policy and Governance Aimco - Information Security Analyst Reed Group - Information Security Officer Trace 3 - Identity Architect Lares Sec Consulting - Application Security Consultant RedShield Security - Cloud Security Engineer Upcoming Events: This Week and Next: CSA - July Meeting - 7/11 Denver ISSA - July Meetings - 7/11-12 COS ISSA - Chapter meetings - 7/12-13 SecureSet - Expert Series, Bryan Becker, Kroenke Sports - 7/13 Colorado Innovation and Technology Experience - 7/13-14 OWASP - July meeting - 7/19 NCC - Cyber Center Charrette 2017 - 7/19-21 DenverSec - Meetup - 7/20 Other Notable Upcoming Events: COS ISSA - CISSP Exam Prep - 7/29 7th Annual Cyber Security Training & Technology Forum - 8/30-31 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: Don Bailey of Lab Mouse Security was our featured guest. News from Boom Supersonic, TapInfluence leaving Colorado, Microsoft, ProtectWise, SecureSet, LogRhythm, Ping Identity and root9B. Full notes here: https://www.colorado-security.com/news/2017/6/30/22-73-show-notes Happy birthday 'Murica It's our nation's birthday! We hope you are grilling a hot dog, hanging at the pool in your flip flops as you listen to this episode. We kept it quick so you don't burn (on your shoulders or your grill) while you listen. Robb sat down with local security entrepreneur Don Bailey of Lab Mouse Security. Plus all kinds of great local news.  Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Don Bailey, founder and president of Lab Mouse Security, sat with Robb to talk about how he made his way from studying and playing music, to hacking phones and cars, to securing the Internet of Things. Don sheds some light on the Colorado security scene and where he sees the industry going. Find Don on Twitter. Local security news: The Denver Post tried Amazon’s Prime Now in Denver. Here’s what you need to know.  Ax throwing, Denver's latest bar game, is like darts but with axes Boom Supersonic unveils new airplane, sees aircraft orders increase sevenfold Tech firm TapInfluence moves headquarters to Silicon Valley Microsoft gives $25.8 million to expand Colorado workforce training program ProtectWise & sep2 announce channel partnership root9b tops the Cybersecurity 500 List again SecureSet adds Senator Mark Udall to its board LogRhythm Blog: Deploying Netmon freemium at home to monitor IoT Job Openings: Ping Identity - GRC Analyst SecureWorks - Senior Security Program Manager Swimlane - Technical Content Writer Vail Valley Medical Center - IT Security Analyst Amazon - Sr Security Engineer Oracle - Sr Security Analyst LogRhythm - Professional Services Consultant, Senior PS Consultant, & Manager of PS Salesforce - Manager - External Certifications, Sr. Analyst - External Certifications, Sr. Analyst - IT SOX Upcoming Events: This Week and Next: DenSec - Meetup - 7/3 CSA - July Meeting - 7/11 Denver ISSA - July Meetings - 7/11-12 COS ISSA - Chapter meetings - 7/12-13 Colorado Innovation and Technology Experience - 7/13-14 Other Notable Upcoming Events: COS ISSA - CISSP Exam Prep - 7/29 7th Annual Cyber Security Training & Technology Forum - 8/30-31 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: Brad Feld is the feature interview this week. Brad is managing partner for Foundry Group, and co-founder of Techstars. News from Amazon, ID Watchdog, Sphero, Optiv, Ping Identity, and Swimlane. https://www.colorado-security.com/news/2017/6/24/21-626-show-notes Alex will never be lonely again The summer is in full swing, though the Denver weather hasn't quite been convinced to get with the program. Tech hiring is up in Denver in 2017, a Denver identity theft company gets acquired for a big price tag, Optiv and Ping have some big announcements this week, Swimlane gives a nice tutorial on what security automation is (and why you need). Finally, a local toy maker has spun off a personal robot company; Alex will never be lonely again. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Brad Feld, co-founder at Techstars and managing partner at Foundry Group, has brought Boulder, and all of Colorado, into the Venture Capital world. Robb was lucky enough to have the opportunity to sit with Brad to discuss how he ended up in Boulder, what accomplishment Brad is most proud of, and where he sees technology (and security) going in the future.  Local security news: The Denver Post tried Amazon’s Prime Now in Denver. Here’s what you need to know.  Sphero, Boulder toy maker, spins off personal robot company Denver IT hiring expected to increase in second half of 2017 ID Watchdog, Denver based identity theft company, bought for $63m Optiv Security Announces Two New Offerings to Help Organizations Build Identity Centric Security Programs Ping Identity Extends Microsoft Azure Active Directory, Delivering Secure Access to All On-Premises Enterprise Applications Ping makes their MFA product super customizable with an SDK Swimlane Blog: What is Security Automation and Do You Need It? Randall Frietzsche CISO at Denver Health Job Openings: Optiv - Executive Director-Executive Solutions-oCISO DISH Networks - Sr. Security Engineer Premier Members Credit Union - Info Security Analyst Western Union - IT Project Manager (Information Security) BP - Security Architect West Corporation - Senior Divisional Information Security Risk Analyst Ping Identity - GRC Analyst Upcoming Events: This Week and Next: ISSA Denver WIS - 6/27 (new location - Denver Field House) Cyber Security World - 6/28-29 Evanta - 2017 CISO Executive Summit - 6/29 SecureSet - Cybersecurity Career Trends - 6/29 SecureSet - Open House at new location - 6/29 DenSec - Meetup - 7/3 Other Notable Upcoming Events: COS ISSA - CISSP Exam Prep - 7/29 7th Annual Cyber Security Training & Technology Forum - 8/30-31 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

In this episode: Alex interviews infosec lawyer Dave Navetta. News from Amazon, ViaWest, Notion, Ping Identity, ProtectWise, Webroot, LogRhythm, and Optiv. Full show notes here: https://www.colorado-security.com/news/2017/6/16/20-619-show-notes Ping is a leader (but we knew that already, right?) Need that Amazon order this afternoon? Well I have good news for you. Amazon is rolling out 2 hour deliver to Denver. Denver is the #8 tech city in the country, and our workers are crazy well-educated. It's a good week for Ping Identity, as it is recognized on Gartner's Access Management Magic Quadrant, and is rated the #1 large tech company to work for in Denver. LogRhythm also had a great week, winning gold in Gartner Peer Insights. Woman leaders at both ProtectWise and Webroot are recognized by Built in Colorado. And Optiv, Colorado's biggest security company, makes some big industry hires. Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Alex sat with Denver's own Dave Navetta, security lawyer at Norton Rose Fulbright. Dave was one of the creators of the cyber security insurance, and offers some great insight from his years in large firms, his own firm, and the insurance industry. Local security news: Denver is the #8 tech city in the US Amazon Prime Now delivers within 2 hours Colorado info tech and data-center company ViaWest sold for $1.675 billion Notion, Denver based Smart Home company, raises 10m Ping named leader in 2017 Gartner Access Management Magic Quadrant Ping is #1 Tech company and #4 overall on DBJ's best places to work, XL Women leaders at ProtectWise and Webroot recognized LogRhythm wins Gold on Gartner Peer Insights Optiv Security Hires Industry Veterans LogRhythm Blog: Reactions to Trump's Executive Order on Cybersecurity Job Openings: Ping Identity - GRC Analyst Denver Health - IS Analyst Security III Johns Manville - Cyber Security Analyst - Entry Level Alchemy Security - Multiple security operations roles Red Canary - Security Operations Center Analyst ProtectWise - DevOps engineer Swimlane - Integrated Marketing Intern LogRhythm - Sr Security Analyst Upcoming Events: This Week and Next Week: Optiv - Denver Enterprise Security Summit - 6/20 ISSA Denver - Healthcare SIG - 6/22 CTA - Meet the Board with Suma Nallapati - 6/22 SecureSet - Capture the lag events - 6/23 COS ISSA - Mini seminar - 6/24 ISSA Denver WIS - 6/27 (new location - Denver Field House) Cyber Security World - 6/28-29 Evanta - 2017 CISO Executive Summit - 6/29 SecureSet - Cybersecurity Career Trends - 6/29 SecureSet - Open House at new location - 6/29 Notable Upcoming Events: COS ISSA - CISSP Exam Prep - 7/29 7th Annual Cyber Security Training & Technology Forum - 8/30-31 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0

What is this podcast all about? This short 4 minute track describes why Colorado = Security exists, and what you should expect from each episode. Reach out to info@colorado-security.com with any questions or comments.

In this episode: Alex sits down with Joe Bonnell, CEO and Founder at Alchemy Security. News from Bad Axe Throwing, Amazon, root9B, Optiv, ManagedMethods, and Webroot. Full show notes: https://www.colorado-security.com/news/2017/6/9/19-612-show-notes Axes hurdling toward Denver Not sure where to take your sweetie on your next hot date? Canadian axe-throwing may be just the thing. This week we discovered that a lot of Coloradans don't bother to go to work, Amazon robots may be coming, a big time General joins the advisory board for root9B, Optiv and ManagedMethods are recognized as leaders, and IT has moved to the Cloud, why hasn't security? Sign up for our mailing list on the main site to receive weekly updates - https://www.colorado-security.com/. We're continually working to improve the show, and appreciate the feedback we get from our listeners. If you discover any audio issues, or have suggestions for our format, let us know. This week's episode is available on Soundcloud, iTunes and the Google Play store. Reach out with any questions or comments to info@colorado-security.com Feature interview: Alex interviewed Joe Bonnell (JoBo to friends) to discuss building Alchemy Security here in town, scaring legislators, and what makes Denver's security scene great. Local security news: Canadian axe-throwing chain to open in Denver Colorado leads the nation in work from home Amazon job postings hint at the future of fulfillment-center robots in Colorado elsewhere BKD acquires Denver internal auditing firm General Hayden joins root9B advisory board Optiv Security Ranked Top Pure-Play Security Company on CRN SP500 ManagedMethods Wins Gold as best CASB by Network Products Guide Webroot hits 13th consecutive quarter of double digit growth ManagedMethods Blog: Attention: IT has moved to the Cloud Why Hasn't Security? Job Openings: DigitalGlobe - Sr Cyber Security Architect DigitalGlobe - SOC/Engineering Lead State of Colorado OIT - Senior Cybersecurity Analyst Four Winds Interactive - Senior Information Security Analyst Western Union -IT Project Manager (InfoSec) Optiv - Sr. Security Consultant- SIEM - LogRhythm Upcoming Events: This Week and Next Week: SANS Rocky Mountain - 6/12-17 CSA - June Meeting - 6/13 SANS - Women's CONNECT Event - 6/13 ISSA June Meetings - 6/13 (Boulder), (Downtown Denver) & 6/14 (DTC) ISACA Social Event at Top Golf - 6/14 COS ISSA - June Meetings - 6/14-15 SecureSet - Expert Series with Michael Boucher - 6/15 SANS - Graduate Program Reception - 6/15 Colorado Cyber - Cybersecurity Insurance Event - 6/15 ISC2 - SecureDenver - 6/16 SecureSet - Open House at new location - 6/17 Optiv - Denver Enterprise Security Summit - 6/20 ISSA Denver - Healthcare SIG - 6/22 SecureSet - Capture the lag events - 6/23 COS ISSA - Mini seminar - 6/24 Notable Upcoming Events: ISSA Healthcare Special Interest Group - 6/22 ISSA Denver Women in Security Meeting - 6/27 Evanta CXO Summit - 6/29 COS ISSA - CISSP Exam Prep - 7/29 7th Annual Cyber Security Training & Technology Forum - 8/30-31 View our events page for a full list of upcoming events If you have any questions or comments, or any organizations or events we should highlight, contact Alex and Robb at info@colorado-security.com * Thanks to CJ Adams for our intro and exit! If you need any voiceover work, you can contact him here at carrrladams@gmail.com. Check out his other voice work here. * Intro and exit song: "The Language of Blame" by The Agrarians is licensed under CC BY 2.0