What is old is new again: default deny on the endpoint – Danny Jenkins – ESW #402

Summary: The video discusses various topics in cybersecurity, including a conversation with Danny Jenkins from Threat Locker about the principle of default deny, as well as a segment with Colby Dro from Abstract Security on data security strategies. It also features news related to startup funding, the cybersecurity skills shortage, and innovative tools for detection and engineering.

Keypoints:

• The episode features Danny Jenkins discussing the default deny principle in cybersecurity.
• Colby Dro from Abstract Security provides insights into data security strategies.
• The news segment includes updates on cybersecurity startup funding and the ongoing skills shortage in the field.
• Also covered are tools to experiment with local GenAI models and drama regarding CVE assignments.
• The episode highlights a SIM-agnostic approach to detection engineering.
• A charity pitch and a light-hearted story about a lost dog that doesn’t want to be found are also discussed.
• Threat Locker aims to provide robust security through a zero-trust approach.
• Jenkins elaborates on the challenges of implementing default deny in enterprise environments and achieving user compliance.
• Understanding application permissions and managing user access effectively are essential for security.
• Customer experience and support are key to maintaining a successful cybersecurity strategy, as highlighted by Jenkins’ approach to customer service.