I migliori Below The Surface podcast (2024)

1
#19 The Inventor 34:58

3d ago34:58

34:58

In a fictitious world where electricity reigns supreme, Gunnar has "invented" a revolutionary engine that uses ... wait for it ... petrol! That’s right, in this universe, electric engines are the norm, and Gunnar is pitching this wild idea of a new type of engine to a venture capitalist, skilfully played by James. We’re taking a detour from our usu…

1
#18 The Remedial Action Assessment 38:04

17d ago38:04

38:04

A re-think of the classic Preliminary Site Assessment => Detailed Site Assessment => Remedial Action Plan scenario. Guest Andrew Kohlrusch, EPA Auditor and contaminated sites expert extraordinaire, joins Gunnar on an excursion to explore a more bespoke way to assess contaminated sites from the initial stages to the final remediation report. Of cour…

1
#17 The Blueprint 41:23

1M ago41:23

41:23

Australia's landscapes are in serious need of an injection of TLC (Tender Loving Care, not some dyslexic chlorinated hydrocarbon). TLC and a bit of money. $7.3 Billion per year over 10 years to be more precise, according to a recent report published by The Wentworth Group. Our Guest is The Wentworth Group's Prof Mike Grundy, a former Research Direc…

1
#16 The Sparrow in the Lead Mine 46:46

2M ago46:46

46:46

Measure lead levels in blood of house sparrows and accurately predict lead blood levels in children in that town. No way? Absolutely YES WAY! That is exactly what Prof Simon Griffith with his PhD candidate Max Gillings have achieved in one of their recent papers. From the outside it is all so easy. Go to an area with known high lead impact (towns l…

1
#15 The STEMinist 46:35

2M ago46:35

46:35

How can young (female) professionals tackle the flood of knowledge they must acquire in a fast-paced consulting environment while at the same time having to deal with sometimes perceived but too often real disapproval by established good old boys in meetings or on construction sites? How can you tackle the ever niggling self-doubt? How can you beco…

1
#14 The Honest Truth 48:15

2M ago48:15

48:15

The EPA names and shames a consultancy for allegedly falsifying reports. Meanwhile clients are beginning to use legal privilege as a strategy to avoid potential subpoenas — just as we anticipated in The Power Grab. On a positive note, thanks to The Policy Predicament (yay!), the EPA has made a change to their website, now featuring all policy and r…

1
Supply Chain Policies - Stewart Scott, Trey Herr - BTS #36 59:37

2M ago59:37

59:37

Stewart and Trey join us to talk about driving cybersecurity policies for the nation, what makes a good policy, what makes a bad policy, supply chain research and policies, and overall how we shape policies that benefit cybersecurity. Segment Resources: https://www.atlanticcouncil.org/in-depth-research-reports/report/broken-trust-lessons-from-sunbu…

1
#13 The Train Wreck 33:29

3M ago33:29

33:29

We are thrilled to host Andrew Doig from the Australian Sustainable Business Group, who brings a wealth of knowledge on waste services and legislative review. Andrew guides us through the labyrinth of waste management and landfill approval, focusing on the pressing issues in New South Wales. From the Lucas Heights extension to the Woodlawn mine app…

1
The Known Exploited Vulnerability catalogue, aka the KEV - Tod Beardsley - BTS #35 55:27

3M ago55:27

55:27

Gain insights into the CISA KEV straight from one of the folks at CISA, Tod Beardsley. Learn how KEV was created, where the data comes from, and how you should use it in your environment. This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Resource: https://cisa.gov/kev Show Notes: https://se…

1
“Don’t be apart of the problem” 17:03

3M ago17:03

17:03

Welcome to Season 5‼️Are you emotionally intelligent? It’s enough to know your own emotions but are you empathetic to understand others. Whew. It’s not the emotion that is the problem. The problem is the problem.Di MJ

1
#12 The RRO Rewrite? 46:38

3M ago46:38

46:38

There are few people who know more about the Resource Recovery Framework than this episode’s guest, Jason Scarborough. Jason had worked with the NSW EPA for almost 20 years where amongst other things, he was involved in the development and implementation of the initial Resource Recovery Framework. Four years ago he founded JS Regulatory Services. T…

1
EPSS - The Exploit Prediction Scoring System - Jay Jacobs, Wade Baker - BTS #34 59:43

3M ago59:43

59:43

Jay Jacobs Co-Founder and Data Scientist and Wade Baker Co-Founder; Data Storyteller from The Cyentia Institute come on the show to talk about The Exploit Prediction Scoring System (EPSS). This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes: https://securityweekly.com/bts-34…

1
#11 The Sampling Evolution 1:06:26

4M ago1:06:26

1:06:26

This week’s guest is environmental consulting superstar, Ross McFarland. He shares his thoughts on whether samples we take are actually representative of the site conditions. Is a 250 ml soil sample that is obtained with all our best intentions, a minute 5 g of which is then analysed, actually representative of a large area or of a large volume of …

1
Securing OT Environments - Dr. Ed Harris - BTS #33 52:54

4M ago52:54

52:54

Ed Harris joins us to discuss how to secure OT environments, implement effective air gaps, and more! This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes: https://securityweekly.com/bts-33

1
#10 The Waste Windfall 38:32

4M ago38:32

38:32

Get prosecuted by the EPA and found guilty, get fined several hundred thousand Dollars and make $1.5 Million profit out of that whole scenario. If that sounds too much like fiction and Ocean's 11-ish, then listen into this episode. Many years ago James was involved in a big EPA investigation surrounding the Bowral Landfill. Gunnar and James talk ab…

1
Mitre ATT&CK - Adam Pennington - BTS #32 52:34

4M ago52:34

52:34

We discuss the various aspects of Mitre Att&ck, including tools, techniques, supply chain aspects, and more! This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes: https://securityweekly.com/bts-32

1
#9 The Amazing Pierina 49:58

5M ago49:58

49:58

Bond Villains, Broke Parents and Asbestos in Soils Assessments: A Wild Ride with Pierina Otness Gunnar and James are back with another high-flying guest on their podcast! Somehow this episode feels very James Bond-ish. Scene 1: The Asbestos Assessment Authority Gunnar and James, sit down with none other than Pierina Otness - the undisputed authorit…

1
Managing Complex Digital Supply Chains - Cassie Crossley - BTS #31 1:03:06

5M ago1:03:06

1:03:06

Cassie has a long history of successfully managing a variety of security programs. Today, she leads supply chain efforts for a very large product company. We will tackle topics such as software supply chain management, SBOMs, third-party supply chain challenges, asset management, and more! This segment is sponsored by Eclypsium. Visit https://secur…

1
#8 The Power Grab 42:11

5M ago42:11

42:11

The changed PoEO Act - way more than just increased penalties. Gunnar and James found themselves in the company of not one, but two lawyers. While that usually is not a good thing no matter how you look at it, this time it’s not about courtrooms and objections, but it’s about environmental law. Darren Bick and Daniel Webster, Environmental and Plan…

1
Systems Of Trust - Robert Martin - BTS #30 55:20

5M ago55:20

55:20

Bob Martin comes on the show to discuss systems of trust, supply chain security and more! This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes: https://securityweekly.com/bts-30

1
It’s Officially Dr. MJ! 42:37

6M ago42:37

42:37

Listen to the journey and how I got here!Di MJ

1
#7 The Hydrogen Mythbuster Part II 31:50

6M ago31:50

31:50

Part II of the interview with Canadian Chemical Processes Expert Paul Martin. In case you have missed it, in Part I Paul talked us through the, rather inconvenient facts about hydrogen as a means to export energy for Australia and why that is a rather far fetched idea. Here is a link to Part 1 of the interview. In this episode Gunnar and James talk…

1
Supply Chains, Firmware, And Patching - Jason Kikta - BTS #29 1:06:10

6M ago1:06:10

1:06:10

Jason joins us to discuss the current enterprise landscape for defending against supply chain attacks, remediating firmware issues, and the current challenges with patch management. This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes: https://securityweekly.com/bts-29…

1
Life Update with Dr. MJ 17:19

6M ago17:19

17:19

Let’s catch up! It’s been 3 months. 😳 What have I been up to?Di MJ

1
#6 The Hydrogen Mythbuster Part I 25:21

6M ago25:21

25:21

Gunnar and James are talking to Paul Martin, a Canadian Chemical Process Development Expert and tireless advocate for a fossil fuel free future. This first part of a two-part episode looks into whether the claims that Australia has a future as a new energy provider to the world via Hydrogen exports are based on reality or wishful thinking. Paul Mar…

1
5G Hackathons - Casey Ellis - BTS #28 56:31

6M ago56:31

56:31

Casey recently was involved in an event that brought hackers and 5G technology together, tune-in to learn about the results and how we can use bug bounty programs to improve the security of "things". This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes: https://securityweekly.com/bt…

1
#5 The Vapour Flux 27:52

7M ago27:52

27:52

Our guest on this episode is Dr Adrian Heggie. Over the past decade Adrian has developed an amazingly simple method for the delineation of sub-surface hydrocarbon plumes (chlorinated or not) by measuring the aboveground concentration these plumes cause. His method is fast, accurate, inexpensive and most of all, does not require any invasive ground …

1
Governance, Compliance, and The Digital Supply Chain - Josh Marpet - BTS #27 50:01

7M ago50:01

50:01

In this episode, we discuss digital supply chain governance and compliance, featuring Josh Marpet from Guarded Risk, hosted by Paul Asadoorian and Allan Alford. Specifically, we discuss: The importance of understanding and complying with regulations affecting digital supply chains, such as Executive Order 14028 and the NIST Cybersecurity Framework.…

1
What We Don’t Know Will Hurt Us - Cheryl Biswas - BTS #26 53:35

7M ago53:35

53:35

Cheryl is super passionate about supply chain security and visibility. Tune in to our discussion on how we can collectively get better at reducing the attack surface and working to fix the wide variety of digital supply chain issues we have today. This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about…

1
#4 The Trailblazer 29:14

7M ago29:14

29:14

In this episode, we delve into the question of dangers lurking in unsuspecting areas like our backyards and public parks. Join Gunnar and James as they discuss with researcher Ana Serra the findings of her study into asbestos exposure from seemingly mundane activities like lawn mowing or soil disturbance during landscaping or Council maintenance wo…

1
#3 The Policy Predicament 29:36

8M ago29:36

29:36

James twisted Gunnar's arm and convinced him to record a podcast about issues around policies in the environmental industry. Why does the EPA quietly make updates to definitions but does not tell anyone about it? Why are there 'internal policies' that are not written down that the EPA and some local governments enforce willy nilly. Why is there no …

1
Supply Chain Threats and Regulations - BTS #25 45:32

8M ago45:32

45:32

Paul and Allan will talk a little bit about Allan's background and current work at Eclypsium. Next, we'll cover some of the recent news and topics we've been discussing on our blog including Firewall and VPN appliance security struggles, Shim Shady, Glubteba and other malware targeting UEFI, and some thoughts on recent regulations affecting supply …

1
#2 The Mulchgate 41:00

8M ago41:00

41:00

Sydney is still in the grip of an asbestos panic. In this episode we sit down with Philip Hibbs, one of the ultimate OH/S and asbestos experts in Australia. We chat about what he calls "Mulchgate", the actual risk to humans posed as a result, other risks humans are exposed to, we bag all sorts of regulators and organisations for their lack of leade…

1
Managing Supply Chain Risk - Saša Zdjelar - BTS #24 47:15

8M ago47:15

47:15

Saša Zdjelar joins us on this episode to dive into how organizations can manage supply chain risk, including the current challenges we face and how best to deal with them. This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes: https://securityweekly.com/bts-24…

1
#1 The Mulch Mishap 37:39

9M ago37:39

37:39

Bonded asbestos fragments have been found in mulch in a brand-new park in Sydney's suburb Rozelle. The ensuing panic in the public, associated finger pointing and running for cover by contractors, suppliers, regulators and of course politicians was as expected as it was to a degree amusing. Gunnar and James simply had to talk about this. The episod…

1
Closing The Supply Chain Visibility Gap - Dr. Olga Livingston - BTS #23 58:49

9M ago58:49

58:49

Short of ripping everything apart (hardware and software) and inspecting the components, which is very time-consuming, how do we solve the visibility gap in various supply chains? Dr. Olga Livingston from CISA joins us to discuss! This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes…

1
SBOMs and Supply Chains - Allan Friedman - BTS #22 1:00:40

9M ago1:00:40

1:00:40

We sit down with the father of the SBOM, Allan Friedman, to discuss examples of where we really need SBOMs, how to operationalize SBOMs, and how to identify and deal with bad things that may be in your SBOM! CISA's resources on SBOM are at cisa.gov/SBOM and anyone can find out more or ask for a meeting at SBOM@cisa.dhs.gov This segment is sponsored…

1
What’s the right time? 13:09

10M ago13:09

13:09

Whew this was an interesting conversationDi MJ

1
Who’s Cooking Tonight? 15:24

10M ago15:24

15:24

Let’s talk relationship dynamics with TexJamesDi MJ

1
Supply Chain Risk Management - David Vaughn - BTS #21 48:37

10M ago48:37

48:37

We talk about Supply Chain Risk Management in the context of the cloud and US federal government with David Vaughn. This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes: https://securityweekly.com/bts-21

1
Network Device Supply Chains and Lateral Movement - Joe Hall - BTS #20 54:54

10M ago54:54

54:54

In this episode, we have the privilege of sitting down with renowned security expert Joe Hall to discuss three critical facets of modern cybersecurity: network device security, supply chain threats, and lateral movement. Join us as Joe Hall shares his wealth of knowledge and experience, unraveling the complexities of network device security, the in…

1
Faith Counted As Righteousness with Dr Bumpus 22:23

10M ago22:23

22:23

God doesn’t call us to be perfect, He calls us to be faithful. Please listen to this as we enter a new year ‼️ 🎧 🎤🔥Di MJ

1
A Year in Review on Offensive Security, Defensive Landscapes, and Global Implications - Tyler Robinson - BTS #19 53:46

11M ago53:46

53:46

In this episode, we delve into the dynamic world of supply chain security, recapping the significant developments of the past year. Join us as we explore the evolution of offensive security, defensive landscapes, and the key actors shaping the cybersecurity landscape. Our featured guest, Tyler Robinson, Founder and CEO of Dark Element, brings a wea…

1
Defending Against Supply Chain Attacks - Bri Rolston - BTS #18 1:06:28

11M ago1:06:28

1:06:28

Bri has spent her career investigating and defending against critical infrastructure attacks. Hear her take on the current threat landscape, supply chain security, and more! This segment is sponsored by Eclypsium. Visit https://securityweekly.com/eclypsium to learn more about them! Show Notes: https://securityweekly.com/bts-18…

1
Protecting The Digital Supply Chain - Yuriy Bulygin - BTS #17 1:03:04

12M ago1:03:04

1:03:04

Dr. Yuriy Bulygin is the CEO and founder of Eclypsium, the digital supply chain security company. Prior to Eclypsium, Yuriy was Chief Threat Researcher at Intel Corporation. He is also the creator of CHIPSEC, the popular open-source firmware and hardware supply chain security assessment framework When enterprises started using CHIPSEC to find vulne…

1
Double Standards Part I 13:03

12M ago13:03

13:03

Let’s talk double standards in the workplaceDi MJ

1
Double Standards Part II 15:52

12M ago15:52

15:52

Let’s talk double standards in relationshipsDi MJ

1
UEFI and The Digital Supply Chain - Dick Wilkins - BTS #16 52:01

12M ago52:01

52:01

Learn about the evolution of UEFI, various aspects of supply chain security surrounding UEFI, and the interactions between links in the supply chain that ultimately end up delivering you a computer or server. Segment Resources: https://uefi.org/sites/default/files/resources/What%20is%20UEFI-Aug31-2023-Final.pdf This segment is sponsored by Eclypsiu…

1
Reverse Engineering BMCs and Other Firmware - Vladyslav Babkin - BTS #15 55:31

1y ago55:31

55:31

Vlad is part of the Eclypsium research team and has discovered several flaws in BMC ecosystems. He comes on the show to talk about his journey and cover the details behind BMC vulnerabilities and attacks. Segment Resources: https://forum.defcon.org/node/245714 https://eclypsium.com/research/bmcc-lights-out-forever/ https://eclypsium.com/blog/supply…

1
Respect. Is it given or earned? Part 1 16:08

1y ago16:08

16:08

Di MJ

Podcast che vale la pena ascoltare

Podcast di Below The Surface

Podcast che vale la pena ascoltare

Guida rapida