Access Control

In this episode, Intel Federal CTO Steve Orrin discusses securing edge devices, enabling trusted AI, and navigating cybersecurity challenges in the public sector. Discover strategies for protecting sensitive data, complying with regulations, and ensuring the trustworthiness of cutting-edge technologies critical to government missions.

In this episode of Access Control, we dive deep into the evolving world of security information and event management (SIEM) with Jack Naglieri, founder and CTO of Panther. Jack shares his insights on transitioning from traditional SIEM systems to modern, cloud-native approaches that leverage detection-as-code.

Key topics include:

- The importance of intentionality in security operations
- Benefits of detection-as-code for governance, collaboration, and scalability
- Challenges of monitoring diverse cloud environments and SaaS tools
- Strategies for effective alert prioritization and reducing alert fatigue
- Cost considerations and selling points for modernizing SIEM systems

Jack emphasizes the need for a focused approach to security, starting with identifying an organization's most critical assets and potential threats. He discusses how detection-as-code can improve efficiency, collaboration, and adaptability in security teams.

Whether you're a seasoned security professional or new to the field, this episode offers valuable insights on modernizing security operations for today's cloud-centric world. Join us for a thought-provoking discussion on the future of SIEM and practical tips for enhancing your organization's security postur

In this episode of the Access Control Podcast, Ben Arent sits down with Ben Burkert and Chris Stolt, the founders of Anchor Security, to discuss the challenges of managing internal TLS and how private CAs can help simplify the process.
Ben and Chris share their experiences dealing with certificate-related outages and the frustrations that led them to start Anchor. They provide an in-depth look at the evolution of web cryptography, from the early days of SSL to the modern era of TLS and the impact of Let's Encrypt and the ACME protocol.
The conversation also covers the benefits of using private CAs for internal PKI, including shorter certificate lifetimes, enhanced security, and improved developer experience. Ben and Chris introduce Anchor's new tool, lcl.host, which streamlines local TLS setup for developers.
Throughout the episode, Ben and Chris offer practical advice for teams looking to implement internal PKI and MTLS, including best practices for certificate hierarchy design, tips for getting started, and the importance of testing your incident response and key rotation processes.
Whether you're a developer, ops engineer, or security professional, this episode provides valuable insights into the world of internal TLS and how private CAs can help you secure your infrastructure more effectively. Tune in to learn from Anchor's experts and discover how to simplify your internal PKI management.

'Access Control,' where we explore the intricate landscape of cryptography and cybersecurity with our esteemed guest, Filippo Valsorda, a distinguished cryptography engineer and an influential open source maintainer.

For this 21st episode of Access Control Podcast, a podcast providing practical security advice for startups, Director of Developer Relations at Teleport Ben Arent chats with Filippo Valsorda. Filippo is a cryptography engineer and open-source maintainer. From 2018 to 2022, he worked on the Go Team at Google and was in charge of Go Security. In 2022, he became a full-time open source maintainer and still maintains the cryptography packages that ship as part of the Go Standard library along with maintaining a set of cryptographic tools, such as mkcert, and the file encryption tool, Age. This episode covers cryptography, trust, security and open source.

A live interview with Ev Kontsevoy about the history of access controls and the future of identity-native infrastructure access.