SolarWinds and the SEC.

CyberWire Daily

N2K Networks, Inc.

Daily News, Tech News, News, Technology

4.6 • 1K Ratings

🗓️ 3 June 2024

⏱️ 21 minutes

🔗️ Recording | iTunes | RSS

🧾️ Download transcript

Summary

Rick Howard, N2K’s CSO and The CyberWire’s Chief Analyst and Senior Fellow, presents the argument for why the SEC was misguided when it charged the SolarWinds CISO, Tim Brown, with fraud the after the Russian SVR compromised the SolarWinds flagship product, Orion. Our guests are, Steve Winterfeld, Akamai’s Advisory CISO, and Ted Wagner, SAP National Security Services CISO. References: Andrew Goldstein, Josef Ansorge, Matt Nguyen, Robert Deniston, 2024. Fatal Flaws in SEC’s Amended Complaint Against SolarWinds [Analysis]. Crime & Corruption. Anna-Louise Jackson, 2023. Earnings Reports: What Do Quarterly Earnings Tell You? [Explainer]. Forbes. Brian Koppelman, David Levien, Andrew Ross Sorkin, 2016 - 2023. Billions [TV Show]. IMDb. Dan Goodin, 2024. Financial institutions have 30 days to disclose breaches under new rules [News]. Ars Technica. David Katz, 021. Corporate Governance Update: “Materiality” in America and Abroad [Essay]. The Harvard Law School Forum on Corporate Governance. Jessica Corso, 2024. SEC Zeroes In On SolarWinds Exec In Revised Complaint [Analysis]. Law360. Johnathan Rudy, 2024. SEC files Amended complaint against SolarWinds and CISO [Civil Action]. LinkedIn. Joseph Menn, 2023. Former Uber security chief Sullivan avoids prison in data breach case [WWW DocumentNews]. The Washington Post. Kim Zetter, 2014. Countdown to Zero Day: Stuxnet and the Launch of the World’s First Digital Weapon [Book]. Goodreads. Kim Zetter, 2023. SEC Targets SolarWinds’ CISO for Rare Legal Action Over Russian Hack [WWW Document]. ZERO DAY. Kim Zetter, 2023. SolarWinds: The Untold Story of the Boldest Supply-Chain Hack [Essay]. WIRED. Rick Howard, 2022. Cyber sand table series: OPM [Podcast]. The CyberWire - CSO Perspectives Podcast. Rick Howard, 2023. Cybersecurity First Principles: A Reboot of Strategy and Tactics [Book]. Goodreads. Pam Baker, 2021. The SolarWinds hack timeline: Who knew what, and when? [Timeline]. CSO Online. Staff, 2009. Generally Accepted Accounting Principles (Topic 105) [Standard]. PWC. Staff. 30 October 2023. SEC Charges SolarWinds and Chief Information Security Officer with Fraud, Internal Control Failures [Website]. The U.S. Securities and Exchange Commision. Staff, 31 October 2023. Securities and Exchange Commission v. SolarWinds Corporation and Timothy G. Brown, No. 23-civ-9518 (SDNY) [Case]. The Securities and Exchange Commission. Staff, 29 March 2024. Cooley, Cybersecurity Leaders File Brief Opposing SEC’s SolarWinds Cyberattack Case [Press Release]. Cooley. Stephanie Pell, Jennifer Lee , Shoba Pillay, Jen Patja Howell, 2024. The SEC SolarWinds Enforcement Action [Podcast]. The Lawfare Podcast.

Transcript

Click on a timestamp to play from that location

0:00.0	You're listening to the CyberWire Network powered by N2K.
0:07.0	Enterprises today are using hundreds of SAS apps. Are you reaping their
0:17.6	productivity and innovation benefits or are you lost in the sprawl? Enter savvy security.
0:24.2	They help you surface every SAS app,
0:26.6	identity and risk, so you can shine a light
0:29.5	on Shadow IT and risky identities.
0:33.0	Savvy monitors your entire SAS attack surface to help you efficiently eliminate toxic
0:37.9	risk combinations and prevent attacks.
0:41.0	So go on, get savvy about sass and harness the productivity benefits, fuel
0:46.2	innovation while closing security gaps. Visit savvy dot security to
0:51.6	learn more. have a
0:55.0	heavy, got security to learn more.
1:00.0	Hey everybody, we're back. We're back. We're back.
1:02.0	In our own backyard. Welcome to season 14 of the CSO
1:05.2	perspectives podcast. I know it's been a while since you've heard for me.
1:10.3	Long story short, M2K took on an IFASEC project that not only consumed me and my role as
1:16.3	the CSO for the past year, but the entire executive staff.
1:20.9	Well, that project is finally over.
1:24.0	At some point I'm going to dedicate an entire episode to what we did.
1:28.0	But if you find me in a bar at one of the upcoming cybersecurity conferences and ply me with Beer, I'll tell you the entire sorted story.
1:37.0	In the meantime though, it's been nine months since the last CSO perspectives podcast,
1:42.6	and we need to change that.
	...

Please login to see the full transcript.

Previous episode | Next episode

Disclaimer: The podcast and artwork embedded on this page are from N2K Networks, Inc., and are the property of its owner and not affiliated with or endorsed by Tapesearch.

Generated transcripts are the property of N2K Networks, Inc. and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.