As cyber threats evolve, so must the strategies to prevent them. In this episode, Samuel Brown—CEO of PacketX and retired U.S. Army CW4—shares mission-critical insights on risk mitigation, layered security, and why backups and plans on paper aren't enough. From ransomware recovery to real-world network defense, this conversation is packed with hard-earned lessons for AppSec professionals and business leaders alike.🔔 Subscribe for real-world insights and actionable AppSec stories:https://www.youtube.com/channel/UCLgzXoXJ-TGO-y7Eh9quDUQ?sub_confirmation=1Chapters:00:00 – What Real Risk Mitigation Requires00:55 – Meet Samuel Brown: CEO of PacketX & U.S. Army Veteran02:43 – Risk Identification, Tiering, and Business Impact04:28 – Ransomware Lessons: Why Tested Backups Matter07:01 – Data vs. Devices: Smart Prioritization Decisions08:13 – Ransomware Response: Steps to Contain and Recover09:44 – Real-World Example: Website Compromise and Layered Security11:14 – MFA and Role-Based Access: Core to Risk Reduction13:47 – CAC Cards & Military Insights on Access Control16:44 – Firewalls, Segmentation & Vendor Diversity20:42 – Patch Management: Fixing Without Rebreaking23:58 – Least Privilege: Why Admin Rights Are Dangerous26:33 – Why Small Businesses Are Easy Targets28:27 – Simple Risk Monitoring Tips for Any Company30:43 – Best & Worst Advice in Cybersecurity32:47 – Closing Thoughts & Call to SubscribeWhat You’ll Learn:- How to build a real, tested risk mitigation plan- Why backups fail without proper testing- Critical layers of defense: from firewalls to user training- How military cybersecurity practices apply to private business- The one mindset that can prevent massive breaches📺 Watch Next:▶️ Secrets of AppSec Champions Podcast: https://www.youtube.com/playlist?list=PLR-uH0PJFszFcbMJ29AfAcWIJAPbBJaC7▶️ Our Customers’ Success Stories & Reviews: https://youtube.com/playlist?list=PLR-uH0PJFszHDC0p6CBEvccqx1uNx8fpT&si=SUI6d31ResR51434▶️ OWASP Top 10 LLM is Dead: Here's Why: https://youtu.be/Wet1tkt1eAw?si=NTUef42qt1WzcHbn▶️ Mend.io Product Overview Demo: https://youtu.be/HfZ3uK-Eg5c▶️ The Truth Behind Successful Security Operations Centers (SOC): https://youtu.be/XMlrxoIJVXg🌐 Connect with Us:🔗 Website: https://www.mend.io🐦 Twitter: https://twitter.com/mend_io📘 Facebook: https://www.facebook.com/mendappsec💼 LinkedIn: https://www.linkedin.com/company/2440656📜 Disclaimer:This video is for educational purposes only. Mend.io is not responsible for any security decisions made based on this content.#Cybersecurity #RiskMitigation #AppSec #InfosecMend.io, formerly known as Whitesource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development - using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks. With a proven track record of successfully meeting complex and large-scale application security needs, Mend.io is the go-to technology for the world’s most demanding development and security teams. The company has more than 1,000 customers, including 25 percent of the Fortune 100, and manages Renovate, the open source automated dependency update project. For more information, visit www.mend.io, the Mend.io blog, and Mend.io on LinkedIn and Twitter.

Ver todos los episodios