S01E07: Managing Privilege: Balancing Access with Security

Privilege is an entity's degree of power within an org.

Think technical access, like a DevOp manager’s ability to manipulate sensitive files and systems.

Or a finance team member’s authority to issue wire transfers on behalf of the org.

We are rounding out our series on risk by interviewing Roie Cohen Duwek, Director of Security Research at Proofpoint, about privilege-based attacks.

What we talked about:

  • Why EAC attacks are so insidious and effective
  • Privilege abuse and cloud-based attacks
  • Ways that legitimate accounts get compromised
  • What CISOs should do to protect their employees

Find additional content and subscribe to Protecting People on Apple Podcasts and Spotify.