4 Days Left to Save $400 on SANS San Diego 2016

SANS Security Trend Line

Twelve Word Tuesday: Agile Doesn't Have to Mean "Ignore Security" But ...

___ Agile security needn't be an oxymoron - but security can't be "complained-in" later. Continue reading Twelve Word Tuesday: Agile Doesn't Have to Mean "Ignore Security" But ...


Twelve Word Tuesday: Can App Security Consultants Recover and "John Henry" Managed Bug Bounty Programs?

Too many low-value, cookie-cutter app testing engagements enabled bug bounty programs' success. (Explanation of John Henry reference here.) Continue reading Twelve Word Tuesday: Can App Security Consultants Recover and "John Henry" Managed Bug Bounty Programs?


Twelve Word Tuesday: A Different Brexit - Breach/Brazil Exit Precautions Are in Order

Treat executive travel to the Olympics like China trips - provide clean/burner devices. Continue reading Twelve Word Tuesday: A Different Brexit - Breach/Brazil Exit Precautions Are in Order


Twelve Word Tuesday: Intel/McAfee Proves Once Again That Infrastructure Can Not/Will Not Protect Itself

Cloud is infrastructure like CPUs, Windows/Linux, even users - always need external protection. Intel exploring selling what is left of McAfee. Continue reading Twelve Word Tuesday: Intel/McAfee Proves Once Again That Infrastructure Can Not/Will Not Protect Itself


Twelve Word Tuesday: Don't Be the "Dog That Caught the Car" When Board-Briefing Opportunity Arises

Having something board-worthy to say: Are you collecting business relevant security metrics? Free SANS CISO Hot Topic Session with CISCO CISO Steve Martino, SANS Founder Alan Paller and SANS Director John Pescatore Tuesday 14 June: "Communicating to and Influencing CEOs and Boards of Directors: What Works and What to Avoid" Continue reading Twelve Word Tuesday: Don't Be the "Dog That Caught the Car" When Board-Briefing Opportunity Arises