Distrust and Verify Anyway

Distrust and Verify Anyway

Security is based on establishing trust. Who should you trust? When should you trust them? How much should you trust them? Often, this “trust” conversation centers on a binary distinction between “trusted insiders” and “unknown outsiders”. However, even the “trusted...
Full Automation — Are You Actually Ready?

Full Automation — Are You Actually Ready?

I’ve been seeing a bit of a trend of newly-released, long-time-funded, tools that are both nerve-racking and, what I believe, in the wrong direction entirely. I am an advocate of the phrase “Automate or Die,” although, I do understand the limitations of automation....
PM like a DM (part 1)

PM like a DM (part 1)

Software product managers gets to play in many different areas depending on their skill set and the needs of their company. Their day-to-day responsibilities may include stand-ups, one-on-ones, interviews, and any number of other tasks. Their primary role revolves...
What can I get out of a Forensic Investigation?

What can I get out of a Forensic Investigation?

As a forensics analyst, I am supposed to help get you answers to how did this happen? Are we still vulnerable to attack? Was any data exfiltrated? But many times I am not able to give clients the answers they want because of the lack of tools and/or procedures that...
Pen Testing: What? When? Why?

Pen Testing: What? When? Why?

Penetration testing, sometimes called “white hat hacking” or “ethical hacking,” is the process of allowing security professionals to attack your network and/or infrastructure just as a malicious hacker would do. With security incidents in the news on a daily basis,...
Getting Started in InfoSec — Entry Level Guide

Getting Started in InfoSec — Entry Level Guide

Many young men and women are looking for a way into InfoSec. The toughest part is knowing where to start. We’ve all been there, but it’s sometimes hard to find a straight answer. The point of this post is to provide clear direction and some recommendations. To start,...