Sony Breach Thoughts

While I don't like "vendor dogpiles" every time there is a mainstream cybersecurity breach, they do serve as good opportunities to change InfoSec paradigms. In this article discusses the value of monitoring with enforcement as well as repairing or creating response processes.

GrrCon Presentation

Deck and video of my GrrCON talk.

Converge Conference Presentation

My presentation deck from Converge Conference can be downloaded here.

Coaxing Heads from the Security Sand

Some organizations have chosen to adopt a "plausible deniability" strategy to InfoSec. This article outlines some methods of helping these organizations move to a safer security practice.

3 Lessons to Unlearn from the Target Dogpile

3 dangerous "lessons" that have come from Target Breach discussions that we need to quickly unlearn.

Protecting Windows XP from Exploit

With Microsoft discontinuing support of Windows XP, organizations need guidance on how to protect the legacy machines they can't replace.

Evaluating NetFlow Tools for InfoSec

Using NetFlow for Information Security has some unique challenges that NETOPS tools don't have to deal with. I put Splunk head to head against StealthWatch and lay out methodolgies for testing other tools.

infosec

Sony Breach Thoughts

GrrCon Presentation

Converge Conference Presentation

Coaxing Heads from the Security Sand

3 Lessons to Unlearn from the Target Dogpile

Protecting Windows XP from Exploit

Evaluating NetFlow Tools for InfoSec

Follow Charles

Email Notifications

Recent blog posts

Tags

Search form

Follow Charles

Email Notifications

Tags