Starting this week, we will be adding a new feature to the site called “Top NoVA Infosec Blog Posts of the Week,” which will cover just what its title says: The top blog posts from local NoVA infosec bloggers related to living and doing security in the NoVA, DC, and MD area.
While the number of blog posts we cover will vary week to week, this week we found 3 blog posts that we really liked. Check them out below and be sure to share your own take on these blog posts by leaving a comment below. Â
#3 – What Would You Tell Management?: This week, @mubix posed the question “[i]f you could get your boss to understand one security concept fully, what would it be?” in his “Manager Training – Bootcamp Style,” blog post. We answered “Security Fundamentals,” and it seems that many of you agreed, with “Security Fundamentals” ultimately winning the vote. “Targeting,” and “Passwords,” came in closely behind “Security Fundamentals,” with some scattered votes for topics like “Data Layer Protection,” and “Risk Management.” To read the full survey and its results, visit @mubix’s Room 362 blog.
#2 – Cyber Security Heating Up: In his post “Cyber Security Coming to a Boil,” Michael Smith tackles the political side of cyber security. With Obama promising to make cyber security a top priority when he became president, Smith writes what we’ve all been thinking, asking what real-life changes in direction and policy that promise is actually going to bring. While Melissa Hathaway has been appointed to the role of Senior Director of the National Security Council and Rod A. Beckstrom of the Department of Homeland Security has resigned, Smith has an interesting commentary about the current situation and where it might end up in the future. To the full article, you can visit Smiths’ Guerilla CISO blog.
#1 – Operational Security and Beyond: In his “Beyond Operational Security,” post, Electricfork gives readers tips on how to meaningfully move past operations into a tactical mindset and how tactical and strategic responses differ when working with or within a security response team. He also discusses the basic responsibilities of a security ops team, which include: Analyzing alerts or escalations, creating documentation trails, and containing, eradicating, or recovering from any incidents. For those of you who are in the security ops field or want to learn more about it, this is a must read blog post. You can view the full article on the Eletricfork blog.
Well, that’s all for this week; be sure to check back next Monday for more of the top blog posts by security bloggers in and around the NoVA area.
###
Keep the local security community going strong by becoming a subscriber of our site. You can also spread the word about NovaInfosecPortal
 by passing this post along to a friend.
No related posts.
[...] Michael Smith of the Guerilla CISO created a fair amount of controversy. In case you didn’t read our post about it last week, Smith talked about the political side of cyber security. (And yes; anytime you [...]