If ever there was a week of controversial posts, it would be this one. While the posts we usually cover follow trends and topics without coloring outside the lines too much, this week you can expect to read some thought-provoking posts about sexism in information security, what white hat could do with a million bucks (far less than black hat, by the way), and the way that Federated Management should be run.
In other words, the perfect reading material to go with your morning coffee.
Now, on to the posts!
#3 – Plan for BSOFH Happiness: Half sarcasm, half advice, @rybolov’s post “Federated Vulnerability Management” gives the nitty-gritty on government patch and vulnerability management. After talking about what’s wrong with government patches and vulnerability management, he recommends using SCAP to ‘fix’ the mess. While the post is a little longer than usual, it’s definitely worth the read.
#2 – Sexism, Religion, and Hackers: This is a topic that isn’t discussed enough. While DojoSec’s Marcus J. Carey did a v-blog post about sexism in the security field a little over two months ago, there hasn’t been much discussion about it since. That’s why it was refreshing to see @mubix respond to a post by @shazzzam and others about females in information security. Let’s be honest: it’s not fair, and there is a bias. But as @mubix points out, “[s]exism, and for that matter, any “-ism” is flawed on both sides.” This is a highly controversial post, but one that should be read. You can read the full post here.
#1 – White Hat for a Million: After his post “Black Hat Budgeting” got a fair amount of response last month, author and speaker Richard Bejtlich decided to revisit the million dollar security question this month by figuring out what white hat security could do with a million dollars compared to what black hat could do. The results? Not exactly pretty. As Bejtlich says at the end of his post, “I am much less comfortable building out this team, compared to the Black Hat Budgeting exercise. There are way too many variables involved in defending any enterprise.” With roughly $850,000 spent on staff, there’s only $150,000 left for technology. How does Bejtlich break it all down? Read the full post to find out.
Well, that’s all for this week. Be sure to follow me @grecs during the week for more great posts from local bloggers.
o o o o o
Know a blog that should be considered for our “Top 3 NoVA Infosec Blog Posts of the Week” feature? If so, send us a tweet with a link to the blog and the request for us to check it out.
No related posts.
