Ben “@falconsview” Tomhave put out a nice post yesterday regarding the SANS 20 Critical Security Controls (CSC). In it he stressed how the they are 1) not actually controls, 2) not scalable, and 3) only designed to sell a product. I don’t know enough to comment on point 1. Point 2 seems right on...
Read more »
Where do you want to be this week? Now you’ll always know with our “Where You Want to Be This Week” feature, which will tell you about infosec meetups happening in your local area as of Sunday night. If you would like your event listed in our Calendar and in this post, contact us...
Read more »
I don’t see many articles discuss the topics of Mandatory Access Control (MAC) and Discretionary Access Control (DAC) that often but InfosecIsland.com published two nice example-based posts earlier this week. Similar to a post last year from ElectricFork on the origins of the CIA triad, these concepts are fairly fundamental and so I thought...
Read more »
For the past few years forensics has been a very strong field in which to develop an infosec career. The new curve though comes with the proliferation of “cloud.” As more and more organizations migrate services into the cloud, forensics in these challenging environments has created another “hot” specialization in which to ponder a...
Read more »
Last week I noticed NIST put out another draft infosec document that they need comments on. This time the publication that needs updated is SP 800-30, Guide for Conducting Risk Assessment, Revision 1. And updated it is in need of… NIST released the original version almost 10 years ago. Then it was known as...
Read more »
Where do you want to be this week? Now you’ll always know with our “Where You Want to Be This Week” feature, which will tell you about infosec meetups happening in your local area as of Sunday night. If you would like your event listed in our Calendar and in this post, contact us...
Read more »
Here’s another addition of the Weekly Rewind, where we post out a quick summary of all our stories as well as the industry articles you seemed to like the most from the past week. If you missed anything or happened to be offline, we hope you find this post useful as a quick reference....
Read more »
