This one's been a long time coming, and I'm glad to finally bring it to you. Also, be on the lookout for an interview with Jayson E. Street in November. He's got a great personal story that I'm sure will inspire.
Permanent link:
[Article]-Book Review: Dissecting the Hack: The F0rb1dd3n Network, Revised EditionReview by
RichM“Dissecting the Hack: The F0rb1dd3n Network, Revised Edition” by Jayson E. Street, Kent Nabors and Brian Baskin is not intended for the average reader of
The Ethical Hacker Network, and this is what makes the book so intriguing. The forward specifically points out how hard it is to speak with management about security, and how lost they get. It even comes complete with an explanation of the “glazed over eyes.” Talking with decision makers is a topic often overlooked, and something that needs to be explored and
dissected. At the end of the day, no matter how great you think your idea is, if you don't get management buy-in, the idea dies and you are forced to re-bury your department's head back in the proverbial sand.
I would imagine that at this point most readers are affirmatively shaking their heads, because by and large most managers/executives know very little about information security. I personally have dealt with this on more than one occasion, painstakingly detailing the largest (most obvious) vulnerabilities and the most cost efficient way to mitigate these risks. After I finished (each time) I was met by the aforementioned blank stares and confused looks. I was thanked for my effort, no changes were made, and I eventually left frustrated and annoyed. My chances of getting through to these decision makers may have improved if “Dissecting the Hack” had been in my arsenal.
Hope you enjoy the review and let us know what you think,
Don
General Certification : CPT Practical Submission
