.

Column Topics

<<

jason

User avatar

Hero Member
Hero Member

Posts: 1013

Joined: Sat Jun 21, 2008 6:23 pm

Location: USA

Post Wed Sep 05, 2012 9:26 am

Column Topics

I'm putting together a list of column topics for next year. Keeping in mind that I'm staying roughly in the area of general information security, what would you all be interested in reading about?
<<

tturner

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Thu Jun 26, 2008 4:50 pm

Post Wed Sep 05, 2012 12:52 pm

Re: Column Topics

Hacking web services and/or mobile apps. :)

Oh you said general information security... How about - metrics that don't suck?
Certifications:
CISSP, CISA, GPEN, GWAPT, GAWN, GCIA, GCIH, GSEC, GSSP-JAVA, OPSE, CSWAE, CSTP, VCP

WIP: Vendor WAF stuff

http://sentinel24.com/blog @tonylturner http://bsidesorlando.org
<<

jason

User avatar

Hero Member
Hero Member

Posts: 1013

Joined: Sat Jun 21, 2008 6:23 pm

Location: USA

Post Wed Sep 05, 2012 2:03 pm

Re: Column Topics

Metrics to measure anything in particular?
<<

m0wgli

User avatar

Sr. Member
Sr. Member

Posts: 308

Joined: Fri Jul 20, 2012 3:34 pm

Post Wed Sep 05, 2012 2:47 pm

Re: Column Topics

Trying to keep within the remit of general information security. I'd be interested in reading about how to respond to incidents and what can subsequently be learnt from them, and, how to deal with insider threats.
Security + | OSWP | eCPPT (Silver & Gold) | CSTA
<<

jason

User avatar

Hero Member
Hero Member

Posts: 1013

Joined: Sat Jun 21, 2008 6:23 pm

Location: USA

Post Wed Sep 05, 2012 2:54 pm

Re: Column Topics

Ok, so far we have:

Metrics
Incident response
Insider threats

What else?
<<

tturner

User avatar

Sr. Member
Sr. Member

Posts: 435

Joined: Thu Jun 26, 2008 4:50 pm

Post Wed Sep 05, 2012 3:12 pm

Re: Column Topics

Metrics to measure the effectiveness of security program. For instance I find the number of spams blocked to be a poor metric that's more about big numbers in a chart than any meaningful representation of how the organization is reducing risk or saving money. Good metrics are things like measuring number of incidents detected internally vs by customers, attack vectors, time to respond to incident, time to close out incident, lag time for remediating vulnerabilities, etc.
Certifications:
CISSP, CISA, GPEN, GWAPT, GAWN, GCIA, GCIH, GSEC, GSSP-JAVA, OPSE, CSWAE, CSTP, VCP

WIP: Vendor WAF stuff

http://sentinel24.com/blog @tonylturner http://bsidesorlando.org
<<

jason

User avatar

Hero Member
Hero Member

Posts: 1013

Joined: Sat Jun 21, 2008 6:23 pm

Location: USA

Post Wed Sep 05, 2012 3:50 pm

Re: Column Topics

Roger that. On the list.

Return to Andress

Who is online

Users browsing this forum: No registered users and 0 guests

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software