I Am Security

Tag: security

  • Breaking news: Spy agencies are spying!

    by

    iamit
    in

    Please say it ain’t so! Spy agencies are spying? I’m actually going to go out on a limb here and present my (again – MY) opinion, which might pass as complicated by people with very deterministic views (or are being spoon-fed said views through the media of their choice). First – I think that the…

  • Seeing RED in your future? – Recap from DerbyCon 3.0

    by

    iamit
    in

    Yes, I know, It’s been a while since I updated anything here. Work, life, etc… So here’s a quick update/recap on some of the latest: SecurityZone 2013 was an excellent experience. Always great to get back to Cali to meet who are now friends rather than just colleagues and conference organizers. I delivered the keynote…

  • Do as I say, not as I do. RSA, Bit9, Adobe, and others…

    by

    iamit
    in

    So you thought you had everything nailed down. You might have even gone past the “best practice” (which would have driven you to compliance, and your security to the gutter), and focused on protecting your assets by applying the right controls in a risk-focused way. You had your processes, technologies, and logs all figured out.…

  • Phishing/Threatening done wrong

    by

    iamit
    in

    It’s been a long time since I posted here since life and work really got in the way (in a very good way!) to publishing here. But I just had to share this as it has some relevance to security… So, woke up this morning to an email claiming to be from FARC (yes –…

  • Security Awareness and Security Context – Aitel and Krypt3ia are both wrong?

    by

    iamit
    in

    It was pretty obvious that after an Information Security persona such as Dave Aitel has posted his “Why you shouldn’t train employees for security awareness” article, there would be a lot of flak from the industry. A lot has been said about training employees to be somewhat more savvy users when dealing with corporate equipment…