Bolt-On Security
Posted August 19th, 2010 by rybolovBuild security in or bolt it on afterwords? Our IKANHAZFIZMA LOLCATS have an opinion on this today.
Similar Posts:
Posted in IKANHAZFIZMA |
1 Comment »
Tags: infosec • lolcats • security
Build security in or bolt it on afterwords? Our IKANHAZFIZMA LOLCATS have an opinion on this today.
Posted in IKANHAZFIZMA |
1 Comment »
Tags: infosec • lolcats • security
A common theme for me this year: as a security manager, how do you use metrics to tell your boss that you’re doing a good job and yet at the same time you’re doing a bad job and need more money, time, and resources?
Posted in IKANHAZFIZMA |
1 Comment »
Tags: infosec • lolcats • management • metrics • security
With a shout-out to Chris Paget who generated some of the biggest buzz at Defcon with his GSM hacks.
Posted in Hack the Planet, IKANHAZFIZMA |
1 Comment »
Tags: infosec • lolcats • security
If it wasn’t frustrating dealing with the huge conflict-of-interest that follows the Government’s InfoSec pocketbook, it would be absolutely hilarious to watch the myriad interactions between all the competing interests at work, all with their grand plan on how to “fix” something that, in their opinion, is grossly broken. Not that their idea is any better or will be executed better, it’s that it’s something new and gives them soundbites.
I’ll even admit to having my own opinions from time to time, although I’m not in it for the filthy lucre, just trying to help. =)
Posted in IKANHAZFIZMA |
1 Comment »
Tags: government • infosec • itsatrap • lolcats • pwnage • risk
Some days I feel like all this “continuous monitoring” talk around the beltway is just really a codeword for “buy our junk”, much like the old standby “defense in depth”, only instead of firewalls and IDS, it’s desktop and server configuration management. Even better that it works for both products and services. The BSOFH in me likes having a phrase like “Near Real-Time Continuous Compliance Monitoring” which can mean anything from “tying thermite grenades to the racks in case of being captured” to “I think I’ll make a ham sandwich for lunch and charge you for the privilege”.
Anyway, our IKANHAZFIZMA lolcats have finally found a control worth monitoring: the world’s supply of overstuffed cheeseburgers. This continuous monitoring thing is serious business, just like the Internets.
Posted in Uncategorized |
1 Comment »
Tags: auditor • cashcows • catalogofcontrols • compliance • fisma • government • infosec • itsatrap • lolcats • management • moneymoneymoney
Posted in IKANHAZFIZMA |
1 Comment »
Tags: infosec • itsatrap • lolcats • security