Categories ArchivesAdministration

Sample Book Chapter posted! standard

Anyone know I didn’t write a book with Anton Chuvakin last year?  If not, I’ll tell you ALL about it. OK, seriously, I know I’ve talked a lot about it here.  If you have not bought it and are still skeptical, go check out the sample chapter we have posted on CSO Online.  This chapter, entitled “The Art of the Compensating Control,” is an expansion of the article of the same name.  There are some case studies at the end, and more details on compensating controls.  If you are like most people dealing with PCI, you probably have lived the compensating control euphoria turned nightmare turned compromise. If you still have not bought one and want a chance to win ...

Continue Reading

Herding Cats March: The Business of Security standard

Have you checked out ISSA Connect yet?  The next issue is up there with my column, The Business of Security.  In it, I discuss the business side of security and the transition that has to happen for security leaders to be more effective and valuable to their corporations. If you are a member, log into ISSA Connect and join the discussion!  Interact with great professionals globally as well as the authors that you enjoy reading every month.  If you are not a member, go sign up! Possibly Related Posts: Top Posts from 2015 October 2015 Roundup September 2015 Roundup August 2015 Roundup June-July 2015 Roundup

Continue Reading

February 2010 Roundup standard

What was popular in February? Healthcare seems to be a popular topic and I’ll be posting more on it as the new security requirements mature. Here are the five most popular posts from last month: Personal Liability for QSAs. I had a colleague ask me if he should take out personal liability insurance in case something bad happened on one of his assessments after he left his company.  Check out what I found out from Dave Navetta! Healthcare Security, the New Front. Boy, what a mess I caused.  After watching my doctor type in a four digit numeric password to access all of my medical records, I sent a letter over complaining about the lack of security and poor standard ...

Continue Reading

The RSA Conference, Are You Ready? standard

The annual RSA conference descends upon the Moscone center in San Francisco next week, and I can’t tell you how excited I am to be attending this year.  Not only do I work for the company that bears the conference’s name, but we’re making some big announcements about our future and direction.  More on that next week! Outside of that, if you want to catch up with me you will have several opportunities. Monday: Arriving in the late afternoon.  Meeting with some folks and gearing up for the conference! Tuesday: Client meetings and booth duty!  Come find me at the RSA booth from 11am to 2:30pm in the Expo. Wednesday: This day is stacked with meetings and I will be ...

Continue Reading

Herding Cats February: The Retreat to Centralized Computing standard

Have you checked out ISSA Connect yet?  The next issue is up there with my column, The Retreat to Centralized Computing.  I’m traveling abroad right now so I don’t have the ability to put it up here on the site, but will do it when I get back next week. If you are a member, log into ISSA Connect and join the discussion!  Interact with great professionals globally as well as the authors that you enjoy reading every month.  If you are not a member, go sign up! Possibly Related Posts: Top Posts from 2015 October 2015 Roundup September 2015 Roundup August 2015 Roundup June-July 2015 Roundup

Continue Reading

So who wins the contest? standard

It’s been a month since our new book was released, and it’s time to make good on the little contest I had going here!  Four people responded with the correct answer, and they were numbered based on the order they entered. Lindsey Brothers Bergert Laroussi And with no further delay, congrats to Mr. Brothers!  He was randomly selected by random.org’s random number generator!  He wins a $30 Gift Certificate to Amazon.com! Congrats, and thanks for reading! Possibly Related Posts: Top Posts from 2015 October 2015 Roundup September 2015 Roundup August 2015 Roundup June-July 2015 Roundup

Continue Reading

December 2009 Roundup standard

What was popular in December? There sure was a lot to talk about.  MasterCard Here are the five most popular posts from last month: MasterCard’s Got Its Flippy-Floppies. OK guys, I’m not picking on them.  Seriously.  It’s just been a newsworthy year from MasterCard.  This was a hot topic for companies faced with PCI DSS, including the multitude of new QSAs that started based on their original announcement. The Book, It’s Out Baby! See!  I wasn’t kidding when I said I was working on a book with Anton Chuvakin.  It’s finally out, and we’re really proud of it!  Click the link above to figure out how you could win a $30 Amazon.com gift card! Hackers Love Social Media. Social media ...

Continue Reading

The Book, It’s OUT baby! standard

That’s right!  If you pre-ordered our (Anton Chuvakin & mine) book, you should be receiving it today!  It’s chocked full of all kinds of fun stuff.  For example, did you know that I worked in the word “brewdog?” In fact, let’s make a contest out of this.  The first five people to email me the page number in the book where that word appears will be entered to win a $30 Amazon.com gift card! Anton has a video in his blog where he talks about the book, and I have something special coming up soon.  I’ve got it half done, but have not recorded the actual video of me talking yet.  Look for that early next week or late on ...

Continue Reading

“PCI Compliance” Book 30% Discount code standard

It’s coming!  Don’t miss getting your copy on December 15th! During the entire “launch month”—December 2009—you can get our book at a 30% discount using the code: “SYNGRESS30“. Here is some more info: Book website (check out a couple of free PCI DSS sample policies there!) Official page of “PCI Compliance” at Amazon Book page at Syngress website (has full book Table of Contents); for the above discount code, you have to buy it from here. My co-author, Anton Chuvakin, and his blog. Anton & I worked VERY hard on this book, and under a very tight deadline.  Of course, the final week of writing occurred during BlackHat, and I distinctly remember late night writing sessions at home while Anton ...

Continue Reading

Herding Cats December: Disclose Me standard

Everyone is entitled to SOME right to privacy, right? Boy, thank goodness that isn’t the case, otherwise YouTube would be dead. In this month’s edition of Herding Cats, I explore the history of the right to privacy as well as the challenges with Social Media and the next generation of netizens. So go check out this month’s edition of Herding Cats here! Update 9:00pm: Fixed the link.  Sorry bout that!  Thank you, Nick! Possibly Related Posts: Top Posts from 2015 October 2015 Roundup September 2015 Roundup August 2015 Roundup June-July 2015 Roundup

Continue Reading

This is a unique website which will require a more modern browser to work!

Please upgrade today!