AppSecBloke
  • Home

InfoSec

A collection of 14 posts

Mike

Media Things

This post contains various links to press articles I've contributed to, as well as other media, including recordings of talks I've been involved in.

InfoSec

Being There (Tales of A Beer Farmer)

A meandering review of six months of being a member of The Beer Farmers.

InfoSec

Everyone, Everywhere

In this post, I talk about my experiences in the information security community, particularly focusing on characters and behaviours. It might be interesting, so read on.

InfoSec

Killing Bad Encryption

If your run a website, early TLS is bad. If you run a payment service, early TLS is about to be outlawed. Read on.

Cons

Nae bother. Another BSides!

I've written before about my experiences at InfoSec conferences, and last week I attended another. Here's my take on BSides Scotland.

AppSec

If You Make It, Don't Forsake It

When you build something, you want it to stand the test of time, right? In this post, I'll examine why that actually doesn't always happen.

Cons

(Not Just) Another InfoSec Conference

So, I've written before about attending InfoSec conferences, how they roll and make me feel. Here's my take on BSidesLeeds.

InfoSec

Patch All The Things

In this post, I'll argue the case for ensuring that as much as is physically possible, systems and underlying platforms and infrastructure are kept as up to date as possible.

Cons

InfoSec Conferences - Attending versus Speaking

I shoved in a speculative submission to BSidesLeeds to give a talk about web application firewalling (WAF). Here's how it went.

InfoSec

Something's Rotten In The State of InfoSec

Like most other spaces, InfoSec isn't without its issues and dramas. In this post, I explore a few examples and offer my views.

InfoSec

Security versus Compliance

In this post, I talk about what drives a more secure organisation. Is it by doing all the right things, ticking all the boxes or a pragmatic blend of the two?

InfoSec

Information Security as a Team (ISaaT)

Corporate information security is *everyone's* responsibility. You hear that said a lot, but does it actually mean anything?

InfoSec

Managing PCI DSS Compliance

This might seem a pretty dry subject, but if your company processes card payments, then it needs to comply the the Payment Card Industry Data Security Standard.

Cons

Attending InfoSec Events

I attended my first InfoSec event recently and found it to be rather life changing. Read on...

AppSecBloke © 2022
Latest Posts Twitter Ghost