Mike Featured Media Things This post contains various links to press articles I've contributed to, as well as other media, including recordings of talks I've been involved in.
InfoSec Being There (Tales of A Beer Farmer) A meandering review of six months of being a member of The Beer Farmers.
InfoSec Everyone, Everywhere In this post, I talk about my experiences in the information security community, particularly focusing on characters and behaviours. It might be interesting, so read on.
InfoSec Killing Bad Encryption If your run a website, early TLS is bad. If you run a payment service, early TLS is about to be outlawed. Read on.
Cons Nae bother. Another BSides! I've written before about my experiences at InfoSec conferences, and last week I attended another. Here's my take on BSides Scotland.
AppSec If You Make It, Don't Forsake It When you build something, you want it to stand the test of time, right? In this post, I'll examine why that actually doesn't always happen.
Cons (Not Just) Another InfoSec Conference So, I've written before about attending InfoSec conferences, how they roll and make me feel. Here's my take on BSidesLeeds.
InfoSec Patch All The Things In this post, I'll argue the case for ensuring that as much as is physically possible, systems and underlying platforms and infrastructure are kept as up to date as possible.
Cons InfoSec Conferences - Attending versus Speaking I shoved in a speculative submission to BSidesLeeds to give a talk about web application firewalling (WAF). Here's how it went.
InfoSec Something's Rotten In The State of InfoSec Like most other spaces, InfoSec isn't without its issues and dramas. In this post, I explore a few examples and offer my views.
InfoSec Security versus Compliance In this post, I talk about what drives a more secure organisation. Is it by doing all the right things, ticking all the boxes or a pragmatic blend of the two?
InfoSec Information Security as a Team (ISaaT) Corporate information security is *everyone's* responsibility. You hear that said a lot, but does it actually mean anything?
InfoSec Managing PCI DSS Compliance This might seem a pretty dry subject, but if your company processes card payments, then it needs to comply the the Payment Card Industry Data Security Standard.
Cons Attending InfoSec Events I attended my first InfoSec event recently and found it to be rather life changing. Read on...