Following the Wh1t3 Rabbit - Practical Enterprise Security

Enterprise Security organizations often find themselves caught between the ever-changing needs of the agile business, and the ever-present, ever-evolving threats to that business. At the same time – all too often we security professionals get caught up in “shiny object syndrome” which leads us to spend poorly, allocate resources unwisely, and generally de-couple from the organization we’re chartered to defend. Knowing how to defend begins with knowing what you’ll be defending, why it is worth defending, and who you’ll be defending from… and therein lies the trick. This blog takes the issue of enterprise security head-on, challenging outdated thinking and bringing a pragmatic, business-aligned, beyond the tools perspective … so follow the Wh1t3 Rabbit and remember that tools alone don’t solve problems, strategic thinkers are the key.

Rafal (Principal, Strategic Security Services)

OWASP, Security Bloggers Finalist and more

First off - let me say how absolutely honored and humbled I am right now... after this past week's events.


 That out of the way, I want to wrap up an absolutely wonderful week up here in Canada with the 3 OWASP chapters I spent time with over the last few days.  Specifically I want to thank Benoit Guerette of OWASP Montreal, Sherif Koussa of OWASP Ottawa, and Nish Bhalla of OWASP Toronto for having me and showing an out-of-towner a wonderful time in each of your beautiful cities.  You three have some of the most vibrant, enthusiastic OWASP chapters I've ever had the pleasure of working with.  I encourage you to keep up the good work, meet regularly and get good quality speakers so that your numbers grow.  I feel honored and lucky to be among the speakers you've invited in.


 Next there's the news I got today over my twitter feed (I'm RafalLos on twitter, in case you want to follow my random thoughts).  Apparently you all voted Following the White Rabbit, this very blog right into being a FINALIST for the Security Bloggers awards at RSA 2009.  I'm blown away.  My goal is to write some quality posts that security professionals, practitioners and management can read and get value out of - and if I'm succeeding it's because of all the feedback, comments and off-line things that I receive.  Let me say again how honored and humbled I am to be among the ranks of people like Tim Callan at VeriSign, the SunBelt blog, the F-Secure blog... really - this is awesome!


 So for the above reasons - thank you, and I will work even harder to continue to provide content you'll want to read and share with your colleagues and friends.


 See you in the bits!

Search
About the Author(s)
Follow Us
Twitter Stream


Community Announcements
HP Blog

Technical Support Services Blog

Labels
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation