Cigital’s Agile Security Manifesto

I tend to operate in accordance with the four principles of Cigital‘s recent Agile Security Manifesto. [su_pullquote align=”right” class=””]NOTE: I cannot state whether I’ve employed Cigital professionally but I have had interaction with them in my career.[/su_pullquote] These principles align with security governance, education and scaling throughout an organization versus roles in security domains taking on… Continue reading Cigital’s Agile Security Manifesto

Introduction to The Dude Says, Episode 001

Introductory episode to The Dude Says, where I share my background and what I’m working on.   GIAC GCCC #242        

Standardize Your Security In An Agile Culture

  Thoughts on Information Security and Risk Management in an Agile Culture     Narrated slidedeck from a presentation given at the Chattanooga chapter of ISSA. In keeping with the Ides of March timing of the presentation, I chose to model my analogy to include references to Julius Caesar and Mark Antony.