A Logo

Feel free to include my content in your page via my
RSS feed

Help Irongeek.com pay for
bandwidth and research equipment:

Subscribestar or Patreon

Search Irongeek.com:

Affiliates:
Irongeek Button
Social-engineer-training Button

Help Irongeek.com pay for bandwidth and research equipment:

paypalpixle


Security Management Without the Suck Tony Turner - Tim Krabec (BSides Las Vegas 2014) (Hacking Illustrated Series InfoSec Tutorial Videos)

Security Management Without the Suck Tony Turner
Tim Krabec

This talk will discuss real world techniques for implementing and optimizing a security program that we call RADIO(Recon, Analyze, Develop, Implement, Optimize). Conventional wisdom has historically presented guidance that works well in textbook scenarios or for very large companies but often does not integrate well with small to medium size companies. Our Five Step approach aims to provide more reasonable guidance for small to medium size companies or those organizations with operational models that might not lend themselves well to traditional methods.

Bio: Tony Turner Bio: Tony has over 10 years of working experience in the information security field, specializing in Web Application Firewalls and Web Application Architecture. Tony has a wide range of experiences including Penetration Testing, Incident Response, Security Architecture, Security Program Development, and PCI Compliance. Before joining GuidePoint Security as a Managing Security Consultant, Tony was the Senior Project Lead for Darden Restaurants, a Fortune 500 organization, responsible for managing security operations and engineering teams, as well as technical lead for web application security architecture, incident response, PCI and security assessment activities. He holds a BS in Information Security and Compliance from Hodges University, founded and leads the OWASP Orlando Chapter and founded and coordinates the B-Sides Orlando security conference. Oh and certs, yeah he has way too many of those things. Tim Krabec Bio: Over the years Tim's passion for Information Technology has taken him from Programming to System Administration, Consulting and into Information Security. Tim has been an active member of the South Florida Chapter of ISSA since he was introduced to the group back nearly 10 years ago. Tim's passion has let him to giving talks at his local ISSA Chapter as well as Skytalks. Tim enjoys the problem solving aspect of Information Technology. Tim has competed in the Mystery Challenge at Defcon, this is a team based challenge which involves skills from many different disciplines, from Hardware, to soldering, to bookbinding, arcane languages, Social Engineering, to problem solving and Programming.

Back to BSides Las Vegas 2014 video list

15 most recent posts on Irongeek.com:


If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.

Copyright 2020, IronGeek
Louisville / Kentuckiana Information Security Enthusiast