The New School of Information Security » Security Models http://newschoolsecurity.com The Blog Inspired By The Book Fri, 11 May 2012 16:20:19 +0000 en hourly 1 http://wordpress.org/?v=3.3.2 For Blog/Twitter Conversation: Can You Defend “GRC”? http://newschoolsecurity.com/2009/12/for-blogtwitter-conversation-can-you-defend-grc/ http://newschoolsecurity.com/2009/12/for-blogtwitter-conversation-can-you-defend-grc/#comments Tue, 15 Dec 2009 18:57:42 +0000 alex http://newschoolsecurity.com/?p=1205 Longtime readers know that I’m not the biggest fan of GRC as it is “practiced” today.  I believe G & C are subservient to risk management. So let me offer you this statement to chew on:

“A metric for Governance is only useful inasmuch as it describes an ability to manage risk”

True or False, why, and what are the implications if true or false.

Please discuss.

#newschoolsecurity

]]> http://newschoolsecurity.com/2009/12/for-blogtwitter-conversation-can-you-defend-grc/feed/ 15 Mortman/Hutton Security-BSides & Black Hat Presentation Available http://newschoolsecurity.com/2009/08/mortmanhutton-security-bsides-black-hat-presentation-available/ http://newschoolsecurity.com/2009/08/mortmanhutton-security-bsides-black-hat-presentation-available/#comments Mon, 17 Aug 2009 13:41:32 +0000 alex http://newschoolsecurity.com/?p=406 Hey y’all, happy Monday morning.   I’ve put Dave & my presentation for Security BSides up on slideshare:

http://www.slideshare.net/alexhutton/mortmanhutton-security-bsides-presentation

Mortman/Hutton Security B-Sides Presentation

View more presentations from alexhutton.

Also note that this includes the Black Hat presentation we gave on the Mortman/Hutton Vulnerability/Exploit model.  I hope you will enjoy!

PS – There’s probably audio available for the preso on the BSides site somewhere if you’re really interested.

]]> http://newschoolsecurity.com/2009/08/mortmanhutton-security-bsides-black-hat-presentation-available/feed/ 2