Blog

Actionable Advice

The best part about getting to give a security talk at OSCON is I’m not talking to a security audience, I get to talk to developers about security. Developers, the ones who do the actual work, sometimes in spite of their security teams causing friction and slowing things down.

Helicopter security

After my last post about security spending, I was thinking about how most security teams integrate into the overall business…

Spend until you’re secure

I was watching a few Twitter conversations about purchasing security last week and had yet another conversation about security ROI.…

But that’s not my job!

This week I’ve been thinking about how security people and non security people interact. Various conversations I have often end…