Doing an audit/pentest or other assessment? Here is part of the report for you.

Entertaining read over at SANS by Mark Hofman. Having done hundreds of risk assessments over the years, I can tell you that there are many times during the pre-solicitation phase where I will tell a customer “I’m willing to bet you have these 5 security issues in your organization”, and I get a look of ashen disbelief.

Like this:

Be the first to like this post.

~ by stevegoldsby on February 15, 2008.

Posted in Uncategorized

About Steve Goldsby

Steve has nearly two decades of experience in the information technology and security industry as a subject matter expert and consultant to Federal, State and commercial organizations spanning all major verticals. He is a popular featured speaker at national and state conferences as an Information Security subject matter expert. His Information Security articles and papers have been featured in national trade magazines and journals. Steve works for Integrated Computer Solutions Inc.

Twitter

More linkedIn Nigeria scam spam? http://t.co/XOsOFns9.....3 weeks ago
GoldsbyLinx: First linkedIn Nigeria scam spam?: Looks like the Nigerian banker scam is ramping back up on LinkedIn. http://t.co/dOiBJP6M.....3 weeks ago
Retail Investors Pull $140 Billion From Equity Funds In 2011 Which Close The Year With 19 Consecutive Outflows http://t.co/wfdRULaY.....1 month ago
GoldsbyLinx: Apple batteries are brickable by hackers: https://threatpost.com/en_us/blogs/apple-laptop-batteries... http://bit.ly/om1QBc.....6 months ago
GoldsbyLinx: Seapking at INetU ITX Data Security Summit 13 July: http://www.itexpertseries.com/ come visit. @Gr... http://bit.ly/p2DUaf.....7 months ago

Steve on Security