Information Security
Introduction Over the last several months I’ve been working towards becoming a Splunk Certified Architect. To prepare, I wanted additional hands-on practice and tried to think of ways I could apply all the techniques I had learned in my classes. I happened to have a …
A few months ago I read about an emerging incident response technology called Carbon Black. At its core, Carbon Black acts as a surveillance camera for a system. It’s a lightweight sensor that constantly collects process and network information. More importantly, it shows relationships for …
As I mentioned in a previous post, I recently took SANS SEC 504 and have since been studying for the accompanying GIAC Certified Incident Handler (GCIH) certification. I’m happy to say that over the weekend I passed (thank you, thank you) and wanted to share my strategy on studying for …
As our world becomes increasingly connected and dependent on computing devices, information security has evolved from luxury to necessity. With more and more computers connecting each day, the number of attacks and breaches have increased exponentially. This in turn means the demand for qualified information …
With new attacks and vulnerabilities emerging at increasingly alarming rates, it’s critical for information security professionals to stay on top of the latest techniques and methodologies to defend our networks from malicious users (and more often than not, our own users!). A key part of …
Last week I found myself among over a thousand nerds and geeks learning the latest techniques to defend a network — yes, it must be a SANS conference. This year I decided to take SEC 504 – Hacker Techniques, Exploits & Incident Handling to better understand the …
Reasons to get (or not get) the CISSP Getting my CISSP certification has been at the back of my head for the last few years as many consider it the gold standard for information systems security professionals. But no one likes taking tests and I …