IP360 and Splunk – Part 1

IP360 and Splunk – Part 1

Introduction Over the last several months I’ve been working towards becoming a Splunk Certified Architect.  To prepare, I wanted additional hands-on practice and tried to think of ways I could apply all the techniques I had learned in my classes. I happened to have a 

Incident Response: Carbon Black

Incident Response: Carbon Black

A few months ago I read about an emerging incident response technology called Carbon Black.  At its core, Carbon Black acts as a surveillance camera for a system.  It’s a lightweight sensor that constantly collects process and network information.  More importantly, it shows relationships for 

How To Pass SANS GIAC Certification Exams

How To Pass SANS GIAC Certification Exams

As I mentioned in a previous post, I recently took SANS SEC 504 and have since been studying for the accompanying GIAC Certified Incident Handler (GCIH) certification.  I’m happy to say that over the weekend I passed (thank you, thank you) and wanted to share my strategy on studying for 

How to Succeed in Information Security

How to Succeed in Information Security

As our world becomes increasingly connected and dependent on computing devices, information security has evolved from luxury to necessity.  With more and more computers connecting each day, the number of attacks and breaches have increased exponentially.  This in turn means the demand for qualified information 

Security News

Security News

With new attacks and vulnerabilities emerging at increasingly alarming rates, it’s critical for information security professionals to stay on top of the latest techniques and methodologies to defend our networks from malicious users (and more often than not, our own users!).  A key part of 

SANS SEC 504

SANS SEC 504

Last week I found myself among over a thousand nerds and geeks learning the latest techniques to defend a network — yes, it must be a SANS conference.  This year I decided to take SEC 504 – Hacker Techniques, Exploits & Incident Handling to better understand the 

My CISSP Story

My CISSP Story

Reasons to get (or not get) the CISSP Getting my CISSP certification has been at the back of my head for the last few years as many consider it the gold standard for information systems security professionals.  But no one likes taking tests and I