Browsing Author: Nick Selby

Friending HR: A Rich and Mineable Source of Intelligence

Categories: Compliance, Data Breaches

[img_assist|nid=4475|title=|desc=|link=none|align=left|width=100|height=100]One of the most common complaints I hear from information security
executives in large organizations is that they are constantly playing
defense, not offense. Their network security apparatus is designed to
wait for an attack, see if it’s successful and, if it is, to plug the
hole, then repeat.

Read more...

The Penetration Testing Marketplace in 2010

[img_assist|nid=2022|title=|desc=|link=none|align=left|width=100|height=100]By Nick Selby (Managing Director,
Trident Risk Management)

Vulnerability assessment vendor Rapid7
has announced the first of a series of steps to integrate its
penetration testing and vulnerability assessment scanning products. The
first step is a module that allows users of the Metasploit Framework,
which Rapid7 acquired in October to natively import NeXpose scanner results and then take automated action against vulnerabilities MSF is capable of attacking.

Read more...

Losing the Echo Chamber in the Critical Infrastructure Security Debate

Categories: Data Breaches, Government

[img_assist|nid=713|title=|desc=|link=none|align=left|width=115|height=115]As an analyst, and now as a consultant, I raise issues of digital
and physical security: let’s talk about them, in plain terms, and
collectively move to do something. As a member of the security
digerati, I think we should be helping people, and we have to either
step up with a better way forward, or get the hell out of the way.

Read more...