Stop making excuses; it’s time to own your HIV (High Impact Vulnerabilities)

Presented at DerbyCon 3.0 All in the Family (2013), Sept. 29, 2013, 1 p.m. (50 minutes).

“I’ve been MS08-067’ed two years in a row…now what?”

Most systems are insecure, not because we don’t know about or understand the vulnerability but because we fail at planning and communicating the solution to address or mitigate the vulnerability. The goal of this talk is to outline small steps that anyone can take to become more project focused on fewer problems and better communicate the results. It’s very easy to let the daily operational stuff consume all of your time and budget, but with a little planning and goal setting anyone can quickly check if they are working on what matter or getting sidetracked by noise. If you are ready to put down the shotgun and become a sniper this talk is for you!


Presenters:

  • Jack D. Nichelson
    A member of the security community for over a decade since DefCon 8, and finally submitting a talk to hopefully give a little back to this great community. Jack Nichelson is the Director of Global Information Security for GrafTech International with almost twenty years of IT & risk management experience in the government, financial, and manufacturing industries. He has taught undergraduate Cisco networking courses for the CCNA, CCNP, and CCNA Voice & Security and developed security awareness training for multiple enterprises. He has a degree in Information Systems from Youngstown State University, and is working on an Executive MBA at Baldwin-Wallace University. Numerous certs are as followed: CISSP, GCIH, GSLC, CRISC, VCP, CCNP, CCNA, MCSE… “Good security is not something you have, it’s something you do” – Wendy Nather

Similar Presentations: