The Art and Science of Report Writing

Presented at Kernelcon 2019, April 5, 2019, 11:15 a.m. (20 minutes)

Over the past 17 years, working in various industries including Airport Weather Observation, Broadcast Communication, Video Engineering and Technology, and finally Information Security, I've learned a thing or two about presenting information. Specifically, how to present a topic that could stir negative emotions, in a way that is non-threatening. I'm a firm believer in presenting penetration testing findings in a way that communicate their urgency without presenting the information using a harsh tone of voice in the writing. This talk will give you, the audience, some useful communication tips on presenting Penetration Testing Findings in a way that doesn't stir negative emotions from the recipient. Tips will include communication styles per personality type, and what I call danger terms, which are words that have a harsh tone when presented in findings, along with alternative words that communicate more effectively.


Presenters:

  • Michael Born
    Michael Born has worked as a Sr. Security Consultant focusing primarily on Network and Application Security Assessments, Purple Team Assessments, and Mobile Application Security Assessments. Michael has earned several industry certifications, has presented locally in Omaha at various chapters of national organizations, he's served on the Chapter Board locally for OWASP, and has co-taught offensive Python courses at various AppSec USA and AppSec Europe conferences. Currently Michael is working on a cookbook style book for a well known publisher and is scheduled for release in the Fall of 2019.

Links: