mastodon.ie

3 posts3 participants0 posts today

Pyrzout :vm:Released: MITRE ATT&CK v17.0, now with ESXi attack TTPs <a href="https://www.helpnetsecurity.com/2025/04/23/released-mitre-attck-v17-0-now-with-esxi-attack-ttps/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.helpnetsecurity.com/2025/04/23/released-mitre-attck-v17-0-now-with-esxi-attack-ttps/</a> <a href="https://social.skynetcloud.site/tags/incidentresponse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#incidentresponse</a> <a href="https://social.skynetcloud.site/tags/attacklifecycle" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#attacklifecycle</a> <a href="https://social.skynetcloud.site/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> <a href="https://social.skynetcloud.site/tags/attacktools" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#attacktools</a> <a href="https://social.skynetcloud.site/tags/MITREATT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MITREATT</a>&CK <a href="https://social.skynetcloud.site/tags/Don" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Don</a>'tmiss <a href="https://social.skynetcloud.site/tags/Hotstuff" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Hotstuff</a> <a href="https://social.skynetcloud.site/tags/MITRE" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MITRE</a> <a href="https://social.skynetcloud.site/tags/News" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#News</a> <a href="https://social.skynetcloud.site/tags/ESXi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ESXi</a>

Lenin alevski 🕵️💻New Open-Source Tool Spotlight 🚨🚨🚨"Threat-Informed Defense" isn't just a buzzword. The Center for Threat-Informed Defense bridges MITRE ATT&CK with actionable tools like Adversary Emulation Plans and the Attack Workbench, empowering defenders to stay ahead of real-world TTPs. <a href="https://infosec.exchange/tags/CyberDefense" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberDefense</a> <a href="https://infosec.exchange/tags/MITREATTACK" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MITREATTACK</a> Want to map security controls to adversary behavior? Check out Mappings Explorer by the Center for Threat-Informed Defense. It aligns your defense strategy directly with the MITRE ATT&CK framework. Precision matters. <a href="https://infosec.exchange/tags/ThreatIntelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatIntelligence</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> Attack Flow helps you visualize how attackers chain techniques into full-scale operations. An indispensable tool for understanding and mitigating attack sequences. Powered by the Center for Threat-Informed Defense. <a href="https://infosec.exchange/tags/SOCtools" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SOCtools</a> <a href="https://infosec.exchange/tags/ThreatModeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatModeling</a> TRAM leverages automation to map CTI reports directly to MITRE ATT&CK tactics and techniques. Less manual work, more actionable insights. Open-source ingenuity at its best. <a href="https://infosec.exchange/tags/CyberThreats" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberThreats</a> <a href="https://infosec.exchange/tags/MITREATTACK" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MITREATTACK</a> Building effective cyber analytics requires depth; "Summiting the Pyramid" delivers frameworks to challenge adversary evasion strategies. A research-backed way to harden defenses. <a href="https://infosec.exchange/tags/CyberAnalytics" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberAnalytics</a> <a href="https://infosec.exchange/tags/ThreatHunting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatHunting</a>🔗 Project link on <a href="https://infosec.exchange/tags/GitHub" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#GitHub</a> 👉 <a href="https://github.com/center-for-threat-informed-defense" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/center-for-threat-informed-defense</a><a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/Software" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Software</a> <a href="https://infosec.exchange/tags/Technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Technology</a> <a href="https://infosec.exchange/tags/News" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#News</a> <a href="https://infosec.exchange/tags/CTF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CTF</a> <a href="https://infosec.exchange/tags/Cybersecuritycareer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecuritycareer</a> <a href="https://infosec.exchange/tags/hacking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#hacking</a> <a href="https://infosec.exchange/tags/redteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#redteam</a> <a href="https://infosec.exchange/tags/blueteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#blueteam</a> <a href="https://infosec.exchange/tags/purpleteam" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#purpleteam</a> <a href="https://infosec.exchange/tags/tips" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tips</a> <a href="https://infosec.exchange/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://infosec.exchange/tags/cloudsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloudsecurity</a>— ✨ 🔐 P.S. Found this helpful? Tap Follow for more cybersecurity tips and insights! I share weekly content for professionals and people who want to get into cyber. Happy hacking 💻🏴‍☠️

Neil MaddenAs you might have guessed I’m doing a lot of thinking about <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> recently. The one area I think where STRIDE could perhaps do with updating is an increased focus on privacy. I’ve been toying with STRIPED - ie adding Privacy Violation to the list. What do people reckon - is this a good idea, or is privacy its own thing that should be treated separately (eg with LINDUN)?

Neil MaddenI've updated the illuminated security <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> workbook, designed for either pen&paper or <a href="https://infosec.exchange/tags/reMarkable2" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reMarkable2</a> use. It's now a lot more detailed and with hyperlinked sections. At some point I'll get around to documenting how to use it, but if you've read <a href="https://infosec.exchange/@adamshostack" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@adamshostack</a> 's book it should be self-explanatory. Entirely free to download, use etc - CC-BY-SA licensed.<a href="https://illuminated-security.com/threat-modelling-workbook-2/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://illuminated-security.com/threat-modelling-workbook-2/</a>

Neil MaddenI generally do some form of STRIDE-per-Element when threat modelling. But I find “spoofing” threats don’t sit well with the others in this methodology. (Is spoofing a process a threat to that process or to its interactors?) I find it much more natural to consider spoofing as a dataflow threat rather than as a threat to a process/datastore/external entity. Although this can result in duplication (if the same endpoint is involved in lots of dataflows), I find it useful to explicitly consider the potential impact of the “same” threat on each flow. What do others think? <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a>

OWASP FoundationAre you ready for <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> Global <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> EU? 🚀 Be part of the action as a volunteer! Your contribution can make a real impact. Fill out the form today to join something incredible! Don't miss out, sign up here: <a href="https://owasp.wufoo.com/forms/z1jihpei0ws2e3v/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.wufoo.com/forms/z1jihpei0ws2e3v/</a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

John Brown Type Beatsless risk ≠ no risksome risk of adverse health effects, disability, destroyed immune systems, death, etc. is something to mitigate mitigation includes masking, proper ventilation, social distancing, etc.any time you're in a crowd (indoors, outdoors), wear a maskdo you want people to show up to protests, actions, etc.?do you want these people united against fascism to be in poor health?five years is more than enough time to learn a lesson. we might not have five more years. get it to-fucking-gether already<a href="https://kolektiva.social/tags/MaskUp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MaskUp</a> <a href="https://kolektiva.social/tags/CovidIsntOver" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CovidIsntOver</a> <a href="https://kolektiva.social/tags/DisabilityJustice" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DisabilityJustice</a> <a href="https://kolektiva.social/tags/RiskAnalysis" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RiskAnalysis</a> <a href="https://kolektiva.social/tags/ThreatModeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatModeling</a>

Emoryat that point i am going to feel really annoyed that i haven't found a team to be amazing with yet.i did apply for a really fun sounding job at apple as like the IT Admin for an r&d team. if they get on the phone with my mad scientist ass they'd quickly see why i am so interested. my cv should make that perfectly clear though it's an odyssey of a very widely experienced gonzo engineer.someone should really hire me. <a href="https://soc.kvet.ch/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://soc.kvet.ch/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> <a href="https://soc.kvet.ch/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://soc.kvet.ch/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a>

GeneralX"The Signals Network (TSN) and the Reynolds Journalism Institute (RJI) are launching comprehensive training for journalists working with sensitive sources.The training modules will live permanently on TSN’s website and be free to access."<a href="https://rjionline.org/news/protecting-the-protectors/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://rjionline.org/news/protecting-the-protectors/</a> <a href="https://freeradical.zone/tags/journalism" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#journalism</a> <a href="https://freeradical.zone/tags/whistleblowers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#whistleblowers</a> <a href="https://freeradical.zone/tags/digitalsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#digitalsecurity</a> <a href="https://freeradical.zone/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://freeradical.zone/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a>

OWASP FoundationAre you excited about <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> Global <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> EU in May? Picture yourself dashing between sessions, networking over coffee... How about adding mentoring to your experience? Be a Mentor! Join us: <a href="https://owasp.wufoo.com/forms/zk2cdkr1qla6o8/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.wufoo.com/forms/zk2cdkr1qla6o8/</a> 🚀 <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a>

Paco Hope #resistSome of my colleagues at <a href="https://infosec.exchange/tags/AWS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AWS</a> have created an open-source <a href="https://github.com/awslabs/threat-designer" rel="nofollow noopener noreferrer" target="_blank">serverless #AI assisted #threatmodel solution</a>. You upload architecture diagrams to it, and it uses Claude Sonnet via Amazon Bedrock to analyze it.I'm not too impressed with the threats it comes up with. But I am very impressed with the amount of typing it saves. Given nothing more than a picture and about 2 minutes of computation, it spits out a very good list of what is depicted in the diagram and the flows between them. To the extent that the diagram is accurate/well-labeled, this solution seems to do a very good job writing out what is depicted.I deployed this "Threat Designer" app. Then I took the architecture image from <a href="https://medium.com/serverless-transformation/what-a-typical-100-serverless-architecture-looks-like-in-aws-40f252cd0ecb" rel="nofollow noopener noreferrer" target="_blank">this blog post</a> and dropped that picture into it. The image analysis produced some of the list of things you see attached.This is a specialized, context-aware kind of OCR. I was impressed at boundaries, flows, and assets pulled from a graphic. Could save a lot of typing time. I was not impressed with the threats it identifies. Having said that, it did identify a handful of things I hadn't thought of before, like EventBridge event injection. But the majority of the threats are low value.I suspect this app is not cheap to run. So caveat deployor. <a href="https://infosec.exchange/tags/cloud" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloud</a> <a href="https://infosec.exchange/tags/cloudsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cloudsecurity</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a> <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a>

OWASP FoundationOWASP Global AppSec EU 2025 Barcelona: full training schedule is out now!Day 3 is packed with even more hands-on training sessions to enhance your AppSec expertise! Whether you're new to the field or looking to sharpen your skills, this day promises deeper dives into the latest security techniques and tools.View the full agenda and register now: <a href="https://owasp.glueup.com/event/owasp-global-appsec-eu-2025-123983/home.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.glueup.com/event/owasp-global-appsec-eu-2025-123983/home.html</a><a href="https://infosec.exchange/tags/AppSecEU2025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSecEU2025</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a> <a href="https://infosec.exchange/tags/SecureCoding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SecureCoding</a> <a href="https://infosec.exchange/tags/ThreatModeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatModeling</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/Barcelona" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Barcelona</a>

snaeqeOH: "Dragon Drop Interface" <a href="https://chaos.social/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a>

OWASP Foundation👀 OWASP Global AppSec EU 2025 Barcelona Day 1 Agenda Sneak Peek!The full agenda is now live on our website, and we're kicking things off in Barcelona with an incredible first day! Join in on training sessions on AI Whiteboard Hacking, Full-Stack Pentesting, and iOS and Andriod App Security on day 1.👉 <a href="https://owasp.glueup.com/event/owasp-global-appsec-eu-2025-123983/home.html" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.glueup.com/event/owasp-global-appsec-eu-2025-123983/home.html</a><a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> <a href="https://infosec.exchange/tags/AppSecEU2025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSecEU2025</a> <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a> <a href="https://infosec.exchange/tags/AIsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AIsecurity</a> <a href="https://infosec.exchange/tags/ThreatModeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ThreatModeling</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/Barcelona" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Barcelona</a>

Gary McGrawMaking automated Threat Modeling better with applied ML. A recorded webinar that I participate in yesterday. <a href="https://sigmoid.social/tags/MLsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#MLsec</a> <a href="https://sigmoid.social/tags/ML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ML</a> <a href="https://sigmoid.social/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://sigmoid.social/tags/swsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#swsec</a> <a href="https://sigmoid.social/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a> <a href="https://sigmoid.social/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> <a href="https://www.youtube.com/playlist?list=PLpo8W6wt_WV-haEOL-nWyz5TKhJOJ5Gao" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.youtube.com/playlist?list=PLpo8W6wt_WV-haEOL-nWyz5TKhJOJ5Gao</a>

Neil MaddenAn interesting result from psychology is that if you ask people a question and present them with example answers, then they find it much harder to think of responses outside the framing of the examples. So, if you are going to use an LLM (or even an attack tree/library) for <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> , use it after you have exhausted the threats you can think of on your own. Engage your brain critically first.

OWASP FoundationExciting news <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a>! 🎉 The full agenda for Global <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> EU (<a href="https://infosec.exchange/tags/Barcelona" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Barcelona</a>) is now live! 🚀 Dive into the incredible sessions we've lined up just for you, and don’t wait—register now to secure your spot! <a href="https://owasp.glueup.com/event/owasp-global-appsec-eu-2025-123983/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.glueup.com/event/owasp-global-appsec-eu-2025-123983/</a><a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> <a href="https://infosec.exchange/tags/SBOMM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SBOMM</a>

OWASP FoundationMaster Threat Modeling at OWASP Global AppSec 2025 Barcelona!Led by industry expert Adam Shostack, this course will refine your skills through guided exercises and real-world scenarios, ensuring you leave with practical, actionable expertise. <a href="https://owasp.glueup.com/event/123983/register/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.glueup.com/event/123983/register/</a><a href="https://infosec.exchange/tags/Barcelona" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Barcelona</a> <a href="https://infosec.exchange/tags/owaspglobalappseceu2025" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#owaspglobalappseceu2025</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a>

Emoryit's lucky for some team out there that i find few things are as satisfying as transmogrifying a team of 3 into a team of 9. or 90 into 270.even i know that's good math! they start spotting problems before they get in front of me for their second and third <a href="https://soc.kvet.ch/tags/threatmodel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodel</a>.i have experience in managed services, vuln management, IR, forensics, cloud architectures, saas vendors, HPC, docsis/fiber/firewalls/ids/ips/MFA/u2f/pki🤷 🤓 <a href="https://soc.kvet.ch/tags/jobsearch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#jobsearch</a> <a href="https://soc.kvet.ch/tags/threatModeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatModeling</a> <a href="https://soc.kvet.ch/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> <a href="https://soc.kvet.ch/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://soc.kvet.ch/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://soc.kvet.ch/tags/fedihired" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fedihired</a>

Emorymy <a href="https://soc.kvet.ch/tags/jobsearch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#jobsearch</a> continues, most of my search is focused around PHL or Toronto/GTA and remote looking for:1. a crew & leadership with a culture of collab & support; shared responsibility model ;) 2. they're okay with me floating between IA & PA 3. if they're in canada might they sponsor plzi would love an org that wants to implement a culture of <a href="https://soc.kvet.ch/tags/threatModeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatModeling</a> and <a href="https://soc.kvet.ch/tags/privacy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#privacy</a> because i can turn software engineers into <a href="https://soc.kvet.ch/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> and privacy resources in about 12-18mo.<a href="https://soc.kvet.ch/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://soc.kvet.ch/tags/fedihired" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#fedihired</a>

Recent searches

Search options

Administered by:

Server stats:

#threatmodeling