The intent of this talk is to take a macro level look at the state of the information security industry today based on my 30+ years' experience in the business - including 20 years as a consultant to hundreds of commercial enterprises. I began my career at the National Security Agency and was a pioneer in penetration testing and vulnerability assessment methodologies for both DoD and Civil agencies. I begin with a review of where we stand today and discuss they key reasons why we as an industry are failing. I then offer the solution to what companies need to do if they truly want to be secure and how our industry can be part of the solution.
Jeff has compiled a rich knowledge base in cryptography, information security, and most recently PCI. With PCI impacting nearly every business vertical, he has served as a QSA and trusted advisor for both VeriSign and AT&T Consulting. As an NSA cryptographer, he oversaw completion of some of the first software-based cryptosystems ever produced for the high-profile government agency. Jeff is currently a Tenable Strategist, specializing in compliance. Specifically, Jeff offers over 30 years of information security experience and knowledge to help customers align Tenable products and solutions with the security best practices that are the foundation of all industry and regulatory security standards.
If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.
Copyright 2020, IronGeek