Sabitlenmiş Tweet
Here is the link to today's talk on building knowledge graphs dropbox.com/s/ix8s6jxvbd54…
English
J. 🧢
8.3K posts
J. 🧢
@CxOSidekick
'You've been making the wrong mistakes' - Thelonious Monk
Katılım Ocak 2012
714 Takip Edilen901 Takipçiler
J. 🧢 retweetledi
How to use AI / LLM in incident response: security.googleblog.com/2024/04/accele…
Yes it makes our job really faster.
I am glad it can be shared, so folks can take it as inspiration where AI is potentially useful.
Kudos to all people involved, the authors of the post and the whole team.
English
@mattjay You need to work with a dev team who have a reputation for being unresponsive to any ask from security. Scanners shows multiple high sev findings for their services. You randomly find yourself stuck in a lift with the manager. What's your pitch to get a meeting with them?
English
What is your favorite question to ask someone when interviewing them for a job in infosec?
English
@philvenables As @Dantiumpro once told me, operators know it's not a single pane of glass to look through, but 'a single place to stand' from where they can ask many questions of the territory.
English
Security management. When I see orgs focusing on getting to a "single pane of glass" all they get is a "single pain of glass" that they have to constantly push to one side to get to the underling functions of the abstracted tools that they need when responding to an event.
English
@alexhutton I divide into 4 key folders / subfolders (sfs)
- Team (sfs = hiring, updates, goals)
- Processes (sfs = names of cyclical operational recurring processes)
- Projects (sfs = names of projects)
- Tools (sfs = names of each tech)
- Legal (anything from Legal)
English
Lazy twitter: I am terrible with “Outlook as a file system” - any tips you have that make your life less miserable?
English
@Beaker I guess a different view on that is 'diversity' should not mean 'disorder'. Diverse things that interact are more complex. If you can manage that, then you have good feedback loops. If you don't, you have chaos. Reduction of disorder over time != Standardization in all cases.
English
(2/2) Since we are told “defense in depth” is important and that diversity in suppliers is, too, how does one thread the needle here? A mono-ish-culture also presents a risk. Anyone have e.g. of where complexity increased attacker cost & thus improved security? I do 😜 #debate
English
(1/2) I just read an interesting story about how to improve a company’s security posture: “Standardize—The cost of security increases as the complexity of the environment increases.” <- OK, but what from nature or recent attacks would suggest a downside here of fewer “things”?
English
I always liked the book Turn The Ship Around for a good method on this.
Rob Fuller@mubix
Random leadership question: How do you empower your employees to make decisions without coming to you for everything, but also know when it is actually important to come to you for something?
English
By looking up 'zero' in the dictionary.
Accidental CISO@AccidentalCISO
How do you define trust?
English
If you send a meeting request with no agenda, then I no-attenda.
English
It's only a reportable metric if you say "Sorry, I just need to deactivate camera and mute for a moment, as I need to take a delivery."
Phil Huggins@oracuk
The swear to non-swear ratio of my last meeting suggests I need to step away from the keyboard for a break.
English
@forrestdougan Ha, brilliant. Thanks for sharing that. The reality of what gets results vs the dogma of dashboards never ceases to amaze!
English
@CxOSidekick I should add that it ran off an old Mac locked in a closet with a “do not touch” sign.
English
@jack_naglieri pretty sure that's what every VC promises with their 'platform'
English
@gableingaround 100 pages? Now you're just being silly. Although if not, Pandas would actually let you do that. Also, pesky line graphs. Think how much shorter your docs would be with pie charts.
English
@forrestdougan I assume comedy snark, but if instead this was a mocking tweet I can point you in the direction of some reading material
English
@CxOSidekick Hear me out. Cron job send it to the printer and physically place it on everyone’s desk.
English