Loading ...
BlogInfoSec.com Sponsors
BlogInfoSec.com Partners
-
Recent Comments
- Bouch on Who’s In Charge Here? The Problem of Information Security Governance
- SecurityExec on Who’s In Charge Here? The Problem of Information Security Governance
- dustin on Patent No. 7,124,197: ARP Poisoning Hack!
- Rob on Agility and Risk Compensation: Exploring the Connection
- Navin on Why Information Security Professionals Should Learn Texas Hold ‘em Poker
Tags
agility algorithms application security assessment awareness Awareness / Education awareness instruction awareness training bloginfosec Annoucements Books on InfoSec breach incidents Budgeting for Security business continunity CIA triad CISO CISO savvy CISO skills COBIT Coding Securely / SDLC compliance Conferences / Events / Meetups contingency plans counterfeit counterfeit equipment data breaches data breach notification laws data classification digital signature disaster recovery education Encryption end-point security equipment Exploit Code / Malware facebook fake FBI featured FFIEC Forensics / Incidents FUD FUD Theater GLBA governance government Gramm-Leach-Bliley hackers hash HIPAA honeynet honeypot identity management identity theft IDM incident Industry Commentary Information security Interviews ISACA Jobs in Information Security Johnny Long KPMG law leadership Legal & Regulatory Issues malicious insider malware metrics nation states network News Commentary No Tech Hacking OWASP Patching PCI Penetration Testing perimeter Phishing Policies and Procedures Privacy Privacy Rights Clearinghouse Reverse Engineering risk Risk Analysis risk management ROI ROSI SB 1386 Security security awareness Security Breaches self-awareness Social Engineering soft skills Solutions / Workarounds SPAM spotlight successful behaviors Tools training Uncategorized Virtual Trust Viruses / Worms vulnerability assessment Vulnerability Commentary Vulnerability Disclosure Wireless Wireless Client Wireless Discussion Wireless Security Wireless Vulnerability Discussion
Keys to Security written by Derek Schatz
Derek Schatz, CISSP, is currently the lead security architect for network systems at Boeing Commercial Airplanes, where he designs secure networks for airplanes. He has been in information security for over 11 years in both enterprise and consulting roles, including a stint as a manager in the Big 5. He has spoken at a number of conferences and also teaches information security on the side. He holds a Bachelor’s degree in Economics from the University of California at Irvine, and obtained his CISSP in 1999. He resides in southern California.
Is Your Hash Going Stale?
April 15, 2008 – 6:00 am
–
Every good security program has a process for regularly reviewing its technical security controls for things like adequacy and correctness of operation. But one area of controls that is often overlooked is that of cryptographic hash functions. Sure, the key lengths used for your cryptographic…
Are We Less Secure Now Than Before?
March 18, 2008 – 6:00 am
–
The information security professional faces a curious dichotomy in this field. Ask a bunch of security pros and many will tell you a main reason they enjoy it is that there is always something new happening. But that is often just a euphemism - “new” often means a growing threat…
Biography of Derek Schatz
March 4, 1999 – 3:48 pm
–
Derek Schatz, CISSP, is currently the lead security architect for network systems at Boeing Commercial Airplanes, where he designs secure networks for airplanes. He has been in information security for over 11 years in both enterprise and consulting roles, including a stint as a manager in the…
