Risky Context (Page 2)

Sign in Subscribe

On cocktail JDs in infosec and why they will keep coming...

On cocktail JDs in infosec and why they will keep coming...

How is having 5 years of experience as C++ developer relevant for a CISO role? This is the age of cocktail JDs. I think they will keep coming for some time. Read to know why.

Don't focus on admin certs when you want to become a Pentester. However...

Don't focus on admin certs when you want to become a Pentester. However...

focussing on administrative certifications while aiming to be a pentester - could be a waste of time. I try to explain 'why' and 'what to do instead' in this post.

appeared on br3akpoint with neelu tripathi

appeared on br3akpoint with neelu tripathi

So, this happened. I appeared on a podcast. br3akpoint by Neelu Tripathy. spoke about ISO 27001, implementation challenges, and other nuances related to it.

Remember these clauses & covenants while any enterprise application is being finalised for purchase

Remember these clauses & covenants while any enterprise application is being finalised for purchase

How to ensure that, as a CISO, all the tools are properly integrated with your SOC?

Want to fight alert fatigue (in SOC)? Do this...

Want to fight alert fatigue (in SOC)? Do this...

Alert fatigue happens when a soc analyst ends up looking at too many alerts, resulting in missing crucial alerts. So, what's the way out? Read on.

Security is a cost centre

Security is a cost centre

security is a cost centre in every company, except ...

You are not getting value from pen-tests. Here are 5 reasons why.

You are not getting value from pen-tests. Here are 5 reasons why.

Penetration testing is a part of most of security regulations now. However, regulatory compliance need not be the only value proposition.As a customer, there could be 5 reasons why you are unable to get more value out of pen-tests. Have a read.

Try these tools to prepare your pentest report

Try these tools to prepare your pentest report

Everyone dreads preparing report, post-work. However, it is extremely important for the

6 places to look into when auditing or assessing risks in and around Web Application Firewall (WAF)

6 places to look into when auditing or assessing risks in and around Web Application Firewall (WAF)

Web Application Firewall (WAF) has become a security imperative and absence of a WAF gets raised as a risk or an audit finding. However, many auditors and risk assessors miss some or all of the below 6 important areas related to WAF. So, here they are.

Vulnerability, Control, and Risk are not same

where-is-the-risk

Vulnerability, Control, and Risk are not same

As Pentester, auditor, or risk assessor, it is important to understand difference

Offense is not the sexiest game in town, defense is...

Offense is not the sexiest game in town, defense is...

To all those system and network administrators out there, who are thinking of jumping onto the infosec bandwagon, pentesting style because of the glamour quotient, remember - defense is better than offense. Read on...

Are you a top-down or bottoms-up person? it will matter while switching career in cybersecurity

Are you a top-down or bottoms-up person? it will matter while switching career in cybersecurity

Are you a top-down or bottom-up person? Answer to this question will be important if you are thinking about a switch into cybersecurity or move laterally within cybersecurity. Read on.