Catch Me If You Can – Gaps in Log and Event Management Coverage

So I was approached by several friends in the managed services and security operations services fields, last year, with questions about discovering an attacker that is already inside a corporate network. Specifically, both had recently had clients go through internal penetration tests and only had limited success in identifying the hacking attempts. After talking with… Read more »

Not Being Complacent with Compliancy

For those of you that know me, or have heard me speak before at an event, you know then how I like to tell stories to relay messages. One of the stories that I often tell is one about a client that I like to call my Model Client. The story dates back a good ten… Read more »