Weekly Recap #2

This week's Weekly Recap post comes courtesy of the SANS Reading Room. A particular whitepaper caught my eyes, and is worth calling out a few key points in the hopes that more people will go and read the full document. An Evaluators Guide to Cloud-Based NGAV: The SANS Guide to Evaluating Next-Generation Antivirus (PDF warning) is a … Continue reading Weekly Recap #2

Weekly Recap #1

In an effort to get back on a regular writing schedule, I am planning to post a quick recap on one thing I learn each week. Based on the fire hose of information coming out of my SANS training, finding something new should be easy - making the time to write about it will be … Continue reading Weekly Recap #1

Active Directory Passwords – Who is Right?

This was originally posted as an INSIGHT for Wolf & Company, P.C. here. Background Cybersecurity breaches are making the news on what seems like a weekly basis. Many of these incidents involve unauthorized access to systems and data as a result of compromised user credentials. These credentials are compromised through improper storage, weak password criteria, and … Continue reading Active Directory Passwords – Who is Right?


This is a follow-up post to my CISSP Success Story post - this time taking a look at my first GIAC experience - the GIAC Security Essentials Certification (GSEC).

DerbyCon 7.0 Legacy Roundup

This was originally posted as an INSIGHT for Wolf & Company, P.C. here. What is DerbyCon? In recent Banking Technology Connections articles such as How Safe is Your Active Directory?, our Information Technology (IT) Assurance department discussed key takeaways from this year’s DEF CON, which is one of the largest hacker conventions in the world. DEF CON … Continue reading DerbyCon 7.0 Legacy Roundup