I’m a twenty plus year InfoSec professional. I have seen nearly everything, and had to fix most of it – either on my own, or by coaching someone through how to correct it. I have lectured on everything from Architecture (yes, I studied building Architecture at Carnegie-Mellon, and UCLA), to general IT architecture, security and design (yes, they can be related). Most of my lectures have focused on Sensible Approaches to PCI, Effectiveness in Controls, InfoSec Governance, and Security Awareness. I have lectured for ISACA, ISSA, IIA, ENISA, McAfee, Tripwire, UC Irvine, InfoSek, AIFS, and lots of private locations where I pull out my soapbox, sometimes complete with Hawaiian shirt and sandals.
I believe in the power of a positive attitude (gotta love what you’re doing, even when it sucks), and anything is possible – even skiing through a revolving door. I believe in discourse, and balancing needs between stakeholders. And, maybe it’s my Architecture training, I believe everything we do is an act of design.
I love teaching, working one-on-one with fellow professionals, and giving knowledge away.
I am also a bit of an adrenaline junkie – water and open roads are my weaknesses. Let me find a way to conquer them. Two things you never give me: your root password, and the keys to your car. You won’t get either back in the same condition you gave them to me.
Some clues on my leanings:
“How to Measure Anything” Douglas W. Hubbard
“The Phoenix Project” Gene Kim, Keven Behr, George Spafford
“The Toyota Way” Jeffrey Liker
“Thinking Fast and Slow” Daniel Kahneman
“Drive” Daniel H. Pink
“Beyond Fear” – Bruce Schneier
http://www.realgenekim.me/ – Gene’s sharp and not just for his Tripwire work.
http://www.schneier.com/ – some cool musings, sometimes a rant, but useful thoughts
http://xkcd.com – Because XKCD is awesome techie geek humor
http://www.theregister.co.uk/ – good fodder for a laugh, news, and a tweeked view of IT