Twisting & Shouting

It must have been around 2008 when I was first introduced to Jim Shields by then head of Security and Risk of Barclays, Stephen Bonner. I had mentioned to Stephen that I was thinking of making some YouTube videos on the topic of information security, but in an entertaining manner. He told me that they … Continue reading Twisting & Shouting →

Thoughts on Simjacker

These are not my thoughts, rather my good friend Adrian Sanabria posted this in a thread on Twitter. I feel like a lot of great content by some very smart people can get lost in among the vast number of tweets, so I asked Adrian to blog... to which he said it would add a … Continue reading Thoughts on Simjacker →

Lost All The Money

After a several year hiatus, many creative differences, multiple instances of rage-quitting, and several occasions of ghosting so good that Patrick Swayze would have been proud - the group I founded, Host Unknown, has released it's much-awaited third song. We've covered security certifications, and we've tackled risk management. But this time, we've locked on to … Continue reading Lost All The Money →

Rocking IT

As I didn't get to attend Blackhat, BsidesLV, Defcon this year, I've been reading up on writeups from people that did attend to catch up on all the good knowledge that was shared. One of the interesting writeups I read was on CSO Online with the intriguing titles, The best and worst of Black Hat … Continue reading Rocking IT →

Writing Better Risk Statements

I found this post on my computer. I can't remember where it originally was posted (if it was at all), but I found it useful and thought I'd repost it again. Articulating risks in a clear and concise manner can greatly assist your company in making the right decisions. A typical example of poor communication … Continue reading Writing Better Risk Statements →

Unicorn Power

As of last week, it became official, that KnowBe4 became the latest Infosec unicorn. A what? A Unicorn is a term given to a private company that is valued at a billion dollars. How? An investment of $300m led by KKR, with participation from exiting investors, Elephant, and TenEleven Ventures boosted the company valuation to … Continue reading Unicorn Power →

The Curse of Erich

At first I thought it was an exaggeration. A story that had got out of hand. But after spending over 72 hours travelling with Erich Kron, I do believe he is cursed to travel with. Despite everything being booked in advance, Erich spent an awful lot of time on the phone sorting out issues that … Continue reading The Curse of Erich →

FAQs: Joining KnowBe4

Welcome back from the mid-season break! Quick recap, I left AT&T Cybersecurity aka the company formerly known as AlienVault, so I wandered the earth like Caine from Kung Fu, took up yoga, and got into adventures. Just kidding, I’ve never tried yoga! I have joined KnowBe4 as one of their Security Awareness Advocates / Evangelists. … Continue reading FAQs: Joining KnowBe4 →

An alien no more

I resigned from AT&T Cybersecurity, the part of the company formerly known as AlienVault. It was a great place and I enjoyed my time there. The days were filled with joy, like lens flare in J.J Abrams Star Trek. But everything comes to an end sooner or later. And sometimes it's best to end it … Continue reading An alien no more →

The RSA 2019 Shortlist

Last week, Thom Langford wrote a post on his RSA 2019 itinerary, which featured some of the sessions he'd shortlisted to visit. I found it to be a useful list, and thought I'd try compiling my list of vendors I'd put on my shortlist to find out more about. My employer AT&T Business - 5545 … Continue reading The RSA 2019 Shortlist →