Matthew Hackling B.Sc. (Security) CISSP
Ronin Security Consulting Pty Ltd
ACN 138 311 681
"At Your Service"
Outlandish security punditry from an Australian perspective. Practical information security governance and pragmatic IT security vulnerability management.
-A CISO who is more than a sacrificial lamb. To qualify their tenure
must be of a serious duration and have survived a major security
incident or made quantifiable material risk reduction.
-An executive who thinks strategically about IT risk and doesn't "knee
jerk" after an incident or do the minimum to "cover their proverbial"
- a security solution that is well maintained and configure in line
with it's documented and approved configuration
- a project manager who will delay a milestone to ensure that a
security governance requirement is adequately met.
What things would you like to tick off on your infosec bucket list?
- I have written a product review which was printed and a few online
articles for IDG's publication CSO magazine. I'm now a regular blogger
on that site too. Do I qualify for a press pass? Hmm all readers
please report in on events I can "cover" especially those with
delicious snacks :) CSO seems to be taking off, much more so than my
little venture http://www.ozsec.net.au
- I've been thinking a bit about creating an open source security
operations maturity framework project inspired by OWASP OPENSAMM
project. Just need to find an organisation to help me champion it.
Something like this would really help to illustrate where on the
security journey an organisation is and where they would like to go. I
have thought of ISC2, AISA and the ISF but maybe it is SANS?
- my little business is developing, I've delivered a few successful
engagements and now I even have a glossy brochure.