It’s tax day.
You don’t have time to read this.
I don’t have time to write it.
Actually, my accountant is taking care of my taxes (I don’t trust myself with them). What’s really sucking down my time is preparing all the hands-on portions of the Cloud Security Alliance training.
For the second time.
We decided to split the class into two days, which means I have the opportunity to both tune the material and add new material. The cloud security portions of this are actually pretty straightforward – the harder part is scripting all the instances and configurations to focus the students on the important security bits without them having to learn things like MySQL, UNIX command lines (since, you know, auditor types will be in the class) and so on.
That means I get to figure out all the scripting. Which isn’t a big deal, except I’m working with programs I don’t really deal with on a day to day basis. So there’s a lot of learning involved, and things that used to be instinctive when I was working as an admin now involve multiple web searches and mistakes to get correct.
And little things like figuring out the mechanics of running a private cloud for 40 students on a single laptop and still providing some hands-on, as opposed to just an instructor demo.
But I’m loving it.
So go away and do your taxes. I need to play.
On to the Summary:
Webcasts, Podcasts, Outside Writing, and Conferences
- Adrian’s Dark Reading post on Cloud DB Security.
- Rich and Adrian quoted on our DBQuant press release.
- The Network Security Podcast, episode 237.
Favorite Securosis Posts
- Adrian Lane: Database Trends.
- Mike Rothman: Our insanely comprehensive database security framework. No one else does this kind of research. It’s awesome to see it in its entirety. And we provide it at no cost. You’re welcome.
- David Mortman: Database Trends.
- Rich: Software vs. Appliance: Understanding DAM Deployment Tradeoffs.
Other Securosis Posts
- Security Benchmarking, Going Beyond Metrics: Defining Peer Groups and Analyzing Data.
- Security Benchmarking, Going Beyond Metrics: Communications Strategies.
- Incite 4/13/2011: Jonesing for Air.
Favorite Outside Posts
- Mike Rothman: Security vendors should face the music, even if they hate the tune. Bill Brenner nails it. Even when a review goes south, there are ways to handle it. Scorched earth on a well-respected testing house isn’t a winning strategy.
- David Mortman: How Dropbox sacrifices user privacy for cost savings.
- reppep: Cloud validation: 8 hours of 10,000-core computation for $8k. Okay, it’s still not for everybody, but this demonstrates that “cloud computing” does have a point.
- Adrian Lane: Russian Security Service proposes ban on Gmail, Skype, Hotmail. Skype a threat to National Security? Government’s the same all over.
Research Reports and Presentations
- Measuring and Optimizing Database Security Operations (DBQuant). Woo hoo!!!
- Network Security in the Age of Any Computing.
- The Securosis 2010 Data Security Survey.
- Monitoring up the Stack: Adding Value to SIEM.
- Network Security Operations Quant Metrics Model.
- Network Security Operations Quant Report.
- Understanding and Selecting a DLP Solution.
- White Paper: Understanding and Selecting an Enterprise Firewall.
Reader interactions
2 Replies to “Friday Summary: April 15, 2011 (Tax Day!)”
It’s not tax day, this year it’s on the 18th since DC is celebrating Emancipation Day today. And all good Americans know that tax day never lands on a government holiday. You can remove your head from the sand now.
My head is someplace dark, but it isn’t the sand.