My talk is at 10:40am - 11:00am in Moscone West, Room: 2020. Immediately after the talk, I'll be moving to the "Continuing the Conversation" space in the 2nd floor lobby of Moscone West. I'll be wearing a black EFF hat, in case you want to pick me out of a crowd.
This is 20 minute talk, so it will only be an introduction to the topics. My main goal is to stimulate your interest to learn more and to dig into these resources:
- RSAC slides: "Ten Dimensions of Security Performance for Agility and Rapid Learning"
- New blog post: "How to aggregate metrics into a performance index or score" (Thomas Scoring System, TSS) -- detailed tutorial
- New demo Excel spreadsheet for TSS, explained in the previous blog post
- Intro page to the Ten Dimensions, with links to all detail pages: "Ten Dimensions of Cyber Security Performance"
Not directly related to the above, but here's the slides for the talk I gave Monday at BSides-SF:
- "Get a Grip on Unintended Consequences" -- best in PPTX so you can read the stories in the speaker notes. Here's an audio recording, starting at 4:17:24. (FYI, Adam Shostack gave a nice talk in the hour before me on Threat Modeling.)
If we don't connect at the conference for some reason, feel free to email me at russell ♁ thomas ❂ meritology ♁ com. (Earth = dot; Sun = at)
And if you've come this far and you aren't following me on twitter -- @MrMeritology -- what's wrong with you? Follow, already! ☺
And if you've come this far and you aren't following me on twitter -- @MrMeritology -- what's wrong with you? Follow, already! ☺