NIST releases v1.1 of the Cybersecurity Framework

Hopefully by this point most are aware that NIST released after much work the updated version of the Cybersecurity Framework (CSF), now version 1.1. This had been worked on over the last 2 years, was the topic of 2 workshops at NIST headquarters and produced 2 drafts.It added one categories ... Read More

Report on HackMiamiCon6

HackMiami held its 6th Conference in 2018. And this year we had another new location, tho it wasn't the organizers fault. :) The previous location suffered a fire, so this year they moved to Seacoast Suites. This limited them a bit, as the rooms were not as spacious as with ... Read More
Report on BSides Orlando 2018

Report on BSides Orlando 2018

Security BSides Orlando was back in 2018, the 6th year. There were some issues this year. They have been tied, scheduling-wise, to SANS in Orlando, but this year they had a weird schedule of April 3-10, which is Tuesday thru Tuesday, rather Sunday-Saturday like schedule. So they went with April ... Read More

Critical Security Controls v7 RELEASED

I have previously posted on the Critical Security Controls, which many still incorrectly called the "SANS Top 20" and the like, tho SANS hasn't been managing them for some time. The current org that manages them is the Center for Internet Security, which has overseen them since around 2015. They ... Read More

March Updates on Frameworks & Standards

Last month I posted some information on several information security framework/standards being updated and sense then there have been updated on all of them. So here we go:NIST CSF v1.1. The second draft was released at the end of 2017, and we just wrapped up the comment period on this ... Read More
Report on BSides Tampa 2018

Report on BSides Tampa 2018

On Saturday, February 17th, I was in Tampa for the 5th Security BSides Tampa Conference. This was my third time attending, and my third time speaking. I spoke on the topic of the new "SOC for Cybersecurity" report. I'll do a separate posting on this report, giving resources.This conference had ... Read More

Report: The State of Cybersecurity in Florida

Just recently The Florida Center for Cybersecurity released their 2017 report, The State of Cybersecurity in Florida.So what IS The Florida Center for Cybersecurity? It's a statewide agency located at USF in Tampa that works with all State University System of Florida institutions, industry, the military, government, and the community ... Read More

Report on ISACA South Florida’s WOW Event

The South Florida Chapter of ISACA has been holding an annual one-day conference each year in February known as the WOW! Event. In 2018, they held their 11th conference on Friday, February 16th at FIU's Koven Conference Center at their Biscayne Bay campus.This year's theme was "The InfoSec of Things: ... Read More
Report on SecureMiami 2018

Report on SecureMiami 2018

On Saturday, February 10, 2018, DigitalEra hosted their second "annual" security event, Secure Miami at FIU, co-located with Brew Miami. Their first event was in December of 2016.Attendance was pretty good at this event, with about 350 registered to attend. This year they moved it to the larger Graham Center ... Read More

Framework/standard updates coming

Well, it's early 2018 and there are several information security framework/standards being updated:NIST CSF v1.1. The second draft was released at the end of 2017, and we just wrapped up the comment period on this. I believe the plans are to review and hopefully come out with the final release ... Read More