Happy Thanksgiving Everyone!

@accidentalciso Not sure if it helps anyone, but this is my current readiness checklist for applications.

Privileged Access Management
☐ Privileged access approvers list (group or individuals)
☐ Data access approvers list (group or individuals)
☐ Roles identified for PAM
☐ Targets identified for PAM
☐ Service accounts identified
☐ Secret inventory completed
☐ Secret rotation procedures written
☐ Access review strategy and schedule written
☐ MFA implemented
☐ Break-glass accounts created
Secure Configuration Management
☐ Unnecessary features/ports/services disabled
☐ Patch/update strategy defined
☐ Inventory added to CMDB with owners
☐ Baseline Configurations documented/exported
Detection Engineering
☐ Authentication logs sent to SIEM
☐ Administrative activity logs sent to SIEM
☐ Logging levels configured to capture security events
☐ Special IOC development
☐ Special rule development
Incident Response
☐ Determine SOAR necessity
☐ Endpoint isolation strategy
☐ Identity isolation strategy
☐ Downtime procedures documented
Incident Recovery
☐ Application operational/functional check procedure
☐ Service/system restart dependencies document
☐ Backup & Recovery test schedule

So, I seem to be making a fence between social media tools. I find myself gravitating to Mastodon for Infosec and IT stuff, and Threads for more personal/non-work. Of course the streams do cross sometimes, and that's ok. That's just like life.

I'm using Twitter less and less. Insta is still more personal, but it is also more photo oriented. So, I still go there. And Reddit is Reddit.

I'm just going to leave this here. Haha. #foodporn

It's Saturday! Time for one of my favorite forms of #coffee Cold Brew on nitro. #localcoffee

What's the magic word today? PeeWee. Ahhh! RIP Paul. #cancerSucks

@andrewdwilliams Truth! It's so annoying and seems like a desperate act by a marketing team.

@evacide I like to write the strongly worded email, but I use my name on the To field. That way I can still feel the satisfaction of hitting the send button but not lose a friend or job.

@johntimaeus sometimes I just want to find out how many sodas are left in the machine at MIT just by lifting a Finger. No expectations of me sharing any information other than my laziness to see if it's worth the trip to the machine.

@pixelnull I get ya. Maybe start small. Can you do it in the org you are in? Maybe make a YouTube video series as a side project. It may not get you out of doing IR completely, but maybe build an audience. Add subscribe options. At least it changes your week up so it's not just actual IR.

Ich find das Coverbild der aktuellen Sendung von Chaosradio Freiburg bringts ziemlich auf den Punkt. https://rdl.de/beitrag/chaosradio-freiburg-0x81

@pixelnull start teaching others IR?

Well, my general thought on these Social apps is that Mastodon seems the most relevant to me (not even just the infoSec group).

Threads was interesting to peek at, but doesn't hold my attention yet.

Twitter is still a place for real-time trends because some bots are actually useful.

Facebook is still where my friends/family live.

Oh and Reddit is useful but still reminds me of the old BBS days with postings and replies. But makes for great rabbit-hole timekills.

@jerry So, was there a land shark in the White House? LOL

Perfect! Absolute Perfection! The Hollywood Star of the twice-impeached, twice-indicted, sexual assaulter, libelous, corrupt former WH guy has been redecorated.

@InfoSecSherpa It's a nice way to test weight capacity.

So here's a wild thought. What if...
CISO reports to CIO. Since the CIO tends to still have the ear of the board, run with it. The CIO would have 3 pillars: IT Ops, Security/risk, accountability.

InfoSec sets the rules based on risks and vulnerabilities, IT does IT, accounting checks the work. CIO is the referee, sets priorities, and reports.

@mrdiamondj @SwiftOnSecurity too bad the leaflet is asking about my car warranty...

@SwiftOnSecurity Why is it when I put my Vision glasses on, I find myself standing in an open field west of a white house with a boarded front door. A small mailbox is in front of me.

@jerry Thank you for being the ever vigilant guard dog silencing the noise. Much appreciated by me and I'm sure many others.