Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
BSidesSanFrancisco2011 - Misdirection: The Rise...
Search
Brett Hardin
February 14, 2011
Technology
1
230
BSidesSanFrancisco2011 - Misdirection: The Rise and Fall and Rise of Regulatory Compliance
Brett Hardin
February 14, 2011
Tweet
Share
More Decks by Brett Hardin
See All by Brett Hardin
Penetration Testing is Stupid - BsidesSF 2013
bretthardin
2
2.3k
Building Your House on Sand
bretthardin
2
1.5k
Bad Version of Builders vs. Breakers
bretthardin
1
78
Builders vs. Breakers - AppSec 2012
bretthardin
2
1.5k
Security the Wrong Way
bretthardin
2
250
Security? Who Cares! - Privacy is Dead
bretthardin
1
190
OWASP - Top 10
bretthardin
0
1.1k
Other Decks in Technology
See All in Technology
Bill One 開発エンジニア 紹介資料
sansan33
PRO
4
17k
モノタロウ x クリエーションラインで実現する チームトポロジーにおける プラットフォームチーム・ ストリームアラインドチームの 効果的なコラボレーション
creationline
0
630
20251225_たのしい出張報告&IgniteRecap!
ponponmikankan
0
110
ハッカソンから社内プロダクトへ AIエージェント ko☆shi 開発で学んだ4つの重要要素
leveragestech
0
620
CQRS/ESになぜアクターモデルが必要なのか
j5ik2o
0
760
サラリーマンソフトウェアエンジニアのキャリア
yuheinakasaka
35
17k
1万人を変え日本を変える!!多層構造型ふりかえりの大規模組織変革 / 20260108 Kazuki Mori
shift_evolve
PRO
6
1.1k
松尾研LLM講座2025 応用編Day3「軽量化」 講義資料
aratako
15
4.9k
テストセンター受験、オンライン受験、どっちなんだい?
yama3133
0
210
All About Sansan – for New Global Engineers
sansan33
PRO
1
1.3k
自己管理型チームと個人のセルフマネジメント 〜モチベーション編〜
kakehashi
PRO
5
2.4k
純粋なイミュータブルモデルを設計してからイベントソーシングと組み合わせるDeciderの実践方法の紹介 /Introducing Decider Pattern with Event Sourcing
tomohisa
1
880
Featured
See All Featured
Game over? The fight for quality and originality in the time of robots
wayneb77
1
76
Keith and Marios Guide to Fast Websites
keithpitt
413
23k
A Tale of Four Properties
chriscoyier
162
24k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
PRO
196
71k
Claude Code のすすめ
schroneko
67
210k
Building AI with AI
inesmontani
PRO
1
610
Evolving SEO for Evolving Search Engines
ryanjones
0
94
How to train your dragon (web standard)
notwaldorf
97
6.5k
Redefining SEO in the New Era of Traffic Generation
szymonslowik
1
190
Practical Tips for Bootstrapping Information Extraction Pipelines
honnibal
25
1.7k
How Software Deployment tools have changed in the past 20 years
geshan
0
31k
Neural Spatial Audio Processing for Sound Field Analysis and Control
skoyamalab
0
140
Transcript
Being Sneaky About Security and Regulations - OR - "Misdirection:
The Rise and Fall and Rise of Regulatory Compliance" Brett Hardin and Mike Dahn
Who the Hell Are you Two? Mike Dahn @MikD Payment
Security Guy Brett Hardin @MiscSecurity Application Fixer Author: • Hacking: The Next Generation • SpotTheVuln.com • MiscSecurity.com
None
How Do Regulatory Rules Get Made and The Goals of
Compliance
Stop Hitting Yourself
None
None
None
Immunization
None
None
Transition.
Black Swans & Data Breaches
None
Real Costs The Placebo Effect of Fear VS.
None
None
Don't make Compliance the End Goal
Transition.
None
Do not focus on the finger or you will miss
all that heavenly glory [of Regulatory Compliance] Lee (Bruce Lee) Enter the Dragon
None
None
None
None
CISSP
None
Compliance != Security
Out of the Box
THE END
bretthardin
sansan33
creationline
ponponmikankan
leveragestech
j5ik2o
yuheinakasaka
shift_evolve
.jpg){kind=avatar}
aratako
yama3133
kakehashi
tomohisa
wayneb77
keithpitt
chriscoyier
soudai
schroneko
inesmontani
ryanjones
notwaldorf
szymonslowik
honnibal
geshan
skoyamalab
