Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
BSidesSanFrancisco2011 - Misdirection: The Rise...
Search
Brett Hardin
February 14, 2011
Technology
1
220
BSidesSanFrancisco2011 - Misdirection: The Rise and Fall and Rise of Regulatory Compliance
Brett Hardin
February 14, 2011
Tweet
Share
More Decks by Brett Hardin
See All by Brett Hardin
Penetration Testing is Stupid - BsidesSF 2013
bretthardin
2
2.2k
Building Your House on Sand
bretthardin
2
1.5k
Bad Version of Builders vs. Breakers
bretthardin
1
74
Builders vs. Breakers - AppSec 2012
bretthardin
2
1.5k
Security the Wrong Way
bretthardin
2
250
Security? Who Cares! - Privacy is Dead
bretthardin
1
180
OWASP - Top 10
bretthardin
0
1k
Other Decks in Technology
See All in Technology
Ktor + Google Cloud Tasks/PubSub におけるOTel Messaging計装の実践
sansantech
PRO
1
300
本当にわかりやすいAIエージェント入門
segavvy
10
6k
The Madness of Multiple Gemini CLIs Developing Simultaneously with Jujutsu
gunta
1
2.6k
AI エンジニアの立場からみた、AI コーディング時代の開発の品質向上の取り組みと妄想
soh9834
7
370
低レイヤソフトウェア技術者が YouTuberとして食っていこうとした話
sat
PRO
7
5.8k
Bliki (ja), and the Cathedral, and the Bazaar
koic
8
1.4k
地図と生成AI
nakasho
0
710
Railsの限界を超えろ!「家族アルバム みてね」の画像・動画の大規模アップロードを支えるアーキテクチャの変遷
ojima_h
3
440
DatabricksのOLTPデータベース『Lakebase』に詳しくなろう!
inoutk
0
110
AWS Well-Architected から考えるオブザーバビリティの勘所 / Considering the Essentials of Observability from AWS Well-Architected
sms_tech
1
860
AIを使っていい感じにE2Eテストを書けるようになるまで / Trying to Write Good E2E Tests with AI
katawara
3
1.7k
Microsoft Defender XDRで疲弊しないためのインシデント対応
sophiakunii
3
400
Featured
See All Featured
Design and Strategy: How to Deal with People Who Don’t "Get" Design
morganepeng
130
19k
Art, The Web, and Tiny UX
lynnandtonic
301
21k
Writing Fast Ruby
sferik
628
62k
Six Lessons from altMBA
skipperchong
28
3.9k
Sharpening the Axe: The Primacy of Toolmaking
bcantrill
44
2.4k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.8k
実際に使うSQLの書き方 徹底解説 / pgcon21j-tutorial
soudai
PRO
181
54k
Being A Developer After 40
akosma
90
590k
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
53
2.9k
Making Projects Easy
brettharned
116
6.3k
GraphQLの誤解/rethinking-graphql
sonatard
71
11k
A better future with KSS
kneath
238
17k
Transcript
Being Sneaky About Security and Regulations - OR - "Misdirection:
The Rise and Fall and Rise of Regulatory Compliance" Brett Hardin and Mike Dahn
Who the Hell Are you Two? Mike Dahn @MikD Payment
Security Guy Brett Hardin @MiscSecurity Application Fixer Author: • Hacking: The Next Generation • SpotTheVuln.com • MiscSecurity.com
None
How Do Regulatory Rules Get Made and The Goals of
Compliance
Stop Hitting Yourself
None
None
None
Immunization
None
None
Transition.
Black Swans & Data Breaches
None
Real Costs The Placebo Effect of Fear VS.
None
None
Don't make Compliance the End Goal
Transition.
None
Do not focus on the finger or you will miss
all that heavenly glory [of Regulatory Compliance] Lee (Bruce Lee) Enter the Dragon
None
None
None
None
CISSP
None
Compliance != Security
Out of the Box
THE END
bretthardin
sansantech
segavvy
gunta
soh9834
sat
koic
nakasho
ojima_h
inoutk
sms_tech
katawara
sophiakunii
morganepeng
lynnandtonic
sferik
skipperchong
bcantrill
danielanewman
soudai
akosma
tammyeverts
brettharned
sonatard
kneath
