Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
BSidesSanFrancisco2011 - Misdirection: The Rise and Fall and Rise of Regulatory Compliance
Search
Brett Hardin
February 14, 2011
Technology
1
190
BSidesSanFrancisco2011 - Misdirection: The Rise and Fall and Rise of Regulatory Compliance
Brett Hardin
February 14, 2011
Tweet
Share
More Decks by Brett Hardin
See All by Brett Hardin
Penetration Testing is Stupid - BsidesSF 2013
bretthardin
1
2.1k
Building Your House on Sand
bretthardin
2
1.4k
Bad Version of Builders vs. Breakers
bretthardin
1
51
Builders vs. Breakers - AppSec 2012
bretthardin
2
1.4k
Security the Wrong Way
bretthardin
2
220
Security? Who Cares! - Privacy is Dead
bretthardin
1
160
OWASP - Top 10
bretthardin
0
970
Other Decks in Technology
See All in Technology
OPENLOGI Company Profile
hr01
0
45k
グイグイ系QAエンジニアでやっていくよ!
____rina____
0
760
Observabilityジャーニーを実現するためのAWSサービス:OSS編
o11yfes2023
0
110
Databricksの生成AI戦略
taka_aki
1
360
【リラン】AIの光と闇?失敗しないために知っておきたいAIリスクとその対応 ①政府の動き編
tkhresk
0
140
拓展QA日常工作的邊界
line_developers_tw
PRO
0
550
開発スピードの維持向上を支える、テスト設計の 漸進的進化への取り組み / Continuous Test Design Development for Speed of Product Development
ropqa
0
180
QA経験のないエンジニアリング マネージャーがQAのカジュアル面談に出て 苦労していること・気づいたこと / scrum fest niigata 2024
yoshikiiida
2
650
TypescriptでのContextualな構造化ロギングと社内全体への導入
leveragestech
3
570
サイボウズ 開発本部採用ピッチ / Cybozu Engineer Recruit
cybozuinsideout
PRO
9
37k
RubyKaigi 2024 - Make Your Own Regex Engine!
makenowjust
0
130
OPENLOGI Company Profile for engineer
hr01
1
2.1k
Featured
See All Featured
Distributed Sagas: A Protocol for Coordinating Microservices
caitiem20
323
20k
Designing the Hi-DPI Web
ddemaree
276
33k
YesSQL, Process and Tooling at Scale
rocio
165
13k
For a Future-Friendly Web
brad_frost
172
9k
Designing for Performance
lara
601
67k
We Have a Design System, Now What?
morganepeng
43
6.8k
How GitHub (no longer) Works
holman
305
140k
Thoughts on Productivity
jonyablonski
60
3.9k
A Philosophy of Restraint
colly
197
16k
The Invisible Customer
myddelton
114
12k
Ruby is Unlike a Banana
tanoku
96
10k
Refactoring Trust on Your Teams (GOTO; Chicago 2020)
rmw
26
2.3k
Transcript
Being Sneaky About Security and Regulations - OR - "Misdirection:
The Rise and Fall and Rise of Regulatory Compliance" Brett Hardin and Mike Dahn
Who the Hell Are you Two? Mike Dahn @MikD Payment
Security Guy Brett Hardin @MiscSecurity Application Fixer Author: • Hacking: The Next Generation • SpotTheVuln.com • MiscSecurity.com
None
How Do Regulatory Rules Get Made and The Goals of
Compliance
Stop Hitting Yourself
None
None
None
Immunization
None
None
Transition.
Black Swans & Data Breaches
None
Real Costs The Placebo Effect of Fear VS.
None
None
Don't make Compliance the End Goal
Transition.
None
Do not focus on the finger or you will miss
all that heavenly glory [of Regulatory Compliance] Lee (Bruce Lee) Enter the Dragon
None
None
None
None
CISSP
None
Compliance != Security
Out of the Box
THE END