CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.
Phoenix, AZ
Joined July 2009
- Tweets 8,305
- Following 139
- Followers 776
- Likes 17,402
Github was sending password reset emails to the wrong email address because of Unicode confusion.
eng.getwisdom.io/hacking-git…
I hate this report from @udemy; companies have distracting environments and Udemy’s solution is to train employees to perform better despite it?
How about training companies on how to provide better working environments?
research.udemy.com/wp-conten…
1
Thanks, I’ll not complain about changing the toilet paper anymore. Seeing the solution has made me appreciate what I have.
1
Agreed! Even the California Highway Patrol has had one since at least 2010.
pcworld.com/article/209584/c…
2
As a "Superbacker" on @kickstarter, I don't track delivery of anything, instead I consider it a donation to further the public good of content creation and am happy when it does.
This post by @jameystegmaier makes me think I'm in the minority.
stonemaiergames.com/kickstar…
This study found a similar result.
journals.sagepub.com/doi/abs…
1
3
11
Rent one for a few months and try it out. If you like it, buy it, and if not, have it picked up. It’s in the same category as ping pong tables, giant trampolines, treadmills, etc where if you use it, it’s worth it, otherwise it’s a waste. Hard to know until you try.
We were able to steer clear of a network-connected washer.
Biggest challenge we had was a fragranced anti-microbial coating that smelled bad and never went away after repeated washings. We returned the washer because of it.
1
2
I’ve seen BCP fall under Compliance, DR under Infra, IAM under IT, physical security under Facilities, employee travel safety under HR, anti-fraud under Risk, but also seen those under InfoSec, especially at larger companies.
2
We don’t have a microwave or a land line or live TV. It’s a slippery slope once you start simplifying your life.
1
NIST 800-181 is currently being updated, but it has a breakdown of roles with responsibilities, in case it’s of interest.
nist.gov/news-events/news/20…
1
1
4
Depends on the org and how big it is, but there is also business continuity planning, disaster recovery, identity and access management, vendor management, technical compliance, program management, internal/external communications, inbound due diligence, cryptography management.
2
2
Something even more basic, connecting an iPhone to a Windows computer and copying photos via USB reliably isn’t possible.
Photos should be portable. I had better portability a decade ago.
2
@CelticSeaSalt Love your product but hate your shaker because no one in my family looks before opening it and shaking, and half the time they open the spoon side.
Please only have a seasoning top. If someone needs a spoonful, they can unscrew the cap.
My ruin food thanks you.
1