CISO at @sardineai. Treasurer of @OWASP Board of Directors. (he/him) qatta' mIghtaHghach.

Phoenix, AZ
Joined July 2009
Replying to @KatieSwindlerUX
I think many people try to hire to most experienced person they can find, but they’re then hiring the person with the least amount to learn, which can make a job boring. I try to hire people into roles with some learning runway left.
1
For anyone in InfoSec not subscribed to the @feistyduck newsletter (free!), you're really missing out. feistyduck.com/bulletproof-t…
4
6
We've just released the next two video lectures in my security engineering course, covering virtualisation, containers, sandboxing, app stores and supply-chain security: lightbluetouchpaper.org/2022…
46
147
The 1950 US Census will be released April 1, 2022. archives.gov/research/census…
1
@ruiqi_ch Small nit, most people in their 50s are not boomers, and in two years, none will be.
Replying to @jasonhuck
Give @RumbleDiscovery a try. It has a free home user tier. rumble.run/
2
And some sweet ASCII art!
2
He doesn't have a doctorate. I found his name mentioned with the title of "Shri" instead of "Dr" in this document (on page 50): library.isical.ac.in:8080/js…
1
Replying to @jasonhuck
Starting with two clicks?
1
Pro-tip: Never take a college class that covers what you do professionally. Just sayin', if there's violation of law, my first call is to the attorneys, I'm not performing a risk assessment and handing out my non-lawyerly guidance.
1
Replying to @mkonda
Some of that is required by European law, but I get the intent is to reduce harm universally. You might want to look at this: fpf.org/blog/how-the-student… Then read through this: eff.org/deeplinks/2021/09/fp… Perhaps that will help guide your efforts and avoid pitfalls.
1
Replying to @shelane
I’ve had many mortgages over the years, this is a first for me.
@PlayVALORANT I've come to the conclusion that ranks in comp are meaningless, and given the widely lopsided scoring, even you do not know the true ranks.
Replying to @dveditz @ErrataRob
Sometimes.... Wordle 249 3/6* 🟨⬛⬛⬛⬛ ⬛🟩⬛⬛🟩 🟩🟩🟩🟩🟩
My mortgage company refuses to take any payment beyond what is owed, unless it's a multiple of what is owed. I auto-pay a rounded up value, which means they mail me back the money they refuse to apply to my account. Is it really cheaper to mail it back than apply it? 🙄
1
They’re meant to be eaten in one sitting.
2
Replying to @jasonhuck
You should turn on hard mode.
Lots of gatekeeping out there. I hire for interest and enthusiasm.
2
I pivoted into security in my 40s. It was really hard to get a foot in the door. And I had 14 years of full stack web dev experience. That’s why I pay it forward by hiring first-timers; I’ve been there and it is way harder than it should be.
1
4
If it’s common to think entry level is up to three years experience, then no wonder it’s so hard to break into security; they’re up against people with experience. If we want to end the labor shortage in infosec, we have to hire people with NO experience. Call it what you want.
1
1