faulker051

This is a Call for Papers (CFP) for Metricon 7. Key stats first: Conference date: August 7, 2012 CFP deadline: May 31, 2012 Conference location: Bellevue, WA Cost to attend: free ( but you’d need to add value to discussions ) . CFP follows below and can be found at SecurityMetrics site . Metricon 7 - Security Metrics: Useful or Bust!! How to define, generate, and communicate security metrics you can use TODAY! This year, Metricon 7.0 is excited to issue a call for participation to the information security community. The event will occur August 7th 2012 collocated with USENIX in Bellevue, WA. Given that this is the 7th event, we think it is time to finally say it: security metrics MUST be useful NOW! Thus, the focus this year is on useful and usable metrics – not conceptual and theoretical stuff that sounds great, but cannot and will not be used in today’s organizations. Also, presentations and panels that talk about “How?” and “What?” will be strongly prioritized over “Why?...

Here is my next monthly "Security Warrior" blog round-up of top 5 popular posts/topics this month: “ Simple Log Review Checklist Released! ” is often at the top – the checklist is still a very useful tool for many people “ Updated With Community Feedback SANS Top 7 Essential Log Reports DRAFT2 ”, “ SANS Top 5 Essential Log Reports Update! ” and their predecessor  “Top5 SANS Log Reports Update DRAFT” also show up close to the top. IF YOU WANT TO VOLUNTEER TO FINISH THIS DOCUMENT- PLEASE EMAIL ME! My classic PCI DSS log review series is still on my Top 5: “ Complete PCI DSS Log Review Procedures ”; they are also useful for other compliance or security log review and log monitoring. “ On Free Log Management Tools ” is a companion to the checklist below ( updated version ) “ On Choosing SIEM ” is about the least wrong way of choosing a SIEM tool – as well as why the right way is so unpopular. In addition, I’d like to draw your attention to a few posts from my Gartner bl...