Matthew J. Harmon: Minneapolis, Minnesota, États-Unis, Earth

Action and Adventure on the High Seas of Information Security

sosb

  • EXP: Have you tried turning it off and on again? (Seriously)


    Forever being the advocate of resilient and high quality Information Technology (IT) infrastructure (a geek), I frequently get pulled into not-so-uber-sexy-cyber-security projects for friends and neighbors. This one time, a…

  • Inventory: Assets; Software and Hardware


    In order to be effective, you must know what you are trying to protect. Further, you can reuse your financial audit information to help accomplish this. Download a local copy…

  • Malware: Defense


    This cute kitten is harboring a malicious test file, four different ways, that every anti-virus should detect, don't blow your whole budget on buzzword bingo "anti-virus" software. Start with the…

  • Passwords: Write them down.


    Store your passwords LastPass Password Safe KeePass Multi-factor authentication can be cheap, easy -and- secure. YubiKey Google Authenticator DuoSecurity (Facebook) Account lockouts: 10 tries. Account lockouts are necessary to prevent…

  • Patch & Update: All the Things


    Patch your operating systems and applications on a regular schedule. Use a tiered update system where the most technically savvy people get the updates first and report issues and then…

  • Internet Access: Security Basics


    Secure Configurations for Network Devices such as Firewalls, Routers, and Switches Establish a secure perimeter Enable the security features on the existing hardware from your ISP Change the default passwords…

  • SOSB: Original Slides & Notes [PDF]


    Security on a Shoestring Budget Original Security on a Shoestring Budget (SOSB Slide Deck) with Notes at Github. Follow the SOSB developing series.…

  • Inventory: Data and Information


    Information Types Start with a simple but comprehensive Data Classification program and announcing it to staff If the data is on the organization website or in marketing material, it is…