Patching vulnerabilities is for servers not for people
It& #39;s okay to feel and express vulnerability
https://abs.twimg.com/emoji/v2/... draggable="false" alt="💖" title="Funkelndes Herz" aria-label="Emoji: Funkelndes Herz">
It& #39;s okay to feel and express vulnerability
Threat detection is for malicious attackers not for colleagues
It& #39;s okay to feel that your core needs aren& #39;t being met...unless your colleague is genuinely a malicious insider attack or--okay this metaphor is getting complicated
https://abs.twimg.com/emoji/v2/... draggable="false" alt="😳" title="Errötetes Gesicht" aria-label="Emoji: Errötetes Gesicht">
It& #39;s okay to feel that your core needs aren& #39;t being met...unless your colleague is genuinely a malicious insider attack or--okay this metaphor is getting complicated
Cryptography is for hiding information from attackers, not from colleagues.
It& #39;s okay not to know everything. Share what you know. Don& #39;t cover what you don& #39;t know by being cryptic.
https://abs.twimg.com/emoji/v2/... draggable="false" alt="✨" title="Funken" aria-label="Emoji: Funken">
It& #39;s okay not to know everything. Share what you know. Don& #39;t cover what you don& #39;t know by being cryptic.
Pentesting is...uh maybe not this one
https://abs.twimg.com/emoji/v2/... draggable="false" alt="😅" title="Lächelndes Gesicht mit offenem Mund und Angstschweiß" aria-label="Emoji: Lächelndes Gesicht mit offenem Mund und Angstschweiß">
"Your compliance will be rewarded"
Frameworks and standards are for security teams...and also for people
Standards are good. Plan, do, act, check! Continuous improvement of your insecurity management system is in the best interests of your entire polycule---I mean server fleet
Standards are good. Plan, do, act, check! Continuous improvement of your insecurity management system is in the best interests of your entire polycule---I mean server fleet
System hardening is for servers, not for people.
Servers need firewalls. People are like systems: allow reasonable, consensual input and build resilience.
Servers need firewalls. People are like systems: allow reasonable, consensual input and build resilience.
Access controls are for everyone! Your assets are yours, and your stated access definitions should be honored!
For security teams as corgis, see this thread! https://twitter.com/itsC0rg1/status/1298130651439230977?s=19">https://twitter.com/itsC0rg1/...