Browsing All Posts filed under »Open Knowledge«

Industrial IT Security Field Report (public conference presentation)

April 20, 2017 by


A few weeks ago I had the pleasure to present at the IT Security Strategy Days , a leading national IT Security conference in Germany, about our experiences (so far) at Airbus ICT approaching Industrial IT Security in our industrial manufacturing context for the last 3 years. I am sharing the main slides here. Of course […]

A Brief Introduction (not only) for UN Folks on Information Security Classification

March 26, 2012 by


I recently needed a convenient method of introducing a very mixed audience (comprised of ladies and gentlemen from Finance, Legal, HR, Audit and several business lines) to the subject of information classification – information security classification, to be precise. While all of them are certainly experts in their specific area, only few of them were […]

Top Controls That Work

November 6, 2011 by


There are some (not so many)  pragmatic InfoSec control “charts” around  – and one of the most well known is probably the SANS’s (Top) 20 Critical Security Controls list. Another one definitely worth your attention  is the Australian Department of Defence’s (Cyber Security Operations Centre’s) list of  the Top 35 Mitigation Strategies to Mitigate Targeted Cyber Intrusions. For […]

Interesting: SIRv10 and the MMPC Thread Report

June 3, 2011 by


This May, Microsoft released some interesting reports: the Microsoft Security Intelligence Report Volume 10 (SIR v10) and the Microsoft Malware Protection Center (MMPC) Threat Report. The latter, a follow up to the 2010 special report on Battling Botnets, focuses on Qakbot, a rootkit based stealth-mode backdoor that steals sensitive user data from infected machines. SIRv10 […]