Stuff I’ve written

451 Research – what I do in my day job.

The CISSP companion handbook: A collection of tales, experiences and straight up fabrications fitted into the 10 CISSP domains of information security – self-published e-book available on Amazon.

Like an episode of Star Trek Information Security Buzz, Nov 25, 2013

Analogies Project Contributor

Debunking 15 of the biggest information security myths Tripwire, The State of Security, June 12, 2012

Staying Security Savvy Security Middle East Magazine, Issue 58 Jan/Feb 2011January 1, 2011

PSN Hack Where Risk Management and Reality Collide Hackin9 Magazine June 1, 2011

The Cloud Security Rules – Book chapter contributor



Interview with CA’s executive forum at RSA – Feb 2014

Infosecurity magazine interview on the power of social media for security professionals. – October 2013

Most entertaining security blogger, SolarWinds Thwack Community March 2013

Paul Dot Com

Eurotrash Security Podcast

Infosec Professional – February 2012

Countdown 2 Infosecurity – June 2011

Stuff where people have written about me or quoted me

A review of my CISSP companion guide book in Infosecurity Magazine – July 2014

Quoted in an SC Magazine story related to ECB hack – July 2014

Review of my CISSP companion book by Ben Rothke – May 2014

Quoted in the Guardian – April 2014

A couple of mentions of my RSA Shelfware talk here and here – Feb 2014

Safenet: Dropbox security goes enterprise-wide – October 2013

Dark Reading: 5 habits IT Security Professionals need to break – September 2013

Infosecurity magazine writeup on my Bsides LV talk – August 2013

Quoted in Network Computing – July 2013

6 real security threats IT professionals will face in 2013 – May 2013

Quoted in Lancope Press release – May 2013

Winning the RSA 2013 Social Security Blogger award for “The Most Entertaining Security Blog” (even Brian Krebs mentioned me!)

Quoted in SCMagazine, Twitter seeks 2FA engineers for stronger access – February 2013

Quoted on Slashdot article, IT Security: When Protection Becomes Prohibitive – January 2013

Volunteer at (ISC)2 Foundation

Quoted on TheRegister – November 2012

Tripwire – February 2012

Infosec Ramblings – October 2011

Rogers Information Security  Blog – September 2011

Security FAQ’s