BLOGGERS
9. The Converging Network
http://theconvergingnetwork.com/
Mitchell Ashley, the CTO and GM of emerging products at StillSecure, blogs at CTN. His blog focuses on the convergent nature of today’s IT world, where networking issues and security issues have become intertwined. Network security, Mitchell says, “has moved from the perimeter to the interior of the network.”
10. Andy Willingham
http://andyitguy.blogspot.com/
Andy has been in IT for about 10 years, starting in the world of OS2 and Novell. About 6 years ago he became interested in security and became a CISSP - a certified information systems security professional. His March 7, 2007 post talks about the Internet’s “original sin” - the fact that from its creation, it was never intended to be a secure network. This metaphor makes Andy and his fellow CISSPs priests in the church of IT security.
11. Martin McKeay
http://www.mckeay.net/
Martin McKeay, a certified information systems security professional, has been called an IT security “guru,” a “security A lister,” and a “blog evangelist” by his peers. All the other IT security bloggers read McKeay’s blog, so you should too. As of February 2007, McKeay had been hired by StillSecure, where he will be working on the Alpha testing of Cobia, an open source unified network platform that includes routing, core network services and security, all in the same software application.
12. Brian Krebs
http://blog.washingtonpost.com/securityfix/
Brian Krebs joined the Washington Post in 1995, started covering the technology and computer security in 2000, and began blogging at washingtonpost.com March 2005. While other bloggers focus on the detailed minutiae of IT network security, Krebs’ Security Fix blog is aimed at average internet users, helping them fight viruses, worms and identity theft. Think of Security Fix as a daily “weather update” for your computer’s internet security.
13. Rebecca Herold
http://www.realtime-itcompliance.com/index.html
Rebecca Herold has over 16 years of experience as an information security professional. Rebecca created the Information Protection program at Principal Financial Group where she worked for 12 years. She now writes for Realtimepublishers.com. On her blog, she writes about identity theft, information security, and the government’s role in business computing.
14. Thomas Ptacek, et al
http://www.matasano.com/log/
Matasana Chargen is a high output team blog that covers several beats under the network security umbrella, including chronicling the “oft predicted demise” of the security industry; disclosing security flaws and vulnerabilities; security issues related to Apple’s OS X operating system; and its “Peabody Award winning series,” This Old Vulnerability.
15. Michael J. Santarcangelo
http://www.securitycatalyst.com/
Michael Santarcangelo, the self-proclaimed “bald security expert,” has a confession to make: he loves to reduce the jargon-infused tech speak of programming nerds and security professionals, into easy to understand language that users will understand. Yes, users - that group of dim witted monkeys that computer geeks typically view with scorn and derision. But for Michael Santarcangelo, his passion is explaining difficult concepts in simple terms to inspire users to change their behaviors.
16. Michael R. Farnum
http://infosecplace.com/blog
Like Michael Santarcangelo, Michael Farnum is also a bald security expert. The difference? Farnum sports a goatee. Farnum has been in the information security field since 2000, and currently works for Accuvant in Houston. He blogs about real world manifestations of information security issues, like the Texas governor’s emails, and flying without identification in a post 9/11 world.
17. Michael Dahn
http://pcianswers.com/
Michael Dahn administers an impersonal blog crammed with information about the Payment Card Industry (PCI) and its Data Security Standard (DSS). Anyone can get author status on his blog by demonstrating knowledge of PCI in the comments. Smooth and efficient credit card purchasing is the cornerstone of the online economy. Dahn’s blog covers everything from PCI compliance in Europe to regulatory issues in America.
18. Adam Shostack
http://www.emergentchaos.com/
Emergent Chaos is a group blog on security, privacy, liberty and economics - a self-declared “Emergent Chaos jazz combo of the blogosphere. ” While the EC bloggers tend to drift off topic with political posts, they shine at the nexus of politics and IT security, like their March 1, 2007 posts on banking security and the fine print issues surrounding the National ID card legislation.
19. Security Bloggers Network
http://networks.feedburner.com/Security-Bloggers-Network
Your first and last stop for all things security related in the blogosphere. SBN hosts a comprehensive blogroll of all the major IT security blogs and an instant RSS feed of all recent posts by member blogs.
20. Mike Murray
http://www.episteme.ca/
A member of the Security Bloggers Network, Murray focuses his blog on the career aspects of the security industry - hiring and recruiting, time and life management, and career skills, including a sadly true posting from early March 2007 that telling you that due to the changing nature of online job hunting, your resume is junk mail.
21. More Bloggers In Our Feed Reader
Scott J. Roberts http://blog.vulnerableminds.com/
Pete Lindstrom http://spiresecurity.typepad.com/
Raffael Marty http://www.raffy.ch/blog/
Alex Hutton http://riskanalysis.riskmanagementinsight.com/
George Ou http://blogs.zdnet.com/Ou/
Alan Shimel http://www.stillsecureafteralltheseyears.com/
Ron Gula http://blog.tenablesecurity.com/
Cutaway http://www.cutawaysecurity.com
Ross Brown http://technobabylon.typepad.com/
Alex Eckleberry http://sunbeltblog.blogspot.com/
Ryan Russell http://ryanlrussell.blogspot.com/index.html
Angela Gunn http://www.computerworld.com/blogs/gunn
Garrett Gee http://ggee.org/blog/
Misha Govshteyn http://blog.alertlogic.net/
Jeremiah Grossman http://jeremiahgrossman.blogspot.com/
Chris Harrington http://infosecpodcast.com/
Ron Woerner http://www.securitycatalyst.com
Andrew Lark http://andylark.blogs.com/
Andrew Storms http://blog.ncircle.com/blogs/sync/
Micheal Wright http://mcwresearch.com
Jordan Wiens http://psifertex.com
Autumn Haynes http://www.rsa.com/blog/
Michelle McLean http://consentry.typepad.com/blog/
Lori MacVittie http://devcentral.f5.com/weblogs/macvittie/
Chris Boyd http://www.vitalsecurity.org/
Wayne Porter http://blog.spywareguide.com/
Robert Graham http://erratasec.blogspot.com/
Eric Green http://www.larstanpodcasting.com/
Ryan Singel http://blog.wired.com/27bstroke6/
Andreas Antonopolous http://www.nemertes.com/blog/andreas_m_antonopoulos
David Kanter http://www.realworldtech.com
Christopher Hoff http://rationalsecurity.typepad.com/
Ryan Naraine http://securitywatch.eweek.com/
Total messages: 0