Security Justice Episode 32 – Talking Risk with Alex Hutton (@alexhutton)

January 13th, 2011 Tom Posted in Podcast Episodes | No Comments »

This is the 32nd episode of the Security Justice podcast recorded live at Damon’s Grill in Independence, OH. This episode was hosted by DaveMatt and Chris with special guest Alex Hutton. We also have a special appearance from Dave Kennedy.  Music as always provided by dualCORE. Here are the show notes from this episode:

Alex Hutton has been involved in InfoSec in some capacity since 1994 when he was asked to educate customers as to why they needed these expensive “firewall things”.  Sometimes his role has been marketing, sometimes management, sometimes consultant, sometimes analyst.  Alex likes blogging about risk and security management (both in their more traditional, non-industry connotations).  He works in Risk Intelligence for a Fortune-something company.

He is a co-author of the Verizon Data Breach Investigation, writes regularly for the Verizon Security Blog and the New School of Information Security blog. Alex also contributes to the Cloud Security Alliance, ISM3 security management standard, the CIS metrics project and the Open Group Security Forum.

  • What is the difference between GRC and security?
  • Risk metrics
  • VERIS (Verizon Enterprise Risk & Incident Sharing)
  • Data Breach Incident Report (DBIR)
  • OSSTMM 3
  • Matt Neely will be speaking at AIDE
  • Turtles and much more!

Thanks again to Alex for joining us on the podcast!  Please send show feedback to feedback [aT] securityjustice.com or comment below.

Be Sociable, Share!
Security Justice Episode 32 [ 1:32:23 ] Play Now | Play in Popup | Download (7280)

Leave a Reply