Great to see the local scene just kicking on. So much going on now and no shortage of things to attend.

——————————————————————————————–
Ruxcon 2010: 20-21 November, 2010 (Melbourne). Details and CFP information:
http://www.ruxcon.org.au

Monthly Ruxcon meetings (Ruxmon) in Melbourne. Details:
http://www.ruxcon.org.au/2010-rmmm.shtml

Kiwicon 2010: 27-28 November, 2010 (Wellington, NZ). Details and CFP information:
https://www.kiwicon.org/

Owasp seems to be pretty active with monthly meetings (or almost now), regular events in Sydney, Melbourne, Perth. Contact your local city chapter for more information, or if there is up to date information on the Owasp website, could someone let me know? (I am on the mailing list).

AISA (Australian Information Security Association) membership is now over 1000. Sydney, Melbourne, Brisbane, Canberra and Perth hold monthly meetings plus social events and the Annual Seminar Day will be the biggest ever in 2010. With membership still only still $50, it’s worth having a look. Details on AISA and upcoming events for all cities:
http://www.aisa.org.au/

Australian Information Security Bloggers Directory and Twitter accounts here.

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Posted in: Research, news


Release from ANSI. (I’ve included this as an FYI for Australian Information Security people). This link below has the content of the email sent out recently.

Related post regarding recent Australian Government activity here. Coordination? Focus? Lessons?

———————————————————————————————
White House Releases National Strategy for Trusted Identities in Cyberspace
http://www.ansi.org/news_publications/news_story.aspx?menuid=7&articleid=2576

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.



AustCERT 2010 kicks off tonight. I’ll be there this year thanks to SC Magazine.

If you can’t make it, checkout the almost live Twitter feed for the latest as reported by attendees, media and others, here and here.

Feel free to post your thoughts and comments on the event as responses.

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Posted in: Research, news


- Check out the Australian IT Security Blog Directory. There’s some really good blogs here and growing.

- Jarrod Loidl at /dev/null is posting some really interesting thoughts; regulation, facebook, book reviews, “wall of shame”, etc etc. Check it out and bookmark Jarrod’s site. Get onto @xntrik’s site also while at it here.

- The PCI DSS has something new for non-QSAs. Have a look but open your wallet here. Worth an investigation and finally something for non-QSA organisations. As such, a good thing I believe.

- The Australian Information Security Association (AISA) has hit 1000 members. For you overseas people, it may not sound like much, but remember, Australia is small. Well done to AISA. Information and how to join, checkout the AISA website here.

- OWASP Australia has a bit of a new lease of life in Sydney, and Melbourne kicks on. Also, Ruxcon is doing monthly meetings in Melbourne. I haven’t seen the security community as busy as it has been lately. Info here. Stay tuned….Securus Global will be announcing monthly security management meetings, hacker/tech meetings and some in-betweeners, plus a few social sessions for the security community. Email me also for more details.

- Is the Government listening? http://beastorbuddha.com/?s=government. I reckon they are. I know AusCERT reads this. :) Here we go: from ComputerWorld. Nah….we’re one little voice here.

- Yeah, flame on but as you know, I’m more than happy to be in the ruck rather than screaming instructions from the sideline:
http://awards.scmagazine.com.au/judging-panel

I know I haven’t been posting much lately but read the stuff from the guys that are in the blog directory, and if you want to add your blog here, let me know.

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Posted in: news


The list is growing. If you have your own security related blog and would like to be added to the directory, please let me know.

http://beastorbuddha.com/blog-directory/

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Posted in: news


Securus Global is again looking for new people to join our team. Information here. (Not all the roles this time will require the same level of experience, as we are also looking to train the right people who have attained a certain level of expertise and experience to date).

With our range of clients and the types of work we are engaged to do, we believe very few other organisations can offer Information Security people in Australia, (with an interest in penetration testing, research and developing their technical expertise), the same challenges and diversity of work.

If you have applied in the past, please don’t let this stop you applying again as we don’t generally go through previous CVs given the amount that we receive.

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Posted in: Uncategorized, news


From the Australian IT Security Blog Directory:

- Jarrod Loidl at /dev/null has a couple of good recent posts; one on web application scanners and the other on “How to get a start in Information Security.
- Chris Gatford at http://www.penetrationtester.com/ talks about his recent radio interview and then presents “7 Tips for Small Business IT Security”.
- Over at Infamous Agenda, Matthew’s latest post is on Incident Response and what he believe works. Have a read and respond to Matt if you disagree with anything.
- Eldar at Just Another Hacker has changed the look of his site. A heap of topics in recent times from Internet Filtering, theories on hacking, XSS Bank of Queensland and ING plus more.
- Donal at Ockham’s Razor is as always thinking outside the square and presenting theories to question the established ways. He’s also busy with Nodecity and this is definitely worth a look. For more information, contact Donal.
- Fifth.Sentinel in his latest post is talking about research on Windows Registry and time time analysis. Worth a read.
- Christian, the main man from Perth at un-excogitate.org has covered quite a few topics in recent times; BeEF, Sandboxing, new ISACA certification, discussion on “Trust”.

I haven’t covered everyone here. If you want to be added to the list, let me know.

Busiest Blog post of the week; Once again, anything to do with the ACS gets people worked up, and this one here has been no different.

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Posted in: news


I love my Mac. Unlike a PC, it still works the same as the day I bought it! Same speed and can work with it for months without a re-boot other than having to reboot for an update. (Happy to get Windows 7 people responses…..does Windows 7?). Apple formula: you never go back.

iPod, iPhone; so locked in with music and apps – you never go back to anything else.

Fillers like Macbook Air and iPad are just that, “fillers” – perception of innovation to keep the “standards” like Mac Notebooks and iPods going. They all know that.

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Posted in: news


From the Western Australian branch of the Australian Computer Society; they are launching two new “Centres of Excellence”. Information here. Information supplied by Philip Argy. Thank you to the ACS for passing this to us. We look forward to hearing more about this initiative.

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.

Posted in: Research, news


Good luck to the AGD team with CERT Australia. Further reports:
- Australian IT mentions the role of AusCERT in this.
- AusCERT’s press release here.
*** Should have included this also in original post: http://www.ag.gov.au/cybersecurity

For those attending the AISA National Annual Seminar Day; David Campbell, (Director Australian Government Computer Emergency Readiness Team) will be talking about the new CERT. Should be an interesting presentation.

———————————————————————————————-
Securus Global: IT Security, Penetration Testing, Security Assessments, PCI Compliance, Product Assurance, QualysGuard, Security Strategy, Vulnerability Assessment.



Older Posts »