Filter By:

Type

Topic

Recent Blogs & Podcasts

50 Results for: "Kevin Johnson"

 



April 13, 2018 | Penetration Testing and Red Teaming
By Kevin Johnson, IANS Faculty

 I Am Not a Robot: Manual Pen-Testing Tips and Tricks

When it comes to web app penetration testing, automation can only get you so far. In this webinar, IANS Faculty Kevin Johnson explores how using manual testing techniques can augment the automation many DevOps shops use for security testing. In addition to providing examples of manual attacks used against modern sites, he offers tips for implementing this type of testing to ensure optimal web app security.

Read More »


April 28, 2017 | Penetration Testing and Red Teaming
By Kevin Johnson, IANS Faculty

 Drafting a Pen-Testing Request for Quote (RFQ)

Contracting with third-parties for penetration tests -- against both internal and externally facing resources -- is an important part of security. But what is the best way to craft a request-for-quote? In this Ask-an-Expert written response, IANS Faculty Kevin Johnson examines a sample draft RFQ and offers recommendations to ensure all the bases are covered.

Read More »


April 12, 2016 | Security Awareness, Phishing, Social Engineering
By Kevin Johnson, IANS Faculty

 Justifying a Phishing Program to Top Management

Security organizations may know the worth of a good phishing awareness program, but how do they get top management on the same page? In this Ask-an-Expert live interaction, IANS Faculty Kevin Johnson offers three major justifications top execs will quickly understand and support.

Read More »


February 29, 2016 | Penetration Testing and Red Teaming
By Chris Gonsalves, IANS Director of Technology Research

 Kevin Johnson on Making Pen Tests and Security Training Count

In Episode 2 of our IANS Podcast, faculty member Kevin Johnson talks Locky ransomware, Apple v. FBI, the nasty glibc bug, and tells us how to make penetration tests and security awareness training more meaningful. He also tells us about some of the charity work he's involved in to help make infosec -- and the world -- a better place.

Read More »


May 5, 2016 | Incident Investigations, Handling and Tracking
By Chris Gonsalves, IANS Director of Technology Research

 Kevin Beaver on DBIR Strengths, Shortcomings and Action Items

Security testing and incident-response expert Kevin Beaver, author of Hacking for Dummies, joins us to examine the 2016 Verizon Data Breach Investigations Report. We discuss the report's methods and conclusions and talk about real takeaways for enterprise security leaders and teams.

Read More »


March 21, 2018 | Incident Response Planning
By Kevin Beaver, IANS Faculty

 Lay the Groundwork for IR in the Cloud

Incident response is never easy, but responding quickly and effectively to an incident when key evidence is housed and managed by a cloud vendor can be even more difficult. In this report, IANS Faculty Kevin Beaver steps you through the process of putting the right pieces in place to ensure your cloud incident response is effective and efficient.

Read More »