• 20 Oct 2008

    Question posed to me about IT operations not being on board with security

    Here's an interesting question someone asked me recently regarding some in-fighting about security along with my brief response on how to fix the problem. I see this ALL the time!:"I work in a company as the sole information security analyst. My job is to identify risks, set policy, and audit our IT environment against the policies I wrote. I am currently working with IT operations staff on mitigating risks based ...

    Continue Reading...
  • 20 Oct 2008

    My latest security content

    Here's an article I wrote for SearchEnterpriseDesktop.com:How to exploit two common Windows vulnerabilitiesHere's an article I wrote for SearchSoftwareQuality.com:Does certification really matter?Be sure to check out www.principlelogic.com/resources.html for all of my information security articles, podcast interviews, webcasts, screencasts and more....

    Continue Reading...
  • 14 Oct 2008

    Great time was had at InfoSec 2008 in Louisville

    I've been traveling quite a bit as of late so I'm a little off kilter. That said, I wanted to post a quick note regarding the Kentuckiana ISSA's 4th annual InfoSec conference I keynoted last week. It was a great show...very good turnout - both attendees and vendors - and VERY well run. In fact, I believe Cindy Woods - the brains/effort behind the show missed her calling. Cindy put ...

    Continue Reading...
  • 02 Oct 2008

    The gaping hole that most organizations have

    Certain organizations have an incident response plan...And many people in management know that one needs to be in place. Of those that do have a plan, I have YET to see one that has a public relations component. You know those pesky news ferrets that will no doubt be calling, emailing, and worse shoving a microphone in your face when a breach occurs??Well, here's a good little piece on this ...

    Continue Reading...
  • 02 Oct 2008

    Yet another law protecting patient privacy

    I'm all for holding businesses and their employees accountable for their actions. But is this new law in California just another case of not enforcing existing laws?? I know this is a state law but what about HIPAA too?...

    Continue Reading...
  • 01 Oct 2008

    Cool site for tracking impending disasters

    During Hurricane Ike I came across a really neat site for tracking storms in the tropics and onto our soil here in the U.S. It's called Stormpulse. It has an awesome interface and lots of good information to help you plan and execute emergency procedures if your organization is going to be affected. Certainly a worthy tool in any DR/BC toolbox....

    Continue Reading...
  • 01 Oct 2008

    Wonder how much Cisco spent on this study…

    Alert, Alert! Cisco has finally found the cause of information security problems! Apparently *employees* are the culprit. So...humans are the root cause of all this stuff we live and breath every day after all. Oh and apparently we need to focus more on awareness...You think??I believe this was a case of some Cisco employees needing to do some busy work to justify their existence in the company. Amazing use of ...

    Continue Reading...
  • 30 Sep 2008

    Use wisely your power of choice

    In reference to my post from yesterday about the human desire for instant gratification and our government rewarding failure with this attempt at economic bailout I thought of another thing that has really helped me over the years. It's Og Mandino's short and sweet quote: "Use wisely your power choice."These five words - when taken to heart and followed closely - can help drive every decision you make towards a ...

    Continue Reading...
  • 30 Sep 2008

    Free CISSP training

    For those of you looking into obtaining the CISSP certification, here's a link to some free CISSP exam prep offered up by SearchSecurity.com and taught by Shon Harris - a well-known expert in this area. It's not all you'll need in preparing for the exam but it's a good start and the price is right....

    Continue Reading...
  • 30 Sep 2008

    Job sites focused on MCPs

    If you're a Microsoft Certified Professional, here's a list of job sites tailored for you...Also be sure to check this link for previous posts of mine about security-related job sites....

    Continue Reading...

Resources

Client Testimonials

“A business associate referred our company to Principle Logic when we were seeking a resource to perform vulnerability /penetration testing for our external and internal networks. We found Kevin Beaver to be professional, well informed, and easy to work with. His testing did not disrupt our networks, and his progress updates were timely.

His final report was very thorough and included security recommendations for our network environment. The executive leadership was so impressed with Kevin’s security expertise, they have extended their agreement to continue to perform periodic testing. We highly recommend Kevin Beaver and Principle Logic as a resource for network security testing.”

(IT managed services firm)
Read More

 

I’ve written/co-written 12 books on information security including one of the best-sellers of all time:


Hacking For Dummies, 8th edition penetration testing book

Tags

AI appsec basics books Career Networking careers censorship cervical instability CIO compliance coronavirus covid-19 cybersecurity data breaches discipline eagle syndrome hacking Hacking For Dummies health helmet communications incident response keynote speaker leadership NCAA football networking outsourcing passwords policy enforcement Power Four rare diseases resilience Russian hacking security security leadership security speaker social engineering speaking engagements tethered spinal cord tiktok time management underimplemented vulnerability and penetration testing web security willingness zero-based thinking

© Copyright 2001-present, Principle Logic, LLC - All Rights Reserved.