Although a new and continually evolving field, we have learned a lot about securing systems, and we've defined many of the remaining challenges. Unfortunately, we often find ourselves re-learning the same lessons over and over. In this presentation a number of studies and reports from the past 50 years of infosec will be reviewed and the results examined for the things they show us- both the known and unknown. With the goal of growing infosec beyond our seeming eternal state of infancy, this discussions will embrace some common beliefs and eviscerate others. This talk is intended to spur conversations, reflection, and heavy drinking.
Jack Daniel, Strategist for Tenable Network Security, has over 20 years’ experience in network and system administration and security, and has worked in a variety of practitioner and management positions. A technology community activist, he supports several information security and technology organizations. Jack is a co-founder of Security BSides, serves on the boards of three Security BSides non-profit corporations, and helps organize Security B-Sides events. An early member of the information security community on Twitter, @jack_daniel is an active and vocal Twitter user. Jack is a reluctant CISSP, holds CCSK, and is a Microsoft MVP for Enterprise Security.