Turn Your Head And Cough: Why Architecture Risk Assessments Are Like Being A General Physician

No ratings

Presented at CircleCityCon 2015 by

Nathaniel Husted

While vulnerability assessments and penetration tests are all the rage for the modern information security professional, security architecture assessments are just as important. In fact, they are just as important as seeing your doctor about a yearly physical. This talk discusses the general process for security architecture reviews and how that process leaves the reviewer acting like a general physician. We will use this metaphore to shed light on the benefits and drawbacks of the security architecture review process and how we might improve outcomes from the process.