Crypto CISO, at your service. @avalabsofficial. Views my own.
Aug 8, 2021 • 15 tweets • 9 min read
So what's it like to be a #CISO? I was Acting CISO of a billion-dollar crypto company for three months during the spring bull run, and am currently Deputy CISO. I'm still feeling the burnout. What mistakes did I make? What are my lessons learned? A 🧵 1/x #infosec#cybersecurity
As a #CISO, the stakes are high. This is not a drill. Your decisions affect the success or failure of the enterprise. Totes no pressure. 2/x
Apr 2, 2020 • 11 tweets • 6 min read
New: My two-month investigation of the bug bounty platforms reveals serious concerns about their business practices, and accusations that NDAs are being used to cover up security issues. 1/ csoonline.com/article/353588…@CSOonline
HackerOne's latest annual report claims they have 600,000 hackers. But do they? More likely 600,000 email addresses. CEO Alex Rice told me in 2019 only 9,650 finders filed valid vulnerability reports on H1. That's a difference of two orders of magnitude. 2/
Oct 16, 2019 • 35 tweets • 14 min read
THREAD — So many remarkable passages in #PermanentRecord. Here’s what stood out to me. 1/
The ideals of the so-called “Inteligence Community” are to subvert our democracy, destroy our freedom, and to rule us in secret. There was never a golden age when the “IC” was anything other than state-sponsored criminals and terrorists who deserve to stand trial at The Hague. 2/