Russ McRee's HolisticInfoSec.org is dedicated to sharing information security content and resources in an open, clear manner, with the hope of helping improve infosec for all who seek to do so. Information security is best broken down to the most simple components: best practices and common sense. The threat-scape facing an information security practitioner is perpetually dynamic; we must adapt and evolve as do those threats. Holisticinfosec.org endeavors to aid in that process through dynamic content and timely topics in ISSA Journal's toolsmith. As well we know, those who would do harm never rest: protect your own.

Practice simplicity
Seek to be proactive, rather than reactive
Think creatively, but adhere to standards
Employ best practices

I'll be presenting Visualizing IDS output: Tools and Methodology at RSA 2010, March 5, 2010, 10:10-11:00 am. The session ID is NMS-402 and the room is Orange 306. Hope to see you there!

Abstract:
The flood of raw data generated by intrusion detection systems (IDS) is often overwhelming for security specialists, and telltale signs of intrusion are sometimes overlooked in all the noise. Security visualization tools provide an easy, intuitive means for sorting through the dizzying data and spotting patterns that might indicate intrusion. This session will focus on specific tools and methodology to aid you in establishing security data visualization practices in your environment.