lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Date: Tue, 28 Sep 2010 10:06:34 +0200 From: Pete Herzog <lists@...com.org> To: full-disclosure@...ts.grok.org.uk Subject: Profile - OSSTMM use at a Security Consultancy Hi, I just got word that InfoSec Island published an interview with a company that uses the OSSTMM for security tests. He explains why they use it and what it means for them. Mike starts the article: "While re-addressing the OSSTMM and its application/usefulness in my firm's business, I wanted to gain the perspective of a company that's been using the OSSTMM for some time. More specifically, I wanted to know if that company's clients have seen a measurable improvement in their information security programs, since that is our overall goal, right?" It's a nice follow-up to the OSSTMM overview Mike posted earlier and I think it answers some of the things we get asked all the time at ISECOM. https://www.infosecisland.com/blogview/8340-Implementing-OSSTMM-Strategies-Creates-Value.html Sincerely, -pete. -- Pete Herzog - Managing Director - pete@...com.org ISECOM - Institute for Security and Open Methodologies www.isecom.org - www.osstmm.org www.hackerhighschool.org - www.badpeopleproject.org _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists