Navigating the #FedRAMP authorization process? This whitepaper provides a comprehensive overview of the framework, key stakeholders, and the 5-step process for SaaS, PaaS, and I... https://get.anchore.com/unlocking-the-federal-market/ #FedRAMP #CloudSecurity #Compliance #GovTech #SecurityEngineering
May 15, 2025 at 1:09 AM
Navigating the #FedRAMP authorization process? This whitepaper provides a comprehensive overview of the framework, key stakeholders, and the 5-step process for SaaS, PaaS, and I... https://get.anchore.com/unlocking-the-federal-market/ #FedRAMP #CloudSecurity #Compliance #GovTech #SecurityEngineering
Kubernetes doesn't have to be overwhelming!
Focus on the core components:
1. Control Plane: The brains of the operation (Etcd, API Server, Controllers, Scheduler)
2. Worker Nodes: Where the action happens (Kubelet, Kube Proxy, Container Runtime)
#tech #securityengineering #google
Focus on the core components:
1. Control Plane: The brains of the operation (Etcd, API Server, Controllers, Scheduler)
2. Worker Nodes: Where the action happens (Kubelet, Kube Proxy, Container Runtime)
#tech #securityengineering #google
November 20, 2024 at 5:30 PM
Kubernetes doesn't have to be overwhelming!
Focus on the core components:
1. Control Plane: The brains of the operation (Etcd, API Server, Controllers, Scheduler)
2. Worker Nodes: Where the action happens (Kubelet, Kube Proxy, Container Runtime)
#tech #securityengineering #google
Focus on the core components:
1. Control Plane: The brains of the operation (Etcd, API Server, Controllers, Scheduler)
2. Worker Nodes: Where the action happens (Kubelet, Kube Proxy, Container Runtime)
#tech #securityengineering #google
In a new blog, Proofpoint threat research engineers disclosed their detailed discovery of Amatera Stealer, a newly rebranded and upgraded malware-as-a-service (MaaS) version of the ACR Stealer.
Read the blog: brnw.ch/21wTvpI.
#securityengineering #detectionengineering #securitycontrols
Read the blog: brnw.ch/21wTvpI.
#securityengineering #detectionengineering #securitycontrols
Amatera Stealer: Rebranded ACR Stealer With Improved Evasion, Sophistication | Proofpoint US
Key takeaways Proofpoint identified a new, rebranded stealer based on ACR Stealer called Amatera Stealer. It is delivered via web injects featuring sophisticated attack
brnw.ch
June 18, 2025 at 4:33 PM
In a new blog, Proofpoint threat research engineers disclosed their detailed discovery of Amatera Stealer, a newly rebranded and upgraded malware-as-a-service (MaaS) version of the ACR Stealer.
Read the blog: brnw.ch/21wTvpI.
#securityengineering #detectionengineering #securitycontrols
Read the blog: brnw.ch/21wTvpI.
#securityengineering #detectionengineering #securitycontrols
Learning in public for reaaal!
Another golang project, now we're building security tooling in public. Just started this new project, i'll be posting on it more here!
#securityengineering #learninginpublic
Another golang project, now we're building security tooling in public. Just started this new project, i'll be posting on it more here!
#securityengineering #learninginpublic
April 25, 2025 at 10:35 AM
Learning in public for reaaal!
Another golang project, now we're building security tooling in public. Just started this new project, i'll be posting on it more here!
#securityengineering #learninginpublic
Another golang project, now we're building security tooling in public. Just started this new project, i'll be posting on it more here!
#securityengineering #learninginpublic
Get hands-on with EKS security! Our upcoming webinar on May 20 with Bion Consulting provides a technical deep dive into Shift Right Security on EKS using Anchore. Shift Right? Ye... https://get.anchore.com/shift-right-security-for-eks-anchore/ #EKS #KubernetesTraining #SecurityEngineering #DevOps
May 14, 2025 at 5:02 PM
Get hands-on with EKS security! Our upcoming webinar on May 20 with Bion Consulting provides a technical deep dive into Shift Right Security on EKS using Anchore. Shift Right? Ye... https://get.anchore.com/shift-right-security-for-eks-anchore/ #EKS #KubernetesTraining #SecurityEngineering #DevOps
🔐 Hiring Now: Virtualization Security Engineer Manager (Hybrid) 📍 Location: Irving, Texas 🇺🇸 Lead our team into a secure future! #TechJobs #IrvingJobs #SecurityEngineering educativ.net/jobs/job/308...
January 29, 2025 at 5:19 AM
🔐 Hiring Now: Virtualization Security Engineer Manager (Hybrid) 📍 Location: Irving, Texas 🇺🇸 Lead our team into a secure future! #TechJobs #IrvingJobs #SecurityEngineering educativ.net/jobs/job/308...
Excellent #cybersecurity/#securityengineering advice from @AlecMuffett
November 18, 2024 at 6:46 PM
Excellent #cybersecurity/#securityengineering advice from @AlecMuffett
Re-posting for reach is appreciated - thank you!
#QualityEngineering #Testing #SecurityChampion #SecurityEngineering #AppSec #DevSecOps #MobileDevelopment #WebDevelopment #OpenToWork #JobSearch
#QualityEngineering #Testing #SecurityChampion #SecurityEngineering #AppSec #DevSecOps #MobileDevelopment #WebDevelopment #OpenToWork #JobSearch
October 24, 2024 at 2:14 PM
Re-posting for reach is appreciated - thank you!
#QualityEngineering #Testing #SecurityChampion #SecurityEngineering #AppSec #DevSecOps #MobileDevelopment #WebDevelopment #OpenToWork #JobSearch
#QualityEngineering #Testing #SecurityChampion #SecurityEngineering #AppSec #DevSecOps #MobileDevelopment #WebDevelopment #OpenToWork #JobSearch
OX Security report highlights ten anti-patterns in AI-generated code that contradict secure engineering practices. Stay vigilant against these risks. #CIO #SecurityEngineering https://www.helpnetsecurity.com/2025/10/27/ai-code-security-risks-report/
November 11, 2025 at 11:01 AM
OX Security report highlights ten anti-patterns in AI-generated code that contradict secure engineering practices. Stay vigilant against these risks. #CIO #SecurityEngineering https://www.helpnetsecurity.com/2025/10/27/ai-code-security-risks-report/
How I turned my email security concerns into an AI-learning journey 🛠️
Worried about AI-generated phishing emails slipping through, I built my own protection system. The best part? Using analogies to explain intricacies: github.com/rvaneijk/url...
#InfoSec #AILearning #CloudDev #SecurityEngineering
Worried about AI-generated phishing emails slipping through, I built my own protection system. The best part? Using analogies to explain intricacies: github.com/rvaneijk/url...
#InfoSec #AILearning #CloudDev #SecurityEngineering
github.com
February 16, 2025 at 9:43 AM
How I turned my email security concerns into an AI-learning journey 🛠️
Worried about AI-generated phishing emails slipping through, I built my own protection system. The best part? Using analogies to explain intricacies: github.com/rvaneijk/url...
#InfoSec #AILearning #CloudDev #SecurityEngineering
Worried about AI-generated phishing emails slipping through, I built my own protection system. The best part? Using analogies to explain intricacies: github.com/rvaneijk/url...
#InfoSec #AILearning #CloudDev #SecurityEngineering
We're adding to our #SOC and #SecurityEngineering teams and we're looking for folks who share our offensive DNA and defensive precision.
If you think like an attacker, and want to build defenses to stop the cyber criminals in their tracks, we're looking for you!
If you think like an attacker, and want to build defenses to stop the cyber criminals in their tracks, we're looking for you!
a black background with the words we are hiring
ALT: a black background with the words we are hiring
media.tenor.com
November 16, 2024 at 4:41 PM
We're adding to our #SOC and #SecurityEngineering teams and we're looking for folks who share our offensive DNA and defensive precision.
If you think like an attacker, and want to build defenses to stop the cyber criminals in their tracks, we're looking for you!
If you think like an attacker, and want to build defenses to stop the cyber criminals in their tracks, we're looking for you!
Tired of fragmented security tools? Learn to seamlessly integrate container security into your CI/CD. Our upcoming webinar shows you how to connect Anchore and DefectD... https://go.anchore.com/using-anchore-defectdojo-standup-devsecops.html #DevSecOps #ContainerSecurity #AppSec #SecurityEngineering
June 28, 2025 at 2:04 AM
Tired of fragmented security tools? Learn to seamlessly integrate container security into your CI/CD. Our upcoming webinar shows you how to connect Anchore and DefectD... https://go.anchore.com/using-anchore-defectdojo-standup-devsecops.html #DevSecOps #ContainerSecurity #AppSec #SecurityEngineering
🔐SSH and shell-free
🧱Immutable by default
🔁Trusted Boot out of the box
Because we believe security starts at the foundation. Here's what makes Talos Linux different.
🔗 www.siderolabs.com/blog/masteri...
#Kubernetes #TalosLinux #DevSecOps #CloudNative #SecurityEngineering
🧱Immutable by default
🔁Trusted Boot out of the box
Because we believe security starts at the foundation. Here's what makes Talos Linux different.
🔗 www.siderolabs.com/blog/masteri...
#Kubernetes #TalosLinux #DevSecOps #CloudNative #SecurityEngineering
Mastering Security in Your Kubernetes Infrastructure with Omni and Talos Linux - Sidero Labs
The complexity of Kubernetes infrastructures can allow for blind spots that open the door to bad actors. Talos Linux and Omni change that.
www.siderolabs.com
July 29, 2025 at 2:51 PM
🔐SSH and shell-free
🧱Immutable by default
🔁Trusted Boot out of the box
Because we believe security starts at the foundation. Here's what makes Talos Linux different.
🔗 www.siderolabs.com/blog/masteri...
#Kubernetes #TalosLinux #DevSecOps #CloudNative #SecurityEngineering
🧱Immutable by default
🔁Trusted Boot out of the box
Because we believe security starts at the foundation. Here's what makes Talos Linux different.
🔗 www.siderolabs.com/blog/masteri...
#Kubernetes #TalosLinux #DevSecOps #CloudNative #SecurityEngineering
Actions: upgrade Rancher to 2.12.2 / 2.11.6 / 2.10.10 / 2.9.12. Enforce allowlists for SAML params, shorten token TTLs, and train admins to verify login URLs. Review audit logs for suspicious re-auth flows. #SecurityEngineering #BlueTeam #IncidentResponse 🧵4/5
September 30, 2025 at 9:08 PM
Actions: upgrade Rancher to 2.12.2 / 2.11.6 / 2.10.10 / 2.9.12. Enforce allowlists for SAML params, shorten token TTLs, and train admins to verify login URLs. Review audit logs for suspicious re-auth flows. #SecurityEngineering #BlueTeam #IncidentResponse 🧵4/5
Blast radius matters.
But most teams reduce it by narrowing perimeters—not by shifting control to where the risk actually is.
Want real resilience?
Push your controls closer to the data and decisions.
#SecurityEngineering #DataCentricSecurity
But most teams reduce it by narrowing perimeters—not by shifting control to where the risk actually is.
Want real resilience?
Push your controls closer to the data and decisions.
#SecurityEngineering #DataCentricSecurity
June 12, 2025 at 1:43 PM
Blast radius matters.
But most teams reduce it by narrowing perimeters—not by shifting control to where the risk actually is.
Want real resilience?
Push your controls closer to the data and decisions.
#SecurityEngineering #DataCentricSecurity
But most teams reduce it by narrowing perimeters—not by shifting control to where the risk actually is.
Want real resilience?
Push your controls closer to the data and decisions.
#SecurityEngineering #DataCentricSecurity
Are you passionate about cybersecurity, security engineering, and compliance? Join our team as a Cybersecurity & Security Engineering Specialist.
Apply now: bit.ly/42auLJ1
#CyberSecurityJobs #SecurityEngineering #TechCareers #ComplianceCareers #JobsinBromley
Apply now: bit.ly/42auLJ1
#CyberSecurityJobs #SecurityEngineering #TechCareers #ComplianceCareers #JobsinBromley
April 11, 2025 at 2:52 PM
Are you passionate about cybersecurity, security engineering, and compliance? Join our team as a Cybersecurity & Security Engineering Specialist.
Apply now: bit.ly/42auLJ1
#CyberSecurityJobs #SecurityEngineering #TechCareers #ComplianceCareers #JobsinBromley
Apply now: bit.ly/42auLJ1
#CyberSecurityJobs #SecurityEngineering #TechCareers #ComplianceCareers #JobsinBromley
Detection Engineering Lifecycle powers modern AppSec!
From design to deployment, discover a real-life example of how this framework keeps you ahead of threats. 💡
c.gitguardian.com/7go
#AppSec #DetectionEngineering #SecurityEngineering
From design to deployment, discover a real-life example of how this framework keeps you ahead of threats. 💡
c.gitguardian.com/7go
#AppSec #DetectionEngineering #SecurityEngineering
Detection Engineering: A Case Study
In this blog post, we will explore the intricate world of detection engineering. We’ll start by examining the inputs and outputs of detection engineering, and then we’ll illustrate the detection engin...
c.gitguardian.com
January 13, 2025 at 8:58 AM
Detection Engineering Lifecycle powers modern AppSec!
From design to deployment, discover a real-life example of how this framework keeps you ahead of threats. 💡
c.gitguardian.com/7go
#AppSec #DetectionEngineering #SecurityEngineering
From design to deployment, discover a real-life example of how this framework keeps you ahead of threats. 💡
c.gitguardian.com/7go
#AppSec #DetectionEngineering #SecurityEngineering
🚀 Join our team in Irving, TX as a Virtualization Security Engineer Manager! Lead cutting-edge security solutions in a dynamic hybrid role. #TechJobs #IrvingJobs #SecurityEngineering educativ.net/jobs/job/308...
January 29, 2025 at 7:03 AM
🚀 Join our team in Irving, TX as a Virtualization Security Engineer Manager! Lead cutting-edge security solutions in a dynamic hybrid role. #TechJobs #IrvingJobs #SecurityEngineering educativ.net/jobs/job/308...
Exciting job opportunity at Ramp! We have a full-time Security Engineer | Cloud position available. Workplace: on-site in New York. Salary Range: $211,400 - $290,600 per year. #JobOpportunity #SecurityEngineering
September 5, 2025 at 7:01 AM
Exciting job opportunity at Ramp! We have a full-time Security Engineer | Cloud position available. Workplace: on-site in New York. Salary Range: $211,400 - $290,600 per year. #JobOpportunity #SecurityEngineering
... Ausserdem schuld: Mangel an Bildung. Stichworte: #Wahrscheinlichkeitsrechung #SecurityEngineering
Gegen solche PW-Vorschriften (und Ablauffristen) kämpfen wir Security-Leute nun schon seit Jahrzehnten. NIST hat immerhin schon die meisten endlich übernommen: pages.nist.gov/800-63-3/sp8...
Gegen solche PW-Vorschriften (und Ablauffristen) kämpfen wir Security-Leute nun schon seit Jahrzehnten. NIST hat immerhin schon die meisten endlich übernommen: pages.nist.gov/800-63-3/sp8...
NIST Special Publication 800-63B
NIST Special Publication 800-63B
pages.nist.gov
May 5, 2024 at 12:45 PM
... Ausserdem schuld: Mangel an Bildung. Stichworte: #Wahrscheinlichkeitsrechung #SecurityEngineering
Gegen solche PW-Vorschriften (und Ablauffristen) kämpfen wir Security-Leute nun schon seit Jahrzehnten. NIST hat immerhin schon die meisten endlich übernommen: pages.nist.gov/800-63-3/sp8...
Gegen solche PW-Vorschriften (und Ablauffristen) kämpfen wir Security-Leute nun schon seit Jahrzehnten. NIST hat immerhin schon die meisten endlich übernommen: pages.nist.gov/800-63-3/sp8...
The role of GitHub MCP was also debated. Is it responsible, or just a tool exposing the API? Some suggest MCP could add security layers like better permission systems or clearer UI for access grants. #SecurityEngineering 6/6
May 28, 2025 at 2:00 AM
The role of GitHub MCP was also debated. Is it responsible, or just a tool exposing the API? Some suggest MCP could add security layers like better permission systems or clearer UI for access grants. #SecurityEngineering 6/6
Cogito Ergo Sum - A Bit of Security for February 24, 2025
Can we use the body as an analogy for cybersecurity? Listen to this - youtu.be/uocWIaYlxWI
#cybersecuritytips #securityengineering #securityanalogy #cybertrust #BitofSec
Can we use the body as an analogy for cybersecurity? Listen to this - youtu.be/uocWIaYlxWI
#cybersecuritytips #securityengineering #securityanalogy #cybertrust #BitofSec
Cogito Ergo Sum
YouTube video by A Bit of Security, by William J. Malik
youtu.be
February 24, 2025 at 8:54 PM
Cogito Ergo Sum - A Bit of Security for February 24, 2025
Can we use the body as an analogy for cybersecurity? Listen to this - youtu.be/uocWIaYlxWI
#cybersecuritytips #securityengineering #securityanalogy #cybertrust #BitofSec
Can we use the body as an analogy for cybersecurity? Listen to this - youtu.be/uocWIaYlxWI
#cybersecuritytips #securityengineering #securityanalogy #cybertrust #BitofSec