A half-day training run at the 2018 NSF Cybersecurity Summit introducing the Software Engineering Guide work by TrustedCI.
The slides from this presentation are available in several formats1:
- Visiting the slides on Slides.com will allow you to view or play the deck online, or fork to your own account to edit in its original format.
- I dumped an obnoxiously large PDF of the slides for those who need a PDF.
Referred to during the talk
The Mythical Man Month is Fred Brooks' classic work on running software teams. Originally railing against the problems of HR or upper management treating software engineers as interchangeable, or trying to save failing projects by throwing more developers at them, it's become an important work to know in terms of how to build a team capable of engineering rigor.
Security Exercises this is a free-to-you reprint of a July 2016 issue of my LinuxJournal column "Under the Sink", where I gave a crash course in running information security exercises, getting buy-in for them within an organization, and making them useful to the evolution of your information security program. Much of this could be generalized to any kind of disaster preparedness.