Notices by Tindra (tindrasgrove@infosec.exchange)

@GossiTheDog anyone who thinks modernizing is easy should talk to the peeps who dealt with the US Army’s IPPS-A.

They failed so hard they basically ended up just making a unifying front end for multiple legacy systems, and they *still* dorked up all sorts of things.

Job alert!

Spanish language required, North America-based, depending on location fully remote

Are you interested in cyber insurance? Want to be part of creating financial incentives to improve security? Come join my team!

(Boost for reach appreciated)

https://careers-libertymutual.icims.com/jobs/69103/cyber-risk-engineer-%28bilingual-spanish%29/job?mode=view&mobile=false&width=734&height=500&bga=true&needsRedirect=false&jan1offset=-420&jun1offset=-420

@JessTheUnstill I can see three mile island’s cooling towers from my bedroom window.

I’m a fan of regulation :/

Corrie: let me help you with your pattern!

#CatsOfMastodon #CraftingWithCats

@Tarah @malwaretech @mkoek
When I was in middle school home ec we had a block on budgeting groceries. And we were *explicitly taught* that budget breakfasts are easy because it’s basically eggs and flour.

Today if I’m on a budget I’m stocking up on things like Banquet frozen meals because raw ingredients are expensive.

Periodic reminder that even when you need to maintain decades of data, not all of it needs to be instant-access always-online.

Cold storage can and should exist for some use cases. https://mastodon.social/@zackwhittaker/113866960356145892

I was attending a social with non-US peeps in the US and this one person was wondering where she could get some electronics thing. To which I mentioned Best Buy, and the other Americans agreed.

The more we mentioned the Best Buy the more confused she got because she thought we were talking about the concept of a good deal (or exemplary purchase heh) not a literal store name. https://xoxo.zone/@mathowie/113517465310665527

Based on my experience reading lots of cyber insurance questionnaires: this paper is not wrong.

However, it misses some things like:
- this happens because many brokers/carriers don’t hire cyber experts
- they’re basing what they ask on historical claims data which… can be a challenge by itself
- carriers don’t always get to use their own questionnaire; they get whatever data the broker sends them
- while they alluded the effects, they don’t seem to understand how market cycles work
https://infosec.exchange/@ravirockks/113513643537133620

@cR0w @JessTheUnstill I do t know if I’ve ever met anyone who actually *likes* them.

@teriradichel @jerry really common for job postings to either a) already know who they’re going g to hire, they’re just going through the motion of posting the job or b) they’re not really hiring, they’re just posting so they can say “poor us, we can’t find any qualified candidates”.

Also, there’s “recruiters” that are not actually working g for the company they’re “recruiting” for.

@BetoOnSecurity related:

@emilygorcenski *cough*alsocops*cough*