Previous Publications
Books
- Co-author of Information Assurance and Security Ethics in Complex Systems: Interdisciplinary Perspectives – published by IGI Global, ISBN 978-1-61692-245-0 (hardcover) 978-1-61692-246-7 (ebook).
- Co-author of Reducing Cyber Exposure from Cloud to Containers – published by https://www.mightyguides.com/.
Papers and Blogs
- 25 Ways to Make the SOC More Efficient and Avoid Team Burnout, CISO Series (interviewed)
- OWASP Top 10 for LLM 1.0 (contributor) – OWASP.org
- Improving your Cybersecurity Readiness: Four Key Takeaways from our Recent Webinar – Battery Ventures (based on my presentation)
- A CISOs Guide: Generative AI and ChatGPT Enterprise Risks – Team8
- Security for growth companies – Bessemer Venture Partners
- Improve Your Company’s Resilience Against Phishing Attacks By Inviting Employees To Phish – Forbes.com
- Trends In Information Technology, Privacy, And Cybersecurity For The Next Decade – Forbes.com
- AI-Generated Reviews Threaten Business Reputations – Forbes.com
- How Leaders Should Think About Cybersecurity – Forbes.com
- Blockchain Systems Need Mature Disclosure Policies – ITSP magazine
- What Happens In Cyberspace Stays Online Forever: Cryptocurrencies And Privacy – Forbes.com
- Modern phishing campaigns and effective prevention – Forbes.com
- Bitcoin’s Fork And Its Security Implications (part 2) – ITSP magazine
- Bitcoin’s Fork And Its Security Implications (part 1) – ITSP magazine
- Thanks to COVID, OWASP LA is building an awesome library of chapter meetings videos – LinkedIn
- SafeBase is a portal that simplifies vendor due diligence – GRC Outlook
- Overcoming the Challenges and Reaping the Benefits of Multi-Factor Authentication in the Financial Sector (Two-part article) – strozfriedberg.com
- Dodging SHA-1’s Collision Course – ITSP magazine
- Passwords: you think you know. But do you? – strozfriedberg.com
- OWASP Top 10 Proactive Controls 2016 (reviewer) – OWASP.org
- Fundamental Practices for Secure Software Development – SAFECode.org
- Software Assurance: An Overview of Current Industry Best Practices – SAFECode.org
- Security Engineering Training – SAFECode.org
- Fundamental Practices for Secure Software Development, second edition – SAFECode.org
- A SAFECode Perspective on Leveraging Descriptive Software Security Initiatives – SAFECode.org