[Recommended Book] Extreme Ownership: How U.S. Navy SEALs Lead and Win

“Sent to the most violent battlefield in Iraq, Jocko Willink and Leif Babin’s SEAL task unit faced a seemingly impossible mission: help U.S. forces secure Ramadi, a city deemed “all but lost.” In gripping firsthand accounts of heroism, tragic loss, and hard-won victories in SEAL Team Three’s Task Unit Bruiser, they learned that leadership—at every level—is the most important factor in whether a team succeeds or fails. Willink and Babin returned home from deployment and instituted SEAL leadership training that helped forge the next generation of SEAL leaders. After departing the SEAL Teams, they launched Echelon Front, a company that teaches these same leadership principles to businesses and organizations. From promising startups to Fortune 500 companies, Babin and Willink have helped scores of clients across a broad range of industries build their own high-performance teams and dominate their battlefields.”  Read more…

Image source.

Advertisements

Leave a comment

Filed under Books, General, InfoSec, Leadership, Management, Recommendations

[Recommended Reading] Factor analysis of information risk

Source: Factor analysis of information risk

“Factor analysis of information risk (FAIR) is an ontology of the factors that contribute to risk and how they affect each other. It is primarily concerned with establishing accurate probabilities for the frequency and magnitude of data loss events. It is not a methodology for performing an enterprise (or individual) risk assessment.” Read more…

Image source

Leave a comment

Filed under General, InfoSec, Recommendations

[Recommended Reading] Microsoft Azure

Source: Microsoft Azure Wikipedia

“Microsoft Azure (formerly Windows Azure) is a cloud computing service created by Microsoft for building, testing, deploying, and managing applications and services through a global network of Microsoft-managed data centers. It provides software as a service (SaaS)platform as a service (PaaS) and infrastructure as a service (IaaS) and supports many different programming languages, tools and frameworks, including both Microsoft-specific and third-party software and systems. Read more…

Image source.

Leave a comment

Filed under General, InfoSec, Recommendations, Site Reliability Engineering

[Recommended Reading] DREAD (risk assessment model)

Source: DREAD (Risk Assessment Model)

DREAD is part of a system for risk-assessing computer security threats previously used at Microsoft and currently used by OpenStack and many other corporations. It provides a mnemonic for risk rating security threats using five categories.

The categories are:

  • Damage – how bad would an attack be?
  • Reproducibility – how easy is it to reproduce the attack?
  • Exploitability – how much work is it to launch the attack?
  • Affected users – how many people will be impacted?
  • Discoverability – how easy is it to discover the threat?

Read more…

Leave a comment

Filed under InfoSec, Recommendations

[Recommended Reading] Apache HBASE

Source: Apache HBASE Wikipedia

HBase is an open-source, non-relational, distributed database modeled after Google’s Bigtable and is written in Java. It is developed as part of Apache Software Foundation’s Apache Hadoop project and runs on top of HDFS (Hadoop Distributed File System), providing Bigtable-like capabilities for Hadoop. That is, it provides a fault-tolerant way of storing large quantities of sparse data (small amounts of information caught within a large collection of empty or unimportant data, such as finding the 50 largest items in a group of 2 billion records, or finding the non-zero items representing less than 0.1% of a huge collection).” Read more…

 

Leave a comment

Filed under Recommendations, Site Reliability Engineering