Set Solutions Blog

I have spent a lot of time around security professionals, but I am not sure that I would consider myself one of them. Maybe a better way to say that is that I am a not traditional security professional.  In a field as diverse as information security, maybe the idea of a traditional security ...

Click here for the latest episode! Join Michael and Nick as they meet with Application Security pioneer Dan Kuykendall to discuss the history of the practice and what he predicts this field will see in the future. Things Mentioned: ...

Click here for the latest episode! Senior Security Consultant Greg Porterfield joins Michael and Nick to discuss his upcoming series on combining his expertise in Data Analytics and his new found interest in penetration testing. Things Mentioned: ·    ...

Click here for the latest episode! Our hosts got some one on one time with Dr. Anton Chuvakin of Google Cloud to discuss his latest post on Context in Threat Detection.   Things Mentioned: ...

Click here for the latest episode! One of our favorite ethical hackers is back to discuss GRC Tenets, the Set Solutions maturity model, and much more! Things Mentioned: ·      ...

Click here for the latest episode! Michael and Nick are back to kick off a brand-new series featuring Cybersecurity Influencers! First up is Ron Gula, President at Gula Tech Adventures which focuses on cyber technology, cyber policy and recruiting more people to the cyber workforce. Check out ...

There are many vectors for an attacker to penetrate an organization. The method of taking advantage of vulnerabilities in an environment is one of the common vectors for an attacker. I have had an opportunity to work with some of the vulnerability assessment tools; they are not listed in any ...

Geek Alert Before you read further into this first blog post of my two-part series, be warned that I am about to make analogies comparing Web API security to the epic fantasy trilogy The Lord of the Rings by J.R.R. Tolkien. Yes, I am unapologetically going full geek in this short series. One ...

Background If you work in Information Security, Technology, or even if you are just a person who stays up to date with recent news headlines, you probably already know about the “Sunburst” hacking fiasco that came to light at the end of December 2020.  I use the term “fiasco” ...

Effective cybersecurity is a continuous process. There is no such thing as absolute or perfect security—but even if you could achieve it, it would be fleeting. New vulnerabilities are discovered, and new exploits and attack techniques are developed every day. Just because you were secure ...