Top Ten Information Security Industry All-Stars

Friday, November 04, 2011

Headlines

69dafe8b58066478aea48f3d0f384820

CIO's Ellen Messmer has assembled her picks for the top ten information security all-stars.

Messmer's list is comprised of those "who year after year demonstrate the specialized skills that make them worth listening to," according to the introductory writeup.

Several of the selected professionals recently gave presentations at the Hacker Halted conference in Miami and at Black Hat in Vegas, and Infosec Island was fortunate enough to have had the opportunity to conduct interviews them (links included below).

Messmer's list and an excerpt of the honoree's bios are as follows:

Dillon Beresford, independent security research and contributor to NSS Labs:

  •  "Beresford's work to identify vulnerabilities in industrial control systems has meant from time to time he's stepping on the toes of some industry giants like Siemens..."

Dan Kaminsky, independent researcher:

  •  "In 2008, Kaminsky discovered a flaw in the Domain Name System (DNS) protocol which could have led to mass exploitation of the Internet if exploited. His discretion in helping coordinate a global fix with software and service providers alleviated that..."

Paul Kocher, president and chief scientist, Cryptography Research:

  •  "His achievements are many, from co-authoring SSL v.3.0 to discovering timing attack cryptanalysis, and Kocher keeps cooking in the crypto kitchen..."

David Litchfield, founder v3rity Software:

  •  "Litchfield is tops in database security, discovering vulnerability after vulnerability, year after year, in Oracle, SQL Server, IBM DB2, in addition to writing several books on security and forensics..."

Neil MacDonald, Gartner analyst:

  •  "Virtualization is changing the IT software and hardware business, and there to keep the industry honest about the security impact of it all is MacDonald..."

Moxie Marlinspike, chief technical officer Whisper Systems:

  •  "In questioning the baseline for security in the SSL server certificate industry today, and coming up with an alternative -- still experimental -- called "Convergence," he shows the kind of moxie it takes to go against conventional thinking..."

Charlie Miller, computer security researcher Accuvant Labs:

  •  "Miller, who previously worked for the National Security Agency, is an expert in deconstructing Apple products, such as the MacBook, Safari browser and iPhone..."

Bruce Schneier, chief technology officer of BT managed security solutions:

  •  "His ability to write candidly about social and political forces, as well the psychological aspects of security, that increasingly make him a philosopher in a world of technicians..."

Sherri Sparks, president of Clear Hat Consulting:

  •  "Sparks has made her mark in discovering how rootkits can be used to subvert and compromise computer networks, with a growing focus on virtualization..."

Joe Stewart, director malware research for the counter threat unit at Dell SecureWorks:

  •  "Stewart has gone into the darker corners of the Internet to track cybercriminals and the malware and botnets they use to plunder bank accounts or to steal intellectual property..."

For more details on each of Messmer's selections, consult her article at CIO here:

Source:  http://www.cio.com/article/693086/The_Security_Industry_All_Stars_?page=1#slideshow

Possibly Related Articles:
11892
Security Awareness
Information Security
Headlines Information Security Infosec Professional Charlie Miller Dillon Beresford Black Hat Conference Dan Kaminsky Hacker Halted Conference Moxie Marlinspike Bruce Schneier
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.