Growing thick skin in InfoSec – to avoid burnouts and be more effective

Ignore obnoxious people you’ll meet along the way One thing that will inevitably happen, is you working with people. Some of them will be always unsatisfied, ungrateful, rude or just deeply troubled and no matter how you approach them they’ll always be bitter. Although the collaboration with that type of people may be draining, don’t give … Continue reading Growing thick skin in InfoSec – to avoid burnouts and be more effective →

Jak zostać Pentesterem i Specjalistą Bezpieczeństwa

Skąd się uczyć i kilka słów o edukacji formalnej Jeśli chcesz zostać testerem bezpieczeństwa, inżynierem bezpieczeństwa czy kimkolwiek w świecie security to już na samym początku mam dla Ciebie wyśmienite wieści. Trafiłeś na branżę, która nie tylko dynamicznie się rozwija i dobrze płaci, ale także ma całkiem niski koszt wejścia. Zauważ, że nie napisałem o … Continue reading Jak zostać Pentesterem i Specjalistą Bezpieczeństwa →

Leave Your Ego At The Door And Study Empathetic Leadership

The long term efficiency requires you to do things the right way As a security professionals, the big chunk of our daily work is finding mistakes in work of others and pointing them out. It’s what we are paid for and what we are supposed to do, however the whole trouble comes from HOW we transfer the … Continue reading Leave Your Ego At The Door And Study Empathetic Leadership →

Security Is An Art Of Tradeoffs So Learn How To Manage The Risks

Balancing act while isn’t easy, is among the most practical things to do Be practical No one likes when his time is wasted. When creating a process, policy or procedure you must really thorougly consider if they have any chances of being implemented. By working on something that won’t get results in real life you’re … Continue reading Security Is An Art Of Tradeoffs So Learn How To Manage The Risks →

Secure Software Engineering — OWASP TOP 10 Intro Course

My goal is to create easy to consume trainings that can be used by any individual or organisation. I know plenty of organisation struggle with a cost of producing internal secure coding trainings, so here I come for the rescue. I offer my content — which I’ve used to use at commercial trainings — now free of charge for … Continue reading Secure Software Engineering — OWASP TOP 10 Intro Course →

Provide High Quality Training And Learn To Feel Your People

This is what good leadership is all about - the empathetic actions behind the scenes done because you feel you should do them, not because someone asked you to. https://www.youtube.com/watch?v=2NUiu1eS9Lg

DevOps i DevSecOps – Z Czym To Się Je I Jak To Wdrożyć

Security to nie czarna magia i każdego da się nauczyć podstaw bezpiecznej inżynierii oprogramowania. https://www.youtube.com/watch?v=0qM6wO0xhl8

Adjust To Business Reality And Simplify Your Processes

DevSecOps is the thing you're either going to master or you'll be out from the industry in the next 5 years. https://www.youtube.com/watch?v=QeVlJ7cz5LQ

Waterfall Security Testing Doesn’t Scale Anymore – Involve Everyone

Whether you like it or not, the time for DevSecOps is here and now. If you want to ensure safety of your organisation and products, you must create yourself a full coverage coming from all sides of organisation. https://www.youtube.com/watch?v=2E15sT6nUfM

Securing Software in Agile SDLC & Allocating Testing Resources

It's tough to get yourself started when Agile SDLC is new to you, but when you tweak some processess and adjust them, you'll be able to increase your productivity. Software engineers must take security department into account but you also must learn from they how to be effective without disturbing their workflow. https://www.youtube.com/watch?v=d2fmXwQroIc