Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
BSidesSanFrancisco2011 - Misdirection: The Rise...
Search
Sponsored
·
Ship Features Fearlessly
Turn features on and off without deploys. Used by thousands of Ruby developers.
→
Brett Hardin
February 14, 2011
Technology
240
1
Share
BSidesSanFrancisco2011 - Misdirection: The Rise and Fall and Rise of Regulatory Compliance
Brett Hardin
February 14, 2011
More Decks by Brett Hardin
See All by Brett Hardin
Penetration Testing is Stupid - BsidesSF 2013
bretthardin
2
2.3k
Building Your House on Sand
bretthardin
2
1.5k
Bad Version of Builders vs. Breakers
bretthardin
1
85
Builders vs. Breakers - AppSec 2012
bretthardin
2
1.5k
Security the Wrong Way
bretthardin
2
260
Security? Who Cares! - Privacy is Dead
bretthardin
1
210
OWASP - Top 10
bretthardin
0
1.1k
Other Decks in Technology
See All in Technology
Forget technical debt
ufried
0
190
Modernizing Your HCL Connections Experience: Visual Report to chain, Profile Enhancements, and AI Integration
wannesrams
0
300
"うちにはまだ早い"は本当? ─ 小さく始めるPlatform Engineering入門
harukasakihara
5
510
要件定義の精度を高めるための型と生成AIの活用 / Using Types and Generative AI to Improve the Accuracy of Requirements Definition
haru860
0
320
Databricks 月刊サービスアップデートまとめ 2026年04月号
tyosi1212
0
110
クラウドネイティブ DB はいかにして制約を 克服したか? 〜進化歴史から紐解く、スケーラブルアーキテクチャ設計指針〜
hacomono
PRO
6
920
サービスの信頼性を高めるため、形骸化した「プロダクションミーティング」を立て直すまでの取り組み
stefafafan
1
260
AI時代の品質はテストプロセスの作り直し #scrumniigata
kyonmm
PRO
4
1.5k
Oracle Cloud Infrastructure presents managed, serverless MCP Servers for Oracle AI Database
thatjeffsmith
0
230
Agent Skillsで実現する記憶領域の運用とその後
yamadashy
2
1.8k
セキュリティ対策、何からはじめる? CloudNative環境の脅威モデリングと リスク評価実践入門 #cloudnativekaigi
varu3
5
800
新卒エンジニア研修、ハンズオンの設計における課題と実践知/ #tachikawaany
nishiuma
2
140
Featured
See All Featured
The SEO Collaboration Effect
kristinabergwall1
1
440
Highjacked: Video Game Concept Design
rkendrick25
PRO
1
350
Heart Work Chapter 1 - Part 1
lfama
PRO
6
35k
The Cost Of JavaScript in 2023
addyosmani
55
9.9k
Bridging the Design Gap: How Collaborative Modelling removes blockers to flow between stakeholders and teams @FastFlow conf
baasie
0
540
What’s in a name? Adding method to the madness
productmarketing
PRO
24
4k
Speed Design
sergeychernyshev
33
1.6k
New Earth Scene 8
popppiees
3
2.2k
A brief & incomplete history of UX Design for the World Wide Web: 1989–2019
jct
1
370
Design in an AI World
tapps
1
210
The B2B funnel & how to create a winning content strategy
katarinadahlin
PRO
1
350
Build The Right Thing And Hit Your Dates
maggiecrowley
39
3.1k
Transcript
Being Sneaky About Security and Regulations - OR - "Misdirection:
The Rise and Fall and Rise of Regulatory Compliance" Brett Hardin and Mike Dahn
Who the Hell Are you Two? Mike Dahn @MikD Payment
Security Guy Brett Hardin @MiscSecurity Application Fixer Author: • Hacking: The Next Generation • SpotTheVuln.com • MiscSecurity.com
None
How Do Regulatory Rules Get Made and The Goals of
Compliance
Stop Hitting Yourself
None
None
None
Immunization
None
None
Transition.
Black Swans & Data Breaches
None
Real Costs The Placebo Effect of Fear VS.
None
None
Don't make Compliance the End Goal
Transition.
None
Do not focus on the finger or you will miss
all that heavenly glory [of Regulatory Compliance] Lee (Bruce Lee) Enter the Dragon
None
None
None
None
CISSP
None
Compliance != Security
Out of the Box
THE END
bretthardin
ufried
wannesrams
harukasakihara
haru860
tyosi1212
hacomono
stefafafan
kyonmm
thatjeffsmith
yamadashy
varu3
nishiuma
kristinabergwall1
rkendrick25
lfama
addyosmani
baasie
productmarketing
sergeychernyshev
popppiees
jct
tapps
katarinadahlin
maggiecrowley
