Explore the dynamic relationship between hackers and auditors in this 30-minute conference talk from BSidesLV 2014. Delve into the contrasting mindsets, methodologies, and skills of these two groups as Dan Anderson examines their roles in cybersecurity. Learn about the three types of hackers, the characteristics of effective IT auditors, and the ongoing experiment of integrating hacking techniques into auditing practices. Discover the benefits of this approach and the common traits shared by successful hackers and auditors. Gain insights into reverse engineering, social engineering, and the importance of continuous learning in the ever-evolving field of information security.
Overview
Syllabus
Introduction
Hackers vs Auditors
Fake Hat
Auditors
Hacker Mindset
Hacking
Reverse Engineering
Social Engineering
What makes an IT auditor effective
The three types of hackers
Hacking vs Auditors
The Ongoing Experiment
The Monkey Well
The Benefits
Common Traits
Continuous Learning
References
Taught by
BSidesLV
