Avoiding DNS Pain

In every organisation DNS is a critical system, but it rarely gets the attention that it deserves. We rely on DNS for the smooth operation of our businesses; if your customers can’t reach your website or email you, then your business is effectively cut-off. Organisations will keep disaster recovery plans and business continuity procedures for their corporate websites, mail servers and internal systems; but how many of these plans and procedures include DNS?

Sacrebleu - PowerShell on Linux!

Microsoft open-sourced PowerShell in 2016, and debuted a cross-platform interaction supporting Linux and MacOS. Since then, thousands have contributed to the PowerShell project, with the community growing exponentially. Linux users now outpace other platforms in downloading PowerShell modules and scripts from the PowerShell Gallery. With PowerShell 7.1, the community and Microsoft have delivered more features and bug fixes than ever before. In this session, we will work through some of the new features and improvements included in this release.

Expert Insights: Vital Tips To Boost Employees’ Efficiency and Wellbeing

In these unpredictable times, learn why employee wellbeing matters more than ever, and how you can boost your team’s efficiency and engagement with tech.

Bank Grade Security

Banks and financial services providers love to make some big claims when it comes to the security of their products and networks. The truth is, the phrase "bank grade security" has become an oxymoron. Many institutions have failed to implement basic security controls, least to keep ahead of security curve. Yet we continue to place considerable trust in them, and put up with security controls that are counter-productive, all to maintain the theatre of security.

Bank Grade Security

Banks and financial services providers love to make some big claims when it comes to the security of their products and networks. The truth is, the phrase "bank grade security" has become an oxymoron. Many institutions have failed to implement basic security controls, least to keep ahead of security curve. Yet we continue to place considerable trust in them, and put up with security controls that are counter-productive, all to maintain the theatre of security.

Bank Grade Security

Banks and financial services providers love to make some big claims when it comes to the security of their products and networks. The truth is, the phrase "bank grade security" has become an oxymoron. Many institutions have failed to implement basic security controls, least to keep ahead of security curve. Yet we continue to place considerable trust in them, and put up with security controls that are counter-productive, all to maintain the theatre of security.

The Boring Security Talk

Troy Hunt and Scott Helme have spoken about all the exciting security things, so let’s talk about the boring bits! When we think about application and infrastructure security, we often think about the big shiny things and forget the boring bits. In this talk, we’ll look at the security of our package dependencies, CI/CD tools, how we send email and even resolve hostnames. Over the last few months, hackers have managed to inject cryptocurrency miners into all these places. Security incidents in these components might not result in an entry in Have I Been Pwned?, but they'll result in a bad day.

Click on the title for more informaiton.

The Boring Security Talk

Troy Hunt and Scott Helme have spoken about all the exciting security things, so let’s talk about the boring bits! When we think about application and infrastructure security, we often think about the big shiny things and forget the boring bits. In this talk, we’ll look at the security of our package dependencies, CI/CD tools, how we send email and even resolve hostnames. Over the last few months, hackers have managed to inject cryptocurrency miners into all these places. Security incidents in these components might not result in an entry in Have I Been Pwned?, but they'll result in a bad day.

Click on the title for more informaiton.

The Boring Security Talk

Troy Hunt and Scott Helme have spoken about all the exciting security things, so let’s talk about the boring bits! When we think about application and infrastructure security, we often think about the big shiny things and forget the boring bits. In this talk, we’ll look at the security of our package dependencies, CI/CD tools, how we send email and even resolve hostnames. Over the last few months, hackers have managed to inject cryptocurrency miners into all these places. Security incidents in these components might not result in an entry in Have I Been Pwned?, but they'll result in a bad day.

Click on the title for more informaiton.

The Boring Security Talk

Troy Hunt and Scott Helme have spoken about all the exciting security things, so let’s talk about the boring bits! When we think about application and infrastructure security, we often think about the big shiny things and forget the boring bits. In this talk, we’ll look at the security of our package dependencies, CI/CD tools, how we send email and even resolve hostnames. Over the last few months, hackers have managed to inject cryptocurrency miners into all these places. Security incidents in these components might not result in an entry in Have I Been Pwned?, but they'll result in a bad day.

Click on the title for more informaiton.

Secure Azure Deployment Patterns

Microsoft has provided an almost unlimited number of ways for you to securely deploy Azure resources; but people continue to make simple mistakes. In 2017 many organisations had breaches due to poor cloud deployment practices.

Click title for more information.

Secure Azure Deployment Patterns

Microsoft has provided an almost unlimited number of ways for you to securely deploy Azure resources; but people continue to make simple mistakes. In 2017 many organisations had breaches due to poor cloud deployment practices.

Click title for more information.

Ransomware 0, Admins 1

Ransomware made headlines in 2017, with attacks shutting down the UK's NHS and costing Maersk shipping over $300m in lost revenue. Ransomware is a massive business for cybercriminals, driving the cost of bitcoin from $1200 to over $7000 per coin. We often see ransomware as some unbeatable force, however with some common sense controls and simple tricks, the damage can be reduced or even stopped. Join Kieran to learn some simple, free steps you can do to stop ransomware in its tracks.

Click on the title for more information.

Developer Security

Internal training program for Readify Graduate Developers.

Co-presented with Vatsalya Goel.

Topics include:
* Case studies of real life security incidents.
* OWASP Top 10.
* Secure Azure Deployments

Click on the title for more information.

DevSecOps in 10 minutes!

DevSecOps, or SecDevOps has the ambitious goal of integrating development, security and operations teams together, encouraging faster decision making and reducing issue resolution times. This session will cover the current state of DevOps, how DevSecOps can help, integration pathways between teams and how to reduce fear, uncertainty and doubt. We will look at how to move to security as code, and integrating security into our infrastructure and software deployment processes.

Click on the title for more information.

Introducing DevSecOps

DevSecOps, or SecDevOps has the ambitious goal of integrating development, security and operations teams together, encouraging faster decision making and reducing issue resolution times. This session will cover the current state of DevOps, how DevSecOps can help, integration pathways between teams and how to reduce fear, uncertainty and doubt. We will look at how to move to security as code, and integrating security into our infrastructure and software deployment processes.

Click on the title for more information.

Level Up to DevSecOps

DevSecOps, or SecDevOps has the ambitious goal of integrating development, security and operations teams together, encouraging faster decision making and reducing issue resolution times. This session will cover the current state of DevOps, how DevSecOps can help, integration pathways between teams and how to reduce fear, uncertainty and doubt. We will look at how to move to security as code, and integrating security into our infrastructure and software deployment processes.

Evolving your Automation with Hybrid Workers

Azure Automation wants you to automate everything, everywhere. Hybrid Workers allow Azure Automation to reach new places within your infrastructure, allowing for more automation and less complexity. This session covers the basics of Hybrid Workers before looking at balancing workloads, managing resource dependencies, integrating with web hooks and monitoring job execution. The is a great session for anyone who is automating infrastructure or cloud resources.

Click on the title for more information.

DevSecOps in 10 minutes!

DevSecOps, or SecDevOps has the ambitious goal of integrating development, security and operations teams together, encouraging faster decision making and reducing issue resolution times. This session will cover the current state of DevOps, how DevSecOps can help, integration pathways between teams and how to reduce fear, uncertainty and doubt. We will look at how to move to security as code, and integrating security into our infrastructure and software deployment processes.

Click on the title for more information.

PowerShell 101

Internal PowerShell training seminar delivered as Readify Queensland's Back2Base for May 2016.

Topics covered included, PowerShell basics, operators, getting and writing help, working with the pipeline, loops, filtering, sorting, CMDLets, modules, manifests, parameters, recommended structures, guidelines and gotchas.

Click on the title for more information.

Level up to DevSecOps

The IT industry has experienced rapid change and consolidation. The introduction of Cloud, Agile, DevOps and shortages in skilled staff have created immense pressure on enterprise IT teams. Organisations are concerned about the costs of data breaches, and need to act to ensure they do not become the next Yahoo, OPM or Target.

DevSecOps (or SecDevOps) integrates development, security and operations teams together to encourage faster decision making and reduce issue resolution times.

This session will cover the current state of DevOps, and how DevSecOps can help integrate pathways between teams to reduce fear, uncertainty and doubt. We will look at how to move to security as code, and integrate security into our infrastructure and software deployment processes.

Click on the title for more information.

Evolving your Automation with Hybrid Workers

Azure Automation wants you to automate everything, everywhere. Hybrid Workers allow Azure Automation to reach new places within your infrastructure, allowing for more automation and less complexity. This session covers the basics of Hybrid Workers before looking at balancing workloads, managing resource dependencies, integrating with web hooks and monitoring job execution. The is a great session for anyone who is automating infrastructure or cloud resources.

Click on the title for more information.

PowerShell 101

Topics covered included, PowerShell basics, operators, getting and writing help, working with the pipeline, loops, filtering, sorting, CMDLets, modules, manifests, parameters, recommended structures, guidelines and gotchas.

Click on the title for more information.