Me and my portfolio
I've officially launched a portfolio of my online work and made it my new company website! I hope you find it useful and I'd love to hear your feedback. You can also sign up on my main page for a weekly digest that'll tell you about my new publications and blog posts.
A lot of people think I'm a NIST employee, and that's understandable. I've been supporting NIST since 2003, but I've been a contractor since 2010. In addition to NIST, I write for several online and print magazines, I author security training courses and books/ebooks, and until recently I did a fair amount of marketing content ghost-writing for security vendors.
By no means am I an expert in every topic I write about. I dive intensely into a topic when I'm working on a pub so that I understand it well enough to communicate the key info. I'm still a security generalist who understands most security topics to some degree and, most importantly, gets how the topics involve and affect each other.
I'm glad I've put together the portfolio, but I'm done navel-gazing and I'm excited to write new things. My next blog will be on vulnerability scoring and patching prioritization, so stay tuned!