SPoT: Justin Foster (@justin_foster)
As the second installment of our SPoT series, The Network View turns our attention to another Canadian Security Pro, Justin Foster (@justin_foster). Mr. Foster is employed by Trend Micro during working hours, and he also maintains his own independent blog, Developing Security. Go check out his Top 10 signs you are a Security Twit post from June 2009 for a quick chuckle. On that note…
Real Name: Justin Foster
Twitter Handle: @justin_foster
Top 3 Social Media/Networking Sites:
Twitter / LinkedIn / Security Bloggers Network
1. In which area(s) of security are you most involved?
I’m an Architect for Trend Micro focusing on IDS/IPS, Firewall, Integrity Monitoring, and Log Inspection. At work, I generally concentrate on network and endpoint security management. Personally, I’m interested in a wide spectrum of information security disciplines.
2. What security topics will be the most important in the next 18 months? Why?
Over the next 18 months, we will see the promises made in virtualized security become reality. Third party vSwitches and VMsafe-based appliances have the potential to dramatically change how compensating controls are deployed and what security vendors will be capable of. I also believe Security as a Service will introduce new products and product architectures.
3. Biggest Pet Peeve: Name one thing about Network Security that you wish business stakeholders would understand and why.
I think perimeter security is becoming increasingly irrelevant. We all know the perimeter is porous and the demands of mobile and Cloud computing require security applied much closer to the endpoint. What we sometimes fail to understand is how important it is to take advantage of that proximity and tailor the security policy to each individual endpoint.
4. Tell us why you became so active on Twitter and any other important social media outlets. What value are you getting?
I initially joined Twitter to keep pace with the news from the security community, but I quickly found it has so many uses. With Twitter I have had engaging open-ended debates, aided my research efforts, discovered new topics I wouldn’t have even known to look for, and found a wealth of security blogs to read. I use ongoing searches in TweetDeck to stay tuned to specific security and development topics; a technique that has paid off by saving me substantial time more than once.
5. Name one security peer whom everyone with an interest in Network Security should follow. (OK to name 2 if you can’t decide on only one)
Two people I would highly recommend are @andrewsmhay and @falconsview. Both live and breathe security and can always be counted on for a considered opinion or lively debate. Each is a prolific blogger and author, and it doesn’t hurt that they are both good people in real life as well.
6. What’s your take on security for social media and cloud services in general? Top concerns, overstated issues, etc.
Fundamentally, securing a highly interactive web application like Facebook or Twitter is extremely challenging. While we have seen significant exploitation of weaknesses in these applications, the fact that they are centrally deployed has resulted in extremely rapid remediation of the issues (sometimes within hours). Compare that to traditional software, and the benefits and drawbacks tend to balance out. When it comes to leakage of personal information, we all have to remember that anything we put into the Cloud is ultimately out of our control.
7. What are the top 3 real-world (i.e. live) events you’d recommend for networking with security professionals?
For sure RSA and BlackHat/DEFCON top the list, but it’s important to network with other security-minded people in your local community as well. Twitter is a great tool to carry on the conversation long after the convention or meeting has passed.
