Perfil
| Nome | |
| Área de atuação da empresa | |
| Cargo | |
| Departamento | |
| Cidade | |
| País | |
| Sobre mim |
Certificado ISEB/ISTQB, ITIL-F e (ISC)2’s Certified Secure Software Lifecycle Professional (CSSLP) Mestre em Ciência da Computação pela Universidade Federal de Santa Catarina Graduado em Sistemas de Informação pela Universidade Federal de Santa Catarina Trabalhou em empresas de grande porte como EDS(HP) 165.000 funcionários e DELL 80.000 funcionários antes de se tornar o principal responsável global por Segurança e Performance de Aplicações de uma empresa líder de mercado. |
Atividades de Rafael Brinhosa
-
Rafael Brinhosa wrote a new blog post: The Value Of Corporate Secrets - Forrester Research key recommendations for CISOs 1 mês, 1 semana atrás
Forrester key recommendations for CISOs
Identify the most valuable information assets in your portfolio.
Create a “risk register” of data security risks.
Assess your program’s balance between compliance and protecting secrets.
And then:
Reprioritize enterprise security investments.
Increase vigilance of external and third-party business relationships.
Measure effectiveness of your data security program.
Read full article at:
http://www.nsi.org/pdf/reports/The Value of Corporate Secrets.pdf -
Rafael Brinhosa escreveu um novo post: Security Scorecard Advices 1 mês, 2 semanas atrás
Some advices from the article “Security Metrics Building Business Unit Scorecards”.
At a minimum, it will be helpful to produce an executive view of the scorecard. The
executive scorecard should contain some or all the following:
• A high-level view of the business units, showing their scores alongside other business
units
• A calculated score or index for each business [...] -
Rafael Brinhosa escreveu um novo post: Bob Bragdon Highlights from the workshop on Cyber Security & Global Affairs and Security Confabulation IV at ETH in Zurich 1 mês, 2 semanas atrás
Bob Bragdon Highlights from the workshop on Cyber Security & Global Affairs and Security Confabulation IV at ETH in Zurich, getting on top of these issues requires that organizations:
Have strong governance and organizational structures,
Regularly assess their risk postures using proven risk assessment frameworks,
Build strategic plans that are integrated into the corporate model,
Clearly understand that security [...] -
bruno patricio e Rafael Brinhosa agora são amigos 2 meses atrás
-
Rafael Brinhosa escreveu um novo post: Mapping of major App Sec Threats Lists WASC / SANS/CWE Top 25 / OWASP 2010 2 meses atrás
Excellent Threat Classification ‘Taxonomy Cross Reference View’ mapping WASC v2 / CWE / SANS/CWE Top 25 / OWASP 2010, 2007, and 2004 published at: http://projects.webappsec.org/Threat-Classification-Taxonomy-Cross-Reference-View
