What's the best overview you've seen of security engineering? Who are some experts worth following on tech Twitter on this topic?

Asked by Gergely Orosz
Security engineering is an increasingly important - and increasingly complex - field. What's the best overview you've seen of this field? (Can be blog, book, vi...

Security engineering is an increasingly important - and increasingly complex - field.

What's the best overview you've seen of this field? (Can be blog, book, video etc). Who are some experts worth following on tech Twitter on this topic?

 Show More
Save
Share on Twitter Copy link
Recommended by VolkerMos Julio lqq and 4 others
The world has changed radically since the first edition of this book was published in 2001. Spammers, virus writers, phishermen, money launderers, and spies now trade busily with each other in a lively online criminal economy and as they specialize, they get better. In this indispensable, fully upda
www.goodreads.com
lqq 6mos

This. Security engineering is a huge field, this book is likely the most comprehensive overview I've ever seen.

Listen to Darknet Diaries on Spotify. Explore true stories of the dark side of the Internet with host Jack Rhysider as he takes you on a journey through the chilling world of hacking, data breaches, and cyber crime.
open.spotify.com
Halil Can Kaşkavalcı 6mos

For secops I follow @JackRhysider . Incredible podcast content

Jack McCracken 6mos

Darknet Diaries was a podcast that introduced me to all kinds of cool folks to follow and things to learn about security:

Can a system be considered truly reliable if it isn't fundamentally secure? Or can it be considered secure if it's unreliable? Security is crucial to the design and operation of scalable systems in production, as it plays an important part in product quality, performance, and availability. In this b
www.goodreads.com
mattia 6mos

"Building secure & reliable systems" is really practical

György Demarcsek 6mos

Really depends on the specific subfield, but this is a great book for a big picture imho:

Five elite security teams. Six never-before-told stories. Go behind the scenes with the hacking teams at Google keeping more people safe online than anyone else in the world. (From Youtube)
www.youtube.com
InfosecMinion 6mos

are must follow. As you said Security engineering is increasingly complex and also vast. Recommending one source would be hard. This might be fun 👇🏻

Recommended by Vivan Vatsa
<b>Edward Snowden, the man who risked everything to expose the US government’s system of mass surveillance, reveals for the first time the story of his life, including how he helped to build that system and what motivated him to try to bring it down.</b><br /><br />In 2013, twenty-nine-year-old Edwa
www.amazon.com
Vivan Vatsa 6mos

got some insights on understand the architecture for sure. His book is a good read.

Recommended by Kyle Tobener
I’ll summarize and distill the insights, unique tips and tricks, and actionable lessons learned from a vast number of DevSecOps/modern AppSec talks and blog posts, saving attendees 100s of hours. I’ll show where we’ve been, where we’re going, and provide a lengthy bibliography for further review.
www.youtube.com
Recommended by Walter Lee
Securing resources in the cloud is challenging, given that each provider has different mechanisms and processes. Cloud Security Handbook helps you to understand how to embed security best practices in each of the infrastructure building blocks that exist in public clouds.
www.goodreads.com
Recommended by Henrik Warne
As a developer, you need to build software in a secure way. But you can't spend all your time focusing on security. The answer is to use good design principles, tools, and mindsets that make security an implicit result - it's secure by design. Then secure-by-design becomes a guiding principle in how
www.goodreads.com
Recommended by Mohamed Hussain
This course is a comprehensive overview of web security. The goal is to build an understanding of the most common web attacks and their countermeasures. Given the pervasive insecurity of the modern web landscape, there is a pressing need for programmers and system designers to improve their understa
www.youtube.com
Recommended by Uadm
Across GSK we use several public cloud platforms for a number of reasons: to bolster operations and IT infrastructure, to uncover insights with data and analytics and to drive drug discovery using Artificial Intelligence (AI) and Machine Learning (ML). Adoption of public cloud is an important part o
medium.com
Recommended by Artem
TryHackMe is a free online platform for learning cyber security, using hands-on exercises and labs, all through your browser!
tryhackme.com
Artem 6mos

I think all the books I could recommend are already in this thread, so - [link] has great modern security principles, foundations and techniques. I’m not affiliated, just used them myself and was pleasantly surprised with the quality of content.

Recommended by marek kuczyński
I’ve seen some mediocre automated translations of my Dutch language resignation statement go round. To prevent any confusion, please find the story here in English: Until today I was one of the three members of the board that checks warrants for the Dutch intelligence and security services. This boa
berthub.eu
marek kuczyński 6mos

.@bert_hubert has a lot of thoughts and talks on various security topics, often intertwined with policy and law too. He’s worked in very interesting places and doesn’t shy away from providing his own context and thoughts. Learning a lot from his blog too

Load More
Personalize your experience

Join our community of people discovering and sharing the best content out there.

Sign in with Twitter