• (0)

    ISO 27001 & ISO 22301 Blog

    Top 10 information security blogs

    There is a huge amount of information about information security on the Internet, so it is really difficult to stay informed about really relevant stuff. This is why I made this list – I wanted to offer a list of independent, expertly written and up-to-date blogs that will keep you right on track.

    The blogs are listed alphabetically:

    Information Security Blog by Anton Chuvakin

    Security topics including SIEM, log management, compliance, vulnerability management and cloud security.

    Krebs on Security by Brian Krebs

    This blog features posts on a number of recurring themes, including online crime investigations, latest threats, security updates, data breaches, and cyber justice.

    Lenny Zeltser on Information Security

    Presents a unique perspective on information security, based on the author’s broad experience in IT, business and malware combat. The blog presents several infosec topics, including incident response, malicious software and risk management.

    Mind Streams of Information Security Knowledge by Dancho Danchev

    This blog covers trends and fads, tactics and strategies, intersecting with third-party research, speculations and real-time CYBERINT assessments, all packed with sarcastic attitude. The blog offers access to timely, insightful and independent open-source intelligence (OSINT) analyses for maintaining the necessary situational awareness to stay on top of emerging security threats.

    Privacy and Information Security Law Blog

    This blog covers important aspects of information security rarely covered in other blogs – privacy and information security law updates and analysis.

    Schneier on Security by Bruce Schneier

    A blog covering security and security technology – the author explains, debunks, and draws lessons from security stories that make the news.

    Security Affairs by Pierluigi Paganini

    This daily updated blog is focused on all the areas in the security sphere. Its target is to make security a theme accessible to professionals and laymen alike, with an objective judgment on the main security events with specific attention to the subjects of cyber warfare, cyber crime and hacking.

    TaoSecurity by Richard Bejtlich

    TaoSecurity blog is one of the original security blogs – it will soon be ten years old. It focuses on incident detection and response for targeted threats, with emphasis on Chinese intruders.

    And by the way, Security Bloggers Network offers links to over 100 various information security blogs.

    Advisera Dejan Kosutic
    Dejan Kosutic
    Dejan holds a number of certifications, including Certified Management Consultant, ISO 27001 Lead Auditor, ISO 9001 Lead Auditor, and Associate Business Continuity Professional. Dejan leads our team in managing several websites that specialize in supporting ISO and IT professionals in their understanding and successful implementation of top international standards. Dejan earned his MBA from Henley Management College, and has extensive experience in investment, insurance, and banking. He is renowned for his expertise in international standards for business continuity and information security – ISO 22301 & ISO 27001 – and for authoring several related web tutorials, documentation toolkits, and books.