Latest Story

NIST Issues Draft of Updated RNG Guidance … Sans Flawed Dual_EC_DRBG Algorithm

April 23, 2014
By
NIST Issues Draft of Updated RNG Guidance … Sans Flawed Dual_EC_DRBG Algorithm

In the wake of concerns over potential NSA tampering with NIST’s random number generator guidance, the standards organization has released the first updated draft of Special Publication 800-90A Revision 1, titled “Recommendation for Random Number Generation Using Deterministic Random Bit Generators.” The most notable change is the lack of the controversial Dual_EC_DRBG algorithm. Nice to...
Read more »

Job: Senior Software Security Engineer, Security Engineering in Washington, DC

April 22, 2014
By
Job: Senior Software Security Engineer, Security Engineering in Washington, DC

Blackboard is hiring a Senior Software Analyst Engineer to join their team. If you enjoy contributing to open source projects, analyzing the security of applications and services through Threat Modeling, discovering and addressing security issues, collaborating with customers and employees worldwide, assessing designs against relevant security threats, this position...
Read more »

Job: Security Analyst in Washington, DC

April 21, 2014
By
Job: Security Analyst in Washington, DC

AARP is looking to hire a security analyst to provide support for the development and management of their network and IT security architecture, including the security management and configuration of related hardware, software and network. The analyst will collaborate with colleagues in Technology Service Management (TSM)...
Read more »

Where You Want to Be This Week for 4-21-2014

April 20, 2014
By
Where You Want to Be This Week for 4-21-2014

Where do you want to be this week? Now you’ll always know with our “Where You Want to Be This Week” feature, which will tell you about infosec meetups happening in your local area as of Sunday night. If you would like your event listed in...
Read more »

Weekly Rewind – SOC Analyst Skills, TrueCrypt, QOTD & More…

April 17, 2014
By
Weekly Rewind – SOC Analyst Skills, TrueCrypt, QOTD & More…

Welcome to another edition of our Weekly Rewind – where we summarize all our posts from the last week. The top stories this week were 3) “QOTD: A Bad Career Choice in Security Would Be Learning Just the Big Vendor Tools”, 2) “No Major...
Read more »

No Major Findings in TrueCrypt Audit

April 16, 2014
By
No Major Findings in TrueCrypt Audit

iSEC finally released the results of their audit on TrueCrypt. Below is the key paragraph in their announcement. Basically, the software did contain some some lower risk weaknesses however overall it fared well. Additionally, the audit did not show any evidence of intentional tampering....
Read more »

Top 5 SOC Analyst Skills

April 14, 2014
By
SOC Analyst Candidates

Similar to an article we covered before on training your SOC analysts, Rick Howard recently penned this one detailing what to look for when initially recruiting that staff. The leading sentence pretty much summarizes it all — emphasizing “passion, experience, and communication skills” while...
Read more »


About Us

Founded in 2008, NoVA Infosec is dedicated to the community of Metro DC-based security professionals and whitehat hackers involved in the government and other regulated verticals. Find out more on our About Us page.