Irene Michlin
@IreneMichlin
Followers
527
Following
16K
Media
81
Statuses
1K
Yes, you can do secure development in Agile or Lean. #SDLC, #ThreatModeling, #AppSec, #defensivesecurity, #Lean, #Agile, #Kanban
UK
Joined May 2013
A perfect metaphor for my infosec skill: I know all the good spots to bury the bodies, while not necessarily skilled with all the spade types on all the soil types.
0
1
12
How a single medium risk CVE can consume crazy amounts of time of an AppSec team?. Join me in Barcelona for the OWASP 2025 Global AppSec to find out. Other excellent talks and trainings are available:
0
1
3
Allies that gave Ukraine 30 tanks and 0 planes don’t get to tell Ukrainians to send everyone from the age of 18 to the frontlines! Land can be eventually returned (look at Poland), a whole generation can not be resurrected.
0
0
0
My sage advice on conference speaking: never rely on being able to see speaker notes, because the technical setup can throw bad surprises. Rehearse until you don’t need them.
1
0
3
- always wondered how the imports of *stans went up 1000% in February 2022? #NODES2024 #Neo4j.
0
0
2
May you carry your laundry loads in hell for eternity, while Lucifer provides you with pleasant chats and the coals on which to heat water.
Washing clothes by hand is a chore, oftentimes a lonely one. But it needn’t be. We could have communal washing facilities in each neighborhood where people can plan to come in groups to do their laundry together. 3/.
0
0
1
Graph Databases Offer a Deeper Understanding of Organizational Risk - a very interesting work from our summer intern. Turn your risk register to graph and learn things!.
0
1
2
Yeah, as many of us with autistic kids know, most entry level job descriptions are essentially “just don’t be autistic”. 🥲.
My daughter thought she bombed an interview recently. They hired her over 10 other applicants. After she was hired she asked why they hired her when she felt like didn't perform that well in the interview. They told her that she easily maintained eye contact and was able to
0
0
0
RT @InformNapalm: #BreakingNews🐻 #MedvedevLeaks: Blackmail by Dmitry ‘Nuclear Teddy’ Medvedev, Aggressive Russian Actions in the Arctic, an….
0
209
0
Since getting my CS degree I had to use 5 different source control systems at least. You need to understand the principles, you don’t need specific git commands. The number of kids who think the current tools are the only tools is astounding. :).
i love how programers think something you can learn in a few minutes from a man page is important lore requiring deep study
0
0
2
We are releasing a graph representation of ASVS standard. The database comes with a little demo that suggests relevant requirements for your feature description. See for full details and the download link.
0
1
5
What an excellent finding.
I recently found an exploitable timing leak in the reference implementation of Kyber (ML-KEM), the soon-to-be NIST standard for post-quantum key encapsulation. Let’s see if you can spot it in the source code - msg is secret:
0
0
1
Not celebrating the attack, but why they are hosting time-sensitive software in such a vulnerable way?.
A 18-year-old student at Klein Forest High School in the Klein Independent School District (ISD) is currently wanted by police for allegedly orchestrating a cyber attack that disrupted state-mandated STAAR testing for thousands of students. The student is accused of using a.
0
0
0
CSCP S4EP16 - Irene Michlin - Threat Modelling in the Age of AI - Phoenix Security .It was a lot of fun talking to @FrankSEC42 , hopefully it’s somewhat fun to listen to as well!.
1
2
4
Wouldn’t the realistic answer be: dude, the other 19% will take the six months?.
2
1
4
RT @neo4j: Interested in joining our Neo4j Research panel? Sign up to share your experiences with a researcher and influence the future of….
0
1
0
RT @InformNapalm: Hacking #Russian #UAV manufacturer. Part 1: who assembles Geran-2? Ukrainian hacktivists of the Cyber Resistance team @C….
0
743
0
RT @TMConnectHQ: ⏰ Only 3 days left to submit your talks for #ThreatModCon24 Lisbon! Showcase your threat modeling expertise and network wi….
0
1
0