Irene Michlin
@IreneMichlin
Followers
530
Following
22K
Media
81
Statuses
1K
Yes, you can do secure development in Agile or Lean. #SDLC, #ThreatModeling, #AppSec, #defensivesecurity, #Lean, #Agile, #Kanban
UK
Joined May 2013
A perfect metaphor for my infosec skill: I know all the good spots to bury the bodies, while not necessarily skilled with all the spade types on all the soil types.
0
1
12
How a single medium risk CVE can consume crazy amounts of time of an AppSec team? Join me in Barcelona for the OWASP 2025 Global AppSec to find out. Other excellent talks and trainings are available: https://t.co/1AiO3lXVqS
0
1
3
https://t.co/QEHmNyHzfF - 30/01, come and say hello if you are around.
eventbrite.com
Join us at this month’s hack::soho featuring a talk from guest speaker Irene Michlin, Application Security Lead at Neo4j.
0
0
0
Allies that gave Ukraine 30 tanks and 0 planes don’t get to tell Ukrainians to send everyone from the age of 18 to the frontlines! Land can be eventually returned (look at Poland), a whole generation can not be resurrected.
0
0
0
My sage advice on conference speaking: never rely on being able to see speaker notes, because the technical setup can throw bad surprises. Rehearse until you don’t need them.
1
0
3
https://t.co/tdPrPtsGqP - always wondered how the imports of *stans went up 1000% in February 2022? #NODES2024 #Neo4j
0
0
2
May you carry your laundry loads in hell for eternity, while Lucifer provides you with pleasant chats and the coals on which to heat water.
Washing clothes by hand is a chore, oftentimes a lonely one. But it needn’t be. We could have communal washing facilities in each neighborhood where people can plan to come in groups to do their laundry together... 3/
0
0
1
Graph Databases Offer a Deeper Understanding of Organizational Risk - a very interesting work from our summer intern. Turn your risk register to graph and learn things!
0
1
2
Yeah, as many of us with autistic kids know, most entry level job descriptions are essentially “just don’t be autistic”. 🥲
My daughter thought she bombed an interview recently. They hired her over 10 other applicants. After she was hired she asked why they hired her when she felt like didn't perform that well in the interview. They told her that she easily maintained eye contact and was able to
0
0
0
#BreakingNews🐻 #MedvedevLeaks: Blackmail by Dmitry ‘Nuclear Teddy’ Medvedev, Aggressive Russian Actions in the Arctic, and Rosatom☢️ The Ukrainian hacktivist group, @CyberResUa, known for their high-profile hacks targeting Russian war criminals, the Russian military-industrial
14
206
300
Since getting my CS degree I had to use 5 different source control systems at least. You need to understand the principles, you don’t need specific git commands. The number of kids who think the current tools are the only tools is astounding. :)
i love how programers think something you can learn in a few minutes from a man page is important lore requiring deep study
0
0
2
We are releasing a graph representation of ASVS standard. The database comes with a little demo that suggests relevant requirements for your feature description. See https://t.co/pzmKtKz3Uv for full details and the download link.
0
1
5
What an excellent finding.
I recently found an exploitable timing leak in the reference implementation of Kyber (ML-KEM), the soon-to-be NIST standard for post-quantum key encapsulation. Let’s see if you can spot it in the source code - msg is secret:
0
0
1
Not celebrating the attack, but why they are hosting time-sensitive software in such a vulnerable way?
A 18-year-old student at Klein Forest High School in the Klein Independent School District (ISD) is currently wanted by police for allegedly orchestrating a cyber attack that disrupted state-mandated STAAR testing for thousands of students. The student is accused of using a
0
0
0
CSCP S4EP16 - Irene Michlin - Threat Modelling in the Age of AI - Phoenix Security https://t.co/rshGWqYnwg It was a lot of fun talking to @FrankSEC42 , hopefully it’s somewhat fun to listen to as well!
phoenix.security
"Discover the crucial role of threat modeling in application security with insights from Irene Michlin, application security lead at Neo4j. Learn how integrating developer perspectives and leveraging...
1
2
4
Wouldn’t the realistic answer be: dude, the other 19% will take the six months?
2
1
4
Interested in joining our Neo4j Research panel? Sign up to share your experiences with a researcher and influence the future of Neo4j products! https://t.co/zjZYbNapgj
0
1
6
Hacking #Russian #UAV manufacturer. Part 1: who assembles Geran-2? Ukrainian hacktivists of the Cyber Resistance team @CyberResUa , in collaboration with @InformNapalm volunteer intelligence community, conducted a multi-level CYBINT operation retrieving more than 100 GB of
59
738
1K
⏰ Only 3 days left to submit your talks for #ThreatModCon24 Lisbon! Showcase your threat modeling expertise and network with industry leaders. Become a speaker at Europe's first and ONLY threat modeling conference: https://t.co/rCO5YnaTlf!
#CallForPapers #ThreatModeling
0
1
2