Speaking at Syntax Code & Craft Convention

There’s a new conference starting up in Charleston, SC: Syntax Code & Craft Convention or simply SyntaxCon. This conference is primarily for developers and it will occur May 6-7, 2016. Charleston is beautiful this time of year, so if you have the ability to go, please consider doing so.

The cost isn’t much: $175 for a single day or $300 for both days. There are also group and student discounts. See how to obtain those on the website. If you think you might need some help convincing your boss to let you go, the organizers have put together a prospectus indicating why it would be helpful to your career and your organization.

As for me, I’ve giving another security related presentation. Here’s the title and abstract:


Every few weeks, we hear about another data breach. You’ve probably been affected – multiple times. If current forecasts are correct, things are only going to get worse. So what can we do about it?

In this talk we’ll focus on the weak points within the back-end that an attacker will likely go after. We’ll discuss why the attacks work, what weaknesses to look for, and what you can do to build security in, whether you are developing a new solution or trying to retrofit something onto an existing system. This isn’t just focused on the database platform such as SQL Server, but the entire data pipeline.

After all, if you’ve secured your database servers like Fort Knox but your file servers like leaky sieves, you’re still vulnerable to a smart adversary. We’ll also discuss the weakest link in information security, humans, and what technology solutions you can use to help mitigate phishing emails and other social engineering techniques.