Russ McRee

Russ McRee is a senior security analyst, researcher, and founder of holisticinfosec.org, where he advocates a holistic approach to the practice of information assurance. He is also a security researcher for InfoSec Institute.

His predominant focuses are incident response and web application security; he does both as team leader of Microsoft Online Service’s Security Incident Management team.

Russ speaks and writes frequently on information security topics; including toolsmith, a monthly column for the ISSA Journal.

IBM’s ISS X-Force cited him as the 6th ranked Top Vulnerability Discoverers of 2009.

Application Security June 8, 2011 Russ McRee

OWASP Top 10 Deeper Dive – A8: Failure to Restrict URL Access

Application Security April 21, 2011 Russ McRee

OWASP Top 10 Deeper Dive – A5: Cross-Site Request Forgery (CSRF)

Application Security March 21, 2011 Russ McRee

OWASP Top 10 Tools and Tactics

Incident Response November 22, 2010 Russ McRee

Security Incident Response Testing To Meet Audit Requirements