I've been in IT for 11 years. Sometime in 2000 I became interested in Security and started focusing my career in that direction. I am a CISSP and have a passion for Information Security. I have worked both "In the trenches" and in managerial positions in IT. I started blogging because I wanted to have a place to express my thoughts and opinions on security. Hopefully someone else will gain something from what I have to say.