Back in the day (many years ago, that is), I ran what I dubbed the Security Profile on this blog. I profiled security bloggers and podcasters, and had the pleasure to present some of the great names in infosec, like Martin McKeay, Anton Chuvakin, Richard Bejtlich and more.
After a long break, I hereby present the Security Profile again. This time around, I will focus on people I meet (have met) over the years as a security practitioner, and instead of focusing solely on bloggers and Rock Stars, I will look at people in the industry that makes a difference, without necessarily getting the recognition they may deserve (I leave that judgement to you!)
Introducing Mo Amin
Mo Amin, failing to look mean. This is a genuinely good guy!
The first profile is of Mr. Mo Amin. I honestly don’t remember when we first met, it feels like a long long time ago. Considering his age, though, it cannot be that long. Which probably says more about my memories than anything else.
Mo came into security by way of ICT-support, and amazingly instead of letting the users ruin his life, he managed to recognize their needs for quality learning and attention. His personality is out-going, focused and jovial – he is one of the good guys, and don´t mind bringing his positive attitude into information security.
Cynics amongst you may predict him to join you (the cynics, that is) at some point. The funny thing with Mo is that he will turn the table on you, and make you join him on a crusade to create a positive attitude in information security. His charming, boyish smile will drag you into his realm and make you consider following him to the end of the world.
Or wherever he decides to go.
Mo is a part of the London security scene, a group of people who have not failed to draw attention to themselves, with people like J4vv4d, Thom Langford (who claims to be my evil twin brother), Quentyn Taylor and many more. (Admittedly, the London Security Scene are many more than just those three, and consists of a number of people who are not actually in London too).
The London gang also organize the BSidesLondon.
BSides London was his first public appearance, when he took the stage on the rookie track 2013. With mentors like Arron Finux, he excelled (no surprise there). Some time later, he came to Norway to speak at the CSA Norway Annual Congress, and shone like a sun!
With his background from ICT-support, Mo developed an interest in helping people early on. He recognized the challenges many people have with security concepts, and how policies, technology and training efforts (or lack thereof) not always worked to help the employees to understand how to behave.
Using his people skills, he enables organizations to do better security by raising awareness. He says this about security awareness programs:
«In essence, to create an effective security awareness program you need to build security culture within an organization. So what does this actually mean? Well it means:
- Involving the right people
- Understanding the people within the organisation and choosing the correct topics for them
- Planning and establishing the programme
- Being able to measure its effectiveness
Building culture of any kind is a continuously evolving process, not a one-time activity.»
His interest in people, security and awareness is what put him on my radar, and Mo was one of the very first people to join the Security Culture Framework movement in Europe. He says it was an easy «YES» when asked to join the community. And the community is very happy to have him on board, where he volunteer his time to review and create content and templates, as well as testing the concepts.
Mo goes on to say
«The framework isn’t magic it’s simply taking existing themes within the business world and applying them in a fashion that can be used by anyone.»
Mo is London based. He works there, and he lives there. He is available on Twitter (@infosecmo), and he is active in the local security community in London. This year, he no longer speak at the Rookie track at BSLondon, he is mentoring a speaker!
Mo is also one of the central people in the Security Culture Framework community:
«This is a community effort and we welcome people with ideas, opinions and thoughts,»
Join the community, introduce yourself, and get to know a rising star!
Nominate a profile!
Do you know someone in the Security sector you think deserve visibility? Post your nominations in the comments! Let the light shine on someone who deserves it!