@_mt 👍
nice R410, love to see this as #Iwork4Dell

#introduction
👋 I have multiple roles in my day job, long time client side #securityArchitect working on #encryption HW and SW, now an #SDL and #VR practitioner for client apps and cloud service. I rep my company on the #trustedcomputinggroup. I have written and contributed to multiple standards. #IWork4Dell

In my free time I am dye fabric, create art, watch birds, garden and care for my mom. I am owned by 3 cats, know all the dogs in the neighborhood and rescue lizards. I curate a fiber art exhibit: Stretching Art and Tradition which is on year 22. I co-lead a local pod of the Studio Art Quilt Associates.

Very much enjoying this space and all of the people here.

Hello, world! Had a few minutes between meetings so figured I'd throw some #introduction notes down for perpetuity. I'm Rick (he/him) and #IWork4Dell near HQ developing hardware, firmware, software, and supply chain security strategy for Dell PCs. I've been at Dell over 25 years and have been focused on security for at least half of that tenure. I host a large security community forum across the company focused on spreading security knowledge and collaboration.

Personally my identity is founded on decades of punk rock, skateboarding, and DIY culture. This translates to very non-traditional interests, hobbies, family dynamics, and ultimately bleeds into my attitude toward professional life and information security. Travel and exposure to other cultures is high on my list of activities to share with my children and partners and luckily this includes major security conferences and industry standards participation.

I appreciate all of the friends I've made so far in the #infosec community and especially enjoy learning about others' interests outside of work (and work too).

@corbeaucrypto
Great points and I agree on #SBOM and #VEX. Short disclaimer - #IWork4Dell -
We are a member of FIRST.org and publicly disclose our Vuln Response policy here: https://www.dell.com/support/contents/en-us/article/product-support/self-support-knowledgebase/security-antivirus/alerts-vulnerabilities/dell-vulnerability-response-policy
My org tracks the vectors I mentioned and we do use JIRA for our reporting.

I am also one of the authors on a set of #TCG standards on Reference Integrity Measurements and RIM Manifests. My personal project is moving the attestation discussion beyond version info of software down the stack. TBC
@allanfriedman @catc0n