Veracode’s nomination for “Best Corporate Security Blog” at the 2012 Social Security Bloggers Awards got the Veracode Marketing team thinking about the other great information security blogs we follow. The Marketing team thought it would be fun to compile a list of what we think are the best 20 information security blogs. We used a very scientific process to compile this list. Inputs included - quality of blog content (from both a technical and an entertainment standpoint), level of authority of contributors, frequency of updates, overall appearance and our own subjectivity :) All the team members weighed in, and after some serious debating , we settled on the following list (in no particular order). Fortinet Security Blog Naked Security Blog Cognitive Dissidents Blog with Joshua Corman The New School of Information Security Blog Dark Reading Blog Securosis Blog Krebs on Security with Brian Krebs Thought Crime Blog with Moxie Marlinspike Schneier on Security with Bruce Schneier Root Labs RDIST with Nate Lawson Threatpost Blog Zero Day Blog with Ryan Naraine and Dancho Danchev Rational Survivability Blog with Christofer Hoff Securelist Blog TaoSecurity with Richard Bejtlich F-Secure News from the Lab Blog Andrew Hay Blog Uncommon Sense Security Blog with Jack Daniel Network Security Blog with Martin McKeay SANS AppSec Blog with Frank Kim Additionally, I would like to give a nod to the folks at the Security Bistro Blog. Their blog is too young for this list (having just launched in January 2012) but is off to an excellent start, featuring good commentary from a mix of reputable authors. So there you have it. As usual I encourage people to weigh in on our picks and offer suggestions of their own.