Feb 25, 20238 minSoftware Security is More than VulnerabilitiesForce 2 : Code wants to be wrong // Central Idea: Shift from a pure focus on only reducing security vulnerabilities towards increasing...
Feb 11, 20238 minData Security and Data Governance Force 1: Information wants to be free // Central Idea: Shift from perimeter based surveillance and tactical blocking to data governance...
Jan 28, 20232 minThe 6 Fundamental Forces of Information Security RiskI first posted this as a Twitter thread in 2019. These forces still seem very much current - perhaps even more so. It is interesting to...
Jan 14, 202312 minCeremonial Security and Cargo CultsThere is a lot of conventional security that is based on established ceremonies and an unquestioning faith that if we keep doing these...