Vulnerability Management
I don’t see much written on vulnerability management in more holistic terms vs. patch/bug fixing. This might be ok given a lot of...
top of page
Search
- Aug 17, 2019
- 2 min
Cybersecurity as a First Class Business Risk
I see a lot of commentary on the need to “treat cyber/info-security as a business issue not an IT issue”. The problem is it implies that...
349
- Aug 12, 2019
- 3 min
Controls
Many well-known security incidents appear to have a common pattern. They are not the result of some awesome attacker capability to...
802
- Jul 21, 2019
- 2 min
Fundamental Drivers of Information Security Risk
As I get older and (hopefully) wiser it has become ever more apparent that all the issues and risks we face arise from a small number of...
391
- Jul 18, 2019
- 2 min
Threat Intelligence
Threat intelligence seems, at least to me, to get maligned too much. For many years I’ve found it an immensely useful element of an...
180
- Jun 9, 2019
- 3 min
The Reporting Line of Security Teams / CISOs
Having read many people’s strong-held views on this topic I thought I’d add to the mix. Despite a lot of people now inevitably thinking...
1,495
- May 24, 2019
- 1 min
Coding Skills and Security
I've increasingly found, with respect to coding, security has come full circle. Those of us who started in the 80's/90's had to code (or...
776
- May 24, 2019
- 3 min
Cybersecurity Workforce Development
It is still somewhat frustrating that most of the dialog about the skills shortage in cybersecurity focuses, perhaps inevitably, on the...
197
- May 14, 2019
- 1 min
Time Management
It never ceases to amaze me the opportunities and interesting work that stem from the multitude of connections that come from being...
225
- Feb 12, 2019
- 2 min
Technology - Retrospective
In the late 1980’s I was a developer using virtualized systems and containers, software defined networks, thin-client end points that...
569
bottom of page