Risk & Cybersecurity

Incentives for Security: Flipping the Script

We’re getting it wrong on the messaging for incentives to do security - and people are pretending it’s landing when it isn’t. There are 5...

Jun 1, 20248 min read

A major success marker of great security leaders and their teams is one simple prioritization technique: the ability to know what needs...

May 18, 20244 min read

Every major technological change is heralded with claims of significant, even apocalyptic, risks. These almost never turn out to be...

May 4, 202410 min read

There are many well known, so called, laws of technology. Moore’s law being particularly emblematic. Let’s look at some of them and see...

Apr 20, 202410 min read

A few weeks ago The White House published our PCAST report on cyber-physical resilience. Thank you for all the positive reactions to...

Apr 6, 20246 min read

We still have plenty of open problems in information and cybersecurity (InfoSec). Many of these problems are what could easily be classed...

Mar 23, 202410 min read

Each year, DevOps Research and Assessment (DORA) within Google Cloud publishes the excellent State of DevOps report. The 2023 report...

Mar 9, 20246 min read

As we start out, or even when entering a new stage of our careers, we realize the need to be connected to a professional community. For...

Feb 24, 202413 min read

Ever since I first became familiar with the 80/20 principle, and other circumstances marked by Pareto distributions, I began to see...

Feb 10, 20245 min read

Many of us have been through several leadership transitions in our careers. It could be a new role in the same or different organization....

Jan 27, 20249 min read

Everyone has their list of favorite security movies and I bet some are on everyone’s list. There’s also a set of movies that aren’t...

Jan 13, 20245 min read