RISK & CYBERSECURITY

No matter what you experience, what level of achievement, results or status you attain there is always something that might be perceived...

There are still plenty of organizations that don’t have a well defined and accessible bug bounty program. More surprisingly, there are...

The great thing about the security industry is it’s made up of a variety of roles and people from many backgrounds, disciplines, skill...

The skills for your role and your leadership style build up throughout your career. But I’ve found, personally and in talking to others,...

The skills for your role and your leadership style build up throughout your career. But I’ve found, personally and in talking to others,...

Since the last post about leverage points in managing complex systems I thought it would be good to revisit and update a post from a few...

Security is an emergent property of the complex systems we inhabit. In other words, security isn’t a thing that you do, rather it's a...

Unless you’re doing continuous or quarterly budgeting, which some organizations do, then you’ll no doubt be getting ready for the long...

As an industry we spend a lot of time talking about workforce development and skills shortages. However, we tend not to talk about how to...

Many of us have to regularly speak in public at a range of events large and small, public and private, staged and ad-hoc. As your career...

Resilience Engineering: Concepts and Precepts is an excellent collection of standalone essays, woven into a consistent whole on the...

There is a lot of good discussion and emerging methods to manage the risks of AI in various forms from training data protection, model...