CISO: Archeologist, Historian or Explorer?
We talk about attackers being the enemy. Sometimes we talk about insider threats. But one of our biggest enemies is pernicious...
top of page
Search
- Jul 16, 2021
- 8 min
Cybersecurity - The Board's Perspective
How Boards, especially public company Boards, oversee cybersecurity is a crucial but difficult topic. This previous post discussed how...
7,916
- Jul 3, 2021
- 6 min
Cybersecurity and the Curse of Binary Thinking
Working in information/cybersecurity and technology risk is a fascinating and challenging career, as I’ve covered here. There is, mostly,...
22,924
- Jun 19, 2021
- 7 min
The Actual Cybersecurity Workforce Challenge
We continuously hear about the millions of unfilled cybersecurity roles, although I’ve yet to see a study that actually supports that...
5,471
- Jun 5, 2021
- 6 min
Relationship Management for the InfoSec Program
A key part of any security leader's role is relationship management. In my experience this is another one of those leadership skills that...
2,202
- May 22, 2021
- 2 min
Segmentation Technologies / Zero Trust
I first came across the notion of doctrine vs. structure in this depiction about the relative positioning of tanks from some blog or...
1,375
- May 13, 2021
- 1 min
Cloud Security
In a few of my posts I've talked about the economy of scale of the cloud is fundamentally changing the game of security. The pace of...
772
- May 8, 2021
- 7 min
Is Complexity the Enemy of Security?
One of the many pieces of accepted wisdom in information/cybersecurity is that complexity is the enemy of security. But is it? You...
3,888
- Apr 24, 2021
- 1 min
Leadership, Business, Security and Risk Reading List
This is my list of favorite books across the various professional disciplines I’m interested in. I have a set of favorite books that are...
2,825
- Apr 10, 2021
- 6 min
Security Leaders Guide to Managing Stress
Security is a tough job. But it is not uniquely so. Our colleagues in risk, safety, compliance, privacy, and many other disciplines have...
2,928
- Mar 27, 2021
- 5 min
Cybersecurity : The Winner’s Game and The Loser’s Game
There is a seminal paper in finance by Charles Ellis called the The Loser’s Game which, in simple terms, foretells the move from active...
2,244
- Mar 13, 2021
- 4 min
Return on Investment for Security
The concept of return on investment (ROI) for security has bugged me for a long time. Not because it isn’t a laudable goal. Of course,...
5,307
bottom of page