Tuesday, March 12, 2024

4 Security Tips From PCI DSS 4.0 Anyone Can Use

PCI 4.0 is here. In my latest DarkReading piece, I discuss four aspects of the standard that security teams may want to be aware of: https://www.darkreading.com/cybersecurity-operations/pci-dss-4-0-is-good-security-guidance-for-everyone.

Wednesday, February 21, 2024

Diversifying Defenses: FjordPhantom Malware Shows Importance of a Multi-Pronged Approach

Security teams need to combine the angles of client-side and server-side detection in order to have the best chance of mitigating the risk of advanced mobile malware. I discuss in my latest SecurityWeek piece: https://www.securityweek.com/diversifying-defenses-fjordphantom-malware-shows-importance-of-a-multi-pronged-approach/.

Tuesday, February 13, 2024

How Changes in State CIO Priorities for 2024 Apply to API Security

What are the 2024 updates to NASCIO's State CIO priorities and what can we learn from them about securing our applications and APIs? I discuss in my latest DarkReading piece: https://www.darkreading.com/application-security/how-changes-in-state-cio-priorities-for-2024-apply-to-api-security.

Wednesday, January 17, 2024

As Enterprise Cloud Grows, So Do Challenges

What can parenting teach us about navigating the challenges of distributed cloud environments? I discuss in my latest DarkReading piece: https://www.darkreading.com/cloud-security/as-enterprise-cloud-grows-so-do-challenges.

Thursday, January 4, 2024

Beyond Protocols: How Team Camaraderie Fortifies Security

The most efficient and effective teams have healthy and constructive cultures that encourage team members to go above and beyond the call of duty. I discuss in my latest SecurityWeek piece: https://www.securityweek.com/beyond-protocols-how-team-camaraderie-fortifies-security/.

Tuesday, December 19, 2023

API Security: The Big Picture

API security is all the rage these days. Hype won't solve operational security problems though. In my latest DarkReading piece, I discuss 10 important points to consider when evaluating API security solutions: https://www.darkreading.com/application-security/api-security-the-big-picture.

Monday, December 18, 2023

Beyond the Noise: Appreciating the Quiet Work of Effective Doers

More often than not, we are grateful for and celebrate the wrong people. It is incumbent on all of us to take the time to appreciate and acknowledge the doers in our lives. I discuss in my latest SecurityWeek piece: https://www.securityweek.com/beyond-the-noise-appreciating-the-quiet-work-of-effective-doers/.