Wednesday, September 30, 2015

What Does Security Mean to the "Unwashed Masses"?

Curious what I could possibly be getting at with this piece?  Have a look at my latest in SecurityWeek: http://www.securityweek.com/what-does-security-mean-unwashed-masses.  Hope you are able to take something away from it.

Friday, September 18, 2015

7 ways to deal with insider threat

While not exhaustive, I've written down some ideas to help small and medium-sized business (SMB) mitigate the risk posed by insider threat.  My latest piece in The Business Journals discusses this interesting, but challenging topic: http://www.bizjournals.com/bizjournals/how-to/technology/2015/09/ways-to-deal-with-insider-cybersecurity-threats.html.  Hope you enjoy this piece and find it helpful.

Tuesday, September 15, 2015

Information Security Lessons From Literature

What can literature teach us about information security?  I would argue quite a bit.  Curious what I mean?  Have a look at my latest piece in DarkReading: http://www.darkreading.com/operations/information-security-lessons-from-literature/a/d-id/1322178?.  Hope you enjoy!

Thursday, September 10, 2015

The Security Operations Hierarchy of Needs

I am often asked a number of different questions by organizations that are just beginning their security maturity journey.  Some of the most common questions include:  Where do I begin?  How do I know what to prioritize?  How can I build a strong foundation of security fundamentals?  In what order should I add or improve capabilities?

These are all very good questions, and I tried to answer them, along with other questions, in my most recent SecurityWeek piece.  The piece is entitled "The Security Operations Hierarchy of Needs": http://www.securityweek.com/security-operations-hierarchy-needs.  While the length of the piece does not permit an in-depth discussion of all the points, I believe the piece does provide some helpful guidance for those searching for it.  Hope you enjoy.