Sometimes it seems like change is everywhere. So much so that one might feel that the only constant is change. There is something to that, and I explore the topic in more depth in my latest SecurityWeek piece: http://www.securityweek.com/information-security-only-constant-change. In particular, I examine how organizations can stay focused on what matters amidst a sea of distractions. I hope you enjoy the piece.
Wednesday, August 17, 2016
Want to get the most out of your scarce security analyst resources? It's all about the base. Other than making a silly pun, what do I mean by that? Have a look at my latest piece in SecurityWeek for a more in-depth discussion: http://www.securityweek.com/maximizing-security-analyst-resources-its-all-about-base.
Thursday, August 11, 2016
Theory and practice are two very different things. In fact, I would argue that they are two different philosophies, or mindsets, that often guide how people approach information security. But which one is more effective? I discuss this topic in my latest DarkReading piece: http://www.darkreading.com/analytics/theory-vs-practice-getting-the-most-out-of-infosec/a/d-id/1326564?
Wednesday, August 3, 2016
Documentation isn't exactly a lot of fun, but it is extremely important to improving security operations and incident response. I discuss the reasons why, as well as list a few areas where documentation can assist in my latest SecurityWeek piece: http://www.securityweek.com/pen-mightier-hot-air-why-documentation-key. Hope you enjoy.