Wednesday, August 31, 2016

The Only Constant is Change

Sometimes it seems like change is everywhere.  So much so that one might feel that the only constant is change.  There is something to that, and I explore the topic in more depth in my latest SecurityWeek piece: http://www.securityweek.com/information-security-only-constant-change.  In particular, I examine how organizations can stay focused on what matters amidst a sea of distractions.  I hope you enjoy the piece.

Wednesday, August 17, 2016

It's All About The Base

Want to get the most out of your scarce security analyst resources?  It's all about the base.  Other than making a silly pun, what do I mean by that?  Have a look at my latest piece in SecurityWeek for a more in-depth discussion: http://www.securityweek.com/maximizing-security-analyst-resources-its-all-about-base.

Thursday, August 11, 2016

Theory Vs Practice: Getting The Most Out Of Infosec

Theory and practice are two very different things.  In fact, I would argue that they are two different philosophies, or mindsets, that often guide how people approach information security.  But which one is more effective?  I discuss this topic in my latest DarkReading piece: http://www.darkreading.com/analytics/theory-vs-practice-getting-the-most-out-of-infosec/a/d-id/1326564?

Wednesday, August 3, 2016

The Pen is Mightier Than Hot Air

Documentation isn't exactly a lot of fun, but it is extremely important to improving security operations and incident response.  I discuss the reasons why, as well as list a few areas where documentation can assist in my latest SecurityWeek piece: http://www.securityweek.com/pen-mightier-hot-air-why-documentation-key.  Hope you enjoy.