Friday, December 14, 2018

What can grilling chicken teach us about securty?

What can grilling chicken teach us about security?  More than you might initially realize.  I discuss in my latest DarkReading piece: https://www.darkreading.com/perimeter/setting-the-table-for-effective-cybersecurity-20-culinary-questions/a/d-id/1333471.  Bon Appetit!

Thursday, November 22, 2018

When is the right time to cut your losses on a wasteful security project?

When is the right time to cut your losses on a wasteful security project? I discuss in my latest SecurityWeek piece: https://www.securityweek.com/when-cut-your-losses-wasteful-security-project.

Tuesday, November 20, 2018

8 Security Buzzwords That Are Too Good to Be True

Can you name 8 security buzzwords that are too good to be true?  I can.  My latest piece in DarkReading discusses: https://www.darkreading.com/cloud/8-security-buzzwords-that-are-too-good-to-be-true/a/d-id/1333291.

Thursday, November 1, 2018

How can laziness be a wonderful motivator in security?

Can laziness be a motivating factor in security?  I would argue that it indeed can be.  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/laziness-wonderful-motivator-security.  Hope you enjoy.

Tuesday, October 23, 2018

Good Times in Security Come When You Least Expect Them

How can we set ourselves up to appreciate the good times that come when we least expect them?  I discuss in my latest DarkReading piece: https://www.darkreading.com/operations/good-times-in-security-come-when-you-least-expect-them/a/d-id/1333091.

Wednesday, October 10, 2018

How can letting go of the familiar improve information security?

How can letting go of the familiar improve information security?  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/how-letting-go-familiar-can-improve-security-maturity.  I hope you'll find the piece interesting.

Monday, October 1, 2018

Why is the right diagnosis important in security?

Why is the right diagnosis important in security?  I discuss in my latest DarkReading piece:  https://www.darkreading.com/operations/the-right-diagnosis-a-cybersecurity-perspective/a/d-id/1332913.  I think you'll enjoy this piece.

Friday, September 7, 2018

Why is a healthy data diet the secret to a healthy security program?

Why is a healthy data diet the secret to a healthy security program?  I discuss in my latest DarkReading piece: https://www.darkreading.com/risk/why-a-healthy-data-diet-is-the-secret-to-healthy-security-/a/d-id/1332718.

Knowing When To Trust

When is it time to trust?  When is it time to hold your cards closely?  There is a time for everything.  Curious as to how you can understand when to share and when not to?  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/knowing-when-trust.

Thursday, August 2, 2018

Conference Speakers: Why Understanding Your Audience is Key

Why is knowing your audience so important, particularly when it comes to security conferences?  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/conference-speakers-why-understanding-your-audience-key.  Hope you enjoy the piece.

Wednesday, July 25, 2018

How 'Projection' Slows Down the Path to Security Maturity

What is projection and how can it slow down the path to security maturity?  I discuss in my latest DarkReading piece: https://www.darkreading.com/threat-intelligence/how-projection-slows-down-the-path-to-security-maturity/a/d-id/1332369.  I hope you'll find the piece enlightening.

Thursday, July 5, 2018

What we don't see can hurt us

How can what we don't see hurt us? I discuss in my latest SecurityWeek piece: https://www.securityweek.com/security-what-we-dont-see-can-hurt-us.  I hope you'll enjoy.

Thursday, June 21, 2018

Keep an Eye on Your Security Technology Portion Size

What can portion control teach us about acquiring security technology more strategically? I discuss in my latest SecurityWeek piece: https://www.securityweek.com/keep-eye-your-security-technology-portion-size.  I hope you enjoy.

Monday, June 11, 2018

6 Ways Greed Has a Negative Effect on Cybersecurity

What are 6 ways greed has a negative effect on cyber security?  I discuss in my latest DarkReading piece: https://www.darkreading.com/operations/6-ways-greed-has-a-negative-effect-on-cybersecurity/a/d-id/1332006.  I hope that the piece causes my readers to stop and think about a topic that is increasingly worrying me.

Wednesday, May 30, 2018

Considerations For Evaluating Vendor Risk Management Solutions

What should enterprises look for when evaluating Vendor Risk Management (VRM) solutions? I discuss in my latest SecurityWeek  piece: https://www.securityweek.com/considerations-evaluating-vendor-risk-management-solutions.  I think you will find the piece helpful and informative.  Hopefully I have helped to bring a little clarity to an otherwise confusing market segment.

Sunday, May 20, 2018

10 Security Behaviors That Anger Us

Why do we get angry with people for doing what we incentivize them to do?  And what can we learn from this in security?  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/10-security-behaviors-anger-us.

Thursday, May 10, 2018

20 Signs You Are Heading for a Retention Problem

Could you be heading for a security retention problem?  I discuss 20 signs you could be heading in that direction in my latest DarkReading piece:  https://www.darkreading.com/careers-and-people/20-signs-you-are-heading-for-a-retention-problem/a/d-id/1331749.  I think you'll find the piece interesting.

Wednesday, May 2, 2018

10 Reasons To Break Up With Your Legacy SIEM

Ever feel like you get less and less value out of your SIEM with each passing year?  I think you'll find that you're not alone.  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/10-reasons-break-your-legacy-siem.  Hope you enjoy.

Thursday, April 12, 2018

Security for the Ages: Make it Memorable

Do those of us in security sometimes forget how our field looks to others? I discuss in my latest SecurityWeek piece: https://www.securityweek.com/security-ages-make-it-memorable. Hope you find the piece thought provoking.

Tuesday, April 10, 2018

Friday, March 23, 2018

What are 10 signs you need to be more direct?

Do you avoid conflict?  Do you skirt difficult conversations or uncomfortable situations?  How could it help you to be more direct?  I discuss in my latest SecurityWeek piece: https://www.securityweek.com/security-practitioners-10-signs-you-need-be-more-direct.  Hope you enjoy and find it relevant for improving your security program.

Wednesday, March 7, 2018

Can you name 10 ways to close that security sale?

Following on to my last SecurityWeek piece by popular request: Can you name 10 ways to close that security sale? I can: https://www.securityweek.com/10-ways-close-security-sale. Hope you enjoy the piece and find it helpful.

Tuesday, March 6, 2018

Pragmatic Security: 20 Signs You Are 'Boiling the Ocean'

Does your security organization have an ocean boiling problem?  I discuss in my latest DarkReading piece: https://www.darkreading.com/threat-intelligence/pragmatic-security-20-signs-you-are-boiling-the-ocean/a/d-id/1331178.  I hope you enjoy and find the piece insightful.

Wednesday, February 14, 2018

Can you name 10 ways to lose that security sale?

Can you name 10 ways to lose that security sale?  I can.  My latest in SecurityWeek discusses: https://www.securityweek.com/10-ways-lose-security-sale.  Hope you find the piece interesting and informative.

Friday, February 9, 2018

Automation is a dish best served precisely, no?

Automation is a dish best served precisely, no? I discuss in my latest DarkReading piece: https://www.darkreading.com/operations/20-signs-you-need-to-introduce-automation-into-security-ops/a/d-id/1331005.  In the piece, I offer different pinpointed areas within security operations where it may make sense to introduce automation.  This is in contrast to how some approach automation, which is to settle on an automation solution and then go looking for a problem to solve with it.  Hope you enjoy the piece.

Friday, February 2, 2018

Did the reaction of the security industry to Meltdown and Spectre rub you the wrong way as well?

Did the reaction of the security industry to Meltdown and Spectre rub you the wrong way as well?  I certainly wasn't a big fan of the way the industry responded.  I discuss in my latest SecurityWeek piece: http://www.securityweek.com/wanted-actionable-information-practical-advice.  Hope you find the piece meaningful and thought provoking.

Tuesday, January 16, 2018

Is your security organization busy or productive?

Are you a busy, or a productive security organization?  The difference between the two is huge.  Curious what I mean?  I discuss in my latest DarkReading piece: https://www.darkreading.com/vulnerabilities---threats/in-security-and-life-busy-is-not-a-badge-of-honor/a/d-id/1330818.

Thursday, January 4, 2018

Do you also feel that solving real security problems isn't sexy?

Do you also feel that solving real security problems isn't sexy? My latest in @SecurityWeek discusses: http://www.securityweek.com/solving-security-problems-isnt-sexy. I hope you'll find the piece interesting and one that touches on an important point.