Wednesday, March 23, 2016

What can the common cold teach us about infosec?

Does your security team most often treat the symptoms of problems, rather than the problems themselves?  Interested in reading more about what I'm referring to?  My latest piece in SecurityWeek discusses: http://www.securityweek.com/your-security-team-treating-symptoms-rather-problems.

Monday, March 21, 2016

Cloud Security: Understanding New Risks, Rising To New Challenges

Whether we like it or not, the move to the cloud is upon us.  Further, the pace at which this move is occurring appears to be accelerating with each passing day.  As information security professionals, we need to understand how we can get ahead of what is turning out to be one of the biggest business transformations of our time.  I discuss this in my latest DarkReading piece: http://www.darkreading.com/cloud/cloud-security-understanding-new-risks-rising-to-new-challenges/a/d-id/1324769?.  I think you'll find the piece very relevant to many of the security issues and challenges we're currently working through as a community.

Thursday, March 3, 2016

Incident Response: Work Smarter Not Harder

It will probably come as no surprise that most organizations have more work than they have people available to do that work.  Since a large increase in staff is unlikely in most organizations, organizations need to think a little bit outside of the box in terms of how they approach the hectic workload an operational security environment brings with it.  My thoughts on this topic in my latest SecurityWeek piece: http://www.securityweek.com/incident-response-work-smarter-not-harder.  Hope you enjoy.