The Most Important Element of Information Security Success
As a CISO, I am often asked, “What is the key component to the success of an Information Security organization?” Too often, we dwell on the failures or gaps, and…
CISO Insights
Back to Vendor ListingsHow to Turn 4 Million Into 18 Million
The story about the Office of Personnel Management getting hacked this week was, unfortunately, not a big surprise to anyone in the security world. How it got hacked, by phishing,…
A CISO Checklist – 11 Tips to Get Ready for Your Much Needed Vacation
Do you know how Merriam-Webster defines vacation? Believe it or not – this is what it says: – A period of time that a person spends away from home, school, or…
The 20 Critical Controls – A Practical Security Strategy – Part 2
In my last article, I talked about using the 20 Critical Controls as a practical security strategy. I showed how the controls map to a wide variety of international and…
Who Am I?
I frequently talk to myself. I think that this is mostly OK, except when I have an argument. The other day, I asked myself, “Who am I?” and I was…
Why Did the Chicken Cross the Road? And Wearable Devices
Why did the chicken cross the road? To add 200 more steps to his daily wearable device count! But did the chicken ever stop to think about the impact to his…
Lessons from the Sony Hack
The recent Sony breach attributed to North Korea is only the latest in a series of Sony hacks that trace back to 2005. Most news stories point to the recent…
Compliance Beyond Black and White
It’s now commonplace to read that security means more than checking off boxes on a compliance checklist. A robust approach to security includes trying to fill the gaps between the…
Why Does My Secret Decoder Ring Keep On Breaking?
I’ve been around the computer business for a long time. Way back, before the Web and even before computers, if you wanted to send a secret message to someone, you…
In-House Software Development — Is it Worth the Risk?
Nowadays, data breaches are a subject of conversation at dinner tables and in boardrooms. Cyber insurance premiums to cover these breaches are skyrocketing. Recent surveys and breach reports have highlighted…