Category Archives: CISO Insights

CISO Insights

Back to Vendor Listings

Risk Averse. Rule Averse.

CISO InsightsBy David Sheidlower February 17, 2015 Leave a comment

It’s 2 in the morning. You are stopped at a well-lit, completely empty intersection looking up at a red light. If you’re like me, you will wait till that light…

Plight of Passwords

CISO InsightsBy John Masserini February 15, 2015 Leave a comment

I read an article recently about how a CISO talked his way out of having an internal auditor write up a finding about weak passwords – which eventually lead to…

Be Very, Very Quiet – Your Devices May Be Listening

CISO InsightsBy Joel Rosenblatt February 11, 2015 Leave a comment

According to Wikipedia, “The Internet of Things (IoT) is the interconnection of uniquely identifiable embedded computing devices within the existing Internet infrastructure. Typically, IoT is expected to offer advanced connectivity of devices, systems, and…

The Wisdom of the CISO Crowd…In an Era of Security Products and Technologies DELUGE

CISO InsightsBy Devon Bryan February 3, 2015 Leave a comment

The list of security products and technologies resulting from searches by even the least sophisticated Internet Search Engines across any of the major security product categories can be quite overwhelming.…

My Security Fantasy

CISO InsightsBy Joel Rosenblatt January 29, 2015 Leave a comment

My biggest security problems all start with authentication. If you look at the major hacks that have taken place in the last year, you can trace most of them back…

Risk Based vs. Rule Based

CISO InsightsBy David Sheidlower January 27, 2015 Leave a comment

I have always found that information security professionals tend to fall into three categories: SWAT Teams, Power Rangers or Nerds with an edge (see a blog post of that name…

Business Continuity Planning, The CISOs Secret Weapon

CISO InsightsBy John Masserini January 26, 2015 Leave a comment

BCP. Three little letters that, unfortunately, strike mind-numbing boredom into most CIOS’s. The truth is, Business Continuity Planning isn’t synonymous with the excitement that is typically found in the Information…

The 20 Critical Controls – A Practical Security Strategy – Part 1

CISO InsightsBy Randy Marchany January 20, 2015 Leave a comment

Back in the late 1990’s, I was fortunate to be part of a team of cyber security experts who were asked to develop a list of the Top 10 Internet…

10 Steps Towards an Information Security Program for Newly Established Companies

CISO InsightsBy Farhaad Nero January 19, 2015 Leave a comment

It’s not a matter of if your company will be breached but when and for newly established companies or startups the when may be sooner rather than later. Startups are…

If Not Now, When? If Not Us, Who? – “Tackling The Great Minority Cyber Divide”

CISO InsightsBy Devon Bryan January 15, 2015 Leave a comment

In a November 2014 article, Lowell McAdam the CEO of Verizon made the following very bold public statement, “It’s Wrong That in a Room of 25 Engineers, Only 3 Are…